59.53.95.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	May 12 05:42:09 vserver sshd\[28583\]: Invalid user user0 from 59.53.95.94May 12 05:42:11 vserver sshd\[28583\]: Failed password for invalid user user0 from 59.53.95.94 port 42554 ssh2May 12 05:49:00 vserver sshd\[28655\]: Invalid user harlan from 59.53.95.94May 12 05:49:02 vserver sshd\[28655\]: Failed password for invalid user harlan from 59.53.95.94 port 46027 ssh2 ...	2020-05-12 17:31:07
attackbots	SSH Brute-Forcing (server2)	2020-05-06 03:13:08
attackbots	Invalid user cui from 59.53.95.94 port 38282	2020-05-01 19:15:35
attackspambots	Apr 29 21:01:21 srv01 sshd[28213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.53.95.94 user=root Apr 29 21:01:23 srv01 sshd[28213]: Failed password for root from 59.53.95.94 port 33788 ssh2 Apr 29 21:05:35 srv01 sshd[28310]: Invalid user lab from 59.53.95.94 port 34132 Apr 29 21:05:35 srv01 sshd[28310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.53.95.94 Apr 29 21:05:35 srv01 sshd[28310]: Invalid user lab from 59.53.95.94 port 34132 Apr 29 21:05:37 srv01 sshd[28310]: Failed password for invalid user lab from 59.53.95.94 port 34132 ssh2 ...	2020-04-30 04:11:33
attackspambots	Apr 29 10:18:20 vpn01 sshd[24485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.53.95.94 Apr 29 10:18:22 vpn01 sshd[24485]: Failed password for invalid user ese from 59.53.95.94 port 36911 ssh2 ...	2020-04-29 16:22:16
attack	Apr 20 12:43:47 prox sshd[6871]: Failed password for root from 59.53.95.94 port 46187 ssh2 Apr 20 12:51:22 prox sshd[27553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.53.95.94	2020-04-20 19:39:05

Comments on same subnet:

