116.58.242.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.58.242.174	attack	1433/tcp [2019-10-31]1pkt	2019-10-31 18:02:39
116.58.242.150	attackbots	Port Scan	2019-10-29 21:18:48
116.58.242.13	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)	2019-07-11 16:43:25

Type

Details

Datetime

116.58.242.174

attack

1433/tcp
[2019-10-31]1pkt

2019-10-31 18:02:39

116.58.242.150

attackbots

Port Scan

2019-10-29 21:18:48

116.58.242.13

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)

2019-07-11 16:43:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.58.242.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 155
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.58.242.40.			IN	A

;; AUTHORITY SECTION:
.			54	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 19:32:18 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 40.242.58.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.242.58.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.227.45.249	attack	TCP port : 3243	2020-09-11 22:39:50
89.248.167.131	attackspam	TCP (SYN) 89.248.167.131:17422 -> port 444, len 44	2020-09-11 22:48:38
178.128.221.85	attackbotsspam	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-11 22:42:20
42.159.155.8	attackbots	Sep 11 10:12:56 ws24vmsma01 sshd[214254]: Failed password for root from 42.159.155.8 port 1600 ssh2 Sep 11 10:18:45 ws24vmsma01 sshd[90571]: Failed password for root from 42.159.155.8 port 1600 ssh2 ...	2020-09-11 22:23:56
212.70.149.20	attack	Sep 11 16:26:28 galaxy event: galaxy/lswi: smtp: violet@uni-potsdam.de [212.70.149.20] authentication failure using internet password Sep 11 16:26:53 galaxy event: galaxy/lswi: smtp: video4@uni-potsdam.de [212.70.149.20] authentication failure using internet password Sep 11 16:27:18 galaxy event: galaxy/lswi: smtp: vermont@uni-potsdam.de [212.70.149.20] authentication failure using internet password Sep 11 16:27:42 galaxy event: galaxy/lswi: smtp: vendorcentral@uni-potsdam.de [212.70.149.20] authentication failure using internet password Sep 11 16:28:07 galaxy event: galaxy/lswi: smtp: vending@uni-potsdam.de [212.70.149.20] authentication failure using internet password ...	2020-09-11 22:29:34
222.186.175.212	attackspam	Sep 11 19:52:52 gw1 sshd[5733]: Failed password for root from 222.186.175.212 port 48528 ssh2 Sep 11 19:53:02 gw1 sshd[5733]: Failed password for root from 222.186.175.212 port 48528 ssh2 ...	2020-09-11 22:53:23
213.32.91.37	attack	Sep 11 17:56:13 web1 sshd[8725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.91.37 user=root Sep 11 17:56:15 web1 sshd[8725]: Failed password for root from 213.32.91.37 port 55678 ssh2 Sep 11 18:02:59 web1 sshd[11779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.91.37 user=root Sep 11 18:03:01 web1 sshd[11779]: Failed password for root from 213.32.91.37 port 39968 ssh2 Sep 11 18:06:07 web1 sshd[13077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.91.37 user=root Sep 11 18:06:08 web1 sshd[13077]: Failed password for root from 213.32.91.37 port 41082 ssh2 Sep 11 18:09:18 web1 sshd[14301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.91.37 user=root Sep 11 18:09:20 web1 sshd[14301]: Failed password for root from 213.32.91.37 port 42196 ssh2 Sep 11 18:12:24 web1 sshd[15852]: Invalid user ...	2020-09-11 22:47:29
134.209.148.107	attackspambots	TCP (SYN) 134.209.148.107:44843 -> port 24561, len 44	2020-09-11 23:00:06
117.89.173.41	attack	2020-09-11T05:15:05.579518hostname sshd[28196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.89.173.41 2020-09-11T05:15:05.562275hostname sshd[28196]: Invalid user dennis123 from 117.89.173.41 port 34114 2020-09-11T05:15:07.692460hostname sshd[28196]: Failed password for invalid user dennis123 from 117.89.173.41 port 34114 ssh2 ...	2020-09-11 22:55:33
196.61.32.43	attackspam	TCP (SYN) 196.61.32.43:40987 -> port 15418, len 44	2020-09-11 22:38:22
91.126.207.85	attackbotsspam	Sep 10 18:56:29 mail sshd[11580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.126.207.85	2020-09-11 22:40:38
118.222.106.103	attack	SSH Invalid Login	2020-09-11 23:01:31
85.208.208.183	attack	Sep 10 18:56:38 mail sshd[11630]: Failed password for root from 85.208.208.183 port 49896 ssh2	2020-09-11 22:33:52
82.64.32.76	attackspam	(sshd) Failed SSH login from 82.64.32.76 (FR/France/82-64-32-76.subs.proxad.net): 5 in the last 3600 secs	2020-09-11 23:04:36
46.242.13.140	attack	DATE:2020-09-10 18:55:23, IP:46.242.13.140, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-11 22:27:21

Recently Reported IPs

116.58.242.32	116.58.242.51	116.58.242.45	116.58.242.52
116.58.242.36	114.106.227.98	114.106.4.239	114.106.53.141
114.106.6.121	114.106.7.131	116.58.246.76	116.58.246.87
116.58.247.10	116.58.247.111	116.58.246.79	116.58.247.102
116.58.247.104	116.58.247.112	116.58.247.100	116.58.247.108