58.48.89.142 - IPInfo

Basic Info

City: Wuhan

Region: Hubei

Country: China

Internet Service Provider: ChinaNet Hubei Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	2020-07-29T18:17:30.2749011495-001 sshd[24323]: Invalid user zengpengpeng from 58.48.89.142 port 18108 2020-07-29T18:17:32.3718761495-001 sshd[24323]: Failed password for invalid user zengpengpeng from 58.48.89.142 port 18108 ssh2 2020-07-29T18:21:32.5132361495-001 sshd[24503]: Invalid user hjpark from 58.48.89.142 port 18110 2020-07-29T18:21:32.5169921495-001 sshd[24503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.48.89.142 2020-07-29T18:21:32.5132361495-001 sshd[24503]: Invalid user hjpark from 58.48.89.142 port 18110 2020-07-29T18:21:33.8324871495-001 sshd[24503]: Failed password for invalid user hjpark from 58.48.89.142 port 18110 ssh2 ...	2020-07-30 07:23:57

Type

Details

Datetime

attackspambots

2020-07-29T18:17:30.2749011495-001 sshd[24323]: Invalid user zengpengpeng from 58.48.89.142 port 18108
2020-07-29T18:17:32.3718761495-001 sshd[24323]: Failed password for invalid user zengpengpeng from 58.48.89.142 port 18108 ssh2
2020-07-29T18:21:32.5132361495-001 sshd[24503]: Invalid user hjpark from 58.48.89.142 port 18110
2020-07-29T18:21:32.5169921495-001 sshd[24503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.48.89.142
2020-07-29T18:21:32.5132361495-001 sshd[24503]: Invalid user hjpark from 58.48.89.142 port 18110
2020-07-29T18:21:33.8324871495-001 sshd[24503]: Failed password for invalid user hjpark from 58.48.89.142 port 18110 ssh2
...

2020-07-30 07:23:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.48.89.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59806
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.48.89.142.			IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072901 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 30 07:23:53 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 142.89.48.58.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.89.48.58.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.189.208.61	attackspambots	60001/tcp 5500/tcp... [2020-01-30/02-17]5pkt,2pt.(tcp)	2020-02-17 22:55:46
209.88.90.186	attackbots	1581946730 - 02/17/2020 14:38:50 Host: 209.88.90.186/209.88.90.186 Port: 445 TCP Blocked	2020-02-17 22:56:28
128.199.224.215	attackspam	Automatic report - Banned IP Access	2020-02-17 23:21:20
43.242.241.218	attack	2020-02-18T00:38:24.731019luisaranguren sshd[2830272]: Invalid user rita from 43.242.241.218 port 38576 2020-02-18T00:38:27.288992luisaranguren sshd[2830272]: Failed password for invalid user rita from 43.242.241.218 port 38576 ssh2 ...	2020-02-17 23:26:25
104.248.31.169	attackbotsspam	2626/tcp [2020-02-17]1pkt	2020-02-17 23:39:19
206.189.129.174	attackbots	Feb 17 15:06:07 amit sshd\[9857\]: Invalid user sammy from 206.189.129.174 Feb 17 15:06:07 amit sshd\[9857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.129.174 Feb 17 15:06:09 amit sshd\[9857\]: Failed password for invalid user sammy from 206.189.129.174 port 50298 ssh2 ...	2020-02-17 23:37:42
185.156.73.49	attack	Feb 17 15:54:36 debian-2gb-nbg1-2 kernel: \[4210494.557145\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.49 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=29697 PROTO=TCP SPT=59556 DPT=23282 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-17 22:57:51
213.6.129.2	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 23:27:38
36.26.72.16	attackbotsspam	Feb 17 15:33:05 markkoudstaal sshd[3661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.72.16 Feb 17 15:33:07 markkoudstaal sshd[3661]: Failed password for invalid user heather from 36.26.72.16 port 34112 ssh2 Feb 17 15:36:54 markkoudstaal sshd[4311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.72.16	2020-02-17 23:04:47
49.88.112.70	attackspam	Feb 17 15:39:34 MK-Soft-VM5 sshd[26146]: Failed password for root from 49.88.112.70 port 62173 ssh2 Feb 17 15:39:36 MK-Soft-VM5 sshd[26146]: Failed password for root from 49.88.112.70 port 62173 ssh2 ...	2020-02-17 23:24:48
115.84.85.220	attackbots	81/tcp 83/tcp [2019-12-27/2020-02-17]2pkt	2020-02-17 23:06:14
115.84.92.29	attackbots	Automatic report - Banned IP Access	2020-02-17 23:38:50
115.73.238.52	attackspambots	23/tcp [2020-02-17]1pkt	2020-02-17 23:34:06
187.19.9.117	attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-02-17 23:33:37
123.204.232.78	attack	23/tcp [2020-02-17]1pkt	2020-02-17 23:25:23

Recently Reported IPs

12.163.227.201	182.61.12.9	1.205.233.150	49.40.251.105
154.188.151.163	138.97.247.26	177.96.234.146	157.28.236.229
207.24.232.200	12.33.81.67	50.4.233.142	217.173.123.184
167.58.234.182	64.82.178.70	119.183.107.26	109.80.3.202
45.72.25.186	90.10.116.5	113.218.82.120	85.172.142.142