142.44.160.172

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user mirror05 from 142.44.160.172 port 40768	2019-08-01 02:44:12
attack	Tried sshing with brute force.	2019-06-27 08:22:05

Comments on same subnet:

IP	Type	Details	Datetime
142.44.160.40	attackspambots	Oct 13 14:29:59 ip-172-31-16-56 sshd\[28954\]: Failed password for root from 142.44.160.40 port 52366 ssh2\ Oct 13 14:34:52 ip-172-31-16-56 sshd\[29064\]: Invalid user zono from 142.44.160.40\ Oct 13 14:34:54 ip-172-31-16-56 sshd\[29064\]: Failed password for invalid user zono from 142.44.160.40 port 60614 ssh2\ Oct 13 14:39:46 ip-172-31-16-56 sshd\[29298\]: Invalid user niklas from 142.44.160.40\ Oct 13 14:39:48 ip-172-31-16-56 sshd\[29298\]: Failed password for invalid user niklas from 142.44.160.40 port 39776 ssh2\	2020-10-13 22:47:45
142.44.160.40	attackbotsspam	Oct 13 03:43:58 ws26vmsma01 sshd[17540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Oct 13 03:44:00 ws26vmsma01 sshd[17540]: Failed password for invalid user fax2 from 142.44.160.40 port 53732 ssh2 ...	2020-10-13 14:08:54
142.44.160.40	attack	Oct 12 23:16:12 buvik sshd[26236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Oct 12 23:16:14 buvik sshd[26236]: Failed password for invalid user lie from 142.44.160.40 port 52492 ssh2 Oct 12 23:19:51 buvik sshd[26610]: Invalid user nadia from 142.44.160.40 ...	2020-10-13 06:51:51
142.44.160.40	attack	Aug 27 14:23:05 localhost sshd[124031]: Invalid user publish from 142.44.160.40 port 49806 Aug 27 14:23:05 localhost sshd[124031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net Aug 27 14:23:05 localhost sshd[124031]: Invalid user publish from 142.44.160.40 port 49806 Aug 27 14:23:07 localhost sshd[124031]: Failed password for invalid user publish from 142.44.160.40 port 49806 ssh2 Aug 27 14:28:56 localhost sshd[124543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net user=root Aug 27 14:28:57 localhost sshd[124543]: Failed password for root from 142.44.160.40 port 32972 ssh2 ...	2020-08-27 22:53:58
142.44.160.40	attackbots	2020-08-21T18:44:13.324412upcloud.m0sh1x2.com sshd[20965]: Invalid user jose from 142.44.160.40 port 46926	2020-08-22 03:53:58
142.44.160.40	attackspambots	Aug 2 20:25:38 IngegnereFirenze sshd[13041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 user=root ...	2020-08-03 04:34:21
142.44.160.40	attack	2020-07-20 UTC: (24x) - antonio,cb,damian,dmh,eon,godwin,gpu,hadoop,ibm,isik,joaquin,judith,lesia,louis,pdi,sakinah,school,test(2x),user2,userftp,valentino,why,wqy	2020-07-21 19:57:59
142.44.160.40	attack	2020-07-17T05:53:10.952832n23.at sshd[1158353]: Invalid user test from 142.44.160.40 port 34414 2020-07-17T05:53:13.465659n23.at sshd[1158353]: Failed password for invalid user test from 142.44.160.40 port 34414 ssh2 2020-07-17T05:55:59.706755n23.at sshd[1160794]: Invalid user vnc from 142.44.160.40 port 39648 ...	2020-07-17 15:00:50
142.44.160.40	attackspam	Jul 14 17:20:29 vpn01 sshd[20833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Jul 14 17:20:32 vpn01 sshd[20833]: Failed password for invalid user user02 from 142.44.160.40 port 55478 ssh2 ...	2020-07-14 23:53:44
142.44.160.40	attackspam	Jul 12 17:56:24 ns382633 sshd\[32074\]: Invalid user creator from 142.44.160.40 port 49672 Jul 12 17:56:24 ns382633 sshd\[32074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Jul 12 17:56:25 ns382633 sshd\[32074\]: Failed password for invalid user creator from 142.44.160.40 port 49672 ssh2 Jul 12 18:08:27 ns382633 sshd\[1593\]: Invalid user cp from 142.44.160.40 port 39138 Jul 12 18:08:27 ns382633 sshd\[1593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40	2020-07-13 02:09:05
142.44.160.40	attackspambots	<6 unauthorized SSH connections	2020-07-10 16:24:58
142.44.160.40	attackspam	SSH Brute-Force. Ports scanning.	2020-07-07 02:16:06
142.44.160.40	attackspam	2020-06-28T04:09:23.065091shield sshd\[26892\]: Invalid user support from 142.44.160.40 port 35012 2020-06-28T04:09:23.068695shield sshd\[26892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net 2020-06-28T04:09:24.738901shield sshd\[26892\]: Failed password for invalid user support from 142.44.160.40 port 35012 ssh2 2020-06-28T04:13:18.186093shield sshd\[28581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net user=root 2020-06-28T04:13:20.110824shield sshd\[28581\]: Failed password for root from 142.44.160.40 port 36410 ssh2	2020-06-28 12:26:04
142.44.160.214	attackbotsspam	2020-06-21T21:15:03.211716shield sshd\[26059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=214.ip-142-44-160.net user=root 2020-06-21T21:15:04.405457shield sshd\[26059\]: Failed password for root from 142.44.160.214 port 33167 ssh2 2020-06-21T21:21:20.536890shield sshd\[26635\]: Invalid user docker from 142.44.160.214 port 34817 2020-06-21T21:21:20.540591shield sshd\[26635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=214.ip-142-44-160.net 2020-06-21T21:21:22.823343shield sshd\[26635\]: Failed password for invalid user docker from 142.44.160.214 port 34817 ssh2	2020-06-22 05:29:27
142.44.160.173	attackbotsspam	Jun 21 17:17:49 vmd26974 sshd[20616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.173 Jun 21 17:17:51 vmd26974 sshd[20616]: Failed password for invalid user ngu from 142.44.160.173 port 51974 ssh2 ...	2020-06-22 02:00:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.160.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46075
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.44.160.172.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062602 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 08:22:00 CST 2019
;; MSG SIZE  rcvd: 118

