45.58.139.130 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Netherlands

运营商(isp): SharkTech

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Dec 9 21:50:55 eddieflores sshd\[22914\]: Invalid user 012345 from 45.58.139.130 Dec 9 21:50:55 eddieflores sshd\[22914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 Dec 9 21:50:57 eddieflores sshd\[22914\]: Failed password for invalid user 012345 from 45.58.139.130 port 34535 ssh2 Dec 9 21:56:06 eddieflores sshd\[23434\]: Invalid user sikorski from 45.58.139.130 Dec 9 21:56:06 eddieflores sshd\[23434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130	2019-12-10 16:33:15
attack	Dec 7 18:25:47 ny01 sshd[27402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 Dec 7 18:25:50 ny01 sshd[27402]: Failed password for invalid user http from 45.58.139.130 port 29143 ssh2 Dec 7 18:30:58 ny01 sshd[28148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130	2019-12-08 07:38:35
attackspam	Port 22 Scan, PTR: None	2019-12-03 14:59:28
attack	Invalid user elmira from 45.58.139.130 port 8680	2019-12-01 08:52:39
attackspambots	frenzy	2019-11-27 03:04:03
attackspam	Nov 18 14:44:44 ip-172-31-62-245 sshd\[3612\]: Invalid user ozzy from 45.58.139.130\ Nov 18 14:44:46 ip-172-31-62-245 sshd\[3612\]: Failed password for invalid user ozzy from 45.58.139.130 port 36061 ssh2\ Nov 18 14:48:24 ip-172-31-62-245 sshd\[3637\]: Invalid user peerman from 45.58.139.130\ Nov 18 14:48:26 ip-172-31-62-245 sshd\[3637\]: Failed password for invalid user peerman from 45.58.139.130 port 9506 ssh2\ Nov 18 14:51:59 ip-172-31-62-245 sshd\[3649\]: Invalid user smmsp from 45.58.139.130\	2019-11-18 23:55:12
attackbots	Nov 11 10:01:39 xm3 sshd[4845]: reveeclipse mapping checking getaddrinfo for customer.sharktech.net [45.58.139.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 11 10:01:39 xm3 sshd[4845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 user=r.r Nov 11 10:01:41 xm3 sshd[4845]: Failed password for r.r from 45.58.139.130 port 7095 ssh2 Nov 11 10:01:41 xm3 sshd[4845]: Received disconnect from 45.58.139.130: 11: Bye Bye [preauth] Nov 11 10:21:22 xm3 sshd[16154]: reveeclipse mapping checking getaddrinfo for customer.sharktech.net [45.58.139.130] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 11 10:21:22 xm3 sshd[16154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.130 user=r.r Nov 11 10:21:24 xm3 sshd[16154]: Failed password for r.r from 45.58.139.130 port 58624 ssh2 Nov 11 10:21:24 xm3 sshd[16154]: Received disconnect from 45.58.139.130: 11: Bye Bye [preauth] Nov 11 10:25:04 xm3........ -------------------------------	2019-11-15 04:51:40
attackbotsspam	Port 22 Scan, PTR: None	2019-11-13 15:12:38

相同子网IP讨论:

