59.48.116.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shanxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-09-04T03:29:08.290Z CLOSE host=59.48.116.22 port=44588 fd=5 time=20.005 bytes=24 ...	2019-09-04 12:22:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.48.116.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4608
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.48.116.22.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090301 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 04 12:22:05 CST 2019
;; MSG SIZE  rcvd: 116

Host info

22.116.48.59.in-addr.arpa domain name pointer 22.116.48.59.broad.lf.sx.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
22.116.48.59.in-addr.arpa	name = 22.116.48.59.broad.lf.sx.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.17.86.235	attack	Sep 19 19:00:58 sip sshd[17219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.17.86.235 Sep 19 19:00:59 sip sshd[17221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.17.86.235 Sep 19 19:01:01 sip sshd[17219]: Failed password for invalid user netman from 223.17.86.235 port 41258 ssh2	2020-09-20 06:55:46
200.69.236.172	attackspam	Sep 19 23:29:34 web-main sshd[3384674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.236.172 user=root Sep 19 23:29:36 web-main sshd[3384674]: Failed password for root from 200.69.236.172 port 51334 ssh2 Sep 19 23:30:48 web-main sshd[3384818]: Invalid user student from 200.69.236.172 port 37326	2020-09-20 06:42:48
37.34.245.237	attack	Found on CINS badguys / proto=6 . srcport=64414 . dstport=23 . (2304)	2020-09-20 06:34:09
51.77.66.36	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-19T16:11:19Z and 2020-09-19T17:01:32Z	2020-09-20 06:33:57
211.112.18.37	attackbots	Invalid user sebastien from 211.112.18.37 port 52902	2020-09-20 06:42:32
93.115.148.40	attackspam	Unauthorized connection attempt from IP address 93.115.148.40 on Port 445(SMB)	2020-09-20 06:27:45
171.250.169.227	attackbotsspam	Sep 14 20:07:08 www sshd[9949]: reveeclipse mapping checking getaddrinfo for dynamic-ip-adsl.viettel.vn [171.250.169.227] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 14 20:07:08 www sshd[9949]: Invalid user admin from 171.250.169.227 Sep 14 20:07:09 www sshd[9949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.250.169.227 Sep 14 20:07:11 www sshd[9949]: Failed password for invalid user admin from 171.250.169.227 port 48660 ssh2 Sep 14 20:07:12 www sshd[9949]: Connection closed by 171.250.169.227 [preauth] Sep 17 08:00:27 www sshd[4818]: Address 171.250.169.227 maps to dynamic-ip-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 17 08:00:28 www sshd[4818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.250.169.227 user=r.r Sep 17 08:00:29 www sshd[4818]: Failed password for r.r from 171.250.169.227 port 41532 ssh2 Sep 17 08:00:30 www sshd[481........ -------------------------------	2020-09-20 06:24:46
123.231.107.136	attack	123.231.107.136 - - \[19/Sep/2020:19:58:43 +0300\] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Mozilla/4.0 \(compatible\; MSIE 6.0\; Windows NT 5.0\)" "-" 123.231.107.136 - - \[19/Sep/2020:20:01:20 +0300\] "POST /xmlrpc.php HTTP/1.1" 200 428 "-" "Mozilla/4.0 \(compatible\; MSIE 6.0\; Windows NT 5.0\)" "-" ...	2020-09-20 06:50:16
118.37.64.202	attackbots	Sep 19 06:01:28 sip sshd[3251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.37.64.202 Sep 19 06:01:30 sip sshd[3251]: Failed password for invalid user admin from 118.37.64.202 port 54721 ssh2 Sep 19 19:01:30 sip sshd[17483]: Failed password for root from 118.37.64.202 port 29156 ssh2	2020-09-20 06:37:17
23.160.208.250	attackspambots	Sep 19 19:49:16 rotator sshd\[7557\]: Address 23.160.208.250 maps to relay13f.tor.ian.sh, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 19 19:49:18 rotator sshd\[7557\]: Failed password for root from 23.160.208.250 port 44995 ssh2Sep 19 19:49:20 rotator sshd\[7557\]: Failed password for root from 23.160.208.250 port 44995 ssh2Sep 19 19:49:23 rotator sshd\[7557\]: Failed password for root from 23.160.208.250 port 44995 ssh2Sep 19 19:49:25 rotator sshd\[7557\]: Failed password for root from 23.160.208.250 port 44995 ssh2Sep 19 19:49:27 rotator sshd\[7557\]: Failed password for root from 23.160.208.250 port 44995 ssh2 ...	2020-09-20 06:34:35
221.127.42.228	attack	Sep 19 10:32:50 sip sshd[11357]: Failed password for root from 221.127.42.228 port 39028 ssh2 Sep 19 19:01:25 sip sshd[17380]: Failed password for root from 221.127.42.228 port 57651 ssh2	2020-09-20 06:41:02
119.45.55.249	attackspambots	Found on Dark List de / proto=6 . srcport=52753 . dstport=3203 . (2302)	2020-09-20 06:43:11
45.15.16.115	attackspam	2020-09-19T20:59:33.519901server.espacesoutien.com sshd[1540]: Failed password for root from 45.15.16.115 port 2650 ssh2 2020-09-19T20:59:35.156769server.espacesoutien.com sshd[1540]: Failed password for root from 45.15.16.115 port 2650 ssh2 2020-09-19T20:59:37.689088server.espacesoutien.com sshd[1540]: Failed password for root from 45.15.16.115 port 2650 ssh2 2020-09-19T20:59:39.659409server.espacesoutien.com sshd[1540]: Failed password for root from 45.15.16.115 port 2650 ssh2 ...	2020-09-20 06:38:28
210.245.110.9	attackspambots	Sep 19 23:18:27 * sshd[31733]: Failed password for root from 210.245.110.9 port 61443 ssh2	2020-09-20 06:41:51
46.43.91.160	attack	Unauthorized connection attempt from IP address 46.43.91.160 on Port 445(SMB)	2020-09-20 06:45:41

Recently Reported IPs

170.210.8.183	88.219.126.50	110.10.173.166	50.56.109.220
209.161.104.41	45.248.133.156	183.155.112.174	219.80.48.40
201.104.121.55	45.89.61.172	104.35.81.40	125.43.185.222
17.251.240.52	114.220.168.75	203.174.236.250	152.250.82.38
221.204.107.28	137.242.70.11	112.167.229.129	46.118.15.174