Host info

172.160.44.142.in-addr.arpa domain name pointer 172.ip-142-44-160.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
172.160.44.142.in-addr.arpa	name = 172.ip-142-44-160.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.115.216.65	attackspam	WEB SPAM: Приветствую вас Доктор посоветовала Препараты вич терапия заразить	2019-11-03 12:13:46
122.176.123.236	attack	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:05:55
115.63.82.247	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:22:08
222.186.175.215	attackbots	2019-11-03T04:05:23.477094shield sshd\[6880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root 2019-11-03T04:05:25.300421shield sshd\[6880\]: Failed password for root from 222.186.175.215 port 23480 ssh2 2019-11-03T04:05:30.262724shield sshd\[6880\]: Failed password for root from 222.186.175.215 port 23480 ssh2 2019-11-03T04:05:34.575913shield sshd\[6880\]: Failed password for root from 222.186.175.215 port 23480 ssh2 2019-11-03T04:05:38.439755shield sshd\[6880\]: Failed password for root from 222.186.175.215 port 23480 ssh2	2019-11-03 12:10:24
117.223.43.135	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:12:48
118.70.13.250	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:10:57
183.129.50.215	attackbotsspam	Nov 3 04:51:45 mxgate1 postfix/postscreen[32036]: CONNECT from [183.129.50.215]:63775 to [176.31.12.44]:25 Nov 3 04:51:45 mxgate1 postfix/dnsblog[32041]: addr 183.129.50.215 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 3 04:51:45 mxgate1 postfix/dnsblog[32040]: addr 183.129.50.215 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 3 04:51:45 mxgate1 postfix/dnsblog[32040]: addr 183.129.50.215 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 3 04:51:45 mxgate1 postfix/dnsblog[32037]: addr 183.129.50.215 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 3 04:51:46 mxgate1 postfix/dnsblog[32039]: addr 183.129.50.215 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 3 04:51:51 mxgate1 postfix/postscreen[32036]: DNSBL rank 5 for [183.129.50.215]:63775 Nov x@x Nov 3 04:51:53 mxgate1 postfix/postscreen[32036]: DISCONNECT [183.129.50.215]:63775 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=183.129.50.215	2019-11-03 12:15:33
117.220.4.210	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:13:08
88.252.128.164	attackbotsspam	Automatic report - Port Scan Attack	2019-11-03 12:17:11
222.186.169.194	attack	F2B jail: sshd. Time: 2019-11-03 05:00:25, Reported by: VKReport	2019-11-03 12:04:20
114.32.80.234	attack	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:23:44
122.176.52.17	attack	Scanning random ports - tries to find possible vulnerable services	2019-11-03 08:06:31
45.55.38.39	attackspam	Nov 3 04:59:09 dedicated sshd[21334]: Invalid user root@1234567890 from 45.55.38.39 port 58155	2019-11-03 12:12:27
144.217.214.25	attackspam	Nov 3 04:58:01 SilenceServices sshd[15222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.25 Nov 3 04:58:03 SilenceServices sshd[15222]: Failed password for invalid user 102030102030 from 144.217.214.25 port 53576 ssh2 Nov 3 05:02:03 SilenceServices sshd[19514]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.214.25	2019-11-03 12:02:40
186.42.182.41	attack	Unauthorised access (Nov 3) SRC=186.42.182.41 LEN=40 TTL=240 ID=49233 TCP DPT=445 WINDOW=1024 SYN	2019-11-03 12:15:16

Recently Reported IPs

91.236.103.52	104.40.4.51	77.247.110.115	152.136.72.211
34.66.29.165	165.22.20.199	54.36.148.7	131.108.48.151
170.81.23.18	117.198.219.5	182.232.32.30	2001:44c8:4383:ffed:1:1:18bf:e04a
212.34.125.35	3.82.42.176	35.245.172.89	185.129.49.28
81.250.225.159	46.176.11.182	191.252.192.25	103.255.240.170