116.85.59.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.85.59.252	attackspam	Aug 31 10:14:18 vlre-nyc-1 sshd\[6395\]: Invalid user noel from 116.85.59.252 Aug 31 10:14:18 vlre-nyc-1 sshd\[6395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.252 Aug 31 10:14:20 vlre-nyc-1 sshd\[6395\]: Failed password for invalid user noel from 116.85.59.252 port 52606 ssh2 Aug 31 10:18:43 vlre-nyc-1 sshd\[6440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.252 user=root Aug 31 10:18:45 vlre-nyc-1 sshd\[6440\]: Failed password for root from 116.85.59.252 port 44648 ssh2 Aug 31 10:22:59 vlre-nyc-1 sshd\[6503\]: Invalid user testuser2 from 116.85.59.252 Aug 31 10:22:59 vlre-nyc-1 sshd\[6503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.252 Aug 31 10:23:01 vlre-nyc-1 sshd\[6503\]: Failed password for invalid user testuser2 from 116.85.59.252 port 36682 ssh2 Aug 31 10:27:00 vlre-nyc-1 sshd\[6589\]: pam_unix\(sshd: ...	2020-09-03 02:48:31
116.85.59.252	attack	Invalid user deploy from 116.85.59.252 port 35890	2020-09-02 18:20:49
116.85.59.252	attack	Aug 22 11:24:21 webhost01 sshd[4427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.252 Aug 22 11:24:23 webhost01 sshd[4427]: Failed password for invalid user sac from 116.85.59.252 port 56518 ssh2 ...	2020-08-22 14:53:15
116.85.59.252	attack	"Unauthorized connection attempt on SSHD detected"	2020-08-10 08:11:05
116.85.59.197	attack	$f2bV_matches	2020-07-26 14:14:44
116.85.59.197	attackbots	Jul 6 21:35:02 server sshd[19066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.197 user=root Jul 6 21:35:04 server sshd[19066]: Failed password for invalid user root from 116.85.59.197 port 51506 ssh2 Jul 6 21:54:04 server sshd[20183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.197 Jul 6 21:54:06 server sshd[20183]: Failed password for invalid user michele from 116.85.59.197 port 37198 ssh2	2020-07-22 09:04:51
116.85.59.197	attackbots	Invalid user lichen from 116.85.59.197 port 39980	2020-07-18 20:16:11
116.85.59.197	attackbots	Jul 14 10:45:12 ns392434 sshd[30558]: Invalid user postgres from 116.85.59.197 port 48352 Jul 14 10:45:12 ns392434 sshd[30558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.197 Jul 14 10:45:12 ns392434 sshd[30558]: Invalid user postgres from 116.85.59.197 port 48352 Jul 14 10:45:14 ns392434 sshd[30558]: Failed password for invalid user postgres from 116.85.59.197 port 48352 ssh2 Jul 14 10:48:20 ns392434 sshd[30608]: Invalid user kafka from 116.85.59.197 port 47860 Jul 14 10:48:20 ns392434 sshd[30608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.85.59.197 Jul 14 10:48:20 ns392434 sshd[30608]: Invalid user kafka from 116.85.59.197 port 47860 Jul 14 10:48:22 ns392434 sshd[30608]: Failed password for invalid user kafka from 116.85.59.197 port 47860 ssh2 Jul 14 10:49:32 ns392434 sshd[30621]: Invalid user hyg from 116.85.59.197 port 32962	2020-07-14 18:37:34
116.85.59.197	attackbotsspam	21 attempts against mh-ssh on cold	2020-07-05 05:21:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.85.59.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1193
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.85.59.242.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022101 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 22 02:44:57 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 242.59.85.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.59.85.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.208.143.172	attack	DATE:2020-04-03 05:47:47, IP:82.208.143.172, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-04-03 18:56:19
72.69.100.67	attackbots	SSH Brute-Forcing (server1)	2020-04-03 19:35:13
139.59.94.24	attackspam	Apr 3 10:50:26 eventyay sshd[5230]: Failed password for root from 139.59.94.24 port 36000 ssh2 Apr 3 10:54:12 eventyay sshd[5352]: Failed password for root from 139.59.94.24 port 33670 ssh2 Apr 3 10:58:01 eventyay sshd[5489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.24 ...	2020-04-03 19:21:03
192.241.199.239	attackspambots	scanner	2020-04-03 19:01:29
137.220.175.34	attackspambots	SSH login attempts.	2020-04-03 19:24:22
