142.44.161.132

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Oct 13 22:53:06 rocket sshd[4736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 Oct 13 22:53:08 rocket sshd[4736]: Failed password for invalid user christopher from 142.44.161.132 port 39000 ssh2 ...	2020-10-14 07:18:16
attackspam	2020-10-01T11:05:35.096962hostname sshd[127565]: Failed password for invalid user keith from 142.44.161.132 port 40676 ssh2 ...	2020-10-02 03:43:59
attackbots	2020-10-01T12:46:26+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-10-01 19:56:38
attackspambots	Oct 1 00:04:30 cp sshd[30449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132	2020-10-01 12:05:05
attack	IP blocked	2020-09-24 00:30:17
attackspambots	Sep 23 01:54:52 piServer sshd[7411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 Sep 23 01:54:54 piServer sshd[7411]: Failed password for invalid user roberto from 142.44.161.132 port 33434 ssh2 Sep 23 01:59:19 piServer sshd[7885]: Failed password for root from 142.44.161.132 port 42582 ssh2 ...	2020-09-23 08:35:10
attackspambots	Invalid user gmodserver from 142.44.161.132 port 39502	2020-09-22 02:12:00
attackspambots	Sep 21 06:23:29 ws12vmsma01 sshd[56639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-142-44-161.net Sep 21 06:23:29 ws12vmsma01 sshd[56639]: Invalid user user from 142.44.161.132 Sep 21 06:23:31 ws12vmsma01 sshd[56639]: Failed password for invalid user user from 142.44.161.132 port 40676 ssh2 ...	2020-09-21 17:56:45
attack	2020-08-26T02:17:20.453179hostname sshd[27508]: Failed password for root from 142.44.161.132 port 49972 ssh2 ...	2020-08-27 04:07:49
attackspambots	"$f2bV_matches"	2020-08-23 17:17:16
attackbotsspam	Invalid user wur from 142.44.161.132 port 59106	2020-08-19 05:06:28
attackbots	Aug 14 21:01:24 php1 sshd\[13526\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 user=root Aug 14 21:01:27 php1 sshd\[13526\]: Failed password for root from 142.44.161.132 port 45916 ssh2 Aug 14 21:05:36 php1 sshd\[13887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 user=root Aug 14 21:05:38 php1 sshd\[13887\]: Failed password for root from 142.44.161.132 port 56376 ssh2 Aug 14 21:09:48 php1 sshd\[14417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 user=root	2020-08-15 15:39:26
attack	Aug 9 18:37:34 hanapaa sshd\[2088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 user=root Aug 9 18:37:36 hanapaa sshd\[2088\]: Failed password for root from 142.44.161.132 port 48602 ssh2 Aug 9 18:42:03 hanapaa sshd\[2516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 user=root Aug 9 18:42:05 hanapaa sshd\[2516\]: Failed password for root from 142.44.161.132 port 58804 ssh2 Aug 9 18:46:15 hanapaa sshd\[2814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 user=root	2020-08-10 13:51:29
attack	Bruteforce detected by fail2ban	2020-08-01 23:55:54
attackbots	Invalid user admin1 from 142.44.161.132 port 42842	2020-08-01 07:40:30
attackspambots	2020-07-22 UTC: (88x) - Duck,aac,admin(3x),ai,ajeet,alyssa,anonymous,anpr,aurora,bmm,check,common,dbuser,deployer,dge,eddy,endangs,escola,farooq,firefart,fit,ftp,git(2x),guest,gulliver,hadoop,haresh,hien,ifc,internal,irc,iz,javier,jbn,jethro,joerg,jordan,log,maria,mayan,monit,nproc,obc,omd,opl,oracle,panxiaoming,pi,postgre,rajiv,sandi,server,share,shirley,sinusbot,steam,stefan,swetha,system,test(4x),test2,testadmin,tester(2x),tmi,trung,ts3(2x),tw,ubuntu,uftp,user,vaibhav,version,vijay,vnc(2x),www,wyb,yap,ypl,zav	2020-07-23 18:00:17
attackspambots	Jul 9 18:19:54 server sshd[18896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 Jul 9 18:19:56 server sshd[18896]: Failed password for invalid user sugarbroad from 142.44.161.132 port 47772 ssh2 Jul 9 18:32:39 server sshd[19436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 Jul 9 18:32:40 server sshd[19436]: Failed password for invalid user yoshimitsu from 142.44.161.132 port 52990 ssh2	2020-07-22 09:19:36
attackspam	sshd jail - ssh hack attempt	2020-07-20 16:30:27
attackspam	$f2bV_matches	2020-07-13 15:05:11
attack	Jul 9 22:24:17 XXX sshd[34298]: Invalid user nishino from 142.44.161.132 port 50972	2020-07-10 08:10:55
attack	2020-07-08T06:36:23+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-07-08 16:29:13
attackspambots	(sshd) Failed SSH login from 142.44.161.132 (CA/Canada/132.ip-142-44-161.net): 5 in the last 3600 secs	2020-07-05 19:12:23
attack	Bruteforce detected by fail2ban	2020-06-29 00:11:00
attackbots	detected by Fail2Ban	2020-06-23 13:02:28
attack	Jun 18 06:41:35 OPSO sshd\[23508\]: Invalid user did from 142.44.161.132 port 41062 Jun 18 06:41:35 OPSO sshd\[23508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 Jun 18 06:41:37 OPSO sshd\[23508\]: Failed password for invalid user did from 142.44.161.132 port 41062 ssh2 Jun 18 06:44:48 OPSO sshd\[24133\]: Invalid user test from 142.44.161.132 port 41482 Jun 18 06:44:48 OPSO sshd\[24133\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132	2020-06-18 12:56:16
attackbots	Jun 15 13:58:03 rush sshd[32670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 Jun 15 13:58:05 rush sshd[32670]: Failed password for invalid user zyq from 142.44.161.132 port 34240 ssh2 Jun 15 14:00:56 rush sshd[32695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.132 ...	2020-06-16 00:46:06

