71.42.243.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Lone Star Reprographics

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 7 22:54:55 ns41 sshd[810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.42.243.18	2020-07-08 05:47:58

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 71.42.243.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39222
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;71.42.243.18.			IN	A

;; AUTHORITY SECTION:
.			345	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070701 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 08 05:47:55 CST 2020
;; MSG SIZE  rcvd: 116

Host info

18.243.42.71.in-addr.arpa domain name pointer rrcs-71-42-243-18.sw.biz.rr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.243.42.71.in-addr.arpa	name = rrcs-71-42-243-18.sw.biz.rr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
209.105.243.145	attack	2019-10-09T04:02:54.698543shield sshd\[19398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 user=root 2019-10-09T04:02:57.022249shield sshd\[19398\]: Failed password for root from 209.105.243.145 port 51987 ssh2 2019-10-09T04:06:51.089394shield sshd\[20058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 user=root 2019-10-09T04:06:52.946623shield sshd\[20058\]: Failed password for root from 209.105.243.145 port 43317 ssh2 2019-10-09T04:10:46.253112shield sshd\[20625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 user=root	2019-10-09 19:31:42
125.214.52.232	attackspambots	Port 1433 Scan	2019-10-09 19:56:19
192.227.252.14	attackspam	Oct 9 13:37:41 legacy sshd[24015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.14 Oct 9 13:37:43 legacy sshd[24015]: Failed password for invalid user fdsa4321 from 192.227.252.14 port 44326 ssh2 Oct 9 13:41:53 legacy sshd[24133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.227.252.14 ...	2019-10-09 19:54:42
121.126.161.117	attackspam	Oct 9 13:41:55 vps647732 sshd[3863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.126.161.117 Oct 9 13:41:57 vps647732 sshd[3863]: Failed password for invalid user Best@2017 from 121.126.161.117 port 48192 ssh2 ...	2019-10-09 19:53:47
134.249.141.83	attackbots	$f2bV_matches	2019-10-09 19:29:16
23.129.64.168	attackbots	Oct 9 13:41:50 rotator sshd\[26495\]: Failed password for root from 23.129.64.168 port 19476 ssh2Oct 9 13:41:53 rotator sshd\[26495\]: Failed password for root from 23.129.64.168 port 19476 ssh2Oct 9 13:41:56 rotator sshd\[26495\]: Failed password for root from 23.129.64.168 port 19476 ssh2Oct 9 13:41:59 rotator sshd\[26495\]: Failed password for root from 23.129.64.168 port 19476 ssh2Oct 9 13:42:01 rotator sshd\[26495\]: Failed password for root from 23.129.64.168 port 19476 ssh2Oct 9 13:42:04 rotator sshd\[26495\]: Failed password for root from 23.129.64.168 port 19476 ssh2 ...	2019-10-09 19:48:19
81.171.85.146	attackbots	\[2019-10-09 07:16:46\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '81.171.85.146:62193' - Wrong password \[2019-10-09 07:16:46\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-09T07:16:46.783-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2059",SessionID="0x7fc3ac00c388",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.85.146/62193",Challenge="0fd6db2f",ReceivedChallenge="0fd6db2f",ReceivedHash="f2644aad53a2a8113002e53b2f63a25f" \[2019-10-09 07:17:15\] NOTICE\[1887\] chan_sip.c: Registration from '\' failed for '81.171.85.146:56736' - Wrong password \[2019-10-09 07:17:15\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-09T07:17:15.728-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="814",SessionID="0x7fc3acc3d768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.85.1	2019-10-09 19:39:02
