59.72.122.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Jilin University

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 11 19:38:54 corona-Z97-D3H sshd[7203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 user=root Oct 11 19:38:56 corona-Z97-D3H sshd[7203]: Failed password for root from 59.72.122.148 port 36396 ssh2 ...	2020-10-12 07:05:12
attack	Oct 11 16:11:42 server sshd[28205]: Failed password for root from 59.72.122.148 port 38088 ssh2 Oct 11 16:17:31 server sshd[31198]: Failed password for invalid user users from 59.72.122.148 port 50358 ssh2 Oct 11 16:19:34 server sshd[32304]: Failed password for invalid user org from 59.72.122.148 port 38662 ssh2	2020-10-11 23:15:39
attackbotsspam	vps:sshd-InvalidUser	2020-10-11 15:13:45
attack	Oct 11 05:39:40 mx sshd[1339666]: Invalid user 1234qwer from 59.72.122.148 port 42964 Oct 11 05:39:40 mx sshd[1339666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Oct 11 05:39:40 mx sshd[1339666]: Invalid user 1234qwer from 59.72.122.148 port 42964 Oct 11 05:39:42 mx sshd[1339666]: Failed password for invalid user 1234qwer from 59.72.122.148 port 42964 ssh2 Oct 11 05:43:26 mx sshd[1339708]: Invalid user darkhax2020? from 59.72.122.148 port 49490 ...	2020-10-11 08:34:31
attackspambots	$f2bV_matches	2020-09-16 19:29:42
attackspambots	Aug 31 08:19:48 db sshd[7605]: Invalid user ftp-user from 59.72.122.148 port 39048 ...	2020-08-31 20:31:01
attack	Aug 26 03:40:52 NPSTNNYC01T sshd[15772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Aug 26 03:40:54 NPSTNNYC01T sshd[15772]: Failed password for invalid user 123456 from 59.72.122.148 port 43014 ssh2 Aug 26 03:44:25 NPSTNNYC01T sshd[16164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 ...	2020-08-26 18:39:46
attack	Aug 22 21:34:53 gw1 sshd[16506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Aug 22 21:34:55 gw1 sshd[16506]: Failed password for invalid user wzt from 59.72.122.148 port 60330 ssh2 ...	2020-08-23 03:00:15
attack	Invalid user april from 59.72.122.148 port 44410	2020-07-19 21:15:49
attack	Jul 14 14:33:03 eventyay sshd[4841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Jul 14 14:33:05 eventyay sshd[4841]: Failed password for invalid user vc from 59.72.122.148 port 33422 ssh2 Jul 14 14:36:49 eventyay sshd[4975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 ...	2020-07-14 21:07:40
attackspam	Invalid user huawei from 59.72.122.148 port 41002 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Invalid user huawei from 59.72.122.148 port 41002 Failed password for invalid user huawei from 59.72.122.148 port 41002 ssh2 Invalid user user from 59.72.122.148 port 55288	2020-06-30 16:28:46
attackspam	(sshd) Failed SSH login from 59.72.122.148 (CN/China/-): 5 in the last 3600 secs	2020-06-28 02:35:33
attackbots	May 27 05:47:45 ArkNodeAT sshd\[25233\]: Invalid user oracle from 59.72.122.148 May 27 05:47:45 ArkNodeAT sshd\[25233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 May 27 05:47:47 ArkNodeAT sshd\[25233\]: Failed password for invalid user oracle from 59.72.122.148 port 44990 ssh2	2020-05-27 19:28:36
attackspam	Apr 23 09:39:47 mockhub sshd[26979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Apr 23 09:39:49 mockhub sshd[26979]: Failed password for invalid user oracle from 59.72.122.148 port 34408 ssh2 ...	2020-04-24 06:50:10
attackbots	Invalid user admin from 59.72.122.148 port 47948	2020-03-23 03:17:00
attackspambots	Mar 19 17:46:29 ws19vmsma01 sshd[157788]: Failed password for root from 59.72.122.148 port 43694 ssh2 Mar 19 17:50:18 ws19vmsma01 sshd[159843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 ...	2020-03-20 05:37:03
attackspambots	$f2bV_matches	2020-02-23 07:44:50
attackbots	Feb 14 07:31:18 plex sshd[2001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 user=root Feb 14 07:31:20 plex sshd[2001]: Failed password for root from 59.72.122.148 port 45718 ssh2	2020-02-14 17:13:30
