142.44.211.106

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.44.211.27	attackspambots	Oct 12 00:58:59 ns381471 sshd[12031]: Failed password for root from 142.44.211.27 port 54848 ssh2	2020-10-12 07:14:02
142.44.211.27	attackbotsspam	$f2bV_matches	2020-10-11 23:26:43
142.44.211.27	attackspam	DATE:2020-10-11 07:40:45, IP:142.44.211.27, PORT:ssh SSH brute force auth (docker-dc)	2020-10-11 15:25:10
142.44.211.27	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-10T23:43:55Z and 2020-10-10T23:49:13Z	2020-10-11 08:44:00
142.44.211.57	attack	Repeated brute force against a port	2020-08-31 23:37:47
142.44.211.57	attackspam	$f2bV_matches	2020-08-31 15:23:00
142.44.211.57	attack	Invalid user prova from 142.44.211.57 port 54668	2020-08-28 13:30:05
142.44.211.57	attackbotsspam	Invalid user prova from 142.44.211.57 port 54668	2020-08-25 16:38:02
142.44.211.57	attack	Aug 22 23:03:06 buvik sshd[32020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.211.57 Aug 22 23:03:08 buvik sshd[32020]: Failed password for invalid user student from 142.44.211.57 port 40732 ssh2 Aug 22 23:06:16 buvik sshd[32524]: Invalid user fyc from 142.44.211.57 ...	2020-08-23 05:34:16
142.44.211.57	attackbots	Aug 8 20:17:58 Ubuntu-1404-trusty-64-minimal sshd\[14947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.211.57 user=root Aug 8 20:18:00 Ubuntu-1404-trusty-64-minimal sshd\[14947\]: Failed password for root from 142.44.211.57 port 52606 ssh2 Aug 8 20:28:28 Ubuntu-1404-trusty-64-minimal sshd\[19963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.211.57 user=root Aug 8 20:28:30 Ubuntu-1404-trusty-64-minimal sshd\[19963\]: Failed password for root from 142.44.211.57 port 36136 ssh2 Aug 8 20:32:13 Ubuntu-1404-trusty-64-minimal sshd\[26460\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.211.57 user=root	2020-08-09 03:19:03
142.44.211.57	attackspam	$f2bV_matches	2020-08-06 01:47:58
142.44.211.179	attackbotsspam	probes 4 times on the port 52869	2020-04-25 21:06:06
142.44.211.179	attack	probes 6 times on the port 52869	2020-04-17 04:08:53
142.44.211.229	attackbotsspam	fail2ban	2020-03-07 20:00:04
142.44.211.179	attackbots	probes 5 times on the port 52869	2020-02-27 00:53:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.211.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.44.211.106.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:21:30 CST 2022
;; MSG SIZE  rcvd: 107