Comments on same subnet:

IP	Type	Details	Datetime
142.44.161.209	attackbotsspam	Lines containing failures of 142.44.161.209 May 25 09:31:34 * sshd[93632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.209 user=r.r May 25 09:31:36 * sshd[93632]: Failed password for r.r from 142.44.161.209 port 34264 ssh2 May 25 09:31:36 * sshd[93632]: Received disconnect from 142.44.161.209 port 34264:11: Bye Bye [preauth] May 25 09:31:36 * sshd[93632]: Disconnected from authenticating user r.r 142.44.161.209 port 34264 [preauth] May 25 10:06:43 * sshd[98469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.209 user=r.r May 25 10:06:45 * sshd[98469]: Failed password for r.r from 142.44.161.209 port 55474 ssh2 May 25 10:06:45 * sshd[98469]: Received disconnect from 142.44.161.209 port 55474:11: Bye Bye [preauth] May 25 10:06:45 * sshd[98469]: Disconnected from authenticating user r.r 142.44.161.209 port 55474 [preauth] May 25 10:14:09 *** sshd[9923........ ------------------------------	2020-05-27 15:45:52
142.44.161.209	attackbotsspam	Lines containing failures of 142.44.161.209 May 25 09:31:34 * sshd[93632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.209 user=r.r May 25 09:31:36 * sshd[93632]: Failed password for r.r from 142.44.161.209 port 34264 ssh2 May 25 09:31:36 * sshd[93632]: Received disconnect from 142.44.161.209 port 34264:11: Bye Bye [preauth] May 25 09:31:36 * sshd[93632]: Disconnected from authenticating user r.r 142.44.161.209 port 34264 [preauth] May 25 10:06:43 * sshd[98469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.209 user=r.r May 25 10:06:45 * sshd[98469]: Failed password for r.r from 142.44.161.209 port 55474 ssh2 May 25 10:06:45 * sshd[98469]: Received disconnect from 142.44.161.209 port 55474:11: Bye Bye [preauth] May 25 10:06:45 * sshd[98469]: Disconnected from authenticating user r.r 142.44.161.209 port 55474 [preauth] May 25 10:14:09 *** sshd[9923........ ------------------------------	2020-05-27 07:38:58
142.44.161.25	attackspambots	Port scan on 12 port(s): 874 33119 35023 35280 39184 46472 49975 51784 52140 53850 53922 59221	2020-04-06 16:21:01
142.44.161.25	attackbots	Port scan on 6 port(s): 874 33119 35023 46472 49975 51784	2020-04-06 07:42:54
142.44.161.65	attackspambots	Aug 7 02:57:07 localhost sshd\[22340\]: Invalid user cmte from 142.44.161.65 port 48750 Aug 7 02:57:07 localhost sshd\[22340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.65 Aug 7 02:57:09 localhost sshd\[22340\]: Failed password for invalid user cmte from 142.44.161.65 port 48750 ssh2	2019-08-07 09:04:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.161.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.44.161.132.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061500 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 16 00:46:00 CST 2020
;; MSG SIZE  rcvd: 118

