167.172.142.238

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackproxy	Vulnerability Scanner	2024-06-18 12:58:59

Comments on same subnet:

IP	Type	Details	Datetime
167.172.142.7	attackspambots	SIPVicious Scanner Detection	2020-04-12 01:24:13
167.172.142.7	attackspam	Trying ports that it shouldn't be.	2020-04-09 07:06:43
167.172.142.219	attackbotsspam	Unauthorized connection attempt detected from IP address 167.172.142.219 to port 3389 [T]	2020-01-15 23:51:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.172.142.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27842
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.172.142.238.		IN	A

;; AUTHORITY SECTION:
.			282	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024061702 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 18 12:58:57 CST 2024
;; MSG SIZE  rcvd: 108

Host info

Host 238.142.172.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.142.172.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.233.114.76	attackspam	Attempted Administrator Privilege Gain. Signature ET EXPLOIT Zyxel NAS RCE Attempt Inbound (CVE-2020-9054) M1. From: 171.233.114.76:42791	2020-06-28 21:07:52
5.62.41.124	attackspambots	abuseConfidenceScore blocked for 12h	2020-06-28 20:51:28
89.216.47.154	attackbotsspam	Jun 28 14:14:43 ourumov-web sshd\[27276\]: Invalid user sysadmin from 89.216.47.154 port 36256 Jun 28 14:14:43 ourumov-web sshd\[27276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.216.47.154 Jun 28 14:14:44 ourumov-web sshd\[27276\]: Failed password for invalid user sysadmin from 89.216.47.154 port 36256 ssh2 ...	2020-06-28 21:06:43
85.233.150.13	attackbotsspam	2020-06-28T12:33:34.596793abusebot-2.cloudsearch.cf sshd[4322]: Invalid user bg from 85.233.150.13 port 51340 2020-06-28T12:33:34.604783abusebot-2.cloudsearch.cf sshd[4322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ws13.zone150.zaural.ru 2020-06-28T12:33:34.596793abusebot-2.cloudsearch.cf sshd[4322]: Invalid user bg from 85.233.150.13 port 51340 2020-06-28T12:33:36.532805abusebot-2.cloudsearch.cf sshd[4322]: Failed password for invalid user bg from 85.233.150.13 port 51340 ssh2 2020-06-28T12:37:56.951773abusebot-2.cloudsearch.cf sshd[4442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ws13.zone150.zaural.ru user=root 2020-06-28T12:37:58.848194abusebot-2.cloudsearch.cf sshd[4442]: Failed password for root from 85.233.150.13 port 48496 ssh2 2020-06-28T12:42:26.135009abusebot-2.cloudsearch.cf sshd[4459]: Invalid user user7 from 85.233.150.13 port 45624 ...	2020-06-28 21:07:07
85.209.0.101	attackspam	TCP (SYN) 85.209.0.101:36910 -> port 22, len 60	2020-06-28 21:02:01
218.71.141.62	attack	Jun 28 14:40:19 localhost sshd\[20210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.71.141.62 user=root Jun 28 14:40:21 localhost sshd\[20210\]: Failed password for root from 218.71.141.62 port 43652 ssh2 Jun 28 14:42:38 localhost sshd\[20261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.71.141.62 user=root Jun 28 14:42:39 localhost sshd\[20261\]: Failed password for root from 218.71.141.62 port 41288 ssh2 Jun 28 14:45:08 localhost sshd\[20431\]: Invalid user zhang from 218.71.141.62 ...	2020-06-28 21:04:56
177.206.163.28	attackbots	Jun 28 14:32:54 vps sshd[964778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.206.163.28.dynamic.adsl.gvt.net.br user=root Jun 28 14:32:56 vps sshd[964778]: Failed password for root from 177.206.163.28 port 45518 ssh2 Jun 28 14:35:27 vps sshd[979403]: Invalid user anand from 177.206.163.28 port 39476 Jun 28 14:35:27 vps sshd[979403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.206.163.28.dynamic.adsl.gvt.net.br Jun 28 14:35:29 vps sshd[979403]: Failed password for invalid user anand from 177.206.163.28 port 39476 ssh2 ...	2020-06-28 20:54:20
95.216.38.186	attackspambots	20 attempts against mh-misbehave-ban on wood	2020-06-28 20:44:18
112.132.72.159	attackspambots	Jun 28 14:14:51 debian-2gb-nbg1-2 kernel: \[15605138.931816\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=112.132.72.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=42 ID=33395 PROTO=TCP SPT=4455 DPT=23 WINDOW=56437 RES=0x00 SYN URGP=0	2020-06-28 21:01:48
191.235.239.43	attackbotsspam	Jun 28 14:07:30 nextcloud sshd\[4735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.239.43 user=root Jun 28 14:07:32 nextcloud sshd\[4735\]: Failed password for root from 191.235.239.43 port 55418 ssh2 Jun 28 14:36:47 nextcloud sshd\[3653\]: Invalid user user01 from 191.235.239.43 Jun 28 14:36:47 nextcloud sshd\[3653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.239.43	2020-06-28 20:44:52
202.137.155.203	attack	Dovecot Invalid User Login Attempt.	2020-06-28 20:35:21
163.5.69.109	attack	2020-06-28 07:23:45.035875-0500 localhost sshd[92861]: Failed password for invalid user test from 163.5.69.109 port 56075 ssh2	2020-06-28 21:09:16
94.102.56.215	attack	firewall-block, port(s): 41141/udp	2020-06-28 20:49:40
165.227.86.199	attackbotsspam	Jun 28 14:54:31 cp sshd[29202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.86.199 Jun 28 14:54:34 cp sshd[29202]: Failed password for invalid user czerda from 165.227.86.199 port 46590 ssh2 Jun 28 15:01:20 cp sshd[1180]: Failed password for root from 165.227.86.199 port 42950 ssh2	2020-06-28 21:12:15
171.244.140.174	attackbotsspam	Jun 28 14:15:13 lnxmail61 sshd[21526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.140.174	2020-06-28 20:34:25

Recently Reported IPs

118.113.53.235	103.117.121.67	103.121.93.152	151.139.186.37
2.122.11.11	221.216.117.53	128.199.80.122	111.190.150.249
111.190.150.141	23.225.183.183	198.235.24.230	110.190.213.182
126.232.160.7	10.6.76.108	23.225.183.191	38.6.224.33
154.22.129.173	46.3.240.3	194.199.75.247	104.135.255.255