attackspam	Feb 14 03:06:39 plex sshd[26680]: Invalid user dzinek from 59.72.122.148 port 48914 Feb 14 03:06:39 plex sshd[26680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Feb 14 03:06:39 plex sshd[26680]: Invalid user dzinek from 59.72.122.148 port 48914 Feb 14 03:06:41 plex sshd[26680]: Failed password for invalid user dzinek from 59.72.122.148 port 48914 ssh2 Feb 14 03:09:31 plex sshd[26740]: Invalid user ringat from 59.72.122.148 port 43588	2020-02-14 10:11:18
attackspambots	detected by Fail2Ban	2020-02-12 09:27:58
attackbotsspam	Feb 9 22:06:54 thevastnessof sshd[27700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 ...	2020-02-10 08:33:06
attackspambots	(sshd) Failed SSH login from 59.72.122.148 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 10 05:39:55 blur sshd[12484]: Invalid user debian from 59.72.122.148 port 40920 Jan 10 05:39:56 blur sshd[12484]: Failed password for invalid user debian from 59.72.122.148 port 40920 ssh2 Jan 10 05:54:46 blur sshd[15130]: Invalid user xda from 59.72.122.148 port 34292 Jan 10 05:54:49 blur sshd[15130]: Failed password for invalid user xda from 59.72.122.148 port 34292 ssh2 Jan 10 05:58:00 blur sshd[15720]: Invalid user aldwin from 59.72.122.148 port 59528	2020-01-10 13:37:44
attack	Dec 27 05:43:35 web9 sshd\[2884\]: Invalid user dough from 59.72.122.148 Dec 27 05:43:35 web9 sshd\[2884\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Dec 27 05:43:36 web9 sshd\[2884\]: Failed password for invalid user dough from 59.72.122.148 port 46602 ssh2 Dec 27 05:46:58 web9 sshd\[3469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 user=root Dec 27 05:47:00 web9 sshd\[3469\]: Failed password for root from 59.72.122.148 port 41688 ssh2	2019-12-27 23:47:46
attackspam	20 attempts against mh-ssh on cloud.magehost.pro	2019-12-25 16:50:12
attack	Fail2Ban - SSH Bruteforce Attempt	2019-12-20 03:42:27
attack	Dec 14 20:47:09 php1 sshd\[13530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 user=root Dec 14 20:47:11 php1 sshd\[13530\]: Failed password for root from 59.72.122.148 port 43994 ssh2 Dec 14 20:56:21 php1 sshd\[14460\]: Invalid user brockutne from 59.72.122.148 Dec 14 20:56:21 php1 sshd\[14460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Dec 14 20:56:23 php1 sshd\[14460\]: Failed password for invalid user brockutne from 59.72.122.148 port 49458 ssh2	2019-12-15 15:20:03
attackbots	Dec 12 11:12:28 ns381471 sshd[29004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Dec 12 11:12:30 ns381471 sshd[29004]: Failed password for invalid user fain from 59.72.122.148 port 44974 ssh2	2019-12-12 18:27:56
attackbotsspam	Dec 8 01:32:11 markkoudstaal sshd[2026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Dec 8 01:32:13 markkoudstaal sshd[2026]: Failed password for invalid user Montecarlo1@3 from 59.72.122.148 port 38718 ssh2 Dec 8 01:40:04 markkoudstaal sshd[3033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148	2019-12-08 08:57:56
attackspambots	Nov 14 06:51:15 server sshd\[24529\]: Invalid user 123 from 59.72.122.148 port 48172 Nov 14 06:51:15 server sshd\[24529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148 Nov 14 06:51:17 server sshd\[24529\]: Failed password for invalid user 123 from 59.72.122.148 port 48172 ssh2 Nov 14 06:55:46 server sshd\[8327\]: Invalid user edus from 59.72.122.148 port 54264 Nov 14 06:55:46 server sshd\[8327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.72.122.148	2019-11-14 14:01:08
attackspam	2019-11-11T18:28:18.160265abusebot-5.cloudsearch.cf sshd\[5512\]: Invalid user www from 59.72.122.148 port 51258	2019-11-12 05:06:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.72.122.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24488
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.72.122.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 02:56:22 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 148.122.72.59.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 148.122.72.59.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.159.249.66	attackbots	$f2bV_matches	2019-11-03 22:17:52
