59.54.2.63 - IPInfo

Basic Info

City: unknown

Region: Jiangxi

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
59.54.28.100	attackspam	Jul 13 05:55:47 debian-2gb-nbg1-2 kernel: \[16871123.307336\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=59.54.28.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=18736 PROTO=TCP SPT=27743 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-13 12:49:01
59.54.202.180	attack	PostgreSQL port 5432	2019-11-02 23:46:24

Type

Details

Datetime

59.54.28.100

attackspam

Jul 13 05:55:47 debian-2gb-nbg1-2 kernel: \[16871123.307336\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=59.54.28.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=18736 PROTO=TCP SPT=27743 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0

2020-07-13 12:49:01

59.54.202.180

attack

PostgreSQL port 5432

2019-11-02 23:46:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.54.2.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6504
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.54.2.63.			IN	A

;; AUTHORITY SECTION:
.			584	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122001 1800 900 604800 86400

;; Query time: 122 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 21 04:23:40 CST 2019
;; MSG SIZE  rcvd: 114

Host info

63.2.54.59.in-addr.arpa domain name pointer 63.2.54.59.broad.jj.jx.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
63.2.54.59.in-addr.arpa	name = 63.2.54.59.broad.jj.jx.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.25.197.142	attack	SSH Brute-Force reported by Fail2Ban	2019-11-17 20:32:25
124.115.214.178	attack	Port 1433 Scan	2019-11-17 20:00:28
58.126.201.20	attackbots	Nov 17 11:57:39 venus sshd\[14689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.126.201.20 user=root Nov 17 11:57:40 venus sshd\[14689\]: Failed password for root from 58.126.201.20 port 40234 ssh2 Nov 17 12:02:23 venus sshd\[14802\]: Invalid user ts from 58.126.201.20 port 48262 ...	2019-11-17 20:16:44
184.105.139.67	attackbotsspam	21/tcp 50070/tcp 11211/tcp... [2019-09-16/11-17]156pkt,9pt.(tcp),2pt.(udp)	2019-11-17 20:11:58
58.142.8.85	attack	Nov 17 14:36:48 server sshd\[21540\]: Invalid user usuario from 58.142.8.85 Nov 17 14:36:48 server sshd\[21540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.142.8.85 Nov 17 14:36:50 server sshd\[21540\]: Failed password for invalid user usuario from 58.142.8.85 port 35979 ssh2 Nov 17 14:36:52 server sshd\[21540\]: Failed password for invalid user usuario from 58.142.8.85 port 35979 ssh2 Nov 17 14:36:55 server sshd\[21540\]: Failed password for invalid user usuario from 58.142.8.85 port 35979 ssh2 ...	2019-11-17 20:34:18
72.142.126.27	attackspambots	SSH Bruteforce	2019-11-17 20:12:12
54.39.191.188	attackbots	Nov 17 12:11:23 lnxded63 sshd[10592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.191.188	2019-11-17 20:36:11
79.137.28.187	attack	SSH Bruteforce	2019-11-17 20:08:25
103.92.84.102	attackspam	Nov 17 02:00:28 web1 sshd\[25386\]: Invalid user gabbert from 103.92.84.102 Nov 17 02:00:28 web1 sshd\[25386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102 Nov 17 02:00:30 web1 sshd\[25386\]: Failed password for invalid user gabbert from 103.92.84.102 port 47796 ssh2 Nov 17 02:05:20 web1 sshd\[25785\]: Invalid user test from 103.92.84.102 Nov 17 02:05:20 web1 sshd\[25785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102	2019-11-17 20:10:12
188.254.0.183	attack	Nov 17 13:03:54 vps647732 sshd[17046]: Failed password for bin from 188.254.0.183 port 52028 ssh2 Nov 17 13:07:56 vps647732 sshd[17069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.183 ...	2019-11-17 20:30:01
162.241.239.57	attackbots	Nov 17 13:07:39 srv-ubuntu-dev3 sshd[110094]: Invalid user server from 162.241.239.57 Nov 17 13:07:39 srv-ubuntu-dev3 sshd[110094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.239.57 Nov 17 13:07:39 srv-ubuntu-dev3 sshd[110094]: Invalid user server from 162.241.239.57 Nov 17 13:07:41 srv-ubuntu-dev3 sshd[110094]: Failed password for invalid user server from 162.241.239.57 port 44272 ssh2 Nov 17 13:11:23 srv-ubuntu-dev3 sshd[110515]: Invalid user deluge from 162.241.239.57 Nov 17 13:11:23 srv-ubuntu-dev3 sshd[110515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.239.57 Nov 17 13:11:23 srv-ubuntu-dev3 sshd[110515]: Invalid user deluge from 162.241.239.57 Nov 17 13:11:25 srv-ubuntu-dev3 sshd[110515]: Failed password for invalid user deluge from 162.241.239.57 port 52698 ssh2 Nov 17 13:15:00 srv-ubuntu-dev3 sshd[110806]: Invalid user screener from 162.241.239.57 ...	2019-11-17 20:15:20
103.207.39.197	attack	Nov 17 13:22:05 lcl-usvr-02 sshd[8554]: Invalid user admin from 103.207.39.197 port 51499 ...	2019-11-17 20:26:26
102.115.230.219	attack	port scan and connect, tcp 23 (telnet)	2019-11-17 20:00:55
219.151.11.109	attack	Unauthorised access (Nov 17) SRC=219.151.11.109 LEN=40 TTL=240 ID=7086 TCP DPT=445 WINDOW=1024 SYN	2019-11-17 20:19:30
195.158.24.137	attackbots	Automatic report - Banned IP Access	2019-11-17 20:11:08

Recently Reported IPs

192.227.135.23	73.17.125.221	206.188.125.208	90.193.20.245
95.59.251.101	99.24.30.118	151.141.233.35	193.108.163.209
2.10.198.118	97.193.173.89	95.164.82.19	97.243.130.111
66.46.20.10	87.189.23.4	119.24.191.8	105.158.171.0
142.149.69.210	126.67.210.230	23.88.214.72	175.7.185.15