71.239.75.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
71.239.75.166	attack	Detected By Fail2ban	2020-05-16 21:19:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 71.239.75.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11509
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;71.239.75.242.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 21:57:18 CST 2025
;; MSG SIZE  rcvd: 106

Host info

242.75.239.71.in-addr.arpa domain name pointer c-71-239-75-242.hsd1.il.comcast.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.75.239.71.in-addr.arpa	name = c-71-239-75-242.hsd1.il.comcast.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
23.96.108.2	attackbots	2020-09-24 06:44:30.294141-0500 localhost sshd[92680]: Failed password for root from 23.96.108.2 port 65320 ssh2	2020-09-24 19:50:14
45.153.203.138	attackspam	Time: Wed Sep 23 13:34:12 2020 -0300 IP: 45.153.203.138 (US/United States/-) Failures: 30 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2020-09-24 19:14:34
210.114.17.198	attackbots	Invalid user matlab from 210.114.17.198 port 51482	2020-09-24 19:34:42
82.65.104.195	attackbotsspam	Automatic report - Banned IP Access	2020-09-24 19:50:47
51.79.35.114	attackspam	Sep 24 12:51:43 [host] kernel: [1276715.106835] [U Sep 24 12:51:43 [host] kernel: [1276715.106851] [U Sep 24 12:51:43 [host] kernel: [1276715.106873] [U Sep 24 12:51:43 [host] kernel: [1276715.106879] [U Sep 24 13:30:51 [host] kernel: [1279063.283998] [U Sep 24 13:30:51 [host] kernel: [1279063.284016] [U Sep 24 13:30:51 [host] kernel: [1279063.284024] [U Sep 24 13:30:51 [host] kernel: [1279063.284036] [U	2020-09-24 19:34:15
40.121.163.198	attackspambots	Sep 24 16:30:06 gw1 sshd[25584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.121.163.198 Sep 24 16:30:07 gw1 sshd[25584]: Failed password for invalid user felix from 40.121.163.198 port 32826 ssh2 ...	2020-09-24 19:54:18
111.217.101.136	attack	firewall-block, port(s): 59273/udp	2020-09-24 19:55:24
87.251.75.222	attackbots	RDP Brute-Force	2020-09-24 19:32:58
122.51.188.20	attack	122.51.188.20 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 24 03:35:01 server4 sshd[24951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.188.20 user=root Sep 24 03:35:03 server4 sshd[24951]: Failed password for root from 122.51.188.20 port 59646 ssh2 Sep 24 03:58:50 server4 sshd[7160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.110.51 user=root Sep 24 03:48:22 server4 sshd[883]: Failed password for root from 187.189.52.132 port 52023 ssh2 Sep 24 03:45:56 server4 sshd[31768]: Failed password for root from 140.143.211.45 port 37774 ssh2 Sep 24 03:45:54 server4 sshd[31768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root IP Addresses Blocked:	2020-09-24 19:39:35
51.89.226.153	attackbotsspam	Time: Wed Sep 23 13:51:05 2020 -0300 IP: 51.89.226.153 (GB/United Kingdom/-) Failures: 5 (mod_security) Interval: 3600 seconds Blocked: Permanent Block	2020-09-24 19:20:26
51.77.66.35	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-24T10:34:04Z and 2020-09-24T11:40:10Z	2020-09-24 19:43:52
62.133.129.37	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-24 19:33:15
183.82.121.34	attackspambots	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-24 19:18:24
119.152.109.47	attackbotsspam	119.152.109.47 - - [23/Sep/2020:21:01:28 +0100] "POST /wp-login.php HTTP/1.1" 200 7644 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 119.152.109.47 - - [23/Sep/2020:21:11:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 119.152.109.47 - - [23/Sep/2020:21:11:39 +0100] "POST /wp-login.php HTTP/1.1" 200 7644 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" ...	2020-09-24 19:49:29
218.255.233.114	attackspam	Unauthorized connection attempt from IP address 218.255.233.114 on Port 445(SMB)	2020-09-24 19:14:48

Recently Reported IPs

182.164.58.222	78.51.67.225	128.152.99.84	223.77.102.81
226.1.218.0	60.121.169.135	83.1.143.44	53.176.229.175
78.58.54.3	139.167.67.123	210.111.24.153	191.181.4.224
18.189.240.219	6.53.183.139	207.90.1.174	197.221.130.126
207.231.216.61	42.199.121.198	216.143.129.206	65.41.196.193