106.75.141.202	attack	Nov 3 05:39:08 sshgateway sshd\[23755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.202 user=root Nov 3 05:39:10 sshgateway sshd\[23755\]: Failed password for root from 106.75.141.202 port 60096 ssh2 Nov 3 05:43:56 sshgateway sshd\[23772\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.141.202 user=root	2019-11-03 22:11:29
177.93.67.252	attack	SSH Bruteforce	2019-11-03 22:10:45
76.170.152.202	attack	Port Scan: TCP/443	2019-11-03 22:33:15
41.131.119.107	attackspam	Nov 3 09:42:11 XXX sshd[371]: Invalid user spark from 41.131.119.107 port 50252	2019-11-03 22:10:07
174.138.18.157	attackbots	Repeated brute force against a port	2019-11-03 22:21:29
94.191.76.19	attack	Nov 3 15:06:28 lnxded64 sshd[932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.76.19	2019-11-03 22:11:02
51.254.220.20	attack	Nov 3 08:14:53 Ubuntu-1404-trusty-64-minimal sshd\[4545\]: Invalid user gitolite2 from 51.254.220.20 Nov 3 08:14:53 Ubuntu-1404-trusty-64-minimal sshd\[4545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20 Nov 3 08:14:55 Ubuntu-1404-trusty-64-minimal sshd\[4545\]: Failed password for invalid user gitolite2 from 51.254.220.20 port 33897 ssh2 Nov 3 08:25:45 Ubuntu-1404-trusty-64-minimal sshd\[12805\]: Invalid user gitolite2 from 51.254.220.20 Nov 3 08:25:45 Ubuntu-1404-trusty-64-minimal sshd\[12805\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20	2019-11-03 22:35:02
175.16.129.127	attackspambots	Unauthorised access (Nov 3) SRC=175.16.129.127 LEN=40 TTL=49 ID=4427 TCP DPT=8080 WINDOW=37711 SYN Unauthorised access (Nov 3) SRC=175.16.129.127 LEN=40 TTL=49 ID=53510 TCP DPT=8080 WINDOW=14847 SYN	2019-11-03 22:07:58
118.25.103.132	attackbotsspam	Nov 3 06:38:02 srv01 sshd[8657]: Invalid user ops from 118.25.103.132 Nov 3 06:38:02 srv01 sshd[8657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.103.132 Nov 3 06:38:02 srv01 sshd[8657]: Invalid user ops from 118.25.103.132 Nov 3 06:38:03 srv01 sshd[8657]: Failed password for invalid user ops from 118.25.103.132 port 41942 ssh2 Nov 3 06:42:16 srv01 sshd[13662]: Invalid user dui from 118.25.103.132 ...	2019-11-03 22:37:29
144.217.93.130	attack	Nov 3 13:56:28 venus sshd\[7613\]: Invalid user isolda from 144.217.93.130 port 56930 Nov 3 13:56:28 venus sshd\[7613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.93.130 Nov 3 13:56:30 venus sshd\[7613\]: Failed password for invalid user isolda from 144.217.93.130 port 56930 ssh2 ...	2019-11-03 22:04:28
59.25.197.150	attackbotsspam	Nov 3 12:16:05 unicornsoft sshd\[17696\]: Invalid user puppet from 59.25.197.150 Nov 3 12:16:05 unicornsoft sshd\[17696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.25.197.150 Nov 3 12:16:07 unicornsoft sshd\[17696\]: Failed password for invalid user puppet from 59.25.197.150 port 45542 ssh2	2019-11-03 22:23:46
123.206.22.145	attackbots	Nov 3 08:07:47 lnxmail61 sshd[8713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.22.145	2019-11-03 22:19:19
222.186.175.161	attackbotsspam	Nov 3 04:32:39 web1 sshd\[12224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 3 04:32:41 web1 sshd\[12224\]: Failed password for root from 222.186.175.161 port 8926 ssh2 Nov 3 04:33:06 web1 sshd\[12268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 3 04:33:08 web1 sshd\[12268\]: Failed password for root from 222.186.175.161 port 10716 ssh2 Nov 3 04:33:12 web1 sshd\[12268\]: Failed password for root from 222.186.175.161 port 10716 ssh2	2019-11-03 22:35:33
185.176.27.254	attackspam	11/03/2019-09:42:53.111000 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-03 22:43:26

Recently Reported IPs

174.138.31.216	13.27.47.128	141.184.38.66	211.149.184.35
189.39.202.62	107.172.193.134	43.227.66.59	218.166.153.106
185.122.26.53	95.10.33.28	202.65.168.59	88.227.80.116
51.158.187.105	203.106.60.230	181.49.117.59	27.71.224.2
48.3.153.139	62.250.127.253	134.209.196.85	111.231.78.196