116.58.242.205

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.58.242.174	attack	1433/tcp [2019-10-31]1pkt	2019-10-31 18:02:39
116.58.242.150	attackbots	Port Scan	2019-10-29 21:18:48
116.58.242.13	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)	2019-07-11 16:43:25

Type

Details

Datetime

116.58.242.174

attack

1433/tcp
[2019-10-31]1pkt

2019-10-31 18:02:39

116.58.242.150

attackbots

Port Scan

2019-10-29 21:18:48

116.58.242.13

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)

2019-07-11 16:43:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.58.242.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64634
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.58.242.205.			IN	A

;; AUTHORITY SECTION:
.			28	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 19:32:13 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 205.242.58.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 205.242.58.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
40.92.64.12	attack	Dec 19 07:55:42 debian-2gb-vpn-nbg1-1 kernel: [1109705.243316] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.64.12 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=110 ID=23826 DF PROTO=TCP SPT=31728 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-12-19 13:13:12
143.204.214.57	attackspambots	TCP Port Scanning	2019-12-19 08:56:59
200.236.101.130	attack	Dec 19 05:55:26 vmd46246 kernel: [642709.865123] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=200.236.101.130 DST=144.91.112.181 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=518 DF PROTO=TCP SPT=47182 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0 Dec 19 05:55:29 vmd46246 kernel: [642712.864702] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=200.236.101.130 DST=144.91.112.181 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=519 DF PROTO=TCP SPT=47182 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0 Dec 19 05:55:35 vmd46246 kernel: [642718.864541] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=200.236.101.130 DST=144.91.112.181 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=520 DF PROTO=TCP SPT=47182 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0 ...	2019-12-19 13:20:26
49.235.7.47	attackbotsspam	Dec 18 23:48:35 ny01 sshd[22078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.7.47 Dec 18 23:48:37 ny01 sshd[22078]: Failed password for invalid user akihisa from 49.235.7.47 port 52746 ssh2 Dec 18 23:55:37 ny01 sshd[23097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.7.47	2019-12-19 13:21:12
39.184.42.159	attackbots	Dec 19 05:55:34 debian-2gb-nbg1-2 kernel: \[384103.954080\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=39.184.42.159 DST=195.201.40.59 LEN=44 TOS=0x04 PREC=0x00 TTL=48 ID=15928 PROTO=TCP SPT=23303 DPT=5555 WINDOW=64193 RES=0x00 SYN URGP=0	2019-12-19 13:24:47
159.65.174.81	attackbots	Dec 19 05:11:31 pi sshd\[25044\]: Failed password for invalid user test from 159.65.174.81 port 58058 ssh2 Dec 19 05:17:08 pi sshd\[25442\]: Invalid user lily from 159.65.174.81 port 35894 Dec 19 05:17:08 pi sshd\[25442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.174.81 Dec 19 05:17:10 pi sshd\[25442\]: Failed password for invalid user lily from 159.65.174.81 port 35894 ssh2 Dec 19 05:22:45 pi sshd\[25824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.174.81 user=root ...	2019-12-19 13:23:46
31.210.65.150	attack	Dec 18 18:50:13 php1 sshd\[10134\]: Invalid user comut from 31.210.65.150 Dec 18 18:50:13 php1 sshd\[10134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.210.65.150 Dec 18 18:50:15 php1 sshd\[10134\]: Failed password for invalid user comut from 31.210.65.150 port 34851 ssh2 Dec 18 18:55:37 php1 sshd\[10605\]: Invalid user meliard from 31.210.65.150 Dec 18 18:55:37 php1 sshd\[10605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.210.65.150	2019-12-19 13:20:10
1.55.40.250	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-19 13:04:05
103.89.168.196	attackspambots	$f2bV_matches	2019-12-19 09:02:36
222.186.173.142	attack	Dec 19 10:06:55 gw1 sshd[30554]: Failed password for root from 222.186.173.142 port 30178 ssh2 Dec 19 10:07:08 gw1 sshd[30554]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 30178 ssh2 [preauth] ...	2019-12-19 13:08:17
61.177.172.158	attack	2019-12-19T04:54:38.651316hub.schaetter.us sshd\[4267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root 2019-12-19T04:54:41.046453hub.schaetter.us sshd\[4267\]: Failed password for root from 61.177.172.158 port 35411 ssh2 2019-12-19T04:54:43.064617hub.schaetter.us sshd\[4267\]: Failed password for root from 61.177.172.158 port 35411 ssh2 2019-12-19T04:54:45.691592hub.schaetter.us sshd\[4267\]: Failed password for root from 61.177.172.158 port 35411 ssh2 2019-12-19T04:55:42.765434hub.schaetter.us sshd\[4289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root ...	2019-12-19 13:12:40
206.81.24.126	attackbotsspam	(sshd) Failed SSH login from 206.81.24.126 (du.cdr.mn): 5 in the last 3600 secs	2019-12-19 09:07:13
89.46.196.10	attackspambots	Dec 19 06:04:36 xeon sshd[44467]: Failed password for invalid user ftp from 89.46.196.10 port 58598 ssh2	2019-12-19 13:13:59
221.217.59.118	attack	12/18/2019-23:55:31.274437 221.217.59.118 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-19 13:27:36
151.80.61.103	attackspambots	Dec 19 00:14:56 MainVPS sshd[3520]: Invalid user pezzano from 151.80.61.103 port 38662 Dec 19 00:14:56 MainVPS sshd[3520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.103 Dec 19 00:14:56 MainVPS sshd[3520]: Invalid user pezzano from 151.80.61.103 port 38662 Dec 19 00:14:58 MainVPS sshd[3520]: Failed password for invalid user pezzano from 151.80.61.103 port 38662 ssh2 Dec 19 00:21:05 MainVPS sshd[15520]: Invalid user dbus from 151.80.61.103 port 55476 ...	2019-12-19 08:59:43

Recently Reported IPs

116.58.242.198	116.58.242.210	116.58.242.219	116.58.242.22
116.58.242.215	116.58.242.224	116.58.242.212	116.58.242.227
114.106.227.55	116.58.242.236	116.58.242.24	116.58.242.21
116.58.242.243	116.58.242.245	116.58.242.238	116.58.242.26
116.58.242.3	116.58.242.250	116.58.242.254	116.58.242.35