45.58.139.104 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: SharkTech

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Spam	2019-09-13 20:49:11
attackbots	Spam	2019-08-14 07:38:07
attackbots	Sicherheitscam superpreiswert	2019-08-13 05:44:00

Comments on same subnet:

IP	Type	Details	Datetime
45.58.139.124	attackspambots	2020-02-25T07:17:48.420266homeassistant sshd[4822]: Failed password for invalid user leo from 45.58.139.124 port 41490 ssh2 2020-02-25T12:24:03.415768homeassistant sshd[8085]: Invalid user hue from 45.58.139.124 port 52839 2020-02-25T12:24:03.422807homeassistant sshd[8085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.124 ...	2020-02-25 22:47:49
45.58.139.124	attackspambots	Unauthorized connection attempt detected from IP address 45.58.139.124 to port 2220 [J]	2020-02-01 09:43:44
45.58.139.124	attackspam	Jan 10 16:49:51 ns381471 sshd[18172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.124 Jan 10 16:49:53 ns381471 sshd[18172]: Failed password for invalid user patrick from 45.58.139.124 port 51561 ssh2	2020-01-11 01:58:59
45.58.139.124	attackspam	Jan 6 23:08:42 site2 sshd\[38728\]: Invalid user cloud-user from 45.58.139.124Jan 6 23:08:45 site2 sshd\[38728\]: Failed password for invalid user cloud-user from 45.58.139.124 port 56996 ssh2Jan 6 23:09:48 site2 sshd\[39400\]: Invalid user temp from 45.58.139.124Jan 6 23:09:50 site2 sshd\[39400\]: Failed password for invalid user temp from 45.58.139.124 port 60740 ssh2Jan 6 23:10:54 site2 sshd\[39514\]: Invalid user qxo from 45.58.139.124 ...	2020-01-07 05:51:42
45.58.139.74	attack	email spam	2019-12-17 18:38:07
45.58.139.130	attackspam	Dec 9 21:50:55 eddieflores sshd\[22914\]: Invalid user 012345 from 45.58.139.130 Dec 9 21:50:55 eddieflores sshd\[22914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 Dec 9 21:50:57 eddieflores sshd\[22914\]: Failed password for invalid user 012345 from 45.58.139.130 port 34535 ssh2 Dec 9 21:56:06 eddieflores sshd\[23434\]: Invalid user sikorski from 45.58.139.130 Dec 9 21:56:06 eddieflores sshd\[23434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130	2019-12-10 16:33:15
45.58.139.130	attack	Dec 7 18:25:47 ny01 sshd[27402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 Dec 7 18:25:50 ny01 sshd[27402]: Failed password for invalid user http from 45.58.139.130 port 29143 ssh2 Dec 7 18:30:58 ny01 sshd[28148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130	2019-12-08 07:38:35
45.58.139.130	attackspam	Port 22 Scan, PTR: None	2019-12-03 14:59:28
45.58.139.130	attack	Invalid user elmira from 45.58.139.130 port 8680	2019-12-01 08:52:39
45.58.139.130	attackspambots	frenzy	2019-11-27 03:04:03
45.58.139.130	attackspam	Nov 18 14:44:44 ip-172-31-62-245 sshd\[3612\]: Invalid user ozzy from 45.58.139.130\ Nov 18 14:44:46 ip-172-31-62-245 sshd\[3612\]: Failed password for invalid user ozzy from 45.58.139.130 port 36061 ssh2\ Nov 18 14:48:24 ip-172-31-62-245 sshd\[3637\]: Invalid user peerman from 45.58.139.130\ Nov 18 14:48:26 ip-172-31-62-245 sshd\[3637\]: Failed password for invalid user peerman from 45.58.139.130 port 9506 ssh2\ Nov 18 14:51:59 ip-172-31-62-245 sshd\[3649\]: Invalid user smmsp from 45.58.139.130\	2019-11-18 23:55:12
45.58.139.130	attackbots	Nov 11 10:01:39 xm3 sshd[4845]: reveeclipse mapping checking getaddrinfo for customer.sharktech.net [45.58.139.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 11 10:01:39 xm3 sshd[4845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 user=r.r Nov 11 10:01:41 xm3 sshd[4845]: Failed password for r.r from 45.58.139.130 port 7095 ssh2 Nov 11 10:01:41 xm3 sshd[4845]: Received disconnect from 45.58.139.130: 11: Bye Bye [preauth] Nov 11 10:21:22 xm3 sshd[16154]: reveeclipse mapping checking getaddrinfo for customer.sharktech.net [45.58.139.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 11 10:21:22 xm3 sshd[16154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 user=r.r Nov 11 10:21:24 xm3 sshd[16154]: Failed password for r.r from 45.58.139.130 port 58624 ssh2 Nov 11 10:21:24 xm3 sshd[16154]: Received disconnect from 45.58.139.130: 11: Bye Bye [preauth] Nov 11 10:25:04 xm3........ -------------------------------	2019-11-15 04:51:40
45.58.139.130	attackbotsspam	Port 22 Scan, PTR: None	2019-11-13 15:12:38
45.58.139.100	attackspam	Spam	2019-10-24 00:06:04
45.58.139.67	attackbots	Spam	2019-10-18 01:08:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.58.139.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29344
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.58.139.104.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 13 05:43:55 CST 2019
;; MSG SIZE  rcvd: 117