IP	类型	评论内容	时间
45.58.139.124	attackspambots	2020-02-25T07:17:48.420266homeassistant sshd[4822]: Failed password for invalid user leo from 45.58.139.124 port 41490 ssh2 2020-02-25T12:24:03.415768homeassistant sshd[8085]: Invalid user hue from 45.58.139.124 port 52839 2020-02-25T12:24:03.422807homeassistant sshd[8085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.124 ...	2020-02-25 22:47:49
45.58.139.124	attackspambots	Unauthorized connection attempt detected from IP address 45.58.139.124 to port 2220 [J]	2020-02-01 09:43:44
45.58.139.124	attackspam	Jan 10 16:49:51 ns381471 sshd[18172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.58.139.124 Jan 10 16:49:53 ns381471 sshd[18172]: Failed password for invalid user patrick from 45.58.139.124 port 51561 ssh2	2020-01-11 01:58:59
45.58.139.124	attackspam	Jan 6 23:08:42 site2 sshd\[38728\]: Invalid user cloud-user from 45.58.139.124Jan 6 23:08:45 site2 sshd\[38728\]: Failed password for invalid user cloud-user from 45.58.139.124 port 56996 ssh2Jan 6 23:09:48 site2 sshd\[39400\]: Invalid user temp from 45.58.139.124Jan 6 23:09:50 site2 sshd\[39400\]: Failed password for invalid user temp from 45.58.139.124 port 60740 ssh2Jan 6 23:10:54 site2 sshd\[39514\]: Invalid user qxo from 45.58.139.124 ...	2020-01-07 05:51:42
45.58.139.74	attack	email spam	2019-12-17 18:38:07
45.58.139.100	attackspam	Spam	2019-10-24 00:06:04
45.58.139.67	attackbots	Spam	2019-10-18 01:08:24
45.58.139.67	attackbots	Sep 30 12:56:06 fv15 postfix/smtpd[10518]: warning: hostname hazel-beard.colormemobile.com does not resolve to address 45.58.139.67: Name or service not known Sep 30 12:56:06 fv15 postfix/smtpd[10518]: connect from unknown[45.58.139.67] Sep 30 12:56:07 fv15 postgrey[1056]: action=pass, reason=client AWL, client_name=unknown, client_address=45.58.139.67, sender=x@x recipient=x@x Sep 30 12:56:07 fv15 postfix/smtpd[10518]: 2A1601AAE71AF: client=unknown[45.58.139.67] Sep 30 12:56:07 fv15 postfix/smtpd[10518]: disconnect from unknown[45.58.139.67] Sep 30 12:56:24 fv15 postfix/smtpd[10748]: warning: hostname hazel-beard.colormemobile.com does not resolve to address 45.58.139.67: Name or service not known Sep 30 12:56:24 fv15 postfix/smtpd[10748]: connect from unknown[45.58.139.67] Sep 30 12:56:25 fv15 postgrey[1056]: action=pass, reason=client AWL, client_name=unknown, client_address=45.58.139.67, sender=x@x recipient=x@x Sep 30 12:56:25 fv15 postfix/smtpd[10748]: 2E2E61AAE71........ -------------------------------	2019-10-01 04:54:31
45.58.139.104	attackspam	Spam	2019-09-13 20:49:11
45.58.139.98	attackbots	MagicSpam Rule: block_rbl_lists (dnsrbl.org); Spammer IP: 45.58.139.98	2019-08-31 13:01:30
45.58.139.84	attackbotsspam	MagicSpam Rule: Excessive Mail Rate Inbound; Spammer IP: 45.58.139.84	2019-08-31 12:59:06
45.58.139.98	attack	Aug 30 18:37:50 hermescis postfix/smtpd\[16009\]: NOQUEUE: reject: RCPT from unknown\[45.58.139.98\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-08-31 08:26:29
45.58.139.104	attackbots	Spam	2019-08-14 07:38:07
45.58.139.104	attackbots	Sicherheitscam superpreiswert	2019-08-13 05:44:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.58.139.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33674
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.58.139.130.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111201 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 13 15:12:35 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

