45.58.139.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): SharkTech

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 9 21:50:55 eddieflores sshd\[22914\]: Invalid user 012345 from 45.58.139.130 Dec 9 21:50:55 eddieflores sshd\[22914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 Dec 9 21:50:57 eddieflores sshd\[22914\]: Failed password for invalid user 012345 from 45.58.139.130 port 34535 ssh2 Dec 9 21:56:06 eddieflores sshd\[23434\]: Invalid user sikorski from 45.58.139.130 Dec 9 21:56:06 eddieflores sshd\[23434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130	2019-12-10 16:33:15
attack	Dec 7 18:25:47 ny01 sshd[27402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 Dec 7 18:25:50 ny01 sshd[27402]: Failed password for invalid user http from 45.58.139.130 port 29143 ssh2 Dec 7 18:30:58 ny01 sshd[28148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130	2019-12-08 07:38:35
attackspam	Port 22 Scan, PTR: None	2019-12-03 14:59:28
attack	Invalid user elmira from 45.58.139.130 port 8680	2019-12-01 08:52:39
attackspambots	frenzy	2019-11-27 03:04:03
attackspam	Nov 18 14:44:44 ip-172-31-62-245 sshd\[3612\]: Invalid user ozzy from 45.58.139.130\ Nov 18 14:44:46 ip-172-31-62-245 sshd\[3612\]: Failed password for invalid user ozzy from 45.58.139.130 port 36061 ssh2\ Nov 18 14:48:24 ip-172-31-62-245 sshd\[3637\]: Invalid user peerman from 45.58.139.130\ Nov 18 14:48:26 ip-172-31-62-245 sshd\[3637\]: Failed password for invalid user peerman from 45.58.139.130 port 9506 ssh2\ Nov 18 14:51:59 ip-172-31-62-245 sshd\[3649\]: Invalid user smmsp from 45.58.139.130\	2019-11-18 23:55:12
attackbots	Nov 11 10:01:39 xm3 sshd[4845]: reveeclipse mapping checking getaddrinfo for customer.sharktech.net [45.58.139.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 11 10:01:39 xm3 sshd[4845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 user=r.r Nov 11 10:01:41 xm3 sshd[4845]: Failed password for r.r from 45.58.139.130 port 7095 ssh2 Nov 11 10:01:41 xm3 sshd[4845]: Received disconnect from 45.58.139.130: 11: Bye Bye [preauth] Nov 11 10:21:22 xm3 sshd[16154]: reveeclipse mapping checking getaddrinfo for customer.sharktech.net [45.58.139.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 11 10:21:22 xm3 sshd[16154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 user=r.r Nov 11 10:21:24 xm3 sshd[16154]: Failed password for r.r from 45.58.139.130 port 58624 ssh2 Nov 11 10:21:24 xm3 sshd[16154]: Received disconnect from 45.58.139.130: 11: Bye Bye [preauth] Nov 11 10:25:04 xm3........ -------------------------------	2019-11-15 04:51:40
attackbotsspam	Port 22 Scan, PTR: None	2019-11-13 15:12:38

相同子网IP讨论:

