45.58.56.58 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 45.58.56.58 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 10/100

Host and Network Information

• JARM: 07d19d1ad21d21d00042d43d00000076e5b3c488a88e5790970b78ffb8afc2

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: times
• Protocols Attacked: SSH
• Passive DNS Results: www.mediadentusa.com www.tickets.blackknightinn.ca tickets.blackknightinn.ca www.justlovetogive.com.au justlovetogive.com.au www.hokiboypoker.xyz hokiboypoker.xyz passingthepeace.org www.passingthepeace.org www.dewikuhebat88.xyz dewikuhebat88.xyz trade-automations.com wearethewaym4a.org www.wearethewaym4a.org dconthefly.com web-ind.com wmhermann.com www.kimeracorp.net shoestringbackpacking.com cubanosusa.com lakesbiplane.com mediadentusa.com currencyofgiving.com cy9ss.com cardiopedia.net philoweb.org bitcoinbirthday.info kimeracorp.net www.mededcentral.org mededcentral.org www.guiaimobiliaria.com.br guiaimobiliaria.com.br horsestabling.com www.gomy.info gomy.info sexosemmedo.com.br www.sexosemmedo.com.br www.faturenacrise.com.br faturenacrise.com.br ceriafm.net www.forensicanthropologycolorado.com forensicanthropologycolorado.com www.asagroup.it asagroup.it hostdomainweb.org thinkcloudvendors.com ns3.centswebhosting.com www.demo.centswebhosting.com demo.centswebhosting.com ns4.centswebhosting.com blogratis.lt www.blogratis.lt www.floorcarefranchise.co.uk floorcarefranchise.co.uk vuittonnboutiquesonline.info www.vuittonnboutiquesonline.info gnfc.org www.gnfc.org www.oss2015.org oss2015.org ictshop.info www.govtoros.com govtoros.com www.bigmountalpacas.com bigmountalpacas.com outsourcingunit.org www.outsourcingunit.org chinaseaisland.com www.chinaseaisland.com www.pricesow.com pricesow.com www.engageher.org engageher.org www.xxxnews.info xxxnews.info glaeserverleih.info www.glaeserverleih.info manoonkrit.com www.manoonkrit.com www.centswebhosting.com centswebhosting.com www.stscr1.centswebhosting.com stscr1.centswebhosting.com nokihost.com www.ny.nokihost.com ny.nokihost.com ns7.milihost.com www.insideoutsidebeds.com insideoutsidebeds.com lucrearte.com www.lucrearte.com cpcalendars.proptransact.com proptransact.all.com.sg cpcontacts.proptransact.com www.proptransact.all.com.sg proptransact.com cpcalendars.all.com.sg all.com.sg cpcontacts.all.com.sg cpcontacts.doppelgangerdancecollective.com doppelgangerdancecollective.com cpcalendars.doppelgangerdancecollective.com directcreditcardexpert.mocponyclub.org www.directcreditcardexpert.mocponyclub.org ns1.howhubs.com ns2.howhubs.com ns2.multistars.top ns1.multistars.top cpcalendars.hinterlandlawyers.com.au www.impactrecords.hinterlandlawyers.com.au impactrecords.hinterlandlawyers.com.au cpcontacts.impactrecords.com.au cpcalendars.impactrecords.com.au cpcontacts.hinterlandlawyers.com.au impactrecords.com.au hinterlandlawyers.com.au outer-limit.net realestateinkeswick.com cpcalendars.bihin-notaire.com www.seriousaboutrealestate.hinterlandlawyers.com.au seriousaboutrealestate.hinterlandlawyers.com.au bihin-notaire.com cpcontacts.realestateinkeswick.com cpcontacts.bihin-notaire.com cpcalendars.realestateinkeswick.com www.sembmusclecarclub.hinterlandlawyers.com.au sembmusclecarclub.hinterlandlawyers.com.au bihin-notaire.hinterlandlawyers.com.au www.bihin-notaire.hinterlandlawyers.com.au realestateinkeswick.hinterlandlawyers.com.au www.realestateinkeswick.hinterlandlawyers.com.au plexcloud.mclayton.net

Open Ports Detected

21 443 465 53 587

CVEs Detected

CVE-2019-19269 CVE-2019-19271 CVE-2019-19272 CVE-2020-9272 CVE-2021-46854 CVE-2023-48795 CVE-2023-51713

Map

Whois Information

• NetRange: 45.58.48.0 - 45.58.63.255
• CIDR: 45.58.48.0/20
• NetName: HOSTUS-IPV4-4
• NetHandle: NET-45-58-48-0-1
• Parent: NET45 (NET-45-0-0-0-0)
• NetType: Direct Allocation
• OriginAS:
• Organization: HostUS (HOSTU-4)
• RegDate: 2015-02-02
• Updated: 2015-12-29
• Ref: https://rdap.arin.net/registry/ip/45.58.48.0
• OrgName: HostUS
• OrgId: HOSTU-4
• Address: 1515 Round Table Dr
• City: Dallas
• StateProv: TX
• PostalCode: 75247
• Country: US
• RegDate: 2013-07-26
• Updated: 2024-11-25
• Comment: IP addresses from this network are further reallocated or assigned to customers.
• Comment: Please send all abuse reports to abuse@hostus.us.
• Comment: Abuse reports must be submitted through email with the IP address in title.
• Ref: https://rdap.arin.net/registry/entity/HOSTU-4
• OrgNOCHandle: HOSTU2-ARIN
• OrgNOCName: HostUS Tech
• OrgNOCPhone: +1-302-300-1737
• OrgNOCEmail: noc@hostus.us
• OrgNOCRef: https://rdap.arin.net/registry/entity/HOSTU2-ARIN
• OrgTechHandle: HOSTU2-ARIN
• OrgTechName: HostUS Tech
• OrgTechPhone: +1-302-300-1737
• OrgTechEmail: noc@hostus.us
• OrgTechRef: https://rdap.arin.net/registry/entity/HOSTU2-ARIN
• OrgAbuseHandle: HAD18-ARIN
• OrgAbuseName: HostUS Abuse Desk
• OrgAbusePhone: +1-302-300-1737
• OrgAbuseEmail: abuse@hostus.us
• OrgAbuseRef: https://rdap.arin.net/registry/entity/HAD18-ARIN

Links to attack logs

****** ****** ******