116.58.242.158

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.58.242.174	attack	1433/tcp [2019-10-31]1pkt	2019-10-31 18:02:39
116.58.242.150	attackbots	Port Scan	2019-10-29 21:18:48
116.58.242.13	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)	2019-07-11 16:43:25

Type

Details

Datetime

116.58.242.174

attack

1433/tcp
[2019-10-31]1pkt

2019-10-31 18:02:39

116.58.242.150

attackbots

Port Scan

2019-10-29 21:18:48

116.58.242.13

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)

2019-07-11 16:43:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.58.242.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5186
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.58.242.158.			IN	A

;; AUTHORITY SECTION:
.			135	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 19:32:08 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 158.242.58.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 158.242.58.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.229.112.5	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 77 - port: 1994 proto: tcp cat: Misc Attackbytes: 60	2020-08-27 18:59:58
101.109.176.62	attackbots	Unauthorized connection attempt from IP address 101.109.176.62 on Port 445(SMB)	2020-08-27 18:13:44
34.67.40.88	attack	Aug 24 08:53:33 finn sshd[13151]: Invalid user odoo from 34.67.40.88 port 33836 Aug 24 08:53:33 finn sshd[13151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.67.40.88 Aug 24 08:53:35 finn sshd[13151]: Failed password for invalid user odoo from 34.67.40.88 port 33836 ssh2 Aug 24 08:53:35 finn sshd[13151]: Received disconnect from 34.67.40.88 port 33836:11: Bye Bye [preauth] Aug 24 08:53:35 finn sshd[13151]: Disconnected from 34.67.40.88 port 33836 [preauth] Aug 24 09:03:11 finn sshd[15983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.67.40.88 user=r.r Aug 24 09:03:12 finn sshd[15983]: Failed password for r.r from 34.67.40.88 port 46050 ssh2 Aug 24 09:03:12 finn sshd[15983]: Received disconnect from 34.67.40.88 port 46050:11: Bye Bye [preauth] Aug 24 09:03:12 finn sshd[15983]: Disconnected from 34.67.40.88 port 46050 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.	2020-08-27 18:36:43
202.131.69.18	attackbotsspam	Tried sshing with brute force.	2020-08-27 18:55:05
40.113.232.40	attack	Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=40.113.232.40	2020-08-27 18:31:41
138.118.102.110	attackspambots	Automatic report - Port Scan Attack	2020-08-27 18:48:15
125.118.103.59	attackbots	Invalid user admin from 125.118.103.59 port 35542	2020-08-27 18:20:25
157.48.219.70	attack	1598499826 - 08/27/2020 05:43:46 Host: 157.48.219.70/157.48.219.70 Port: 445 TCP Blocked ...	2020-08-27 18:50:45
36.75.64.220	attackbots	Brute Force	2020-08-27 18:52:50
120.201.0.164	attack	Aug 26 05:38:06 ns01 sshd[3349]: Invalid user cdc from 120.201.0.164 Aug 26 05:38:06 ns01 sshd[3349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.201.0.164 Aug 26 05:38:08 ns01 sshd[3349]: Failed password for invalid user cdc from 120.201.0.164 port 61678 ssh2 Aug 26 05:48:18 ns01 sshd[3754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.201.0.164 user=r.r Aug 26 05:48:20 ns01 sshd[3754]: Failed password for r.r from 120.201.0.164 port 47101 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.201.0.164	2020-08-27 18:58:23
190.37.92.205	attack	Unauthorised access (Aug 27) SRC=190.37.92.205 LEN=48 TTL=114 ID=27339 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-27 18:28:29
193.112.126.64	attackbots	Failed password for invalid user ftpuser from 193.112.126.64 port 43896 ssh2	2020-08-27 18:14:25
123.18.7.160	attackspam	1598499889 - 08/27/2020 05:44:49 Host: 123.18.7.160/123.18.7.160 Port: 445 TCP Blocked ...	2020-08-27 18:24:34
51.83.76.25	attackspam	SSH login attempts.	2020-08-27 18:28:03
185.234.219.11	attackspambots	Aug 27 08:56:46 srv01 postfix/smtpd\[27657\]: warning: unknown\[185.234.219.11\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 08:57:20 srv01 postfix/smtpd\[2236\]: warning: unknown\[185.234.219.11\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 09:04:49 srv01 postfix/smtpd\[10571\]: warning: unknown\[185.234.219.11\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 09:06:59 srv01 postfix/smtpd\[27006\]: warning: unknown\[185.234.219.11\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 09:07:34 srv01 postfix/smtpd\[10571\]: warning: unknown\[185.234.219.11\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-27 18:32:32

Recently Reported IPs

116.58.242.156	116.58.242.161	116.58.242.162	116.58.242.169
116.58.242.167	114.106.227.51	116.58.242.179	116.58.242.175
116.58.242.176	116.58.242.18	116.58.242.182	116.58.242.189
116.58.242.170	116.58.242.180	116.58.242.197	116.58.242.187
116.58.242.195	116.58.242.198	116.58.242.205	116.58.242.210