167.99.142.247

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.99.142.112	attackspam	Sep 16 00:45:14 localhost postfix/smtpd[6420]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Sep 16 01:18:28 localhost postfix/smtpd[14278]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Sep 16 01:49:04 localhost postfix/smtpd[21061]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Sep 16 01:56:29 localhost postfix/smtpd[23238]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Sep 16 02:04:10 localhost postfix/smtpd[24637]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=167.99.142.112	2019-09-26 15:58:33

Type

Details

Datetime

167.99.142.112

attackspam

Sep 16 00:45:14 localhost postfix/smtpd[6420]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3
Sep 16 01:18:28 localhost postfix/smtpd[14278]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3
Sep 16 01:49:04 localhost postfix/smtpd[21061]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3
Sep 16 01:56:29 localhost postfix/smtpd[23238]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3
Sep 16 02:04:10 localhost postfix/smtpd[24637]: disconnect from unknown[167.99.142.112] ehlo=1 auth=0/1 quhostname=1 commands=2/3


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=167.99.142.112

2019-09-26 15:58:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.99.142.247
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6854
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.99.142.247.			IN	A

;; AUTHORITY SECTION:
.			132	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 05:11:34 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 247.142.99.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 247.142.99.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.118.53.197	attack	Port scan denied	2020-09-05 04:29:50
49.228.155.241	attackspambots	Honeypot attack, port: 445, PTR: 49-228-155-0.24.nat.tls1b-cgn03.myaisfibre.com.	2020-09-05 04:29:05
207.180.196.207	attackbots	[portscan] tcp/22 [SSH] in blocklist.de:'listed [ssh]' *(RWIN=65535)(09040932)	2020-09-05 04:36:05
206.189.27.139	attackbots	Sep 4 06:46:26 baguette sshd\[16188\]: Invalid user oracle from 206.189.27.139 port 43174 Sep 4 06:46:26 baguette sshd\[16188\]: Invalid user oracle from 206.189.27.139 port 43174 Sep 4 06:46:49 baguette sshd\[16230\]: Invalid user admin from 206.189.27.139 port 48540 Sep 4 06:46:49 baguette sshd\[16230\]: Invalid user admin from 206.189.27.139 port 48540 Sep 4 06:47:12 baguette sshd\[16257\]: Invalid user teamspeak from 206.189.27.139 port 53872 Sep 4 06:47:12 baguette sshd\[16257\]: Invalid user teamspeak from 206.189.27.139 port 53872 ...	2020-09-05 04:37:59
109.227.63.3	attackspambots	Sep 4 21:17:58 minden010 sshd[11007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.227.63.3 Sep 4 21:18:01 minden010 sshd[11007]: Failed password for invalid user test7 from 109.227.63.3 port 43483 ssh2 Sep 4 21:21:50 minden010 sshd[12383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.227.63.3 ...	2020-09-05 04:17:53
201.16.246.71	attackbotsspam	Bruteforce detected by fail2ban	2020-09-05 04:31:38
216.24.177.73	attackspambots	Bruteforce detected by fail2ban	2020-09-05 04:12:56
185.220.102.243	attack	Sep 4 21:00:56 piServer sshd[9341]: Failed password for root from 185.220.102.243 port 31742 ssh2 Sep 4 21:00:58 piServer sshd[9341]: Failed password for root from 185.220.102.243 port 31742 ssh2 Sep 4 21:01:01 piServer sshd[9341]: Failed password for root from 185.220.102.243 port 31742 ssh2 Sep 4 21:01:05 piServer sshd[9341]: Failed password for root from 185.220.102.243 port 31742 ssh2 ...	2020-09-05 04:25:44
118.89.102.242	attackbots	Sep 4 19:54:09 l03 sshd[3985]: Invalid user simona from 118.89.102.242 port 32804 ...	2020-09-05 04:34:47
49.233.15.54	attackbots	Sep 4 21:08:40 ns382633 sshd\[3474\]: Invalid user bkup from 49.233.15.54 port 33056 Sep 4 21:08:40 ns382633 sshd\[3474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.15.54 Sep 4 21:08:43 ns382633 sshd\[3474\]: Failed password for invalid user bkup from 49.233.15.54 port 33056 ssh2 Sep 4 21:34:34 ns382633 sshd\[7913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.15.54 user=root Sep 4 21:34:36 ns382633 sshd\[7913\]: Failed password for root from 49.233.15.54 port 58806 ssh2	2020-09-05 04:06:42
122.118.114.118	attackspam	Honeypot attack, port: 445, PTR: 122-118-114-118.dynamic-ip.hinet.net.	2020-09-05 04:23:33
59.145.221.103	attackspam	2020-09-04T15:35:01.327010upcloud.m0sh1x2.com sshd[1651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.145.221.103 user=root 2020-09-04T15:35:03.482671upcloud.m0sh1x2.com sshd[1651]: Failed password for root from 59.145.221.103 port 55424 ssh2	2020-09-05 04:33:25
27.153.182.147	attack	Invalid user students from 27.153.182.147 port 48920	2020-09-05 04:27:18
200.150.71.22	attack	2020-08-26 10:17:57,396 fail2ban.actions [1312]: NOTICE [sshd] Ban 200.150.71.22 2020-08-26 10:29:44,908 fail2ban.actions [1312]: NOTICE [sshd] Ban 200.150.71.22 2020-08-26 10:41:42,752 fail2ban.actions [1312]: NOTICE [sshd] Ban 200.150.71.22 2020-08-26 10:53:31,852 fail2ban.actions [1312]: NOTICE [sshd] Ban 200.150.71.22 2020-08-26 11:06:51,437 fail2ban.actions [1312]: NOTICE [sshd] Ban 200.150.71.22 ...	2020-09-05 04:31:56
189.93.26.195	attack	(sshd) Failed SSH login from 189.93.26.195 (BR/Brazil/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 12:42:13 server5 sshd[22343]: Failed password for root from 189.93.26.195 port 35789 ssh2 Sep 3 12:42:16 server5 sshd[22415]: Failed password for root from 189.93.26.195 port 35790 ssh2 Sep 3 12:42:17 server5 sshd[22461]: Invalid user ubnt from 189.93.26.195 Sep 3 12:42:19 server5 sshd[22461]: Failed password for invalid user ubnt from 189.93.26.195 port 35791 ssh2 Sep 3 12:42:23 server5 sshd[22491]: Failed password for root from 189.93.26.195 port 35792 ssh2	2020-09-05 04:15:49

Recently Reported IPs

95.54.146.165	180.164.96.55	151.238.176.26	94.154.127.189
177.100.147.70	177.91.203.46	164.77.177.26	115.52.38.87
42.227.239.145	177.249.42.37	185.59.246.190	183.134.202.62
37.28.186.59	45.229.54.159	216.107.129.117	159.223.26.13
111.201.133.103	88.250.224.239	190.89.178.39	46.70.165.209