Host info

106.211.44.142.in-addr.arpa domain name pointer 106.ip-142-44-211.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.211.44.142.in-addr.arpa	name = 106.ip-142-44-211.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.158.147.12	attackbots	$f2bV_matches	2019-10-11 18:16:28
103.44.27.58	attackspam	2019-10-11T09:40:57.061307abusebot-5.cloudsearch.cf sshd\[8876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.44.27.58 user=root	2019-10-11 17:53:05
51.254.181.232	attack	[portscan] Port scan	2019-10-11 18:00:58
175.143.127.73	attackspambots	2019-10-11T06:35:43.067983abusebot.cloudsearch.cf sshd\[578\]: Failed password for root from 175.143.127.73 port 38028 ssh2	2019-10-11 17:58:50
182.61.109.222	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-10-11 17:45:45
5.165.86.92	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.165.86.92/ RU - 1H : (144) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN57044 IP : 5.165.86.92 CIDR : 5.165.84.0/22 PREFIX COUNT : 34 UNIQUE IP COUNT : 26880 WYKRYTE ATAKI Z ASN57044 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 2 DateTime : 2019-10-11 06:43:21 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-11 18:06:42
54.38.81.106	attackspam	Oct 11 06:49:04 www sshd\[27466\]: Invalid user debian@2016 from 54.38.81.106 Oct 11 06:49:04 www sshd\[27466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.81.106 Oct 11 06:49:07 www sshd\[27466\]: Failed password for invalid user debian@2016 from 54.38.81.106 port 60896 ssh2 ...	2019-10-11 18:12:19
75.149.254.249	attack	Telnet Server BruteForce Attack	2019-10-11 17:49:14
148.70.48.76	attack	2019-10-11T11:50:40.136350 sshd[7582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.48.76 user=root 2019-10-11T11:50:42.095329 sshd[7582]: Failed password for root from 148.70.48.76 port 56207 ssh2 2019-10-11T11:55:47.125885 sshd[7632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.48.76 user=root 2019-10-11T11:55:49.230393 sshd[7632]: Failed password for root from 148.70.48.76 port 47607 ssh2 2019-10-11T12:01:16.710381 sshd[7715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.48.76 user=root 2019-10-11T12:01:18.980397 sshd[7715]: Failed password for root from 148.70.48.76 port 39013 ssh2 ...	2019-10-11 18:29:12
27.210.158.137	attackspambots	Unauthorised access (Oct 11) SRC=27.210.158.137 LEN=40 TTL=49 ID=9002 TCP DPT=8080 WINDOW=15405 SYN Unauthorised access (Oct 10) SRC=27.210.158.137 LEN=40 TTL=49 ID=20974 TCP DPT=8080 WINDOW=39486 SYN Unauthorised access (Oct 7) SRC=27.210.158.137 LEN=40 TTL=49 ID=34059 TCP DPT=8080 WINDOW=39486 SYN Unauthorised access (Oct 7) SRC=27.210.158.137 LEN=40 TTL=49 ID=32550 TCP DPT=8080 WINDOW=28533 SYN Unauthorised access (Oct 6) SRC=27.210.158.137 LEN=40 TTL=49 ID=41270 TCP DPT=8080 WINDOW=39486 SYN	2019-10-11 18:16:55
113.20.242.42	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.20.242.42/ JP - 1H : (36) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : JP NAME ASN : ASN9351 IP : 113.20.242.42 CIDR : 113.20.192.0/18 PREFIX COUNT : 23 UNIQUE IP COUNT : 151552 WYKRYTE ATAKI Z ASN9351 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 DateTime : 2019-10-11 05:48:39 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 18:24:56
103.212.235.182	attack	Oct 11 06:33:15 SilenceServices sshd[22315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.212.235.182 Oct 11 06:33:17 SilenceServices sshd[22315]: Failed password for invalid user qwe#@! from 103.212.235.182 port 46746 ssh2 Oct 11 06:38:07 SilenceServices sshd[23589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.212.235.182	2019-10-11 18:04:51
164.132.209.242	attackspambots	Oct 10 17:45:50 sachi sshd\[17130\]: Invalid user \#edc\$rfv%tgb from 164.132.209.242 Oct 10 17:45:50 sachi sshd\[17130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip242.ip-164-132-209.eu Oct 10 17:45:52 sachi sshd\[17130\]: Failed password for invalid user \#edc\$rfv%tgb from 164.132.209.242 port 48122 ssh2 Oct 10 17:49:38 sachi sshd\[17451\]: Invalid user Man2017 from 164.132.209.242 Oct 10 17:49:38 sachi sshd\[17451\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip242.ip-164-132-209.eu	2019-10-11 17:51:48
139.59.66.192	attackbots	2019-10-11T05:46:24.492687shield sshd\[18415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=manage.brandwox.com user=root 2019-10-11T05:46:26.440259shield sshd\[18415\]: Failed password for root from 139.59.66.192 port 56674 ssh2 2019-10-11T05:50:42.050798shield sshd\[18736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=manage.brandwox.com user=root 2019-10-11T05:50:44.084404shield sshd\[18736\]: Failed password for root from 139.59.66.192 port 40110 ssh2 2019-10-11T05:54:54.395749shield sshd\[19443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=manage.brandwox.com user=root	2019-10-11 18:31:29
141.98.10.55	attack	Oct 11 09:03:30 mail postfix/smtpd\[18464\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 11 09:27:43 mail postfix/smtpd\[19376\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 11 09:52:12 mail postfix/smtpd\[19891\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 11 10:41:03 mail postfix/smtpd\[21132\]: warning: unknown\[141.98.10.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-10-11 17:56:40

Recently Reported IPs

142.44.212.226	142.44.210.167	142.44.214.111	142.44.216.172
142.44.231.239	142.44.218.138	142.44.243.228	142.44.231.238
142.44.235.150	142.54.166.102	142.54.169.82	142.54.166.99
142.44.240.74	142.44.255.113	142.54.174.179	142.54.174.222
142.54.176.243	142.54.176.244	142.54.178.10	142.54.177.234