58.20.129.46 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): CNC Group HuNan YueYang Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	May 5 18:48:27 kapalua sshd\[18287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=root May 5 18:48:28 kapalua sshd\[18287\]: Failed password for root from 58.20.129.46 port 48066 ssh2 May 5 18:52:35 kapalua sshd\[18618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=root May 5 18:52:37 kapalua sshd\[18618\]: Failed password for root from 58.20.129.46 port 37500 ssh2 May 5 18:57:07 kapalua sshd\[18940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=root	2020-05-06 13:06:07
attack	Apr 14 06:47:56 legacy sshd[12374]: Failed password for bin from 58.20.129.46 port 58398 ssh2 Apr 14 06:52:05 legacy sshd[12542]: Failed password for root from 58.20.129.46 port 43936 ssh2 Apr 14 06:56:07 legacy sshd[12645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 ...	2020-04-14 13:03:37
attack	Lines containing failures of 58.20.129.46 Apr 12 00:56:22 shared11 sshd[15050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 user=r.r Apr 12 00:56:24 shared11 sshd[15050]: Failed password for r.r from 58.20.129.46 port 50412 ssh2 Apr 12 00:56:25 shared11 sshd[15050]: Received disconnect from 58.20.129.46 port 50412:11: Bye Bye [preauth] Apr 12 00:56:25 shared11 sshd[15050]: Disconnected from authenticating user r.r 58.20.129.46 port 50412 [preauth] Apr 12 01:14:39 shared11 sshd[20941]: Invalid user comrades from 58.20.129.46 port 57336 Apr 12 01:14:39 shared11 sshd[20941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46 Apr 12 01:14:41 shared11 sshd[20941]: Failed password for invalid user comrades from 58.20.129.46 port 57336 ssh2 Apr 12 01:14:42 shared11 sshd[20941]: Received disconnect from 58.20.129.46 port 57336:11: Bye Bye [preauth] Apr 12 01:14:42 shared11........ ------------------------------	2020-04-12 08:09:26

类型

评论内容

时间

attackspambots

May  5 18:48:27 kapalua sshd\[18287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46  user=root
May  5 18:48:28 kapalua sshd\[18287\]: Failed password for root from 58.20.129.46 port 48066 ssh2
May  5 18:52:35 kapalua sshd\[18618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46  user=root
May  5 18:52:37 kapalua sshd\[18618\]: Failed password for root from 58.20.129.46 port 37500 ssh2
May  5 18:57:07 kapalua sshd\[18940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46  user=root

2020-05-06 13:06:07

attack

Apr 14 06:47:56 legacy sshd[12374]: Failed password for bin from 58.20.129.46 port 58398 ssh2
Apr 14 06:52:05 legacy sshd[12542]: Failed password for root from 58.20.129.46 port 43936 ssh2
Apr 14 06:56:07 legacy sshd[12645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46
...

2020-04-14 13:03:37

attack

Lines containing failures of 58.20.129.46
Apr 12 00:56:22 shared11 sshd[15050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46  user=r.r
Apr 12 00:56:24 shared11 sshd[15050]: Failed password for r.r from 58.20.129.46 port 50412 ssh2
Apr 12 00:56:25 shared11 sshd[15050]: Received disconnect from 58.20.129.46 port 50412:11: Bye Bye [preauth]
Apr 12 00:56:25 shared11 sshd[15050]: Disconnected from authenticating user r.r 58.20.129.46 port 50412 [preauth]
Apr 12 01:14:39 shared11 sshd[20941]: Invalid user comrades from 58.20.129.46 port 57336
Apr 12 01:14:39 shared11 sshd[20941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.46
Apr 12 01:14:41 shared11 sshd[20941]: Failed password for invalid user comrades from 58.20.129.46 port 57336 ssh2
Apr 12 01:14:42 shared11 sshd[20941]: Received disconnect from 58.20.129.46 port 57336:11: Bye Bye [preauth]
Apr 12 01:14:42 shared11........
------------------------------

2020-04-12 08:09:26

相同子网IP讨论:

IP	类型	评论内容	时间
58.20.129.76	attack	Jul 19 11:48:40 home sshd[25413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Jul 19 11:48:42 home sshd[25413]: Failed password for invalid user ao from 58.20.129.76 port 37728 ssh2 Jul 19 11:54:32 home sshd[26016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 ...	2020-07-19 18:23:19
58.20.129.76	attackbotsspam	TCP (SYN) 58.20.129.76:45841 -> port 32763, len 44	2020-07-02 00:15:31
58.20.129.76	attack	firewall-block, port(s): 354/tcp	2020-06-22 16:40:49
58.20.129.76	attackbots	Invalid user xoh from 58.20.129.76 port 38308	2020-06-14 15:10:45
58.20.129.76	attack	Jun 12 13:28:38 abendstille sshd\[4908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 user=root Jun 12 13:28:39 abendstille sshd\[4908\]: Failed password for root from 58.20.129.76 port 51802 ssh2 Jun 12 13:29:37 abendstille sshd\[5839\]: Invalid user admin from 58.20.129.76 Jun 12 13:29:37 abendstille sshd\[5839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 Jun 12 13:29:38 abendstille sshd\[5839\]: Failed password for invalid user admin from 58.20.129.76 port 56298 ssh2 ...	2020-06-12 19:59:22
58.20.129.76	attack	$f2bV_matches	2020-06-07 12:58:24
58.20.129.76	attackbotsspam	Jun 5 20:06:54 server sshd[29058]: Failed password for root from 58.20.129.76 port 54508 ssh2 Jun 5 20:09:58 server sshd[29506]: Failed password for root from 58.20.129.76 port 41512 ssh2 ...	2020-06-06 02:32:17
58.20.129.76	attackspambots	Jun 1 16:57:36 sip sshd[495531]: Failed password for root from 58.20.129.76 port 47398 ssh2 Jun 1 17:02:25 sip sshd[495545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 user=root Jun 1 17:02:27 sip sshd[495545]: Failed password for root from 58.20.129.76 port 42454 ssh2 ...	2020-06-01 23:26:29
58.20.129.76	attackspambots	Invalid user admin from 58.20.129.76 port 37486	2020-05-30 14:35:31
58.20.129.76	attack	2020-05-22T21:40:54.592140shield sshd\[20941\]: Invalid user cdb from 58.20.129.76 port 57828 2020-05-22T21:40:54.595635shield sshd\[20941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76 2020-05-22T21:40:56.249936shield sshd\[20941\]: Failed password for invalid user cdb from 58.20.129.76 port 57828 ssh2 2020-05-22T21:44:49.606747shield sshd\[21625\]: Invalid user pbz from 58.20.129.76 port 49878 2020-05-22T21:44:49.610415shield sshd\[21625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.20.129.76	2020-05-23 05:57:01
58.20.129.76	attack	2020-05-14 22:51:10.222375-0500 localhost sshd[23342]: Failed password for root from 58.20.129.76 port 37795 ssh2	2020-05-15 14:27:54
58.20.129.76	attackspambots	Invalid user userftp from 58.20.129.76 port 59045	2020-05-15 03:33:13
58.20.129.76	attackbotsspam	Ssh brute force	2020-05-13 08:12:00
58.20.129.76	attackbotsspam	$f2bV_matches	2020-05-12 18:55:05
58.20.129.76	attack	Apr 22 05:56:33 debian-2gb-nbg1-2 kernel: \[9786748.407793\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=58.20.129.76 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=30979 PROTO=TCP SPT=42722 DPT=19308 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-22 13:08:40

