142.44.243.160

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	<6 unauthorized SSH connections	2020-05-08 15:34:15
attackbotsspam	May 4 00:49:21 meumeu sshd[26299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.243.160 May 4 00:49:22 meumeu sshd[26299]: Failed password for invalid user marcio from 142.44.243.160 port 43208 ssh2 May 4 00:53:52 meumeu sshd[30460]: Failed password for root from 142.44.243.160 port 48750 ssh2 ...	2020-05-04 07:10:26
attack	20 attempts against mh-ssh on cloud	2020-04-23 17:22:14
attack	Fail2Ban - SSH Bruteforce Attempt	2020-04-23 12:26:57
attackbots	Unauthorized connection attempt detected from IP address 142.44.243.160 to port 2220 [J]	2020-02-02 04:15:09
attackspambots	Unauthorized connection attempt detected from IP address 142.44.243.160 to port 2220 [J]	2020-01-11 23:07:14
attackbots	2019-12-31T16:47:52.524173vps751288.ovh.net sshd\[7650\]: Invalid user kiltz from 142.44.243.160 port 45144 2019-12-31T16:47:52.532969vps751288.ovh.net sshd\[7650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net 2019-12-31T16:47:54.834720vps751288.ovh.net sshd\[7650\]: Failed password for invalid user kiltz from 142.44.243.160 port 45144 ssh2 2019-12-31T16:50:55.103610vps751288.ovh.net sshd\[7654\]: Invalid user eskedal from 142.44.243.160 port 60289 2019-12-31T16:50:55.113652vps751288.ovh.net sshd\[7654\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net	2020-01-01 06:14:17
attackbots	Automatic report - SSH Brute-Force Attack	2019-12-26 19:28:00
attack	Dec 21 21:37:04 server sshd\[29414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net user=root Dec 21 21:37:06 server sshd\[29414\]: Failed password for root from 142.44.243.160 port 53249 ssh2 Dec 21 21:41:59 server sshd\[30687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net user=root Dec 21 21:42:00 server sshd\[30687\]: Failed password for root from 142.44.243.160 port 56239 ssh2 Dec 21 21:46:53 server sshd\[31966\]: Invalid user escape from 142.44.243.160 Dec 21 21:46:53 server sshd\[31966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net ...	2019-12-22 04:32:46
attack	Dec 18 13:33:21 wbs sshd\[3028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net user=root Dec 18 13:33:22 wbs sshd\[3028\]: Failed password for root from 142.44.243.160 port 51799 ssh2 Dec 18 13:38:48 wbs sshd\[3527\]: Invalid user server from 142.44.243.160 Dec 18 13:38:48 wbs sshd\[3527\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net Dec 18 13:38:50 wbs sshd\[3527\]: Failed password for invalid user server from 142.44.243.160 port 56154 ssh2	2019-12-19 08:27:26
attack	Dec 12 23:44:08 kapalua sshd\[637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net user=mysql Dec 12 23:44:10 kapalua sshd\[637\]: Failed password for mysql from 142.44.243.160 port 40449 ssh2 Dec 12 23:49:37 kapalua sshd\[1254\]: Invalid user roo from 142.44.243.160 Dec 12 23:49:37 kapalua sshd\[1254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.ip-142-44-243.net Dec 12 23:49:39 kapalua sshd\[1254\]: Failed password for invalid user roo from 142.44.243.160 port 45037 ssh2	2019-12-13 23:15:28
attackbotsspam	$f2bV_matches	2019-12-02 06:46:37
attack	$f2bV_matches	2019-11-30 03:31:49
attackspam	Automatic report - SSH Brute-Force Attack	2019-11-26 09:24:41

Comments on same subnet:

