216.238.18.242

Basic Info

City: Chattanooga

Region: Tennessee

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
216.238.183.171	attackbotsspam	Jul 27 07:22:34 vps-51d81928 sshd[200727]: Invalid user sysadmin from 216.238.183.171 port 50752 Jul 27 07:22:34 vps-51d81928 sshd[200727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.238.183.171 Jul 27 07:22:34 vps-51d81928 sshd[200727]: Invalid user sysadmin from 216.238.183.171 port 50752 Jul 27 07:22:36 vps-51d81928 sshd[200727]: Failed password for invalid user sysadmin from 216.238.183.171 port 50752 ssh2 Jul 27 07:26:43 vps-51d81928 sshd[200844]: Invalid user app from 216.238.183.171 port 33212 ...	2020-07-27 15:36:30
216.238.183.171	attackbotsspam	Jul 26 23:12:36 minden010 sshd[4260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.238.183.171 Jul 26 23:12:38 minden010 sshd[4260]: Failed password for invalid user wma from 216.238.183.171 port 43918 ssh2 Jul 26 23:14:51 minden010 sshd[4486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.238.183.171 ...	2020-07-27 07:56:50
216.238.183.171	attackspambots	Triggered by Fail2Ban at Ares web server	2020-07-24 22:48:37
216.238.185.122	attackbotsspam	Scanning	2019-12-13 22:10:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 216.238.18.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30679
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;216.238.18.242.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 15:08:32 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 242.18.238.216.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 242.18.238.216.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.190.120	attackbotsspam	Jul 9 21:34:30 vibhu-HP-Z238-Microtower-Workstation sshd\[13890\]: Invalid user admin from 51.38.190.120 Jul 9 21:34:30 vibhu-HP-Z238-Microtower-Workstation sshd\[13890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.190.120 Jul 9 21:34:33 vibhu-HP-Z238-Microtower-Workstation sshd\[13890\]: Failed password for invalid user admin from 51.38.190.120 port 60376 ssh2 Jul 9 21:37:14 vibhu-HP-Z238-Microtower-Workstation sshd\[13945\]: Invalid user test1 from 51.38.190.120 Jul 9 21:37:14 vibhu-HP-Z238-Microtower-Workstation sshd\[13945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.190.120 ...	2019-07-10 07:10:45
122.52.75.8	attack	Tried sshing with brute force.	2019-07-10 06:31:54
113.57.171.74	attack	Jul 9 23:57:56 s0 sshd\[43541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.57.171.74 user=root Jul 9 23:57:57 s0 sshd\[43541\]: Failed password for root from 113.57.171.74 port 53846 ssh2 Jul 10 00:20:12 s0 sshd\[65160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.57.171.74 user=root ...	2019-07-10 07:12:58
196.219.60.68	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-09 13:03:08,745 INFO [shellcode_manager] (196.219.60.68) no match, writing hexdump (5ca807c582ab0fb756ea8089e830d6a4 :2126107) - MS17010 (EternalBlue)	2019-07-10 06:46:05
47.93.206.149	attackspambots	Unauthorised access (Jul 9) SRC=47.93.206.149 LEN=60 TTL=45 ID=64804 DF TCP DPT=1433 WINDOW=29200 SYN	2019-07-10 06:43:40
167.99.221.140	attack	Jul 9 17:05:15 hosting sshd[30004]: Invalid user usmancity from 167.99.221.140 port 38103 ...	2019-07-10 06:27:30
121.122.45.221	attackspam	Jul 10 00:49:34 mail sshd[30469]: Invalid user mailer from 121.122.45.221 Jul 10 00:49:34 mail sshd[30469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.45.221 Jul 10 00:49:34 mail sshd[30469]: Invalid user mailer from 121.122.45.221 Jul 10 00:49:35 mail sshd[30469]: Failed password for invalid user mailer from 121.122.45.221 port 37988 ssh2 ...	2019-07-10 06:59:21
148.247.22.1	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-09 12:56:24,321 IN13:17,023 INFO [amun_request_handler] PortScan Detected on Port: 445 (148.247.22.1)	2019-07-10 06:45:16
164.132.51.91	attack	Jul 9 15:22:55 ns341937 sshd[10773]: Failed password for root from 164.132.51.91 port 58708 ssh2 Jul 9 15:22:57 ns341937 sshd[10773]: Failed password for root from 164.132.51.91 port 58708 ssh2 Jul 9 15:22:59 ns341937 sshd[10773]: Failed password for root from 164.132.51.91 port 58708 ssh2 Jul 9 15:23:01 ns341937 sshd[10773]: Failed password for root from 164.132.51.91 port 58708 ssh2 ...	2019-07-10 06:33:46
31.184.135.172	attackspam	Brute force RDP, port 3389	2019-07-10 07:06:22
153.36.242.114	attack	Jul 5 06:25:45 lvps92-51-164-246 sshd[10518]: User r.r from 153.36.242.114 not allowed because not listed in AllowUsers Jul 5 06:25:45 lvps92-51-164-246 sshd[10518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=r.r Jul 5 06:25:47 lvps92-51-164-246 sshd[10518]: Failed password for invalid user r.r from 153.36.242.114 port 59960 ssh2 Jul 5 06:25:54 lvps92-51-164-246 sshd[10518]: Received disconnect from 153.36.242.114: 11: [preauth] Jul 5 06:25:54 lvps92-51-164-246 sshd[10518]: PAM 2 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=r.r Jul 5 06:26:14 lvps92-51-164-246 sshd[10522]: User r.r from 153.36.242.114 not allowed because not listed in AllowUsers Jul 5 06:26:14 lvps92-51-164-246 sshd[10522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.114 user=r.r Jul 5 06:26:16 lvps92-51-164-246 sshd[10522]: F........ -------------------------------	2019-07-10 07:14:04
27.106.45.6	attack	$f2bV_matches	2019-07-10 06:32:17
157.230.93.62	attackspam	Automatic report - Web App Attack	2019-07-10 07:10:20
159.89.199.224	attackspambots	Jul 9 15:19:22 ovpn sshd\[9458\]: Invalid user document from 159.89.199.224 Jul 9 15:19:22 ovpn sshd\[9458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.199.224 Jul 9 15:19:24 ovpn sshd\[9458\]: Failed password for invalid user document from 159.89.199.224 port 54508 ssh2 Jul 9 15:22:27 ovpn sshd\[10062\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.199.224 user=root Jul 9 15:22:29 ovpn sshd\[10062\]: Failed password for root from 159.89.199.224 port 56370 ssh2	2019-07-10 06:42:50
153.36.236.35	attackspambots	Jul 10 05:59:02 webhost01 sshd[6554]: Failed password for root from 153.36.236.35 port 14256 ssh2 ...	2019-07-10 07:08:14

Recently Reported IPs

54.67.182.50	179.216.32.227	143.188.166.173	169.66.28.191
156.246.87.115	33.161.174.178	152.70.97.10	127.160.119.50
96.143.48.218	172.62.159.77	33.187.13.239	170.7.74.90
191.158.193.227	221.127.199.109	231.159.240.163	94.22.63.91
9.225.81.57	99.165.207.66	79.60.51.239	121.87.75.42