58.82.239.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Internet Keeper

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Lines containing failures of 58.82.239.54 May 8 21:42:07 shared03 sshd[1909]: Invalid user 3 from 58.82.239.54 port 25412 May 8 21:42:08 shared03 sshd[1909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.82.239.54 May 8 21:42:10 shared03 sshd[1909]: Failed password for invalid user 3 from 58.82.239.54 port 25412 ssh2 May 8 21:42:10 shared03 sshd[1909]: Connection closed by invalid user 3 58.82.239.54 port 25412 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=58.82.239.54	2020-05-10 12:46:32

Type

Details

Datetime

attackbotsspam

Lines containing failures of 58.82.239.54
May  8 21:42:07 shared03 sshd[1909]: Invalid user 3 from 58.82.239.54 port 25412
May  8 21:42:08 shared03 sshd[1909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.82.239.54
May  8 21:42:10 shared03 sshd[1909]: Failed password for invalid user 3 from 58.82.239.54 port 25412 ssh2
May  8 21:42:10 shared03 sshd[1909]: Connection closed by invalid user 3 58.82.239.54 port 25412 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=58.82.239.54

2020-05-10 12:46:32

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.82.239.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38818
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.82.239.54.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050901 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 12:46:27 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 54.239.82.58.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.239.82.58.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.250.84.251	attackspambots	23/tcp [2019-08-11]1pkt	2019-08-11 22:35:02
125.25.54.4	attackspambots	Aug 11 20:48:33 localhost sshd[750]: Invalid user ozzy from 125.25.54.4 port 9657 Aug 11 20:48:33 localhost sshd[750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.25.54.4 Aug 11 20:48:33 localhost sshd[750]: Invalid user ozzy from 125.25.54.4 port 9657 Aug 11 20:48:34 localhost sshd[750]: Failed password for invalid user ozzy from 125.25.54.4 port 9657 ssh2 ...	2019-08-11 22:18:09
81.22.45.29	attackspam	Port scan on 7 port(s): 8080 8211 8501 8518 8579 8601 8814	2019-08-11 22:24:36
92.82.203.111	attackbotsspam	Honeypot attack, port: 23, PTR: adsl92-82-203-111.romtelecom.net.	2019-08-11 22:11:58
143.160.29.252	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 06:19:33,574 INFO [amun_request_handler] PortScan Detected on Port: 445 (143.160.29.252)	2019-08-11 21:45:27
185.175.93.3	attackbotsspam	08/11/2019-09:36:38.198085 185.175.93.3 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-11 21:59:21
58.187.54.152	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 06:55:06,827 INFO [shellcode_manager] (58.187.54.152) no match, writing hexdump (6fedc213f6fe6009abe68fd93a9b3572 :1851776) - MS17010 (EternalBlue)	2019-08-11 22:32:56
67.205.135.188	attackspambots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.188 user=backup Failed password for backup from 67.205.135.188 port 35948 ssh2 Invalid user yulia from 67.205.135.188 port 57736 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.188 Failed password for invalid user yulia from 67.205.135.188 port 57736 ssh2	2019-08-11 21:44:20
120.28.128.55	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 07:17:27,305 INFO [shellcode_manager] (120.28.128.55) no match, writing hexdump (88cdcbd1336642179ceb612f5af61958 :1851913) - MS17010 (EternalBlue)	2019-08-11 22:05:31
183.230.199.54	attackspam	Automatic report - Banned IP Access	2019-08-11 22:26:16
5.63.151.123	attackbotsspam	5001/tcp 10255/tcp 17/udp... [2019-06-15/08-11]9pkt,7pt.(tcp),2pt.(udp)	2019-08-11 22:15:19
134.73.161.159	attackbotsspam	SSH Brute Force	2019-08-11 21:57:14
124.30.44.214	attack	2019-08-11T10:40:19.082964abusebot-2.cloudsearch.cf sshd\[31186\]: Invalid user ubuntu from 124.30.44.214 port 24714	2019-08-11 22:20:40
189.112.216.163	attackspam	Automatic report - Port Scan Attack	2019-08-11 21:49:36
113.160.141.117	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-11 06:18:54,466 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.160.141.117)	2019-08-11 22:03:58

Recently Reported IPs

114.42.130.211	112.118.224.72	110.171.25.41	106.40.148.105
195.231.11.219	103.233.1.218	117.207.181.19	122.252.239.168
109.191.131.58	185.236.83.236	60.208.101.174	49.188.133.234
56.2.146.151	93.98.65.11	42.38.60.152	203.154.112.8
6.15.219.234	204.121.37.221	133.153.158.190	154.247.60.175