51.77.212.235	attackbotsspam	Apr 3 11:39:58 ns381471 sshd[29851]: Failed password for root from 51.77.212.235 port 53860 ssh2	2020-04-03 19:20:30
221.229.219.188	attackspambots	Apr 3 07:22:42 silence02 sshd[26922]: Failed password for root from 221.229.219.188 port 42740 ssh2 Apr 3 07:26:48 silence02 sshd[27528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.219.188 Apr 3 07:26:50 silence02 sshd[27528]: Failed password for invalid user rrpatil from 221.229.219.188 port 38071 ssh2	2020-04-03 19:18:07
173.244.36.79	attack	(cpanel) Failed cPanel login from 173.244.36.79 (US/United States/-): 5 in the last 3600 secs	2020-04-03 19:26:24
103.116.58.130	attack	2020-04-03T08:54:01.925898shield sshd\[29744\]: Invalid user service from 103.116.58.130 port 39292 2020-04-03T08:54:01.930366shield sshd\[29744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.116.58.130 2020-04-03T08:54:03.923465shield sshd\[29744\]: Failed password for invalid user service from 103.116.58.130 port 39292 ssh2 2020-04-03T08:58:45.576648shield sshd\[31076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.116.58.130 user=root 2020-04-03T08:58:47.559472shield sshd\[31076\]: Failed password for root from 103.116.58.130 port 51008 ssh2	2020-04-03 19:00:17
138.197.132.143	attackspam	Apr 1 09:34:40 nandi sshd[12941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.132.143 user=r.r Apr 1 09:34:42 nandi sshd[12941]: Failed password for r.r from 138.197.132.143 port 59522 ssh2 Apr 1 09:34:42 nandi sshd[12941]: Received disconnect from 138.197.132.143: 11: Bye Bye [preauth] Apr 1 09:45:24 nandi sshd[19097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.132.143 user=r.r Apr 1 09:45:25 nandi sshd[19097]: Failed password for r.r from 138.197.132.143 port 39832 ssh2 Apr 1 09:45:26 nandi sshd[19097]: Received disconnect from 138.197.132.143: 11: Bye Bye [preauth] Apr 1 09:49:38 nandi sshd[21044]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.132.143 user=r.r Apr 1 09:49:40 nandi sshd[21044]: Failed password for r.r from 138.197.132.143 port 35854 ssh2 Apr 1 09:49:40 nandi sshd[21044]: Received disconn........ -------------------------------	2020-04-03 19:28:40
158.69.243.108	attack	20 attempts against mh-misbehave-ban on twig	2020-04-03 19:31:52
181.118.94.57	attack	Invalid user zero from 181.118.94.57 port 59540	2020-04-03 19:34:17
70.36.79.181	attack	Apr 3 12:47:27 host01 sshd[30922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.36.79.181 Apr 3 12:47:28 host01 sshd[30922]: Failed password for invalid user zwj from 70.36.79.181 port 36668 ssh2 Apr 3 12:51:26 host01 sshd[31647]: Failed password for root from 70.36.79.181 port 47294 ssh2 ...	2020-04-03 19:05:04
112.3.25.139	attack	Lines containing failures of 112.3.25.139 Apr 1 09:33:38 shared04 sshd[5145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.25.139 user=r.r Apr 1 09:33:40 shared04 sshd[5145]: Failed password for r.r from 112.3.25.139 port 43770 ssh2 Apr 1 09:33:46 shared04 sshd[5145]: Received disconnect from 112.3.25.139 port 43770:11: Bye Bye [preauth] Apr 1 09:33:46 shared04 sshd[5145]: Disconnected from authenticating user r.r 112.3.25.139 port 43770 [preauth] Apr 1 09:40:41 shared04 sshd[8057]: Connection closed by 112.3.25.139 port 45777 [preauth] Apr 1 09:46:18 shared04 sshd[10146]: Connection closed by 112.3.25.139 port 46398 [preauth] Apr 1 09:51:51 shared04 sshd[12010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.25.139 user=r.r Apr 1 09:51:53 shared04 sshd[12010]: Failed password for r.r from 112.3.25.139 port 47017 ssh2 Apr 1 09:51:53 shared04 sshd[12010]: Received di........ ------------------------------	2020-04-03 19:18:55
62.210.77.54	attack	Unauthorized connection attempt detected from IP address 62.210.77.54 to port 8066	2020-04-03 19:08:58

Recently Reported IPs

116.80.93.80	116.86.183.193	116.88.62.12	116.9.184.229
116.9.195.227	116.9.241.90	116.90.162.197	116.90.239.82
61.167.191.201	116.90.49.100	116.90.50.45	116.90.53.20
116.90.54.5	116.90.56.143	116.91.149.43	116.98.170.189
117.1.105.179	117.1.96.176	117.1.97.221	117.1.97.8