116.58.242.63 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.58.242.174	attack	1433/tcp [2019-10-31]1pkt	2019-10-31 18:02:39
116.58.242.150	attackbots	Port Scan	2019-10-29 21:18:48
116.58.242.13	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)	2019-07-11 16:43:25

Type

Details

Datetime

116.58.242.174

attack

1433/tcp
[2019-10-31]1pkt

2019-10-31 18:02:39

116.58.242.150

attackbots

Port Scan

2019-10-29 21:18:48

116.58.242.13

attack

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-11 02:26:28,328 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.58.242.13)

2019-07-11 16:43:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.58.242.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4718
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.58.242.63.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 05 05:09:31 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 63.242.58.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.242.58.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.175.81.204	attackbots	(Mar 23) LEN=40 TTL=52 ID=22862 TCP DPT=8080 WINDOW=64580 SYN (Mar 23) LEN=40 TTL=52 ID=34604 TCP DPT=8080 WINDOW=18505 SYN (Mar 23) LEN=40 TTL=52 ID=3774 TCP DPT=8080 WINDOW=4622 SYN (Mar 23) LEN=40 TTL=52 ID=28667 TCP DPT=8080 WINDOW=41648 SYN (Mar 23) LEN=40 TTL=52 ID=63222 TCP DPT=8080 WINDOW=4622 SYN (Mar 22) LEN=40 TTL=52 ID=54851 TCP DPT=8080 WINDOW=8459 SYN (Mar 22) LEN=40 TTL=52 ID=64235 TCP DPT=8080 WINDOW=41648 SYN (Mar 22) LEN=40 TTL=52 ID=15641 TCP DPT=8080 WINDOW=29749 SYN (Mar 22) LEN=40 TTL=52 ID=22885 TCP DPT=8080 WINDOW=4622 SYN (Mar 22) LEN=40 TTL=52 ID=53377 TCP DPT=8080 WINDOW=25580 SYN	2020-03-24 03:03:53
131.108.158.210	attack	Unauthorized connection attempt from IP address 131.108.158.210 on Port 445(SMB)	2020-03-24 03:19:26
54.38.53.251	attackbotsspam	Mar 23 18:07:56 mailserver sshd\[29624\]: Invalid user redmine from 54.38.53.251 ...	2020-03-24 02:44:53
200.87.133.138	attackbotsspam	Unauthorized connection attempt from IP address 200.87.133.138 on Port 445(SMB)	2020-03-24 03:03:20
189.47.214.28	attack	Mar 23 19:18:18 lock-38 sshd[122284]: Invalid user ue from 189.47.214.28 port 38066 Mar 23 19:18:18 lock-38 sshd[122284]: Failed password for invalid user ue from 189.47.214.28 port 38066 ssh2 Mar 23 19:22:49 lock-38 sshd[122346]: Invalid user madison from 189.47.214.28 port 50260 Mar 23 19:22:49 lock-38 sshd[122346]: Invalid user madison from 189.47.214.28 port 50260 Mar 23 19:22:49 lock-38 sshd[122346]: Failed password for invalid user madison from 189.47.214.28 port 50260 ssh2 ...	2020-03-24 02:40:53
185.195.237.118	attackbotsspam	Mar 23 16:46:19 vpn01 sshd[21230]: Failed password for root from 185.195.237.118 port 45380 ssh2 Mar 23 16:46:31 vpn01 sshd[21230]: error: maximum authentication attempts exceeded for root from 185.195.237.118 port 45380 ssh2 [preauth] ...	2020-03-24 02:37:39
45.143.220.28	attackbots	45.143.220.28 was recorded 7 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 25, 168	2020-03-24 03:02:27
49.234.7.244	attack	2020-03-23T15:37:56.581800abusebot-7.cloudsearch.cf sshd[19423]: Invalid user karey from 49.234.7.244 port 48386 2020-03-23T15:37:56.587142abusebot-7.cloudsearch.cf sshd[19423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.7.244 2020-03-23T15:37:56.581800abusebot-7.cloudsearch.cf sshd[19423]: Invalid user karey from 49.234.7.244 port 48386 2020-03-23T15:37:58.257072abusebot-7.cloudsearch.cf sshd[19423]: Failed password for invalid user karey from 49.234.7.244 port 48386 ssh2 2020-03-23T15:45:59.697399abusebot-7.cloudsearch.cf sshd[19928]: Invalid user wilk from 49.234.7.244 port 36012 2020-03-23T15:45:59.701444abusebot-7.cloudsearch.cf sshd[19928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.7.244 2020-03-23T15:45:59.697399abusebot-7.cloudsearch.cf sshd[19928]: Invalid user wilk from 49.234.7.244 port 36012 2020-03-23T15:46:01.346138abusebot-7.cloudsearch.cf sshd[19928]: Failed password ...	2020-03-24 03:05:25
45.95.168.159	attackbots	2020-03-23 15:55:36,890 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:36 2020-03-23 15:55:36,891 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:36 2020-03-23 15:55:37,021 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:37 2020-03-23 15:55:37,023 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:37 2020-03-23 15:55:37,028 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:37 2020-03-23 15:55:37,030 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:37 2020-03-23 15:55:37,103 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:37 2020-03-23 15:55:37,105 fail2ban.filter [1840]: INFO [plesk-postfix] Found 45.95.168.159 - 2020-03-23 15:55:37 2020-03-........ -------------------------------	2020-03-24 03:06:11
104.206.128.6	attackbotsspam	Port 3389 (MS RDP) access denied	2020-03-24 02:58:37
178.66.77.21	attackbotsspam	2020-03-23 16:40:37 plain_virtual_exim authenticator failed for pppoe.178-66-77-21.dynamic.avangarddsl.ru ([127.0.0.1]) [178.66.77.21]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.66.77.21	2020-03-24 02:42:13
41.33.197.133	attack	Unauthorized connection attempt from IP address 41.33.197.133 on Port 445(SMB)	2020-03-24 03:17:43
137.220.138.137	attack	Mar 23 18:11:14 vmd48417 sshd[25181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.220.138.137	2020-03-24 02:58:20
168.128.70.151	attackspambots	Mar 23 17:55:27 mout sshd[2343]: Invalid user adolf from 168.128.70.151 port 39994	2020-03-24 03:00:55
119.192.55.100	attackbots	SSH Brute-Force reported by Fail2Ban	2020-03-24 02:48:28

Recently Reported IPs

116.58.242.60	116.58.242.65	116.58.242.66	116.58.242.77
116.58.242.74	116.58.242.78	116.58.242.81	116.58.242.83
116.58.242.88	116.58.242.9	116.58.242.90	117.196.238.112
116.58.242.97	116.58.243.117	116.58.243.181	116.58.243.161
116.58.243.186	116.58.243.199	116.58.243.43	116.58.243.32