IP	Type	Details	Datetime
59.53.95.138	attackspam	SMB Server BruteForce Attack	2019-08-28 09:21:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.53.95.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41899
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.53.95.94.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042000 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 20 19:39:01 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 94.95.53.59.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.95.53.59.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.49.226.50	attackspam	(Feb 8) LEN=40 TTL=57 ID=22313 TCP DPT=8080 WINDOW=55868 SYN (Feb 8) LEN=40 TTL=57 ID=62870 TCP DPT=8080 WINDOW=55868 SYN (Feb 8) LEN=40 TTL=57 ID=22504 TCP DPT=8080 WINDOW=19786 SYN (Feb 7) LEN=40 TTL=57 ID=23245 TCP DPT=8080 WINDOW=47442 SYN (Feb 7) LEN=40 TTL=57 ID=28082 TCP DPT=8080 WINDOW=24676 SYN (Feb 6) LEN=40 TTL=57 ID=62643 TCP DPT=8080 WINDOW=24676 SYN (Feb 6) LEN=40 TTL=57 ID=44574 TCP DPT=8080 WINDOW=47442 SYN (Feb 6) LEN=40 TTL=57 ID=1179 TCP DPT=8080 WINDOW=47442 SYN (Feb 3) LEN=40 TTL=57 ID=27194 TCP DPT=8080 WINDOW=24676 SYN (Feb 3) LEN=40 TTL=57 ID=3354 TCP DPT=8080 WINDOW=8018 SYN (Feb 3) LEN=40 TTL=57 ID=14967 TCP DPT=8080 WINDOW=40914 SYN (Feb 2) LEN=40 TTL=57 ID=59437 TCP DPT=8080 WINDOW=57234 SYN (Feb 2) LEN=40 TTL=57 ID=2242 TCP DPT=8080 WINDOW=57234 SYN	2020-02-09 04:44:28
188.153.92.41	attack	23/tcp [2020-02-08]1pkt	2020-02-09 04:50:05
179.222.97.194	attackbots	Feb 8 21:37:16 MK-Soft-VM8 sshd[17910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.222.97.194 Feb 8 21:37:18 MK-Soft-VM8 sshd[17910]: Failed password for invalid user yau from 179.222.97.194 port 44241 ssh2 ...	2020-02-09 04:43:39
120.1.140.101	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-09 04:55:51
78.33.111.153	attackspam	Port probing on unauthorized port 88	2020-02-09 04:53:16
112.85.42.229	attackspam	k+ssh-bruteforce	2020-02-09 05:08:54
182.61.45.42	attackspam	Feb 8 20:25:01 * sshd[19313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.45.42 Feb 8 20:25:03 * sshd[19313]: Failed password for invalid user rcg from 182.61.45.42 port 27406 ssh2	2020-02-09 05:02:44
106.12.87.250	attackbots	2020-02-08T14:43:47.4881851495-001 sshd[27320]: Invalid user xpq from 106.12.87.250 port 57742 2020-02-08T14:43:47.4920971495-001 sshd[27320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.87.250 2020-02-08T14:43:47.4881851495-001 sshd[27320]: Invalid user xpq from 106.12.87.250 port 57742 2020-02-08T14:43:50.0829471495-001 sshd[27320]: Failed password for invalid user xpq from 106.12.87.250 port 57742 ssh2 2020-02-08T14:46:53.7662431495-001 sshd[27450]: Invalid user ver from 106.12.87.250 port 50616 2020-02-08T14:46:53.7753951495-001 sshd[27450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.87.250 2020-02-08T14:46:53.7662431495-001 sshd[27450]: Invalid user ver from 106.12.87.250 port 50616 2020-02-08T14:46:55.8997511495-001 sshd[27450]: Failed password for invalid user ver from 106.12.87.250 port 50616 ssh2 2020-02-08T14:49:59.3104651495-001 sshd[27649]: Invalid user jks from 106.12.87. ...	2020-02-09 04:25:58
106.75.34.41	attack	Feb 8 07:49:50 auw2 sshd\[11013\]: Invalid user ujz from 106.75.34.41 Feb 8 07:49:50 auw2 sshd\[11013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.34.41 Feb 8 07:49:52 auw2 sshd\[11013\]: Failed password for invalid user ujz from 106.75.34.41 port 48412 ssh2 Feb 8 07:52:47 auw2 sshd\[11238\]: Invalid user cru from 106.75.34.41 Feb 8 07:52:47 auw2 sshd\[11238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.34.41	2020-02-09 04:25:26
164.132.46.197	attackspam	Feb 8 21:38:05 MK-Soft-VM8 sshd[17964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.46.197 Feb 8 21:38:07 MK-Soft-VM8 sshd[17964]: Failed password for invalid user uqp from 164.132.46.197 port 35960 ssh2 ...	2020-02-09 04:55:04
140.143.97.110	attackspambots	Feb 8 10:32:46 auw2 sshd\[27915\]: Invalid user jen from 140.143.97.110 Feb 8 10:32:46 auw2 sshd\[27915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.97.110 Feb 8 10:32:48 auw2 sshd\[27915\]: Failed password for invalid user jen from 140.143.97.110 port 37656 ssh2 Feb 8 10:33:42 auw2 sshd\[28006\]: Invalid user kpo from 140.143.97.110 Feb 8 10:33:42 auw2 sshd\[28006\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.97.110	2020-02-09 04:57:31
188.68.0.112	attackspambots	16.222.773,06-13/04 [bc27/m129] PostRequest-Spammer scoring: maputo01_x2b	2020-02-09 04:31:12
71.6.233.205	attack	Honeypot hit.	2020-02-09 04:33:50
188.162.65.182	attackspam	Honeypot attack, port: 445, PTR: client.yota.ru.	2020-02-09 05:11:05
140.249.22.238	attackspam	$f2bV_matches	2020-02-09 05:03:59

Recently Reported IPs

101.4.130.250	161.35.106.37	133.193.254.42	152.136.45.81
103.21.143.161	222.95.182.185	83.237.74.190	221.229.197.81
219.144.137.1	218.39.226.115	203.192.200.199	202.158.62.240
192.144.227.67	189.112.12.107	178.80.154.10	161.35.97.13
159.203.41.29	152.67.55.22	150.136.154.228	146.196.96.125