212.159.100.58

Basic Info

City: unknown

Region: unknown

Country: United Kingdom of Great Britain and Northern Ireland

Internet Service Provider: British Telecommunications PLC

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Invalid user ss3server from 212.159.100.58 port 36378	2020-07-14 01:01:19
attack	Jun 22 13:57:34 ns382633 sshd\[19272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.159.100.58 user=root Jun 22 13:57:36 ns382633 sshd\[19272\]: Failed password for root from 212.159.100.58 port 43798 ssh2 Jun 22 14:12:20 ns382633 sshd\[21807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.159.100.58 user=root Jun 22 14:12:23 ns382633 sshd\[21807\]: Failed password for root from 212.159.100.58 port 37144 ssh2 Jun 22 14:15:20 ns382633 sshd\[22493\]: Invalid user zeyu from 212.159.100.58 port 37204 Jun 22 14:15:20 ns382633 sshd\[22493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.159.100.58	2020-06-22 22:16:34

Type

Details

Datetime

attackbots

Invalid user ss3server from 212.159.100.58 port 36378

2020-07-14 01:01:19

attack

Jun 22 13:57:34 ns382633 sshd\[19272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.159.100.58  user=root
Jun 22 13:57:36 ns382633 sshd\[19272\]: Failed password for root from 212.159.100.58 port 43798 ssh2
Jun 22 14:12:20 ns382633 sshd\[21807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.159.100.58  user=root
Jun 22 14:12:23 ns382633 sshd\[21807\]: Failed password for root from 212.159.100.58 port 37144 ssh2
Jun 22 14:15:20 ns382633 sshd\[22493\]: Invalid user zeyu from 212.159.100.58 port 37204
Jun 22 14:15:20 ns382633 sshd\[22493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.159.100.58

2020-06-22 22:16:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.159.100.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17093
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.159.100.58.			IN	A

;; AUTHORITY SECTION:
.			273	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062200 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 22:16:20 CST 2020
;; MSG SIZE  rcvd: 118

Host info

58.100.159.212.in-addr.arpa domain name pointer mattiasw.plus.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.100.159.212.in-addr.arpa	name = mattiasw.plus.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
38.89.141.90	attack	lfd: (smtpauth) Failed SMTP AUTH login from 38.89.141.90 (-): 5 in the last 3600 secs - Sat Sep 8 01:50:11 2018	2020-09-26 04:36:19
221.130.29.58	attackspam	Invalid user laurent from 221.130.29.58 port 15298	2020-09-26 04:28:34
199.168.137.161	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 199.168.137.161 (US/United States/-): 5 in the last 3600 secs - Sun Sep 9 01:27:07 2018	2020-09-26 04:18:37
122.60.56.76	attackspambots	Sep 25 18:22:51 scw-focused-cartwright sshd[31895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.60.56.76 Sep 25 18:22:53 scw-focused-cartwright sshd[31895]: Failed password for invalid user test from 122.60.56.76 port 37366 ssh2	2020-09-26 04:46:52
52.183.122.141	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-26 04:42:55
185.12.177.54	attack	lfd: (smtpauth) Failed SMTP AUTH login from 185.12.177.54 (host54-177-12-185.static.arubacloud.de): 5 in the last 3600 secs - Thu Sep 6 20:10:04 2018	2020-09-26 04:37:07
41.58.95.242	attack	lfd: (smtpauth) Failed SMTP AUTH login from 41.58.95.242 (-): 5 in the last 3600 secs - Fri Sep 7 16:22:32 2018	2020-09-26 04:33:02
218.92.0.185	attackspambots	Sep 25 20:04:24 game-panel sshd[32630]: Failed password for root from 218.92.0.185 port 6273 ssh2 Sep 25 20:04:33 game-panel sshd[32630]: Failed password for root from 218.92.0.185 port 6273 ssh2 Sep 25 20:04:37 game-panel sshd[32630]: Failed password for root from 218.92.0.185 port 6273 ssh2 Sep 25 20:04:37 game-panel sshd[32630]: error: maximum authentication attempts exceeded for root from 218.92.0.185 port 6273 ssh2 [preauth]	2020-09-26 04:10:05
52.252.109.221	attackbotsspam	Sep 25 22:14:33 mail sshd[30600]: Failed password for root from 52.252.109.221 port 50556 ssh2	2020-09-26 04:27:31
185.12.177.23	attack	Brute force blocker - service: exim2 - aantal: 25 - Fri Sep 7 01:30:10 2018	2020-09-26 04:41:22
176.113.115.122	attack	RDP brute forcing (r)	2020-09-26 04:31:49
110.35.80.82	attack	Sep 25 19:42:28 scw-6657dc sshd[10406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.80.82 Sep 25 19:42:28 scw-6657dc sshd[10406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.80.82 Sep 25 19:42:29 scw-6657dc sshd[10406]: Failed password for invalid user odoo from 110.35.80.82 port 9018 ssh2 ...	2020-09-26 04:39:51
140.224.60.151	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 140.224.60.151 (-): 5 in the last 3600 secs - Sun Sep 9 01:19:06 2018	2020-09-26 04:30:00
200.39.254.18	attackbotsspam	Automatic report - Port Scan Attack	2020-09-26 04:41:05
175.147.54.63	attackbots	Telnetd brute force attack detected by fail2ban	2020-09-26 04:22:35

Recently Reported IPs

92.200.94.96	209.119.239.116	104.34.113.123	141.214.240.110
52.152.162.135	199.83.207.28	124.47.182.141	180.183.55.13
194.44.44.96	171.2.147.198	56.253.190.157	106.55.22.186
167.97.68.68	42.209.224.123	186.30.61.242	138.213.82.38
119.159.86.89	199.231.12.114	130.240.42.153	54.141.1.172