130.139.58.45.in-addr.arpa domain name pointer customer.sharktech.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.139.58.45.in-addr.arpa	name = customer.sharktech.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
14.132.141.77	attackspam	Trying to (more than 3 packets) bruteforce (not open) SSH port 22	2019-08-12 17:14:43
92.118.160.57	attackspam	Honeypot attack, port: 389, PTR: 92.118.160.57.netsystemsresearch.com.	2019-08-12 17:09:22
178.128.217.135	attack	Aug 12 08:53:37 pkdns2 sshd\[57219\]: Invalid user botuser from 178.128.217.135Aug 12 08:53:39 pkdns2 sshd\[57219\]: Failed password for invalid user botuser from 178.128.217.135 port 48104 ssh2Aug 12 08:58:28 pkdns2 sshd\[57423\]: Invalid user charlotte from 178.128.217.135Aug 12 08:58:29 pkdns2 sshd\[57423\]: Failed password for invalid user charlotte from 178.128.217.135 port 44392 ssh2Aug 12 09:03:19 pkdns2 sshd\[57623\]: Invalid user musikbot from 178.128.217.135Aug 12 09:03:21 pkdns2 sshd\[57623\]: Failed password for invalid user musikbot from 178.128.217.135 port 41054 ssh2 ...	2019-08-12 17:38:06
218.66.68.10	attack	DATE:2019-08-12 04:33:43, IP:218.66.68.10, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-08-12 17:02:42
139.59.84.55	attack	Aug 12 07:07:28 work-partkepr sshd\[28012\]: Invalid user admin from 139.59.84.55 port 57534 Aug 12 07:07:28 work-partkepr sshd\[28012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.84.55 ...	2019-08-12 17:00:15
222.186.42.94	attackbotsspam	2019-08-12T08:39:24.223570abusebot-4.cloudsearch.cf sshd\[24818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root	2019-08-12 17:05:04
188.112.196.200	attackspam	[portscan] Port scan	2019-08-12 17:23:02
14.175.203.193	attack	Unauthorized connection attempt from IP address 14.175.203.193 on Port 445(SMB)	2019-08-12 17:56:12
195.181.10.129	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-08-12 17:16:51
106.51.2.108	attackspambots	Aug 12 11:07:20 * sshd[8977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.2.108 Aug 12 11:07:22 * sshd[8977]: Failed password for invalid user nishiyama from 106.51.2.108 port 60673 ssh2	2019-08-12 17:12:59
13.80.16.81	attack	Aug 12 09:59:30 MK-Soft-Root1 sshd\[13380\]: Invalid user software from 13.80.16.81 port 36998 Aug 12 09:59:30 MK-Soft-Root1 sshd\[13380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.80.16.81 Aug 12 09:59:31 MK-Soft-Root1 sshd\[13380\]: Failed password for invalid user software from 13.80.16.81 port 36998 ssh2 ...	2019-08-12 17:11:25
35.184.179.226	attackbots	35.184.179.226 - - [12/Aug/2019:04:32:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.184.179.226 - - [12/Aug/2019:04:32:48 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.184.179.226 - - [12/Aug/2019:04:32:48 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.184.179.226 - - [12/Aug/2019:04:32:48 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.184.179.226 - - [12/Aug/2019:04:32:49 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.184.179.226 - - [12/Aug/2019:04:32:49 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-12 17:22:20
185.220.101.25	attackbots	Aug 12 12:18:59 hosting sshd[15019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.25 user=root Aug 12 12:19:01 hosting sshd[15019]: Failed password for root from 185.220.101.25 port 45993 ssh2 ...	2019-08-12 17:33:52
164.132.62.233	attackspambots	Invalid user sharon from 164.132.62.233 port 43328	2019-08-12 17:45:34
207.154.218.16	attackbotsspam	Aug 12 11:29:29 vps647732 sshd[20882]: Failed password for root from 207.154.218.16 port 32976 ssh2 Aug 12 11:35:43 vps647732 sshd[21065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.218.16 ...	2019-08-12 17:51:39

最近上报的IP列表

123.24.248.218	214.181.88.253	116.108.44.28	126.55.239.244
45.40.228.145	63.88.23.155	82.251.248.49	218.93.114.155
102.167.181.204	82.79.103.26	145.239.94.223	125.24.230.30
222.137.123.54	145.239.136.186	113.182.1.131	201.151.244.54
81.131.26.101	36.224.254.189	167.71.206.126	85.154.47.69