167.71.242.139

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-02-24 22:19:29

Comments on same subnet:

IP	Type	Details	Datetime
167.71.242.140	attack	(sshd) Failed SSH login from 167.71.242.140 (US/United States/-): 10 in the last 3600 secs	2020-07-27 01:34:44
167.71.242.140	attackspam	Jul 12 11:16:48 h1745522 sshd[21888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 user=daemon Jul 12 11:16:50 h1745522 sshd[21888]: Failed password for daemon from 167.71.242.140 port 59708 ssh2 Jul 12 11:20:04 h1745522 sshd[22063]: Invalid user eve from 167.71.242.140 port 58162 Jul 12 11:20:04 h1745522 sshd[22063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 Jul 12 11:20:04 h1745522 sshd[22063]: Invalid user eve from 167.71.242.140 port 58162 Jul 12 11:20:06 h1745522 sshd[22063]: Failed password for invalid user eve from 167.71.242.140 port 58162 ssh2 Jul 12 11:23:25 h1745522 sshd[22216]: Invalid user liuchuang from 167.71.242.140 port 56616 Jul 12 11:23:25 h1745522 sshd[22216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 Jul 12 11:23:25 h1745522 sshd[22216]: Invalid user liuchuang from 167.71.242.140 port 56 ...	2020-07-12 20:02:03
167.71.242.140	attack	no	2020-07-08 04:19:54
167.71.242.140	attackbots	k+ssh-bruteforce	2020-07-06 18:49:54
167.71.242.140	attackspambots	Port probing on unauthorized port 18661	2020-06-22 12:46:36
167.71.242.140	attack	$f2bV_matches	2020-06-04 12:13:04
167.71.242.140	attackspam	Invalid user tx from 167.71.242.140 port 57290	2020-05-24 06:51:02
167.71.242.140	attackbotsspam	May 23 00:18:37 MainVPS sshd[23141]: Invalid user jiaxing from 167.71.242.140 port 58118 May 23 00:18:37 MainVPS sshd[23141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 May 23 00:18:37 MainVPS sshd[23141]: Invalid user jiaxing from 167.71.242.140 port 58118 May 23 00:18:39 MainVPS sshd[23141]: Failed password for invalid user jiaxing from 167.71.242.140 port 58118 ssh2 May 23 00:22:04 MainVPS sshd[25687]: Invalid user wpi from 167.71.242.140 port 35200 ...	2020-05-23 06:44:33
167.71.242.140	attack	SSH Invalid Login	2020-05-10 06:14:17
167.71.242.140	attack	May 1 19:19:29 prod4 sshd\[8625\]: Invalid user graylog from 167.71.242.140 May 1 19:19:31 prod4 sshd\[8625\]: Failed password for invalid user graylog from 167.71.242.140 port 48486 ssh2 May 1 19:23:10 prod4 sshd\[10070\]: Failed password for nagios from 167.71.242.140 port 58878 ssh2 ...	2020-05-02 01:52:50
167.71.242.140	attackbotsspam	Apr 15 10:04:43 Ubuntu-1404-trusty-64-minimal sshd\[29866\]: Invalid user git123456 from 167.71.242.140 Apr 15 10:04:43 Ubuntu-1404-trusty-64-minimal sshd\[29866\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 Apr 15 10:04:45 Ubuntu-1404-trusty-64-minimal sshd\[29866\]: Failed password for invalid user git123456 from 167.71.242.140 port 46868 ssh2 Apr 15 10:15:40 Ubuntu-1404-trusty-64-minimal sshd\[5888\]: Invalid user valda from 167.71.242.140 Apr 15 10:15:40 Ubuntu-1404-trusty-64-minimal sshd\[5888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140	2020-04-15 18:30:40
167.71.242.140	attackbotsspam	Apr 14 00:04:07 pixelmemory sshd[29634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 Apr 14 00:04:09 pixelmemory sshd[29634]: Failed password for invalid user hesketh from 167.71.242.140 port 51102 ssh2 Apr 14 00:07:45 pixelmemory sshd[31141]: Failed password for root from 167.71.242.140 port 41398 ssh2 ...	2020-04-14 16:34:12
167.71.242.140	attackbots	Invalid user user from 167.71.242.140 port 51028	2020-04-12 04:30:02
167.71.242.140	attackbots	Triggered by Fail2Ban at Ares web server	2020-04-06 12:12:08
167.71.242.140	attackspambots	Apr 1 13:02:11 ArkNodeAT sshd\[18615\]: Invalid user td from 167.71.242.140 Apr 1 13:02:11 ArkNodeAT sshd\[18615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 Apr 1 13:02:13 ArkNodeAT sshd\[18615\]: Failed password for invalid user td from 167.71.242.140 port 41360 ssh2	2020-04-01 19:21:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.71.242.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2292
