116.58.242.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: CAT Telecom Public Company Ltd

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)	2019-07-11 16:43:25

Comments on same subnet:

IP	Type	Details	Datetime
116.58.242.174	attack	1433/tcp [2019-10-31]1pkt	2019-10-31 18:02:39
116.58.242.150	attackbots	Port Scan	2019-10-29 21:18:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.58.242.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18398
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.58.242.13.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071002 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 11 16:43:19 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 13.242.58.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 13.242.58.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.197.13.218	attackspambots	Dec 20 20:43:30 tdfoods sshd\[5182\]: Invalid user ftp from 181.197.13.218 Dec 20 20:43:30 tdfoods sshd\[5182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.197.13.218 Dec 20 20:43:32 tdfoods sshd\[5182\]: Failed password for invalid user ftp from 181.197.13.218 port 37124 ssh2 Dec 20 20:50:35 tdfoods sshd\[5810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.197.13.218 user=root Dec 20 20:50:37 tdfoods sshd\[5810\]: Failed password for root from 181.197.13.218 port 37045 ssh2	2019-12-21 15:27:41
104.236.175.127	attackbotsspam	Dec 20 21:43:27 kapalua sshd\[29874\]: Invalid user fast from 104.236.175.127 Dec 20 21:43:27 kapalua sshd\[29874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.175.127 Dec 20 21:43:30 kapalua sshd\[29874\]: Failed password for invalid user fast from 104.236.175.127 port 52558 ssh2 Dec 20 21:48:37 kapalua sshd\[30310\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.175.127 user=root Dec 20 21:48:39 kapalua sshd\[30310\]: Failed password for root from 104.236.175.127 port 57378 ssh2	2019-12-21 15:59:23
49.88.112.72	attack	2019-12-21 05:26:15,890 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 49.88.112.72 2019-12-21 05:58:01,894 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 49.88.112.72 2019-12-21 06:28:36,045 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 49.88.112.72 2019-12-21 06:59:15,518 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 49.88.112.72 2019-12-21 07:29:38,065 fail2ban.actions \[10658\]: NOTICE \[sshd\] Ban 49.88.112.72 ...	2019-12-21 15:37:22
218.92.0.175	attackbotsspam	Dec 21 07:41:20 sshgateway sshd\[12368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Dec 21 07:41:22 sshgateway sshd\[12368\]: Failed password for root from 218.92.0.175 port 36632 ssh2 Dec 21 07:41:34 sshgateway sshd\[12368\]: error: maximum authentication attempts exceeded for root from 218.92.0.175 port 36632 ssh2 \[preauth\]	2019-12-21 16:01:58
62.234.128.242	attack	Dec 21 09:05:30 server sshd\[22726\]: Invalid user server from 62.234.128.242 Dec 21 09:05:30 server sshd\[22726\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.128.242 Dec 21 09:05:32 server sshd\[22726\]: Failed password for invalid user server from 62.234.128.242 port 47837 ssh2 Dec 21 09:29:39 server sshd\[28720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.128.242 user=root Dec 21 09:29:41 server sshd\[28720\]: Failed password for root from 62.234.128.242 port 43853 ssh2 ...	2019-12-21 15:35:47
104.236.239.60	attackspam	Dec 21 02:14:15 TORMINT sshd\[15383\]: Invalid user pakistang from 104.236.239.60 Dec 21 02:14:15 TORMINT sshd\[15383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.239.60 Dec 21 02:14:17 TORMINT sshd\[15383\]: Failed password for invalid user pakistang from 104.236.239.60 port 55459 ssh2 ...	2019-12-21 15:31:13
162.243.58.222	attack	Dec 21 02:12:08 ny01 sshd[32727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.58.222 Dec 21 02:12:10 ny01 sshd[32727]: Failed password for invalid user hehl from 162.243.58.222 port 36866 ssh2 Dec 21 02:17:43 ny01 sshd[821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.58.222	2019-12-21 15:28:14
46.38.144.57	attackspam	Dec 21 08:34:40 webserver postfix/smtpd\[25693\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 08:36:08 webserver postfix/smtpd\[26925\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 08:37:36 webserver postfix/smtpd\[27065\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 08:39:04 webserver postfix/smtpd\[26925\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 08:40:31 webserver postfix/smtpd\[27065\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-21 15:40:49
139.59.86.171	attackspambots	Dec 20 21:00:49 sachi sshd\[14052\]: Invalid user navratil from 139.59.86.171 Dec 20 21:00:49 sachi sshd\[14052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.86.171 Dec 20 21:00:50 sachi sshd\[14052\]: Failed password for invalid user navratil from 139.59.86.171 port 54006 ssh2 Dec 20 21:07:02 sachi sshd\[14601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.86.171 user=bin Dec 20 21:07:03 sachi sshd\[14601\]: Failed password for bin from 139.59.86.171 port 58846 ssh2	2019-12-21 15:25:33
138.68.94.173	attackspambots	Dec 21 07:33:48 h2177944 sshd\[7110\]: Invalid user guest from 138.68.94.173 port 55002 Dec 21 07:33:48 h2177944 sshd\[7110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.173 Dec 21 07:33:51 h2177944 sshd\[7110\]: Failed password for invalid user guest from 138.68.94.173 port 55002 ssh2 Dec 21 07:46:45 h2177944 sshd\[7989\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.173 user=smmsp ...	2019-12-21 15:28:44
222.186.175.148	attackbots	Dec 20 22:02:00 web9 sshd\[30346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Dec 20 22:02:02 web9 sshd\[30346\]: Failed password for root from 222.186.175.148 port 58696 ssh2 Dec 20 22:02:20 web9 sshd\[30385\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Dec 20 22:02:21 web9 sshd\[30385\]: Failed password for root from 222.186.175.148 port 64858 ssh2 Dec 20 22:02:25 web9 sshd\[30385\]: Failed password for root from 222.186.175.148 port 64858 ssh2	2019-12-21 16:05:47
193.34.161.137	attack	[ER hit] Tried to deliver spam. Already well known.	2019-12-21 15:44:25
211.227.23.193	attackspambots	Dec 21 01:41:42 linuxvps sshd\[30433\]: Invalid user phoenixtv from 211.227.23.193 Dec 21 01:41:42 linuxvps sshd\[30433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.227.23.193 Dec 21 01:41:44 linuxvps sshd\[30433\]: Failed password for invalid user phoenixtv from 211.227.23.193 port 41881 ssh2 Dec 21 01:48:02 linuxvps sshd\[34493\]: Invalid user glendora from 211.227.23.193 Dec 21 01:48:02 linuxvps sshd\[34493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.227.23.193	2019-12-21 16:04:11
123.28.211.174	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-12-21 15:24:00
182.191.179.135	attackspambots	port scan and connect, tcp 22 (ssh)	2019-12-21 15:30:47

Recently Reported IPs

62.28.37.182	219.65.71.10	119.47.178.17	36.84.65.78
78.238.103.249	221.201.212.190	179.42.210.120	186.90.190.190
183.190.130.32	85.96.203.135	42.85.5.59	224.153.14.142
49.143.180.125	177.55.250.228	103.43.76.52	183.62.23.42
68.75.2.18	66.140.170.253	114.31.244.3	190.145.154.164