59.16.71.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: KT Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Port probing on unauthorized port 23	2020-03-10 12:19:03

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.16.71.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26427
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.16.71.245.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030902 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 10 12:18:59 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 245.71.16.59.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.71.16.59.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.155.26.61	attack	Aug 30 09:10:07 vps647732 sshd[1835]: Failed password for www-data from 139.155.26.61 port 58522 ssh2 Aug 30 09:15:17 vps647732 sshd[2004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.26.61 ...	2019-08-30 18:24:31
103.60.126.80	attackbotsspam	Aug 30 00:07:16 eddieflores sshd\[2713\]: Invalid user redhat from 103.60.126.80 Aug 30 00:07:16 eddieflores sshd\[2713\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.126.80 Aug 30 00:07:19 eddieflores sshd\[2713\]: Failed password for invalid user redhat from 103.60.126.80 port 36122 ssh2 Aug 30 00:12:15 eddieflores sshd\[3382\]: Invalid user ubuntu from 103.60.126.80 Aug 30 00:12:15 eddieflores sshd\[3382\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.60.126.80	2019-08-30 18:24:50
35.202.27.205	attackbotsspam	Aug 30 08:30:06 meumeu sshd[24042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.27.205 Aug 30 08:30:08 meumeu sshd[24042]: Failed password for invalid user sonnenschein from 35.202.27.205 port 49170 ssh2 Aug 30 08:34:45 meumeu sshd[24584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.202.27.205 ...	2019-08-30 19:05:17
106.12.127.211	attackspam	2019-08-30T10:09:28.088811abusebot-2.cloudsearch.cf sshd\[6921\]: Invalid user lian from 106.12.127.211 port 36678	2019-08-30 18:15:13
165.227.39.71	attackbotsspam	Aug 30 11:33:08 vps691689 sshd[19959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.39.71 Aug 30 11:33:10 vps691689 sshd[19959]: Failed password for invalid user wq from 165.227.39.71 port 54128 ssh2 ...	2019-08-30 17:56:44
61.155.140.67	attack	Aug 30 10:21:34 lnxmail61 sshd[1898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.155.140.67	2019-08-30 17:50:06
182.31.242.36	attackspambots	Aug 30 07:45:00 [host] sshd[7984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.31.242.36 user=root Aug 30 07:45:02 [host] sshd[7984]: Failed password for root from 182.31.242.36 port 59617 ssh2 Aug 30 07:45:04 [host] sshd[7984]: Failed password for root from 182.31.242.36 port 59617 ssh2	2019-08-30 17:50:26
91.206.15.246	attack	Aug 30 09:45:54 mail kernel: [2239970.217615] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=91.206.15.246 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=2468 PROTO=TCP SPT=52885 DPT=19964 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 30 09:46:32 mail kernel: [2240008.098483] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=91.206.15.246 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=48306 PROTO=TCP SPT=52885 DPT=5331 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 30 09:48:34 mail kernel: [2240130.542592] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=91.206.15.246 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=50928 PROTO=TCP SPT=52885 DPT=30280 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 30 09:50:24 mail kernel: [2240240.647582] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=91.206.15.246 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=976 PROTO=TCP SPT=52885 DPT=55110 WINDOW=1024 RES=0x00 SYN	2019-08-30 18:51:57
176.100.102.208	attackbots	Aug 30 11:40:43 localhost sshd\[10621\]: Invalid user pandora from 176.100.102.208 port 26316 Aug 30 11:40:44 localhost sshd\[10621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.100.102.208 Aug 30 11:40:45 localhost sshd\[10621\]: Failed password for invalid user pandora from 176.100.102.208 port 26316 ssh2	2019-08-30 17:54:52
118.185.5.203	attackspambots	$f2bV_matches_ltvn	2019-08-30 19:15:40
177.69.245.199	attack	failed_logins	2019-08-30 18:09:18
117.48.228.28	attackspambots	Aug 29 22:48:10 tdfoods sshd\[7442\]: Invalid user cubie from 117.48.228.28 Aug 29 22:48:10 tdfoods sshd\[7442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.228.28 Aug 29 22:48:12 tdfoods sshd\[7442\]: Failed password for invalid user cubie from 117.48.228.28 port 38588 ssh2 Aug 29 22:52:13 tdfoods sshd\[7799\]: Invalid user emmet from 117.48.228.28 Aug 29 22:52:13 tdfoods sshd\[7799\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.228.28	2019-08-30 18:26:39
46.101.163.220	attackbotsspam	Aug 30 12:33:52 cp sshd[1087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.163.220 Aug 30 12:33:54 cp sshd[1087]: Failed password for invalid user sk from 46.101.163.220 port 58603 ssh2 Aug 30 12:41:46 cp sshd[5525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.163.220	2019-08-30 18:59:32
120.211.159.53	attackspambots	Unauthorised access (Aug 30) SRC=120.211.159.53 LEN=40 TOS=0x04 TTL=50 ID=43596 TCP DPT=8080 WINDOW=16083 SYN Unauthorised access (Aug 28) SRC=120.211.159.53 LEN=40 TOS=0x04 TTL=49 ID=8115 TCP DPT=8080 WINDOW=18895 SYN Unauthorised access (Aug 25) SRC=120.211.159.53 LEN=40 TOS=0x04 TTL=49 ID=51049 TCP DPT=8080 WINDOW=14556 SYN	2019-08-30 18:49:09
134.209.154.25	attackbots	$f2bV_matches	2019-08-30 18:18:37

Recently Reported IPs

243.212.211.222	96.132.29.8	131.85.39.138	77.74.45.251
37.97.206.223	95.246.48.97	246.137.114.45	63.229.12.100
3.24.71.8	166.72.83.137	154.162.113.219	205.202.45.147
199.196.186.83	76.10.83.179	217.182.72.106	175.61.102.205
209.90.139.49	41.89.13.54	49.235.13.17	113.25.207.34