Host info

104.139.58.45.in-addr.arpa domain name pointer whatswithjeff.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
104.139.58.45.in-addr.arpa	name = whatswithjeff.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.182.68.146	attackspam	2019-11-17T22:45:04.072599abusebot-8.cloudsearch.cf sshd\[25233\]: Invalid user kjayroe from 217.182.68.146 port 48450	2019-11-18 06:50:48
83.216.109.154	attack	fire	2019-11-18 06:58:37
49.88.112.70	attackspambots	2019-11-17T23:07:44.773321shield sshd\[19695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root 2019-11-17T23:07:46.760029shield sshd\[19695\]: Failed password for root from 49.88.112.70 port 40949 ssh2 2019-11-17T23:07:48.913783shield sshd\[19695\]: Failed password for root from 49.88.112.70 port 40949 ssh2 2019-11-17T23:07:50.809325shield sshd\[19695\]: Failed password for root from 49.88.112.70 port 40949 ssh2 2019-11-17T23:11:32.112819shield sshd\[19841\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root	2019-11-18 07:12:58
61.54.216.8	attack	port scan and connect, tcp 23 (telnet)	2019-11-18 06:51:33
58.11.22.248	attackbotsspam	19/11/17@17:44:46: FAIL: IoT-Telnet address from=58.11.22.248 ...	2019-11-18 07:01:19
82.212.161.184	attack	fire	2019-11-18 07:02:52
71.34.149.153	attackspam	fire	2019-11-18 07:21:58
49.88.112.116	attackbots	Nov 17 23:44:57 localhost sshd\[20825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Nov 17 23:44:59 localhost sshd\[20825\]: Failed password for root from 49.88.112.116 port 18824 ssh2 Nov 17 23:45:01 localhost sshd\[20825\]: Failed password for root from 49.88.112.116 port 18824 ssh2	2019-11-18 06:52:08
76.220.214.120	attackspam	fire	2019-11-18 07:10:55
81.83.83.225	attack	fire	2019-11-18 07:04:19
86.91.66.155	attack	fire	2019-11-18 06:48:42
82.83.147.17	attack	fire	2019-11-18 06:59:46
86.52.11.35	attackbotsspam	fire	2019-11-18 06:49:32
79.44.247.100	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.44.247.100/ IT - 1H : (155) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 79.44.247.100 CIDR : 79.44.0.0/15 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 ATTACKS DETECTED ASN3269 : 1H - 7 3H - 13 6H - 27 12H - 48 24H - 77 DateTime : 2019-11-17 23:44:15 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-18 07:14:50
61.186.219.33	attack	FTP brute force ...	2019-11-18 07:09:47

Recently Reported IPs

122.114.14.23	2a03:b0c0:2:f0::164:4001	2a01:7e00::f03c:91ff:fece:6f0b	221.238.192.25
42.116.158.203	103.91.217.99	54.39.49.69	149.28.38.85
2a06:e881:5102::666	61.72.242.227	202.169.31.82	167.71.190.61
139.211.101.166	171.242.120.209	101.72.149.174	89.17.58.234
185.251.15.187	62.210.14.169	218.53.113.19	101.89.91.176