116.58.242.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.58.242.174	attack	1433/tcp [2019-10-31]1pkt	2019-10-31 18:02:39
116.58.242.150	attackbots	Port Scan	2019-10-29 21:18:48
116.58.242.13	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)	2019-07-11 16:43:25

Type

Details

Datetime

116.58.242.174

attack

1433/tcp
[2019-10-31]1pkt

2019-10-31 18:02:39

116.58.242.150

attackbots

Port Scan

2019-10-29 21:18:48

116.58.242.13

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)

2019-07-11 16:43:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.58.242.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 155
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.58.242.40.			IN	A

;; AUTHORITY SECTION:
.			54	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 19:32:18 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 40.242.58.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.242.58.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.25.197.138	attackspambots	Nov 1 10:02:54 mail sshd[3605]: Invalid user yao from 59.25.197.138 ...	2019-11-01 18:26:56
45.136.110.24	attackbotsspam	Nov 1 10:54:38 h2177944 kernel: \[5477792.042262\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.24 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=57910 PROTO=TCP SPT=44025 DPT=33240 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 11:05:12 h2177944 kernel: \[5478426.454374\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.24 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=513 PROTO=TCP SPT=44025 DPT=33247 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 11:07:58 h2177944 kernel: \[5478591.909816\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.24 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=14429 PROTO=TCP SPT=44025 DPT=33130 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 11:19:20 h2177944 kernel: \[5479273.982332\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.24 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=57005 PROTO=TCP SPT=44025 DPT=33223 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 11:20:08 h2177944 kernel: \[5479322.510005\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.24 DST=85.214.117	2019-11-01 18:22:59
196.52.43.129	attack	Automatic report - Banned IP Access	2019-11-01 18:14:21
203.129.226.99	attack	Nov 1 06:53:16 venus sshd\[26360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99 user=root Nov 1 06:53:18 venus sshd\[26360\]: Failed password for root from 203.129.226.99 port 23622 ssh2 Nov 1 06:58:02 venus sshd\[26386\]: Invalid user 123 from 203.129.226.99 port 58809 Nov 1 06:58:02 venus sshd\[26386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.226.99 ...	2019-11-01 18:10:10
162.252.58.148	attackbotsspam	Unauthorised access (Nov 1) SRC=162.252.58.148 LEN=40 TTL=238 ID=57914 TCP DPT=445 WINDOW=1024 SYN	2019-11-01 18:24:48
180.76.176.174	attackbots	Invalid user admin from 180.76.176.174 port 45272	2019-11-01 18:20:02
136.228.160.206	attackspam	Nov 1 10:19:36 server sshd\[10120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.228.160.206 user=ftp Nov 1 10:19:38 server sshd\[10120\]: Failed password for ftp from 136.228.160.206 port 52424 ssh2 Nov 1 10:29:52 server sshd\[12263\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.228.160.206 user=root Nov 1 10:29:54 server sshd\[12263\]: Failed password for root from 136.228.160.206 port 57202 ssh2 Nov 1 10:34:30 server sshd\[13291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.228.160.206 user=root ...	2019-11-01 18:34:00
106.13.120.176	attack	Nov 1 06:28:12 mail sshd[28816]: Invalid user pico from 106.13.120.176 Nov 1 06:28:12 mail sshd[28816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.120.176 Nov 1 06:28:12 mail sshd[28816]: Invalid user pico from 106.13.120.176 Nov 1 06:28:14 mail sshd[28816]: Failed password for invalid user pico from 106.13.120.176 port 35152 ssh2 Nov 1 06:51:49 mail sshd[312]: Invalid user distccd from 106.13.120.176 ...	2019-11-01 17:59:59
124.93.2.233	attackspambots	Nov 1 06:07:30 lnxweb61 sshd[988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.93.2.233	2019-11-01 18:29:57
95.188.70.119	attack	Nov 1 04:44:48 vps691689 sshd[15523]: Failed password for root from 95.188.70.119 port 42100 ssh2 Nov 1 04:48:57 vps691689 sshd[15574]: Failed password for root from 95.188.70.119 port 51766 ssh2 ...	2019-11-01 18:23:32
185.36.216.203	attackspam	slow and persistent scanner	2019-11-01 18:29:27
119.93.235.208	attackspam	Port scan: Attack repeated for 24 hours	2019-11-01 18:01:25
92.222.88.30	attack	Nov 1 12:01:37 gw1 sshd[15188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.88.30 Nov 1 12:01:39 gw1 sshd[15188]: Failed password for invalid user test123 from 92.222.88.30 port 50430 ssh2 ...	2019-11-01 18:26:27
180.66.207.67	attackbots	Nov 1 06:30:50 server sshd\[26582\]: Invalid user wget from 180.66.207.67 Nov 1 06:30:50 server sshd\[26582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.66.207.67 Nov 1 06:30:53 server sshd\[26582\]: Failed password for invalid user wget from 180.66.207.67 port 52370 ssh2 Nov 1 06:49:33 server sshd\[30104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.66.207.67 user=root Nov 1 06:49:34 server sshd\[30104\]: Failed password for root from 180.66.207.67 port 53302 ssh2 ...	2019-11-01 18:02:05
203.95.212.41	attackspam	Oct 31 18:03:02 php1 sshd\[674\]: Invalid user adell from 203.95.212.41 Oct 31 18:03:02 php1 sshd\[674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41 Oct 31 18:03:04 php1 sshd\[674\]: Failed password for invalid user adell from 203.95.212.41 port 52791 ssh2 Oct 31 18:07:46 php1 sshd\[1054\]: Invalid user ftpuser from 203.95.212.41 Oct 31 18:07:46 php1 sshd\[1054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41	2019-11-01 18:14:01

Recently Reported IPs

116.58.242.32	116.58.242.51	116.58.242.45	116.58.242.52
116.58.242.36	114.106.227.98	114.106.4.239	114.106.53.141
114.106.6.121	114.106.7.131	116.58.246.76	116.58.246.87
116.58.247.10	116.58.247.111	116.58.246.79	116.58.247.102
116.58.247.104	116.58.247.112	116.58.247.100	116.58.247.108