59.99.196.66 - IPInfo

基本信息:

城市(city): Kannur

省份(region): Kerala

国家(country): India

运营商(isp): Bharat Sanchar Nigam Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 59.99.196.66 to port 445	2019-12-22 04:37:14

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.99.196.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61214
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.99.196.66.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122101 1800 900 604800 86400

;; Query time: 423 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 22 04:37:11 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 66.196.99.59.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.196.99.59.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
187.74.44.251	attackspam	Jul 23 07:13:49 MainVPS sshd[6623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.74.44.251 user=jenkins Jul 23 07:13:51 MainVPS sshd[6623]: Failed password for jenkins from 187.74.44.251 port 51262 ssh2 Jul 23 07:19:10 MainVPS sshd[7004]: Invalid user user from 187.74.44.251 port 38535 Jul 23 07:19:10 MainVPS sshd[7004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.74.44.251 Jul 23 07:19:10 MainVPS sshd[7004]: Invalid user user from 187.74.44.251 port 38535 Jul 23 07:19:12 MainVPS sshd[7004]: Failed password for invalid user user from 187.74.44.251 port 38535 ssh2 ...	2019-07-23 13:49:16
180.177.81.251	attackbots	port scan and connect, tcp 23 (telnet)	2019-07-23 13:10:53
111.76.129.139	attackbots	Jul 22 18:19:03 mailman postfix/smtpd[7620]: warning: unknown[111.76.129.139]: SASL LOGIN authentication failed: authentication failure	2019-07-23 13:20:22
197.156.69.60	attackspambots	ECShop Remote Code Execution Vulnerability, PTR: PTR record not found	2019-07-23 12:45:45
167.99.188.82	attackspam	2019-07-23 x@x 2019-07-23 x@x 2019-07-23 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=167.99.188.82	2019-07-23 13:22:17
92.87.123.68	attackbots	Jul 22 17:19:47 mail postfix/postscreen[16294]: PREGREET 18 after 0.4 from [92.87.123.68]:52033: EHLO lpmotors.it ...	2019-07-23 12:47:14
51.68.121.167	attackspam	Jul 23 02:29:28 elektron postfix/smtpd\[31467\]: warning: 167.ip-51-68-121.eu\[51.68.121.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 23 03:08:40 elektron postfix/smtpd\[7824\]: warning: 167.ip-51-68-121.eu\[51.68.121.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 23 03:13:29 elektron postfix/smtpd\[7824\]: warning: 167.ip-51-68-121.eu\[51.68.121.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-23 12:47:54
139.99.2.13	attackspambots	xmlrpc attack	2019-07-23 13:05:11
114.251.73.201	attackbots	Jul 22 13:32:53 iberia postfix/smtpd[55013]: connect from unknown[114.251.73.201] Jul 22 13:32:54 iberia postfix/smtpd[55013]: warning: unknown[114.251.73.201]: SASL LOGIN authentication failed: authentication failure Jul 22 13:32:54 iberia postfix/smtpd[55013]: disconnect from unknown[114.251.73.201] helo=1 auth=0/1 quhostname=1 commands=2/3 Jul 22 13:32:54 iberia postfix/smtpd[55013]: connect from unknown[114.251.73.201] Jul 22 13:32:56 iberia postfix/smtpd[55013]: warning: unknown[114.251.73.201]: SASL LOGIN authentication failed: authentication failure Jul 22 13:32:56 iberia postfix/smtpd[55013]: disconnect from unknown[114.251.73.201] helo=1 auth=0/1 quhostname=1 commands=2/3 Jul 22 13:32:58 iberia postfix/smtpd[55013]: connect from unknown[114.251.73.201] Jul 22 13:32:59 iberia postfix/smtpd[55013]: warning: unknown[114.251.73.201]: SASL LOGIN authentication failed: authentication failure Jul 22 13:32:59 iberia postfix/smtpd[55013]: disconnect from unknown[114.251........ -------------------------------	2019-07-23 12:51:20
193.169.252.18	attackbotsspam	Jul 23 03:59:26 mail postfix/smtpd\[18405\]: warning: unknown\[193.169.252.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 23 04:26:29 mail postfix/smtpd\[18163\]: warning: unknown\[193.169.252.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 23 04:53:51 mail postfix/smtpd\[19608\]: warning: unknown\[193.169.252.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 23 05:48:00 mail postfix/smtpd\[22646\]: warning: unknown\[193.169.252.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-23 12:55:33
134.175.118.68	attackspam	Automatic report - Banned IP Access	2019-07-23 13:22:35
39.80.195.204	attack	Caught in portsentry honeypot	2019-07-23 13:20:39
179.189.235.228	attackspam	Invalid user brady from 179.189.235.228 port 51496 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.189.235.228 Failed password for invalid user brady from 179.189.235.228 port 51496 ssh2 Invalid user jorge from 179.189.235.228 port 47660 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.189.235.228	2019-07-23 12:40:10
185.220.101.58	attack	2019-07-09T10:29:58.145939wiz-ks3 sshd[27717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.58 user=root 2019-07-09T10:29:59.819543wiz-ks3 sshd[27717]: Failed password for root from 185.220.101.58 port 43219 ssh2 2019-07-09T10:30:01.688058wiz-ks3 sshd[27717]: Failed password for root from 185.220.101.58 port 43219 ssh2 2019-07-09T10:29:58.145939wiz-ks3 sshd[27717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.58 user=root 2019-07-09T10:29:59.819543wiz-ks3 sshd[27717]: Failed password for root from 185.220.101.58 port 43219 ssh2 2019-07-09T10:30:01.688058wiz-ks3 sshd[27717]: Failed password for root from 185.220.101.58 port 43219 ssh2 2019-07-09T10:29:58.145939wiz-ks3 sshd[27717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.58 user=root 2019-07-09T10:29:59.819543wiz-ks3 sshd[27717]: Failed password for root from 185.220.101.58 port 43219 ssh2 2	2019-07-23 13:23:12
68.183.231.174	attackspambots	Jul 23 06:55:10 eventyay sshd[16220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.231.174 Jul 23 06:55:12 eventyay sshd[16220]: Failed password for invalid user ubuntu from 68.183.231.174 port 51514 ssh2 Jul 23 07:01:25 eventyay sshd[17690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.231.174 ...	2019-07-23 13:08:54

最近上报的IP列表

166.130.159.15	167.250.226.182	35.165.173.236	195.200.90.246
217.243.252.105	176.105.195.192	187.74.31.106	155.2.3.154
77.48.97.234	83.112.158.213	154.155.37.224	123.246.102.1
53.183.140.237	96.147.4.252	120.137.230.206	239.37.158.22
201.158.245.195	185.40.20.70	212.194.140.236	18.115.121.80