58.40.54.138 - IPInfo

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: ChinaNet Shanghai Province Network

Hostname: unknown

Organization: China Telecom (Group)

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Automatic report - Port Scan Attack	2019-07-24 12:13:34
attackbotsspam	Unauthorised access (Jul 23) SRC=58.40.54.138 LEN=44 TTL=51 ID=34030 TCP DPT=23 WINDOW=10601 SYN	2019-07-24 02:35:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.40.54.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27944
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.40.54.138.			IN	A

;; AUTHORITY SECTION:
.			3359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 24 02:35:28 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 138.54.40.58.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 138.54.40.58.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.52.16.35	attackbotsspam	Nov 14 11:31:40 localhost sshd\[123518\]: Invalid user etc from 103.52.16.35 port 35094 Nov 14 11:31:40 localhost sshd\[123518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.16.35 Nov 14 11:31:42 localhost sshd\[123518\]: Failed password for invalid user etc from 103.52.16.35 port 35094 ssh2 Nov 14 11:35:37 localhost sshd\[123615\]: Invalid user guest from 103.52.16.35 port 44020 Nov 14 11:35:37 localhost sshd\[123615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.52.16.35 ...	2019-11-14 19:47:04
109.95.156.1	attackbotsspam	schuetzenmusikanten.de 109.95.156.1 \[14/Nov/2019:08:31:27 +0100\] "POST /wp-login.php HTTP/1.1" 200 6379 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 109.95.156.1 \[14/Nov/2019:08:31:28 +0100\] "POST /wp-login.php HTTP/1.1" 200 6348 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-14 19:51:08
140.143.157.207	attack	Automatic report - Banned IP Access	2019-11-14 19:31:10
85.206.36.166	attack	UTC: 2019-11-13 pkts: 3 port: 81/tcp	2019-11-14 20:00:54
106.13.143.111	attackbotsspam	2019-11-14T04:35:43.651475ns547587 sshd\[27710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.143.111 user=root 2019-11-14T04:35:46.449511ns547587 sshd\[27710\]: Failed password for root from 106.13.143.111 port 34666 ssh2 2019-11-14T04:43:55.644611ns547587 sshd\[8419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.143.111 user=root 2019-11-14T04:43:57.654584ns547587 sshd\[8419\]: Failed password for root from 106.13.143.111 port 59970 ssh2 ...	2019-11-14 19:27:24
118.97.140.237	attackbots	Nov 14 12:48:06 eventyay sshd[14436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.140.237 Nov 14 12:48:07 eventyay sshd[14436]: Failed password for invalid user hamzah from 118.97.140.237 port 33232 ssh2 Nov 14 12:52:32 eventyay sshd[14521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.140.237 ...	2019-11-14 19:54:33
115.62.149.215	attack	UTC: 2019-11-13 port: 23/tcp	2019-11-14 19:32:33
163.172.204.185	attackspambots	(sshd) Failed SSH login from 163.172.204.185 (163-172-204-185.rev.poneytelecom.eu): 5 in the last 3600 secs	2019-11-14 19:45:24
148.70.22.185	attack	Nov 13 21:49:02 php1 sshd\[28233\]: Invalid user @@@@@@@@ from 148.70.22.185 Nov 13 21:49:02 php1 sshd\[28233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.22.185 Nov 13 21:49:05 php1 sshd\[28233\]: Failed password for invalid user @@@@@@@@ from 148.70.22.185 port 50693 ssh2 Nov 13 21:53:29 php1 sshd\[28596\]: Invalid user nobody1234678 from 148.70.22.185 Nov 13 21:53:29 php1 sshd\[28596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.22.185	2019-11-14 19:50:45
106.246.250.202	attackspambots	Nov 14 15:23:23 lcl-usvr-02 sshd[28395]: Invalid user NetLinx from 106.246.250.202 port 10059 Nov 14 15:23:23 lcl-usvr-02 sshd[28395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.250.202 Nov 14 15:23:23 lcl-usvr-02 sshd[28395]: Invalid user NetLinx from 106.246.250.202 port 10059 Nov 14 15:23:25 lcl-usvr-02 sshd[28395]: Failed password for invalid user NetLinx from 106.246.250.202 port 10059 ssh2 Nov 14 15:27:16 lcl-usvr-02 sshd[29277]: Invalid user elgethun from 106.246.250.202 port 45867 ...	2019-11-14 19:31:42
185.100.202.27	attack	Automatic report - Port Scan Attack	2019-11-14 19:59:31
220.142.175.80	attackspam	UTC: 2019-11-13 port: 23/tcp	2019-11-14 19:52:56
78.186.129.6	attackspambots	Automatic report - Port Scan Attack	2019-11-14 19:57:46
173.231.207.222	attack	Wordpress bruteforce	2019-11-14 19:26:52
36.230.17.155	attackbotsspam	UTC: 2019-11-13 port: 23/tcp	2019-11-14 19:21:25

Recently Reported IPs

162.8.125.66	204.217.44.91	203.50.11.125	204.122.50.26
67.181.206.204	73.116.30.63	143.51.243.253	135.240.52.191
182.25.176.214	208.218.29.143	162.8.125.65	5.176.130.135
216.22.49.93	241.94.78.173	94.122.173.142	182.232.112.28
101.32.23.112	162.8.125.0	114.198.3.205	203.91.35.150