142.44.160.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH User Authentication Brute Force Attempt, PTR: 4.ip-142-44-160.net.	2019-06-28 14:46:18

Comments on same subnet:

IP	Type	Details	Datetime
142.44.160.40	attackspambots	Oct 13 14:29:59 ip-172-31-16-56 sshd\[28954\]: Failed password for root from 142.44.160.40 port 52366 ssh2\ Oct 13 14:34:52 ip-172-31-16-56 sshd\[29064\]: Invalid user zono from 142.44.160.40\ Oct 13 14:34:54 ip-172-31-16-56 sshd\[29064\]: Failed password for invalid user zono from 142.44.160.40 port 60614 ssh2\ Oct 13 14:39:46 ip-172-31-16-56 sshd\[29298\]: Invalid user niklas from 142.44.160.40\ Oct 13 14:39:48 ip-172-31-16-56 sshd\[29298\]: Failed password for invalid user niklas from 142.44.160.40 port 39776 ssh2\	2020-10-13 22:47:45
142.44.160.40	attackbotsspam	Oct 13 03:43:58 ws26vmsma01 sshd[17540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Oct 13 03:44:00 ws26vmsma01 sshd[17540]: Failed password for invalid user fax2 from 142.44.160.40 port 53732 ssh2 ...	2020-10-13 14:08:54
142.44.160.40	attack	Oct 12 23:16:12 buvik sshd[26236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Oct 12 23:16:14 buvik sshd[26236]: Failed password for invalid user lie from 142.44.160.40 port 52492 ssh2 Oct 12 23:19:51 buvik sshd[26610]: Invalid user nadia from 142.44.160.40 ...	2020-10-13 06:51:51
142.44.160.40	attack	Aug 27 14:23:05 localhost sshd[124031]: Invalid user publish from 142.44.160.40 port 49806 Aug 27 14:23:05 localhost sshd[124031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net Aug 27 14:23:05 localhost sshd[124031]: Invalid user publish from 142.44.160.40 port 49806 Aug 27 14:23:07 localhost sshd[124031]: Failed password for invalid user publish from 142.44.160.40 port 49806 ssh2 Aug 27 14:28:56 localhost sshd[124543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net user=root Aug 27 14:28:57 localhost sshd[124543]: Failed password for root from 142.44.160.40 port 32972 ssh2 ...	2020-08-27 22:53:58
142.44.160.40	attackbots	2020-08-21T18:44:13.324412upcloud.m0sh1x2.com sshd[20965]: Invalid user jose from 142.44.160.40 port 46926	2020-08-22 03:53:58
142.44.160.40	attackspambots	Aug 2 20:25:38 IngegnereFirenze sshd[13041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 user=root ...	2020-08-03 04:34:21
142.44.160.40	attack	2020-07-20 UTC: (24x) - antonio,cb,damian,dmh,eon,godwin,gpu,hadoop,ibm,isik,joaquin,judith,lesia,louis,pdi,sakinah,school,test(2x),user2,userftp,valentino,why,wqy	2020-07-21 19:57:59
142.44.160.40	attack	2020-07-17T05:53:10.952832n23.at sshd[1158353]: Invalid user test from 142.44.160.40 port 34414 2020-07-17T05:53:13.465659n23.at sshd[1158353]: Failed password for invalid user test from 142.44.160.40 port 34414 ssh2 2020-07-17T05:55:59.706755n23.at sshd[1160794]: Invalid user vnc from 142.44.160.40 port 39648 ...	2020-07-17 15:00:50
142.44.160.40	attackspam	Jul 14 17:20:29 vpn01 sshd[20833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Jul 14 17:20:32 vpn01 sshd[20833]: Failed password for invalid user user02 from 142.44.160.40 port 55478 ssh2 ...	2020-07-14 23:53:44
142.44.160.40	attackspam	Jul 12 17:56:24 ns382633 sshd\[32074\]: Invalid user creator from 142.44.160.40 port 49672 Jul 12 17:56:24 ns382633 sshd\[32074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40 Jul 12 17:56:25 ns382633 sshd\[32074\]: Failed password for invalid user creator from 142.44.160.40 port 49672 ssh2 Jul 12 18:08:27 ns382633 sshd\[1593\]: Invalid user cp from 142.44.160.40 port 39138 Jul 12 18:08:27 ns382633 sshd\[1593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.40	2020-07-13 02:09:05
142.44.160.40	attackspambots	<6 unauthorized SSH connections	2020-07-10 16:24:58
142.44.160.40	attackspam	SSH Brute-Force. Ports scanning.	2020-07-07 02:16:06
142.44.160.40	attackspam	2020-06-28T04:09:23.065091shield sshd\[26892\]: Invalid user support from 142.44.160.40 port 35012 2020-06-28T04:09:23.068695shield sshd\[26892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net 2020-06-28T04:09:24.738901shield sshd\[26892\]: Failed password for invalid user support from 142.44.160.40 port 35012 ssh2 2020-06-28T04:13:18.186093shield sshd\[28581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.ip-142-44-160.net user=root 2020-06-28T04:13:20.110824shield sshd\[28581\]: Failed password for root from 142.44.160.40 port 36410 ssh2	2020-06-28 12:26:04
142.44.160.214	attackbotsspam	2020-06-21T21:15:03.211716shield sshd\[26059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=214.ip-142-44-160.net user=root 2020-06-21T21:15:04.405457shield sshd\[26059\]: Failed password for root from 142.44.160.214 port 33167 ssh2 2020-06-21T21:21:20.536890shield sshd\[26635\]: Invalid user docker from 142.44.160.214 port 34817 2020-06-21T21:21:20.540591shield sshd\[26635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=214.ip-142-44-160.net 2020-06-21T21:21:22.823343shield sshd\[26635\]: Failed password for invalid user docker from 142.44.160.214 port 34817 ssh2	2020-06-22 05:29:27
142.44.160.173	attackbotsspam	Jun 21 17:17:49 vmd26974 sshd[20616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.173 Jun 21 17:17:51 vmd26974 sshd[20616]: Failed password for invalid user ngu from 142.44.160.173 port 51974 ssh2 ...	2020-06-22 02:00:20

