AbuseIPDB » 58.244.61.42

58.244.61.42 was found in our database!

This IP was reported 2,705 times. Confidence of Abuse is 100%: ?

100%

ISP	China Unicom Jilin Province Network
Usage Type	Data Center/Web Hosting/Transit
Domain Name	chinaunicom.com
Country	China
City	Changchun, Jilin

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 58.244.61.42

Whois 58.244.61.42

IP Abuse Reports for 58.244.61.42:

This IP address has been reported a total of 2,705 times from 421 distinct sources. 58.244.61.42 was first reported on December 10th 2020, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
dblanque	3 hours ago	Fail2ban - Dovecot Ban Event Triggered. (IP: 58.244.61.42)	Email Spam Brute-Force
MrMetasploit	7 hours ago	warning: unknown[58.244.61.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	Brute-Force
www.tana.it	29 Sep 2023	SMTP auth dictionary attack	Brute-Force
tjiricek	29 Sep 2023	Jan 19 12:38:14 raspberrypi sshd[30920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show moreJan 19 12:38:14 raspberrypi sshd[30920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.244.61.42 Jan 19 12:38:16 raspberrypi sshd[30920]: Failed password for invalid user Blank from 58.244.61.42 port 53296 ssh2 show less	Brute-Force SSH
ThreatBook.io	29 Sep 2023	ThreatBook Intelligence: Zombie,Dynamic IP more details on https://threatbook.io/ip/58.244.61.42	SSH
Paul Smith	28 Sep 2023	Email Auth Brute force attack 1/1 in last day	Brute-Force
www.tana.it	28 Sep 2023	SMTP auth dictionary attack	Brute-Force
R.G.	28 Sep 2023	58.244.61.42 (CN/China/-), 7 distributed smtpauth attacks on account [cloacked] in the last 900 secs ... show more58.244.61.42 (CN/China/-), 7 distributed smtpauth attacks on account [cloacked] in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: show less	Brute-Force
Fusl	27 Sep 2023	received unsolicited smtp data stream: Date: Thu, 28 Sep 2023 01:44:04 +0200 From: jan.r ... show morereceived unsolicited smtp data stream: Date: Thu, 28 Sep 2023 01:44:04 +0200 From: [email protected] Subject: =?UTF-8?B?amFuLnJlbnpAYWRkci5lcztqYW4ucmVuekBhZGRyLmVzO1JlbnpqYW40NDtt?= =?UTF-8?B?YWlsLmFkZHIuZXM7MjU7MDtMT0dJTg==?= To: [email protected] show less	Email Spam
Anonymous	27 Sep 2023	postfix-sasl	Brute-Force Web App Attack
kgvarunkanth	27 Sep 2023	2023-09-27T12:13:06.897718+00:00 localhost sshd[648297]: Invalid user admin from 58.244.61.42 port 3 ... show more2023-09-27T12:13:06.897718+00:00 localhost sshd[648297]: Invalid user admin from 58.244.61.42 port 36001 ... show less	Brute-Force SSH
chronos	27 Sep 2023	[[27/09/2023 - 08:19:37 -03:00 UTC] Attack from [ChinaUnicom Hostmaster] [58.244.61.42]- ... show more[[27/09/2023 - 08:19:37 -03:00 UTC] Attack from [ChinaUnicom Hostmaster] [58.244.61.42]-[RANGE:58.244.0.0 - 58.245.255.255] Action: BLocKed Phishing -> Phishing websites and/or email. Email Spam -> Spam email content, infected attachments, and phishing emails. Hacking... Unauthorized attempts to access the server. Spoofing -> Email sender spoofing] ... show less	Phishing Email Spam Hacking Spoofing Brute-Force
Paul Smith	27 Sep 2023	Email Auth Brute force attack 3/3 in last day	Brute-Force
Anonymous	27 Sep 2023	58.244.61.42 (CN/China/-), 7 distributed sshd attacks on account [supervisor] in the last 3600 secs; ... show more58.244.61.42 (CN/China/-), 7 distributed sshd attacks on account [supervisor] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 27 00:20:14 server5 sshd[2256]: Failed password for invalid user supervisor from 58.244.61.42 port 59857 ssh2 Sep 27 00:20:13 server5 sshd[2256]: Invalid user supervisor from 58.244.61.42 Sep 27 00:11:09 server5 sshd[1072]: Failed password for invalid user supervisor from 221.236.63.130 port 50224 ssh2 Sep 27 00:46:19 server5 sshd[5577]: Invalid user supervisor from 117.236.137.118 Sep 27 00:37:59 server5 sshd[4496]: Invalid user supervisor from 24.45.232.148 Sep 27 00:38:01 server5 sshd[4496]: Failed password for invalid user supervisor from 24.45.232.148 port 59880 ssh2 Sep 27 00:11:07 server5 sshd[1072]: Invalid user supervisor from 221.236.63.130 IP Addresses Blocked: show less	Brute-Force
www.tana.it	27 Sep 2023	SMTP auth dictionary attack	Brute-Force

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