IP	类型	评论内容	时间
45.58.139.124	attackspambots	2020-02-25T07:17:48.420266homeassistant sshd[4822]: Failed password for invalid user leo from 45.58.139.124 port 41490 ssh2 2020-02-25T12:24:03.415768homeassistant sshd[8085]: Invalid user hue from 45.58.139.124 port 52839 2020-02-25T12:24:03.422807homeassistant sshd[8085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.124 ...	2020-02-25 22:47:49
45.58.139.124	attackspambots	Unauthorized connection attempt detected from IP address 45.58.139.124 to port 2220 [J]	2020-02-01 09:43:44
45.58.139.124	attackspam	Jan 10 16:49:51 ns381471 sshd[18172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.124 Jan 10 16:49:53 ns381471 sshd[18172]: Failed password for invalid user patrick from 45.58.139.124 port 51561 ssh2	2020-01-11 01:58:59
45.58.139.124	attackspam	Jan 6 23:08:42 site2 sshd\[38728\]: Invalid user cloud-user from 45.58.139.124Jan 6 23:08:45 site2 sshd\[38728\]: Failed password for invalid user cloud-user from 45.58.139.124 port 56996 ssh2Jan 6 23:09:48 site2 sshd\[39400\]: Invalid user temp from 45.58.139.124Jan 6 23:09:50 site2 sshd\[39400\]: Failed password for invalid user temp from 45.58.139.124 port 60740 ssh2Jan 6 23:10:54 site2 sshd\[39514\]: Invalid user qxo from 45.58.139.124 ...	2020-01-07 05:51:42
45.58.139.74	attack	email spam	2019-12-17 18:38:07
45.58.139.100	attackspam	Spam	2019-10-24 00:06:04
45.58.139.67	attackbots	Spam	2019-10-18 01:08:24
45.58.139.67	attackbots	Sep 30 12:56:06 fv15 postfix/smtpd[10518]: warning: hostname hazel-beard.colormemobile.com does not resolve to address 45.58.139.67: Name or service not known Sep 30 12:56:06 fv15 postfix/smtpd[10518]: connect from unknown[45.58.139.67] Sep 30 12:56:07 fv15 postgrey[1056]: action=pass, reason=client AWL, client_name=unknown, client_address=45.58.139.67, sender=x@x recipient=x@x Sep 30 12:56:07 fv15 postfix/smtpd[10518]: 2A1601AAE71AF: client=unknown[45.58.139.67] Sep 30 12:56:07 fv15 postfix/smtpd[10518]: disconnect from unknown[45.58.139.67] Sep 30 12:56:24 fv15 postfix/smtpd[10748]: warning: hostname hazel-beard.colormemobile.com does not resolve to address 45.58.139.67: Name or service not known Sep 30 12:56:24 fv15 postfix/smtpd[10748]: connect from unknown[45.58.139.67] Sep 30 12:56:25 fv15 postgrey[1056]: action=pass, reason=client AWL, client_name=unknown, client_address=45.58.139.67, sender=x@x recipient=x@x Sep 30 12:56:25 fv15 postfix/smtpd[10748]: 2E2E61AAE71........ -------------------------------	2019-10-01 04:54:31
45.58.139.104	attackspam	Spam	2019-09-13 20:49:11
45.58.139.98	attackbots	MagicSpam Rule: block_rbl_lists (dnsrbl.org); Spammer IP: 45.58.139.98	2019-08-31 13:01:30
45.58.139.84	attackbotsspam	MagicSpam Rule: Excessive Mail Rate Inbound; Spammer IP: 45.58.139.84	2019-08-31 12:59:06
45.58.139.98	attack	Aug 30 18:37:50 hermescis postfix/smtpd\[16009\]: NOQUEUE: reject: RCPT from unknown\[45.58.139.98\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-08-31 08:26:29
45.58.139.104	attackbots	Spam	2019-08-14 07:38:07
45.58.139.104	attackbots	Sicherheitscam superpreiswert	2019-08-13 05:44:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.58.139.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33674
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.58.139.130.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111201 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 13 15:12:35 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