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.20.129.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.20.129.46.			IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041101 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 08:09:22 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 46.129.20.58.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 46.129.20.58.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
14.187.5.46	attackspam	Wordpress malicious attack:[sshd]	2020-06-13 18:55:39
175.145.232.73	attack	2020-06-13T07:19:31.634969server.espacesoutien.com sshd[26766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.145.232.73 2020-06-13T07:19:31.622523server.espacesoutien.com sshd[26766]: Invalid user lirc from 175.145.232.73 port 59710 2020-06-13T07:19:33.514564server.espacesoutien.com sshd[26766]: Failed password for invalid user lirc from 175.145.232.73 port 59710 ssh2 2020-06-13T07:23:38.917493server.espacesoutien.com sshd[27338]: Invalid user sshadmin from 175.145.232.73 port 35996 ...	2020-06-13 18:32:09
167.172.36.232	attackbotsspam	Invalid user temp from 167.172.36.232 port 40842	2020-06-13 18:32:37
51.38.186.244	attackbots	Jun 13 12:14:11 mellenthin sshd[27331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.244 user=root Jun 13 12:14:13 mellenthin sshd[27331]: Failed password for invalid user root from 51.38.186.244 port 50340 ssh2	2020-06-13 18:59:05
5.253.86.207	attackbots	Invalid user ugy from 5.253.86.207 port 55832	2020-06-13 18:42:42
222.186.173.201	attack	2020-06-13T12:41:28.284311rocketchat.forhosting.nl sshd[8706]: Failed password for root from 222.186.173.201 port 54764 ssh2 2020-06-13T12:41:32.018781rocketchat.forhosting.nl sshd[8706]: Failed password for root from 222.186.173.201 port 54764 ssh2 2020-06-13T12:41:35.277297rocketchat.forhosting.nl sshd[8706]: Failed password for root from 222.186.173.201 port 54764 ssh2 ...	2020-06-13 19:05:54
154.113.1.142	attackspambots	Jun 13 05:20:58 vlre-nyc-1 sshd\[4674\]: Invalid user hlds from 154.113.1.142 Jun 13 05:20:58 vlre-nyc-1 sshd\[4674\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.113.1.142 Jun 13 05:21:00 vlre-nyc-1 sshd\[4674\]: Failed password for invalid user hlds from 154.113.1.142 port 4802 ssh2 Jun 13 05:28:03 vlre-nyc-1 sshd\[4898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.113.1.142 user=root Jun 13 05:28:05 vlre-nyc-1 sshd\[4898\]: Failed password for root from 154.113.1.142 port 7046 ssh2 ...	2020-06-13 18:57:16
62.210.172.8	attack	xmlrpc attack	2020-06-13 18:29:59
37.187.99.16	attackbotsspam	2020-06-13T10:36:00.148265abusebot-2.cloudsearch.cf sshd[23111]: Invalid user x from 37.187.99.16 port 32877 2020-06-13T10:36:00.160015abusebot-2.cloudsearch.cf sshd[23111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=bender.twibit.com 2020-06-13T10:36:00.148265abusebot-2.cloudsearch.cf sshd[23111]: Invalid user x from 37.187.99.16 port 32877 2020-06-13T10:36:01.800786abusebot-2.cloudsearch.cf sshd[23111]: Failed password for invalid user x from 37.187.99.16 port 32877 ssh2 2020-06-13T10:36:13.402060abusebot-2.cloudsearch.cf sshd[23113]: Invalid user celery from 37.187.99.16 port 36046 2020-06-13T10:36:13.408273abusebot-2.cloudsearch.cf sshd[23113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=bender.twibit.com 2020-06-13T10:36:13.402060abusebot-2.cloudsearch.cf sshd[23113]: Invalid user celery from 37.187.99.16 port 36046 2020-06-13T10:36:15.500229abusebot-2.cloudsearch.cf sshd[23113]: Failed passwo ...	2020-06-13 18:42:13
95.85.38.127	attackspam	Invalid user ruby from 95.85.38.127 port 51402	2020-06-13 18:33:42
144.172.73.38	attackspam	Jun 13 11:39:41 gestao sshd[9441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.172.73.38 Jun 13 11:39:43 gestao sshd[9441]: Failed password for invalid user honey from 144.172.73.38 port 56024 ssh2 Jun 13 11:39:45 gestao sshd[9447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.172.73.38 ...	2020-06-13 18:53:46
159.65.144.102	attack	web-1 [ssh] SSH Attack	2020-06-13 18:51:13
190.144.79.157	attack	k+ssh-bruteforce	2020-06-13 18:53:00
137.116.128.105	attack	(sshd) Failed SSH login from 137.116.128.105 (SG/Singapore/-): 5 in the last 3600 secs	2020-06-13 18:37:36
170.80.28.203	attackbots	Jun 13 06:56:22 ArkNodeAT sshd\[21217\]: Invalid user zhongjunquan from 170.80.28.203 Jun 13 06:56:22 ArkNodeAT sshd\[21217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.80.28.203 Jun 13 06:56:24 ArkNodeAT sshd\[21217\]: Failed password for invalid user zhongjunquan from 170.80.28.203 port 34579 ssh2	2020-06-13 19:00:49

最近上报的IP列表

107.6.153.122	113.116.182.231	61.130.221.209	179.157.122.67
32.199.186.138	204.15.199.218	162.223.90.115	219.143.126.176
114.231.46.76	63.251.237.12	153.196.111.217	181.64.241.177
215.40.82.170	138.99.216.17	178.168.43.184	209.222.243.58
195.110.153.181	94.130.129.205	128.199.80.197	184.95.37.26