58.82.239.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Internet Keeper

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Lines containing failures of 58.82.239.54 May 8 21:42:07 shared03 sshd[1909]: Invalid user 3 from 58.82.239.54 port 25412 May 8 21:42:08 shared03 sshd[1909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.82.239.54 May 8 21:42:10 shared03 sshd[1909]: Failed password for invalid user 3 from 58.82.239.54 port 25412 ssh2 May 8 21:42:10 shared03 sshd[1909]: Connection closed by invalid user 3 58.82.239.54 port 25412 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=58.82.239.54	2020-05-10 12:46:32

Type

Details

Datetime

attackbotsspam

Lines containing failures of 58.82.239.54
May  8 21:42:07 shared03 sshd[1909]: Invalid user 3 from 58.82.239.54 port 25412
May  8 21:42:08 shared03 sshd[1909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.82.239.54
May  8 21:42:10 shared03 sshd[1909]: Failed password for invalid user 3 from 58.82.239.54 port 25412 ssh2
May  8 21:42:10 shared03 sshd[1909]: Connection closed by invalid user 3 58.82.239.54 port 25412 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=58.82.239.54

2020-05-10 12:46:32

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.82.239.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38818
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.82.239.54.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050901 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 12:46:27 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 54.239.82.58.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.239.82.58.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.201	attack	SSH Brute Force	2020-09-09 05:48:01
106.75.67.6	attackbotsspam	Sep 8 20:01:43 ajax sshd[10483]: Failed password for root from 106.75.67.6 port 58728 ssh2	2020-09-09 05:37:03
176.96.174.238	attackspam	failed_logins	2020-09-09 05:30:37
209.141.54.153	attackbotsspam	(sshd) Failed SSH login from 209.141.54.153 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 17:08:46 server sshd[20049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.54.153 user=root Sep 8 17:08:48 server sshd[20049]: Failed password for root from 209.141.54.153 port 45763 ssh2 Sep 8 17:08:51 server sshd[20049]: Failed password for root from 209.141.54.153 port 45763 ssh2 Sep 8 17:08:53 server sshd[20049]: Failed password for root from 209.141.54.153 port 45763 ssh2 Sep 8 17:08:56 server sshd[20049]: Failed password for root from 209.141.54.153 port 45763 ssh2	2020-09-09 05:37:19
85.209.0.253	attack	Sep 8 23:02:04 db sshd[19965]: User root from 85.209.0.253 not allowed because none of user's groups are listed in AllowGroups ...	2020-09-09 05:22:06
218.104.225.140	attackbotsspam	Sep 9 00:13:16 ift sshd\[62065\]: Failed password for root from 218.104.225.140 port 7809 ssh2Sep 9 00:16:46 ift sshd\[62780\]: Failed password for root from 218.104.225.140 port 61773 ssh2Sep 9 00:20:08 ift sshd\[63130\]: Failed password for root from 218.104.225.140 port 48911 ssh2Sep 9 00:23:13 ift sshd\[63721\]: Invalid user link from 218.104.225.140Sep 9 00:23:15 ift sshd\[63721\]: Failed password for invalid user link from 218.104.225.140 port 34808 ssh2 ...	2020-09-09 05:52:38
191.240.116.87	attack	failed_logins	2020-09-09 05:46:47
112.161.78.70	attackspam	Sep 8 18:28:27 instance-2 sshd[12407]: Failed password for root from 112.161.78.70 port 35573 ssh2 Sep 8 18:32:48 instance-2 sshd[12448]: Failed password for root from 112.161.78.70 port 41772 ssh2	2020-09-09 05:42:16
49.233.15.54	attackbotsspam	k+ssh-bruteforce	2020-09-09 05:22:50
117.69.50.11	attackbots	Failed password for root from 117.69.50.11 port 54662 ssh2	2020-09-09 05:27:44
144.172.93.124	attack	Spam	2020-09-09 05:57:06
218.92.0.171	attackspambots	Failed password for invalid user from 218.92.0.171 port 50451 ssh2	2020-09-09 05:25:51
189.8.68.19	attackbotsspam	Sep 8 23:24:59 ns37 sshd[21062]: Failed password for root from 189.8.68.19 port 49990 ssh2 Sep 8 23:24:59 ns37 sshd[21062]: Failed password for root from 189.8.68.19 port 49990 ssh2	2020-09-09 05:38:31
189.34.49.81	attack	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-09-09 05:43:44
138.59.40.168	attack	failed_logins	2020-09-09 05:38:58

Recently Reported IPs

114.42.130.211	112.118.224.72	110.171.25.41	106.40.148.105
195.231.11.219	103.233.1.218	117.207.181.19	122.252.239.168
109.191.131.58	185.236.83.236	60.208.101.174	49.188.133.234
56.2.146.151	93.98.65.11	42.38.60.152	203.154.112.8
6.15.219.234	204.121.37.221	133.153.158.190	154.247.60.175