130.139.58.45.in-addr.arpa domain name pointer customer.sharktech.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.139.58.45.in-addr.arpa	name = customer.sharktech.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
209.65.71.3	attackspam	Aug 9 22:33:21 h2829583 sshd[29279]: Failed password for root from 209.65.71.3 port 55925 ssh2	2020-08-10 05:00:14
180.120.215.47	attackspam	Blocked 180.120.215.47 For policy violation	2020-08-10 05:11:40
185.202.2.147	attack	Fail2Ban Ban Triggered	2020-08-10 05:10:42
180.190.167.95	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-10 05:02:32
122.51.32.91	attack	2020-08-09T20:12:58.099289randservbullet-proofcloud-66.localdomain sshd[22802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.32.91 user=root 2020-08-09T20:13:00.121624randservbullet-proofcloud-66.localdomain sshd[22802]: Failed password for root from 122.51.32.91 port 46866 ssh2 2020-08-09T20:25:55.675065randservbullet-proofcloud-66.localdomain sshd[22863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.32.91 user=root 2020-08-09T20:25:57.697537randservbullet-proofcloud-66.localdomain sshd[22863]: Failed password for root from 122.51.32.91 port 51582 ssh2 ...	2020-08-10 05:05:01
212.70.149.3	attack	Aug 9 23:05:41 galaxy event: galaxy/lswi: smtp: ayden@uni-potsdam.de [212.70.149.3] authentication failure using internet password Aug 9 23:05:59 galaxy event: galaxy/lswi: smtp: ayesha@uni-potsdam.de [212.70.149.3] authentication failure using internet password Aug 9 23:06:18 galaxy event: galaxy/lswi: smtp: ayisha@uni-potsdam.de [212.70.149.3] authentication failure using internet password Aug 9 23:06:36 galaxy event: galaxy/lswi: smtp: ayla@uni-potsdam.de [212.70.149.3] authentication failure using internet password Aug 9 23:06:55 galaxy event: galaxy/lswi: smtp: ayn@uni-potsdam.de [212.70.149.3] authentication failure using internet password ...	2020-08-10 05:09:30
89.189.186.45	attack	Aug 9 22:12:14 ns382633 sshd\[3480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45 user=root Aug 9 22:12:16 ns382633 sshd\[3480\]: Failed password for root from 89.189.186.45 port 47764 ssh2 Aug 9 22:21:36 ns382633 sshd\[5149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45 user=root Aug 9 22:21:38 ns382633 sshd\[5149\]: Failed password for root from 89.189.186.45 port 33504 ssh2 Aug 9 22:25:35 ns382633 sshd\[5977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.189.186.45 user=root	2020-08-10 05:24:28
201.182.72.250	attackbotsspam	2020-08-09T20:39:00.475128shield sshd\[19111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.72.250 user=root 2020-08-09T20:39:02.598130shield sshd\[19111\]: Failed password for root from 201.182.72.250 port 44990 ssh2 2020-08-09T20:43:31.212002shield sshd\[19555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.72.250 user=root 2020-08-09T20:43:33.204802shield sshd\[19555\]: Failed password for root from 201.182.72.250 port 49935 ssh2 2020-08-09T20:47:55.376222shield sshd\[20150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.182.72.250 user=root	2020-08-10 05:07:38
180.76.158.224	attack	Aug 9 23:09:07 PorscheCustomer sshd[6738]: Failed password for root from 180.76.158.224 port 60478 ssh2 Aug 9 23:12:24 PorscheCustomer sshd[6887]: Failed password for root from 180.76.158.224 port 47230 ssh2 ...	2020-08-10 05:17:46
43.225.151.252	attackspam	Aug 9 22:56:02 h2829583 sshd[29466]: Failed password for root from 43.225.151.252 port 47324 ssh2	2020-08-10 05:01:11
49.235.164.107	attack	Aug 9 23:20:07 ns41 sshd[25427]: Failed password for root from 49.235.164.107 port 51990 ssh2 Aug 9 23:20:07 ns41 sshd[25427]: Failed password for root from 49.235.164.107 port 51990 ssh2	2020-08-10 05:25:08
132.232.119.203	attack	fail2ban -- 132.232.119.203 ...	2020-08-10 05:28:20
218.92.0.168	attackspam	Aug 9 23:13:31 server sshd[13690]: Failed none for root from 218.92.0.168 port 31428 ssh2 Aug 9 23:13:33 server sshd[13690]: Failed password for root from 218.92.0.168 port 31428 ssh2 Aug 9 23:13:38 server sshd[13690]: Failed password for root from 218.92.0.168 port 31428 ssh2	2020-08-10 05:16:24
103.76.45.250	attack	1597004732 - 08/09/2020 22:25:32 Host: 103.76.45.250/103.76.45.250 Port: 445 TCP Blocked	2020-08-10 05:29:57
222.186.30.76	attack	Failed password for invalid user from 222.186.30.76 port 41932 ssh2	2020-08-10 05:07:17

最近上报的IP列表

123.24.248.218	214.181.88.253	116.108.44.28	126.55.239.244
45.40.228.145	63.88.23.155	82.251.248.49	218.93.114.155
102.167.181.204	82.79.103.26	145.239.94.223	125.24.230.30
222.137.123.54	145.239.136.186	113.182.1.131	201.151.244.54
81.131.26.101	36.224.254.189	167.71.206.126	85.154.47.69