59.16.221.94 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 59.16.221.94 to port 83 [J]	2020-01-05 06:55:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.16.221.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41789
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.16.221.94.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010402 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 06:54:57 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 94.221.16.59.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.221.16.59.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.203.201.240	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-15 18:16:46
114.164.105.250	attack	Backdoor.NetWire	2019-11-15 18:20:26
1.53.115.157	attack	Brute force SMTP login attempts.	2019-11-15 18:24:49
80.191.140.28	attackbots	jannisjulius.de 80.191.140.28 \[15/Nov/2019:07:24:17 +0100\] "POST /wp-login.php HTTP/1.1" 200 6658 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" jannisjulius.de 80.191.140.28 \[15/Nov/2019:07:24:19 +0100\] "POST /wp-login.php HTTP/1.1" 200 6621 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" jannisjulius.de 80.191.140.28 \[15/Nov/2019:07:24:20 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4093 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-15 18:38:03
139.59.141.196	attack	139.59.141.196 - - \[15/Nov/2019:08:54:07 +0100\] "POST /wp-login.php HTTP/1.0" 200 4474 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - \[15/Nov/2019:08:54:08 +0100\] "POST /wp-login.php HTTP/1.0" 200 4287 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - \[15/Nov/2019:08:54:09 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-15 18:49:13
41.234.17.0	attack	Unauthorised access (Nov 15) SRC=41.234.17.0 LEN=52 TTL=52 ID=3635 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-15 18:39:25
49.88.112.114	attackspambots	Nov 14 20:35:37 hpm sshd\[3421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 14 20:35:39 hpm sshd\[3421\]: Failed password for root from 49.88.112.114 port 53849 ssh2 Nov 14 20:36:49 hpm sshd\[3525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 14 20:36:52 hpm sshd\[3525\]: Failed password for root from 49.88.112.114 port 57769 ssh2 Nov 14 20:41:12 hpm sshd\[4012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-11-15 18:43:30
5.196.225.45	attackspambots	Failed password for invalid user graciela from 5.196.225.45 port 40062 ssh2 Invalid user admin from 5.196.225.45 port 49102 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.225.45 Failed password for invalid user admin from 5.196.225.45 port 49102 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.225.45 user=root	2019-11-15 18:17:03
36.62.239.2	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/36.62.239.2/ CN - 1H : (936) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 36.62.239.2 CIDR : 36.62.0.0/15 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 19 3H - 50 6H - 117 12H - 194 24H - 437 DateTime : 2019-11-15 07:24:18 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-15 18:39:50
37.187.22.227	attackspam	Nov 15 11:01:58 lnxmysql61 sshd[11152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.22.227	2019-11-15 18:16:25
114.222.216.218	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.222.216.218/ CN - 1H : (937) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 114.222.216.218 CIDR : 114.222.128.0/17 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 20 3H - 50 6H - 118 12H - 195 24H - 438 DateTime : 2019-11-15 07:24:26 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-15 18:32:48
37.187.195.209	attackspambots	Jan 16 14:40:36 vtv3 sshd\[13856\]: Invalid user evangelista from 37.187.195.209 port 34885 Jan 16 14:40:36 vtv3 sshd\[13856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.195.209 Jan 16 14:40:39 vtv3 sshd\[13856\]: Failed password for invalid user evangelista from 37.187.195.209 port 34885 ssh2 Jan 16 14:44:41 vtv3 sshd\[14681\]: Invalid user mirabel from 37.187.195.209 port 49087 Jan 16 14:44:41 vtv3 sshd\[14681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.195.209 Jan 24 06:17:45 vtv3 sshd\[8400\]: Invalid user minecraft from 37.187.195.209 port 42819 Jan 24 06:17:45 vtv3 sshd\[8400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.195.209 Jan 24 06:17:47 vtv3 sshd\[8400\]: Failed password for invalid user minecraft from 37.187.195.209 port 42819 ssh2 Jan 24 06:21:43 vtv3 sshd\[9635\]: Invalid user sdtd from 37.187.195.209 port 57977 Jan 24 06:21:43	2019-11-15 18:18:24
222.186.3.249	attackspambots	Nov 15 10:15:40 zeus sshd[20492]: Failed password for root from 222.186.3.249 port 10627 ssh2 Nov 15 10:15:44 zeus sshd[20492]: Failed password for root from 222.186.3.249 port 10627 ssh2 Nov 15 10:15:48 zeus sshd[20492]: Failed password for root from 222.186.3.249 port 10627 ssh2 Nov 15 10:17:19 zeus sshd[20520]: Failed password for root from 222.186.3.249 port 33567 ssh2	2019-11-15 18:31:48
213.251.35.49	attack	F2B jail: sshd. Time: 2019-11-15 11:14:59, Reported by: VKReport	2019-11-15 18:26:14
185.143.223.133	attackspam	185.143.223.133 was recorded 73 times by 17 hosts attempting to connect to the following ports: 64466,36566,9351,23637,41141,1651,18888,7901,63653,2223,8778,54549,17301,43333,1080,58589,38381,5859,18820,55573,17273,24445,118,24041,46612,23589,9345,2090,2888,9770,29255,24193,1876,165,4123,3060,33744,41725,2666,21415,34345,42490,55522,744,2804,13564,770,37777,41718,5225,1232,662,24090,38385,32930,47454,1236,9011,54445,232,8344,14142,262,235,39820,22324,56666,41413,799,47778,9293. Incident counter (4h, 24h, all-time): 73, 443, 719	2019-11-15 18:26:41

最近上报的IP列表

24.103.225.69	187.192.181.60	43.166.206.231	181.43.175.81
49.51.13.14	122.41.55.151	49.51.9.196	49.51.9.19
45.113.71.236	41.41.61.129	41.39.138.78	37.48.121.199
2.179.117.7	89.195.192.33	125.236.34.60	151.24.189.95
68.95.22.18	216.241.196.228	213.195.100.112	142.234.189.208