222.186.52.89	attack	Oct 9 13:50:16 dcd-gentoo sshd[9249]: User root from 222.186.52.89 not allowed because none of user's groups are listed in AllowGroups Oct 9 13:50:19 dcd-gentoo sshd[9249]: error: PAM: Authentication failure for illegal user root from 222.186.52.89 Oct 9 13:50:16 dcd-gentoo sshd[9249]: User root from 222.186.52.89 not allowed because none of user's groups are listed in AllowGroups Oct 9 13:50:19 dcd-gentoo sshd[9249]: error: PAM: Authentication failure for illegal user root from 222.186.52.89 Oct 9 13:50:16 dcd-gentoo sshd[9249]: User root from 222.186.52.89 not allowed because none of user's groups are listed in AllowGroups Oct 9 13:50:19 dcd-gentoo sshd[9249]: error: PAM: Authentication failure for illegal user root from 222.186.52.89 Oct 9 13:50:19 dcd-gentoo sshd[9249]: Failed keyboard-interactive/pam for invalid user root from 222.186.52.89 port 12542 ssh2 ...	2019-10-09 19:57:26
82.117.190.170	attackspambots	Oct 9 13:42:01 dedicated sshd[12610]: Invalid user P@ssword2017 from 82.117.190.170 port 53769	2019-10-09 19:52:52
155.94.164.197	attackspambots	Apr 21 03:52:45 server sshd\[240706\]: Invalid user log from 155.94.164.197 Apr 21 03:52:45 server sshd\[240706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.164.197 Apr 21 03:52:46 server sshd\[240706\]: Failed password for invalid user log from 155.94.164.197 port 46582 ssh2 ...	2019-10-09 19:34:41
200.127.124.103	attackbots	" "	2019-10-09 20:07:18
92.63.194.90	attackspam	2019-10-09T18:41:29.917014enmeeting.mahidol.ac.th sshd\[14716\]: Invalid user admin from 92.63.194.90 port 44448 2019-10-09T18:41:29.930965enmeeting.mahidol.ac.th sshd\[14716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.90 2019-10-09T18:41:31.584403enmeeting.mahidol.ac.th sshd\[14716\]: Failed password for invalid user admin from 92.63.194.90 port 44448 ssh2 ...	2019-10-09 20:08:53
156.194.133.72	attackspambots	Jul 1 12:52:54 server sshd\[52971\]: Invalid user admin from 156.194.133.72 Jul 1 12:52:54 server sshd\[52971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.194.133.72 Jul 1 12:52:56 server sshd\[52971\]: Failed password for invalid user admin from 156.194.133.72 port 53379 ssh2 ...	2019-10-09 19:32:13
193.70.8.163	attackbotsspam	Oct 9 13:34:26 SilenceServices sshd[22796]: Failed password for root from 193.70.8.163 port 39344 ssh2 Oct 9 13:38:20 SilenceServices sshd[23858]: Failed password for root from 193.70.8.163 port 51024 ssh2	2019-10-09 19:51:38
89.46.196.34	attack	Oct 9 13:44:33 microserver sshd[17284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.196.34 user=root Oct 9 13:44:35 microserver sshd[17284]: Failed password for root from 89.46.196.34 port 48288 ssh2 Oct 9 13:49:58 microserver sshd[17982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.196.34 user=root Oct 9 13:50:01 microserver sshd[17982]: Failed password for root from 89.46.196.34 port 46228 ssh2 Oct 9 13:53:32 microserver sshd[18553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.196.34 user=root Oct 9 14:04:15 microserver sshd[19951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.46.196.34 user=root Oct 9 14:04:16 microserver sshd[19951]: Failed password for root from 89.46.196.34 port 36170 ssh2 Oct 9 14:07:49 microserver sshd[20532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=	2019-10-09 19:58:51

Recently Reported IPs

109.236.89.61	211.57.201.139	106.13.167.94	8.193.59.3
196.245.174.66	186.235.50.240	12.113.42.147	13.234.38.106
210.16.103.92	182.52.142.146	181.62.248.47	88.218.17.132
162.161.26.149	116.110.94.101	91.210.205.177	96.57.134.235
152.136.112.178	157.230.254.213	123.20.10.202	2.135.55.104