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;167.71.242.139.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022400 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 22:19:22 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 139.242.71.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.242.71.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.85.75	attackbotsspam	Mar 4 01:51:55 web1 sshd\[7374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.85.75 user=root Mar 4 01:51:57 web1 sshd\[7374\]: Failed password for root from 68.183.85.75 port 52692 ssh2 Mar 4 01:59:50 web1 sshd\[8101\]: Invalid user steam from 68.183.85.75 Mar 4 01:59:50 web1 sshd\[8101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.85.75 Mar 4 01:59:52 web1 sshd\[8101\]: Failed password for invalid user steam from 68.183.85.75 port 33116 ssh2	2020-03-04 20:14:28
51.75.123.107	attackspam	2020-03-04T12:04:12.640270shield sshd\[6315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.ip-51-75-123.eu user=root 2020-03-04T12:04:14.384741shield sshd\[6315\]: Failed password for root from 51.75.123.107 port 50140 ssh2 2020-03-04T12:14:07.142939shield sshd\[8312\]: Invalid user arma3 from 51.75.123.107 port 53114 2020-03-04T12:14:07.151708shield sshd\[8312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.ip-51-75-123.eu 2020-03-04T12:14:09.576433shield sshd\[8312\]: Failed password for invalid user arma3 from 51.75.123.107 port 53114 ssh2	2020-03-04 20:21:14
94.154.30.130	attack	spam	2020-03-04 20:22:31
128.199.235.18	attackspam	Mar 4 10:07:42 localhost sshd\[11874\]: Invalid user steam from 128.199.235.18 port 38106 Mar 4 10:07:42 localhost sshd\[11874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.235.18 Mar 4 10:07:44 localhost sshd\[11874\]: Failed password for invalid user steam from 128.199.235.18 port 38106 ssh2	2020-03-04 20:14:50
41.78.75.112	attackspam	Email rejected due to spam filtering	2020-03-04 20:31:02
144.217.214.13	attack	Mar 3 21:16:15 web1 sshd\[13443\]: Invalid user gameserver from 144.217.214.13 Mar 3 21:16:15 web1 sshd\[13443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.13 Mar 3 21:16:17 web1 sshd\[13443\]: Failed password for invalid user gameserver from 144.217.214.13 port 37376 ssh2 Mar 3 21:21:52 web1 sshd\[13915\]: Invalid user testuser from 144.217.214.13 Mar 3 21:21:52 web1 sshd\[13915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.13	2020-03-04 20:52:51
218.92.0.178	attack	Mar 4 13:11:06 SilenceServices sshd[16373]: Failed password for root from 218.92.0.178 port 54881 ssh2 Mar 4 13:11:20 SilenceServices sshd[16373]: error: maximum authentication attempts exceeded for root from 218.92.0.178 port 54881 ssh2 [preauth] Mar 4 13:11:27 SilenceServices sshd[16477]: Failed password for root from 218.92.0.178 port 15849 ssh2	2020-03-04 20:20:39
89.157.89.203	attack	Brute force attempt	2020-03-04 20:26:19
46.101.94.240	attack	Mar 4 07:27:25 vps647732 sshd[6469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.94.240 Mar 4 07:27:27 vps647732 sshd[6469]: Failed password for invalid user openproject from 46.101.94.240 port 51810 ssh2 ...	2020-03-04 20:31:59
117.0.191.1	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=53472)(03041211)	2020-03-04 20:50:49
157.230.231.39	attackbotsspam	Mar 4 13:36:04 vpn01 sshd[7450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.231.39 Mar 4 13:36:06 vpn01 sshd[7450]: Failed password for invalid user web1 from 157.230.231.39 port 50280 ssh2 ...	2020-03-04 20:42:51
92.63.194.59	attackbotsspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-03-04 20:36:49
42.112.232.116	attackspambots	Email rejected due to spam filtering	2020-03-04 20:34:47
62.110.66.66	attackbotsspam	Mar 4 10:21:01 areeb-Workstation sshd[24497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.110.66.66 Mar 4 10:21:03 areeb-Workstation sshd[24497]: Failed password for invalid user magic from 62.110.66.66 port 46580 ssh2 ...	2020-03-04 20:53:36
201.157.194.106	attack	Mar 4 10:07:43 silence02 sshd[23488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.157.194.106 Mar 4 10:07:46 silence02 sshd[23488]: Failed password for invalid user postgres from 201.157.194.106 port 38854 ssh2 Mar 4 10:16:09 silence02 sshd[23943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.157.194.106	2020-03-04 20:34:09

Recently Reported IPs

142.11.195.132	119.163.4.105	117.70.233.26	61.142.21.5
200.111.232.74	162.222.231.139	185.232.65.179	144.0.82.56
142.44.223.97	111.119.185.0	123.221.66.72	159.89.81.20
69.226.112.112	114.239.106.90	111.61.66.70	49.81.27.91
1.58.71.34	66.70.202.168	46.101.55.201	171.243.210.119