Host info

132.161.44.142.in-addr.arpa domain name pointer 132.ip-142-44-161.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
132.161.44.142.in-addr.arpa	name = 132.ip-142-44-161.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.234.68.215	attackspambots	2019-11-26 16:24:50,668 fail2ban.actions [4151]: NOTICE [sshd] Ban 62.234.68.215 2019-11-26 17:36:49,982 fail2ban.actions [4151]: NOTICE [sshd] Ban 62.234.68.215 2019-11-26 18:50:10,190 fail2ban.actions [4151]: NOTICE [sshd] Ban 62.234.68.215 ...	2019-11-27 05:07:20
106.12.188.252	attack	Nov 26 17:14:07 firewall sshd[27037]: Failed password for invalid user webadmin from 106.12.188.252 port 37060 ssh2 Nov 26 17:21:37 firewall sshd[27207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.188.252 user=root Nov 26 17:21:39 firewall sshd[27207]: Failed password for root from 106.12.188.252 port 45390 ssh2 ...	2019-11-27 04:57:02
130.105.67.68	attack	port scan and connect, tcp 23 (telnet)	2019-11-27 05:08:27
175.139.243.82	attack	Invalid user morishima from 175.139.243.82 port 16480	2019-11-27 05:22:43
218.29.108.186	attackbots		2019-11-27 04:53:18
157.52.211.162	attackspam	157.52.211.162 - - \[26/Nov/2019:14:37:47 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.52.211.162 - - \[26/Nov/2019:14:37:49 +0000\] "POST /wp-login.php HTTP/1.1" 200 6254 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-27 05:13:34
140.143.22.200	attackspam	2019-11-26T18:23:24.462467abusebot-6.cloudsearch.cf sshd\[30546\]: Invalid user varna from 140.143.22.200 port 38078	2019-11-27 05:02:49
103.192.76.241	attackbots	Autoban 103.192.76.241 ABORTED AUTH	2019-11-27 04:57:22
40.117.235.16	attackspambots	Nov 26 17:35:58 vps46666688 sshd[12409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.235.16 Nov 26 17:36:00 vps46666688 sshd[12409]: Failed password for invalid user pickard from 40.117.235.16 port 57146 ssh2 ...	2019-11-27 04:58:47
112.114.107.154	attackbotsspam	/SiteServer/Ajax/ajaxOtherService.aspx?type=SiteTemplateDownload&userKeyPrefix=test&downloadUrl=aZlBAFKTavCnFX10p8sNYfr9FRNHM0slash0XP8EW1kEnDr4pNGA7T2XSz0yCY0add0MS3NiuXiz7rZruw8zMDybqtdhCgxw7u0ZCkLl9cxsma6ZWqYd0G56lB6242DFnwb6xxK4AudqJ0add0gNU9tDxOqBwAd37smw0equals00equals0&directoryName=sectest	2019-11-27 05:04:02
189.212.123.195	attack	Automatic report - Port Scan Attack	2019-11-27 05:25:45
222.127.101.155	attackbots	Nov 26 21:26:33 MK-Soft-VM7 sshd[26499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.127.101.155 Nov 26 21:26:36 MK-Soft-VM7 sshd[26499]: Failed password for invalid user radvd from 222.127.101.155 port 41544 ssh2 ...	2019-11-27 05:21:27
163.172.204.185	attackspam	Nov 26 19:41:45 thevastnessof sshd[3246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.204.185 ...	2019-11-27 04:59:19
85.192.72.238	attack	Nov 26 16:02:09 meumeu sshd[29651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.72.238 Nov 26 16:02:11 meumeu sshd[29651]: Failed password for invalid user vvvvv from 85.192.72.238 port 39698 ssh2 Nov 26 16:05:35 meumeu sshd[30361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.192.72.238 ...	2019-11-27 05:06:33
144.76.189.140	attackspambots	Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour	2019-11-27 05:29:28

Recently Reported IPs

113.61.206.131	216.213.29.140	185.217.181.38	77.203.74.15
167.99.109.119	40.87.6.161	3.7.236.223	103.245.76.7
209.107.196.165	49.206.214.123	36.112.104.194	2.179.70.3
85.10.51.31	22.230.252.91	154.13.79.30	103.21.134.122
61.12.84.250	2.58.13.9	185.22.140.70	184.22.24.208