59.21.111.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea, Republic of

运营商(isp): KT Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	port scan and connect, tcp 23 (telnet)	2019-07-06 04:00:33

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.21.111.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20575
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.21.111.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 04:00:27 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 48.111.21.59.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 48.111.21.59.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
190.245.20.46	attackbots	Autoban 190.245.20.46 AUTH/CONNECT	2019-07-22 05:59:32
190.43.228.185	attack	Autoban 190.43.228.185 AUTH/CONNECT	2019-07-22 05:44:48
49.49.232.128	attackbots	Sun, 21 Jul 2019 18:28:12 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 05:43:34
132.255.29.228	attackspam	Invalid user hadoop from 132.255.29.228 port 35756	2019-07-22 06:05:52
190.41.205.155	attackbots	Autoban 190.41.205.155 AUTH/CONNECT	2019-07-22 05:50:17
190.45.14.182	attackbotsspam	Autoban 190.45.14.182 AUTH/CONNECT	2019-07-22 05:41:34
14.207.175.92	attackspambots	Sun, 21 Jul 2019 18:28:10 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 05:49:50
190.42.17.104	attack	Autoban 190.42.17.104 AUTH/CONNECT	2019-07-22 05:48:01
193.227.168.10	attackbotsspam	Sun, 21 Jul 2019 18:28:14 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 05:36:00
188.80.121.108	attackbotsspam	Sun, 21 Jul 2019 18:28:01 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 06:10:50
123.22.103.3	attackspam	Sun, 21 Jul 2019 18:28:11 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 05:41:54
14.177.236.237	attackspam	Sun, 21 Jul 2019 18:28:03 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 06:09:31
178.128.201.224	attackspam	Jul 21 20:22:44 tux-35-217 sshd\[11084\]: Invalid user wy from 178.128.201.224 port 35058 Jul 21 20:22:44 tux-35-217 sshd\[11084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.201.224 Jul 21 20:22:46 tux-35-217 sshd\[11084\]: Failed password for invalid user wy from 178.128.201.224 port 35058 ssh2 Jul 21 20:28:11 tux-35-217 sshd\[11090\]: Invalid user simo from 178.128.201.224 port 58568 Jul 21 20:28:11 tux-35-217 sshd\[11090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.201.224 ...	2019-07-22 05:39:44
106.66.239.35	attackspambots	Sun, 21 Jul 2019 18:28:04 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 06:06:46
37.59.49.177	attackspambots	Jul 21 18:20:39 fwweb01 sshd[18930]: Invalid user hong from 37.59.49.177 Jul 21 18:20:41 fwweb01 sshd[18930]: Failed password for invalid user hong from 37.59.49.177 port 43164 ssh2 Jul 21 18:20:41 fwweb01 sshd[18930]: Received disconnect from 37.59.49.177: 11: Bye Bye [preauth] Jul 21 18:31:18 fwweb01 sshd[19546]: Invalid user anderson from 37.59.49.177 Jul 21 18:31:19 fwweb01 sshd[19546]: Failed password for invalid user anderson from 37.59.49.177 port 56296 ssh2 Jul 21 18:31:19 fwweb01 sshd[19546]: Received disconnect from 37.59.49.177: 11: Bye Bye [preauth] Jul 21 18:35:45 fwweb01 sshd[19774]: Invalid user oracle from 37.59.49.177 Jul 21 18:35:48 fwweb01 sshd[19774]: Failed password for invalid user oracle from 37.59.49.177 port 54250 ssh2 Jul 21 18:35:48 fwweb01 sshd[19774]: Received disconnect from 37.59.49.177: 11: Bye Bye [preauth] Jul 21 18:40:08 fwweb01 sshd[20049]: Failed password for mysql from 37.59.49.177 port 52222 ssh2 Jul 21 18:40:08 fwweb01 sshd[20049]........ -------------------------------	2019-07-22 05:55:40

最近上报的IP列表

203.218.212.228	130.250.196.178	81.229.62.155	89.110.48.143
49.119.76.206	169.131.85.9	112.243.59.18	37.55.72.244
189.213.129.185	42.0.47.217	129.204.254.4	240.136.230.36
118.126.103.12	131.51.208.40	150.107.92.100	173.100.185.154
45.13.39.53	95.91.101.214	200.207.63.165	175.21.233.165