58.20.212.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Zhuzhou Shifengzhengfu Gov

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Sep510:19:51server4pure-ftpd:\(\?@58.20.212.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:19:41server4pure-ftpd:\(\?@58.20.212.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:08:53server4pure-ftpd:\(\?@175.19.130.67\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:12:54server4pure-ftpd:\(\?@121.233.122.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:20server4pure-ftpd:\(\?@119.53.18.166\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:12:47server4pure-ftpd:\(\?@121.233.122.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:08:39server4pure-ftpd:\(\?@175.19.130.67\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:25server4pure-ftpd:\(\?@220.72.166.173\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:27server4pure-ftpd:\(\?@119.53.18.166\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:19server4pure-ftpd:\(\?@220.72.166.173\)[WARNING]Authenticationfailedforuser[forum-wbp]IPAddressesBlocked:	2019-09-05 23:57:08

Type

Details

Datetime

attackbots

Sep510:19:51server4pure-ftpd:\(\?@58.20.212.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:19:41server4pure-ftpd:\(\?@58.20.212.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:08:53server4pure-ftpd:\(\?@175.19.130.67\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:12:54server4pure-ftpd:\(\?@121.233.122.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:20server4pure-ftpd:\(\?@119.53.18.166\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:12:47server4pure-ftpd:\(\?@121.233.122.2\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:08:39server4pure-ftpd:\(\?@175.19.130.67\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:25server4pure-ftpd:\(\?@220.72.166.173\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:27server4pure-ftpd:\(\?@119.53.18.166\)[WARNING]Authenticationfailedforuser[forum-wbp]Sep510:29:19server4pure-ftpd:\(\?@220.72.166.173\)[WARNING]Authenticationfailedforuser[forum-wbp]IPAddressesBlocked:

2019-09-05 23:57:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.20.212.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3539
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.20.212.2.			IN	A

;; AUTHORITY SECTION:
.			1748	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 05 23:56:55 CST 2019
;; MSG SIZE  rcvd: 115

Host info

2.212.20.58.in-addr.arpa has no PTR record

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 2.212.20.58.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
156.96.117.151	attackspam	TCP (SYN) 156.96.117.151:46565 -> port 443, len 44	2020-06-10 19:46:49
46.38.145.250	attackbotsspam	Jun 10 13:39:35 mail postfix/smtpd\[24659\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: VXNlcm5hbWU6\ Jun 10 13:41:17 mail postfix/smtpd\[24482\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 10 14:12:41 mail postfix/smtpd\[26664\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 10 14:14:17 mail postfix/smtpd\[26664\]: warning: unknown\[46.38.145.250\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-10 20:14:37
103.106.211.126	attack	...	2020-06-10 20:12:34
171.101.126.178	attack	[H1.VM4] Blocked by UFW	2020-06-10 19:54:36
118.70.233.163	attackbotsspam	2020-06-10T06:17:12.7924561495-001 sshd[47523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.233.163 user=root 2020-06-10T06:17:14.9327831495-001 sshd[47523]: Failed password for root from 118.70.233.163 port 49314 ssh2 2020-06-10T06:24:56.1922011495-001 sshd[47861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.233.163 user=root 2020-06-10T06:24:58.3632001495-001 sshd[47861]: Failed password for root from 118.70.233.163 port 35422 ssh2 2020-06-10T06:43:39.2260991495-001 sshd[48866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.233.163 user=root 2020-06-10T06:43:41.8983731495-001 sshd[48866]: Failed password for root from 118.70.233.163 port 61672 ssh2 ...	2020-06-10 19:49:48
164.77.141.93	attackspam	Unauthorized connection attempt from IP address 164.77.141.93 on Port 445(SMB)	2020-06-10 19:49:34
109.172.167.158	attack	Unauthorized connection attempt from IP address 109.172.167.158 on Port 445(SMB)	2020-06-10 19:44:15
129.28.198.22	attackbots	2020-06-10T10:53:34.443997abusebot-8.cloudsearch.cf sshd[6122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.198.22 user=root 2020-06-10T10:53:36.800096abusebot-8.cloudsearch.cf sshd[6122]: Failed password for root from 129.28.198.22 port 45690 ssh2 2020-06-10T10:58:00.223948abusebot-8.cloudsearch.cf sshd[6411]: Invalid user vh from 129.28.198.22 port 36768 2020-06-10T10:58:00.230685abusebot-8.cloudsearch.cf sshd[6411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.198.22 2020-06-10T10:58:00.223948abusebot-8.cloudsearch.cf sshd[6411]: Invalid user vh from 129.28.198.22 port 36768 2020-06-10T10:58:02.769898abusebot-8.cloudsearch.cf sshd[6411]: Failed password for invalid user vh from 129.28.198.22 port 36768 ssh2 2020-06-10T11:02:21.022611abusebot-8.cloudsearch.cf sshd[6678]: Invalid user yellon from 129.28.198.22 port 56062 ...	2020-06-10 20:11:39
61.227.73.211	attack	TW_MAINT-TW-TWNIC_<177>1591786944 [1:2403420:57905] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 61 [Classification: Misc Attack] [Priority: 2]: {TCP} 61.227.73.211:38855	2020-06-10 20:06:15
212.91.92.156	attackspambots	Unauthorized connection attempt from IP address 212.91.92.156 on Port 445(SMB)	2020-06-10 19:59:49
51.15.190.82	attackbotsspam	Fail2Ban	2020-06-10 20:10:54
222.186.190.14	attackbotsspam	$f2bV_matches	2020-06-10 19:43:50
212.64.12.236	attackbotsspam	2020-06-10T15:03:48.696366mail.standpoint.com.ua sshd[32530]: Failed password for root from 212.64.12.236 port 50350 ssh2 2020-06-10T15:06:37.156437mail.standpoint.com.ua sshd[490]: Invalid user charlotte from 212.64.12.236 port 53014 2020-06-10T15:06:37.159119mail.standpoint.com.ua sshd[490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.12.236 2020-06-10T15:06:37.156437mail.standpoint.com.ua sshd[490]: Invalid user charlotte from 212.64.12.236 port 53014 2020-06-10T15:06:39.223509mail.standpoint.com.ua sshd[490]: Failed password for invalid user charlotte from 212.64.12.236 port 53014 ssh2 ...	2020-06-10 20:12:50
179.150.147.212	attackspambots	Jun 10 13:58:51 master sshd[30729]: Failed password for invalid user admin from 179.150.147.212 port 56559 ssh2	2020-06-10 20:21:54
89.187.178.206	attackspambots	Automated report (2020-06-10T19:02:39+08:00). Scraper detected at this address.	2020-06-10 19:42:54

Recently Reported IPs

180.113.100.151	137.215.14.146	75.102.157.31	37.35.45.38
140.246.39.128	188.235.187.35	206.144.228.155	65.207.83.102
185.185.232.209	217.114.15.154	54.225.204.189	87.12.239.255
116.236.61.228	99.63.4.33	41.220.112.82	208.230.188.137
123.208.79.53	196.131.236.60	178.111.181.131	54.209.236.92