59.54.166.49 - IPInfo

Basic Info

City: Shangrao

Region: Jiangxi

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.54.166.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41954
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.54.166.49.			IN	A

;; AUTHORITY SECTION:
.			152	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032901 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 30 07:39:22 CST 2020
;; MSG SIZE  rcvd: 116

Host info

49.166.54.59.in-addr.arpa domain name pointer 49.166.54.59.broad.sr.jx.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.166.54.59.in-addr.arpa	name = 49.166.54.59.broad.sr.jx.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.70.131.201	attack	Unauthorized connection attempt from IP address 118.70.131.201 on Port 445(SMB)	2020-09-23 07:29:14
51.68.123.192	attackbots	bruteforce detected	2020-09-23 07:20:43
139.186.73.140	attackspam	SSH Invalid Login	2020-09-23 07:28:42
177.12.28.111	attack	Unauthorized connection attempt from IP address 177.12.28.111 on Port 445(SMB)	2020-09-23 07:44:13
208.113.164.202	attackbots	SSH Invalid Login	2020-09-23 07:15:58
163.172.61.241	attackspam	Sep 22 17:01:54 ssh2 sshd[20587]: Invalid user admin from 163.172.61.241 port 32936 Sep 22 17:01:54 ssh2 sshd[20587]: Failed password for invalid user admin from 163.172.61.241 port 32936 ssh2 Sep 22 17:01:54 ssh2 sshd[20587]: Connection closed by invalid user admin 163.172.61.241 port 32936 [preauth] ...	2020-09-23 07:49:19
177.1.249.144	attackbots	Sep 22 08:10:22 sip sshd[14746]: Failed password for root from 177.1.249.144 port 45406 ssh2 Sep 22 19:00:50 sip sshd[26694]: Failed password for root from 177.1.249.144 port 56790 ssh2	2020-09-23 07:27:00
213.149.103.132	attackbots	Automatic report - XMLRPC Attack	2020-09-23 07:35:52
61.75.51.38	attackbotsspam	2020-09-22T23:04:03.875318correo.[domain] sshd[27013]: Invalid user thor from 61.75.51.38 port 55426 2020-09-22T23:04:05.810872correo.[domain] sshd[27013]: Failed password for invalid user thor from 61.75.51.38 port 55426 ssh2 2020-09-22T23:13:05.314609correo.[domain] sshd[27969]: Invalid user wt from 61.75.51.38 port 54032 ...	2020-09-23 07:46:24
91.140.23.178	attack	Listed on zen-spamhaus also barracudaCentral and dnsbl-sorbs / proto=17 . srcport=55394 . dstport=55948 . (3076)	2020-09-23 07:11:39
41.76.155.42	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 41.76.155.42 (NG/-/undefined.hostname.localhost): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/22 22:54:24 [error] 205395#0: 260295 [client 41.76.155.42] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "16008080643.908936"] [ref "o0,16v21,16"], client: 41.76.155.42, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-23 07:48:43
140.143.195.181	attackspambots	$f2bV_matches	2020-09-23 07:38:43
217.64.146.91	attack	Brute-force attempt banned	2020-09-23 07:24:45
159.65.157.70	attackspambots	Invalid user adriana from 159.65.157.70 port 34122	2020-09-23 07:46:53
168.227.225.175	attackbotsspam	RDP brute force attack detected by fail2ban	2020-09-23 07:30:18

Recently Reported IPs

36.221.238.133	139.102.109.66	155.4.103.132	99.184.30.7
58.5.238.237	164.249.147.224	175.139.95.180	46.210.105.14
75.76.241.85	95.224.191.247	213.249.45.113	157.97.68.50
138.174.42.255	105.6.165.52	240.197.129.84	101.232.172.4
49.114.1.126	176.243.207.187	53.125.237.216	152.136.119.164