1.4.143.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.4.143.123	attackbotsspam	Unauthorized connection attempt from IP address 1.4.143.123 on Port 445(SMB)	2019-08-01 11:46:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.4.143.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36638
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.4.143.42.			IN	A

;; AUTHORITY SECTION:
.			486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 22:49:33 CST 2022
;; MSG SIZE  rcvd: 103

Host info

42.143.4.1.in-addr.arpa domain name pointer node-2zu.pool-1-4.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.143.4.1.in-addr.arpa	name = node-2zu.pool-1-4.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.183.237	attackbots	Aug 4 07:21:53 NPSTNNYC01T sshd[19758]: Failed password for root from 167.99.183.237 port 38232 ssh2 Aug 4 07:26:00 NPSTNNYC01T sshd[20130]: Failed password for root from 167.99.183.237 port 50656 ssh2 ...	2020-08-04 19:49:50
218.92.0.212	attack	$f2bV_matches	2020-08-04 19:41:53
181.40.122.2	attackbots	prod6 ...	2020-08-04 20:01:52
37.123.163.106	attack	Aug 4 00:25:26 web1 sshd\[26935\]: Invalid user wojiushizhu from 37.123.163.106 Aug 4 00:25:26 web1 sshd\[26935\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.123.163.106 Aug 4 00:25:28 web1 sshd\[26935\]: Failed password for invalid user wojiushizhu from 37.123.163.106 port 55270 ssh2 Aug 4 00:29:32 web1 sshd\[27241\]: Invalid user virtualprivateserver from 37.123.163.106 Aug 4 00:29:32 web1 sshd\[27241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.123.163.106	2020-08-04 20:26:39
218.92.0.215	attack	Aug 4 07:51:24 NPSTNNYC01T sshd[21990]: Failed password for root from 218.92.0.215 port 46070 ssh2 Aug 4 07:51:35 NPSTNNYC01T sshd[21997]: Failed password for root from 218.92.0.215 port 62199 ssh2 ...	2020-08-04 20:00:16
39.109.123.214	attack	Aug 4 13:50:28 OPSO sshd\[22809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.109.123.214 user=root Aug 4 13:50:30 OPSO sshd\[22809\]: Failed password for root from 39.109.123.214 port 50586 ssh2 Aug 4 13:54:39 OPSO sshd\[23746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.109.123.214 user=root Aug 4 13:54:41 OPSO sshd\[23746\]: Failed password for root from 39.109.123.214 port 34382 ssh2 Aug 4 13:59:02 OPSO sshd\[24440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.109.123.214 user=root	2020-08-04 20:04:38
82.64.201.47	attackspambots	Aug 4 05:58:50 ny01 sshd[29748]: Failed password for root from 82.64.201.47 port 59310 ssh2 Aug 4 06:02:07 ny01 sshd[30146]: Failed password for root from 82.64.201.47 port 58922 ssh2	2020-08-04 19:52:37
187.72.167.232	attack	Lines containing failures of 187.72.167.232 Aug 3 07:57:42 new sshd[26114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.72.167.232 user=r.r Aug 3 07:57:45 new sshd[26114]: Failed password for r.r from 187.72.167.232 port 45098 ssh2 Aug 3 07:57:45 new sshd[26114]: Received disconnect from 187.72.167.232 port 45098:11: Bye Bye [preauth] Aug 3 07:57:45 new sshd[26114]: Disconnected from authenticating user r.r 187.72.167.232 port 45098 [preauth] Aug 3 08:03:23 new sshd[27646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.72.167.232 user=r.r Aug 3 08:03:25 new sshd[27646]: Failed password for r.r from 187.72.167.232 port 55068 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=187.72.167.232	2020-08-04 19:42:33
66.96.228.119	attackspam	2020-08-04T09:16:24.076017shield sshd\[25370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root 2020-08-04T09:16:26.576051shield sshd\[25370\]: Failed password for root from 66.96.228.119 port 38816 ssh2 2020-08-04T09:21:15.102123shield sshd\[25982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root 2020-08-04T09:21:16.886547shield sshd\[25982\]: Failed password for root from 66.96.228.119 port 50820 ssh2 2020-08-04T09:25:57.114581shield sshd\[26450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.228.119 user=root	2020-08-04 19:58:06
2001:41d0:8:737c::	attack	Automatically reported by fail2ban report script (mx1)	2020-08-04 20:17:36
125.22.9.186	attackspambots	Aug 4 09:39:14 game-panel sshd[20772]: Failed password for root from 125.22.9.186 port 56590 ssh2 Aug 4 09:43:47 game-panel sshd[20982]: Failed password for root from 125.22.9.186 port 60365 ssh2	2020-08-04 20:09:42
94.247.179.224	attack	Aug 4 14:01:32 piServer sshd[8021]: Failed password for root from 94.247.179.224 port 36710 ssh2 Aug 4 14:04:19 piServer sshd[8386]: Failed password for root from 94.247.179.224 port 34070 ssh2 ...	2020-08-04 20:23:36
118.25.1.48	attackbotsspam	Aug 4 07:36:40 host sshd\[9900\]: Failed password for root from 118.25.1.48 port 43786 ssh2 Aug 4 07:40:11 host sshd\[10721\]: Failed password for root from 118.25.1.48 port 52710 ssh2 Aug 4 07:43:45 host sshd\[10958\]: Failed password for root from 118.25.1.48 port 33406 ssh2 ...	2020-08-04 20:03:48
45.55.156.19	attackbots	Aug 4 01:18:33 web9 sshd\[16058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 user=root Aug 4 01:18:35 web9 sshd\[16058\]: Failed password for root from 45.55.156.19 port 52836 ssh2 Aug 4 01:22:33 web9 sshd\[16672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 user=root Aug 4 01:22:35 web9 sshd\[16672\]: Failed password for root from 45.55.156.19 port 34758 ssh2 Aug 4 01:26:38 web9 sshd\[17267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.156.19 user=root	2020-08-04 19:51:42
113.173.176.146	attackspam	Exchange online refresh token phishing	2020-08-04 19:44:17

Recently Reported IPs

1.4.143.34	1.4.143.5	1.4.143.52	252.20.55.206
1.4.143.55	1.4.143.56	1.4.143.59	1.4.143.63
1.4.143.68	1.4.143.7	1.4.143.70	150.221.198.109
1.4.143.77	1.4.143.78	1.4.143.8	1.4.143.80
1.4.143.85	1.4.143.88	1.4.143.96	1.4.144.103