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.160.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.44.160.4.			IN	A

;; AUTHORITY SECTION:
.			2130	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 26 06:35:25 CST 2019
;; MSG SIZE  rcvd: 116

Host info

4.160.44.142.in-addr.arpa domain name pointer 4.ip-142-44-160.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
4.160.44.142.in-addr.arpa	name = 4.ip-142-44-160.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.165.159.95	attackbotsspam	Feb 6 14:21:21 debian-2gb-nbg1-2 kernel: \[3254526.513235\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=95.165.159.95 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x20 TTL=240 ID=42379 PROTO=TCP SPT=41171 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-06 21:26:45
189.240.117.236	attackspambots	5x Failed Password	2020-02-06 21:29:00
106.220.213.145	attackbotsspam	Feb 6 06:10:53 l02a sshd[16524]: Invalid user ubnt from 106.220.213.145 Feb 6 06:10:53 l02a sshd[16524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.220.213.145 Feb 6 06:10:53 l02a sshd[16524]: Invalid user ubnt from 106.220.213.145 Feb 6 06:10:55 l02a sshd[16524]: Failed password for invalid user ubnt from 106.220.213.145 port 4323 ssh2	2020-02-06 21:44:34
202.184.108.4	attackspambots	Honeypot attack, port: 4567, PTR: PTR record not found	2020-02-06 21:24:21
185.10.68.254	attackbots	B: Abusive content scan (403)	2020-02-06 21:36:34
162.243.129.151	attackbotsspam	Port Scan detected from 162.243.129.151 (US/United States/zg-0131a-287.stretchoid.com). 4 hits in the last 265 seconds	2020-02-06 21:51:06
64.64.104.10	attackbotsspam	US_LogicWeb_<177>1580996091 [1:2403426:55163] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 64 [Classification: Misc Attack] [Priority: 2] {TCP} 64.64.104.10:6861	2020-02-06 21:44:59
51.91.250.49	attackspambots	Unauthorized connection attempt detected from IP address 51.91.250.49 to port 2220 [J]	2020-02-06 21:15:41
89.19.199.152	attackspambots	Automatic report - XMLRPC Attack	2020-02-06 21:51:33
104.244.73.223	attack	Feb 6 08:51:33 legacy sshd[31786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.73.223 Feb 6 08:51:35 legacy sshd[31786]: Failed password for invalid user xh from 104.244.73.223 port 38020 ssh2 Feb 6 08:54:41 legacy sshd[31925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.73.223 ...	2020-02-06 21:24:34
111.223.252.25	attack	Feb 6 05:49:38 woltan sshd[3813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.223.252.25	2020-02-06 21:22:31
104.248.122.143	attackbotsspam	Feb 6 14:47:28 mail sshd[25183]: Invalid user wow from 104.248.122.143 ...	2020-02-06 22:03:07
171.6.251.109	attackspam	Unauthorized connection attempt from IP address 171.6.251.109 on Port 445(SMB)	2020-02-06 21:16:59
183.82.8.165	attackspam	Unauthorized connection attempt from IP address 183.82.8.165 on Port 445(SMB)	2020-02-06 21:28:06
193.56.28.34	attackspam	2020-02-06 14:46:42 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect authentication data \(set_id=mateo@no-server.de\) 2020-02-06 14:46:42 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect authentication data \(set_id=mateo@no-server.de\) 2020-02-06 14:46:42 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect authentication data \(set_id=mateo@no-server.de\) 2020-02-06 14:46:42 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect authentication data \(set_id=mateo@no-server.de\) 2020-02-06 14:46:45 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect authentication data \(set_id=mateo@no-server.de\) 2020-02-06 14:46:45 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect authentication data \(set_id=mateo@no-server.de\) 2020-02-06 14:46:45 dovecot_login authenticator failed for \(User\) \[193.56.28.34\]: 535 Incorrect ...	2020-02-06 22:00:42

Recently Reported IPs

17.85.251.51	112.224.122.144	181.108.208.4	252.248.197.0
224.44.93.140	119.0.172.133	178.129.71.187	142.106.42.15
14.102.75.244	169.174.230.220	5.160.129.236	190.139.165.58
2.139.155.90	61.91.21.130	128.106.164.114	111.40.66.28
23.106.160.164	187.176.38.11	118.128.50.136	76.0.82.25