IP	Type	Details	Datetime
142.44.243.190	attack	Exploited Host.	2020-07-25 23:23:07
142.44.243.190	attack	2020-04-06T02:38:13.238478struts4.enskede.local sshd\[25312\]: Invalid user user3 from 142.44.243.190 port 37770 2020-04-06T02:38:13.246079struts4.enskede.local sshd\[25312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.ip-142-44-243.net 2020-04-06T02:38:17.011930struts4.enskede.local sshd\[25312\]: Failed password for invalid user user3 from 142.44.243.190 port 37770 ssh2 2020-04-06T02:40:02.642733struts4.enskede.local sshd\[25367\]: Invalid user ubuntu from 142.44.243.190 port 57770 2020-04-06T02:40:02.650424struts4.enskede.local sshd\[25367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.ip-142-44-243.net ...	2020-04-06 09:00:29
142.44.243.190	attackspambots	Tried sshing with brute force.	2020-04-02 06:29:04
142.44.243.190	attackbots	Mar 28 10:08:54 server sshd\[27528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.ip-142-44-243.net user=root Mar 28 10:08:56 server sshd\[27528\]: Failed password for root from 142.44.243.190 port 34966 ssh2 Mar 28 10:10:39 server sshd\[28317\]: Invalid user test from 142.44.243.190 Mar 28 10:10:39 server sshd\[28317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.ip-142-44-243.net Mar 28 10:10:41 server sshd\[28317\]: Failed password for invalid user test from 142.44.243.190 port 48964 ssh2 ...	2020-03-28 16:11:53
142.44.243.190	attackbotsspam	Mar 27 21:00:53 jane sshd[3937]: Failed password for root from 142.44.243.190 port 43702 ssh2 Mar 27 21:02:35 jane sshd[6190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.243.190 ...	2020-03-28 05:07:23
142.44.243.190	attackbotsspam	Mar 24 21:46:17 sshd\[17456\]: User root from 190.ip-142-44-243.net not allowed because not listed in AllowUsersMar 24 21:46:19 sshd\[17456\]: Failed password for invalid user root from 142.44.243.190 port 55782 ssh2 ...	2020-03-25 06:49:38
142.44.243.190	attackbots	$f2bV_matches_ltvn	2020-03-18 09:36:56
142.44.243.126	attack	fail2ban	2020-03-07 17:26:00
142.44.243.161	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-11 09:03:45
142.44.243.161	attackspambots	Nov 8 19:09:16 h2177944 kernel: \[6112155.288070\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=64571 PROTO=TCP SPT=23990 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:09:34 h2177944 kernel: \[6112173.258398\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=60261 PROTO=TCP SPT=57166 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:12:10 h2177944 kernel: \[6112329.221696\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=19014 PROTO=TCP SPT=40139 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:13:54 h2177944 kernel: \[6112433.916701\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=55872 PROTO=TCP SPT=6946 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 8 19:15:10 h2177944 kernel: \[6112509.834276\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00	2019-11-09 04:30:24
142.44.243.161	attackspambots	Unauthorised access (Nov 8) SRC=142.44.243.161 LEN=40 TTL=237 ID=59526 TCP DPT=23 WINDOW=0 SYN Unauthorised access (Nov 6) SRC=142.44.243.161 LEN=40 TTL=239 ID=1248 TCP DPT=23 WINDOW=0 SYN Unauthorised access (Nov 5) SRC=142.44.243.161 LEN=40 TTL=237 ID=34274 TCP DPT=23 WINDOW=0 SYN Unauthorised access (Nov 5) SRC=142.44.243.161 LEN=40 TTL=237 ID=61835 TCP DPT=23 WINDOW=0 SYN Unauthorised access (Nov 4) SRC=142.44.243.161 LEN=40 TTL=237 ID=52567 TCP DPT=23 WINDOW=0 SYN Unauthorised access (Nov 4) SRC=142.44.243.161 LEN=40 TTL=237 ID=18317 TCP DPT=23 WINDOW=0 SYN Unauthorised access (Nov 3) SRC=142.44.243.161 LEN=40 TTL=237 ID=16544 TCP DPT=23 WINDOW=0 SYN	2019-11-08 18:59:07
142.44.243.161	attackspam	Nov 2 22:54:24 h2177944 kernel: \[5607354.351930\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=47309 PROTO=TCP SPT=50898 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 2 22:54:36 h2177944 kernel: \[5607366.493998\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=62777 PROTO=TCP SPT=35399 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 2 22:55:10 h2177944 kernel: \[5607400.863459\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=35029 PROTO=TCP SPT=11008 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 2 22:55:19 h2177944 kernel: \[5607410.179296\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=46821 PROTO=TCP SPT=56382 DPT=23 WINDOW=0 RES=0x00 SYN URGP=0 Nov 2 22:56:12 h2177944 kernel: \[5607462.536175\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=142.44.243.161 DST=85.214.117.9 LEN=40 TOS=0x0	2019-11-03 07:54:58
142.44.243.161	attackbotsspam	Excessive Port-Scanning	2019-10-25 20:48:25
142.44.243.161	attackspam	23/tcp 23/tcp [2019-09-29]2pkt	2019-09-29 14:08:41
142.44.243.126	attackbotsspam	Invalid user dev from 142.44.243.126 port 40462	2019-07-28 07:36:49

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.243.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48961
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;142.44.243.160.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Tue Nov 26 09:30:47 CST 2019
;; MSG SIZE  rcvd: 118

Host info

160.243.44.142.in-addr.arpa domain name pointer 160.ip-142-44-243.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
160.243.44.142.in-addr.arpa	name = 160.ip-142-44-243.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.180.147	attackbots	Dec 14 20:50:34 thevastnessof sshd[4457]: Failed password for root from 222.186.180.147 port 55214 ssh2 ...	2019-12-15 04:52:39
91.121.86.62	attackbots	Dec 14 18:18:44 herz-der-gamer sshd[19381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.86.62 user=mysql Dec 14 18:18:46 herz-der-gamer sshd[19381]: Failed password for mysql from 91.121.86.62 port 42242 ssh2 Dec 14 18:27:41 herz-der-gamer sshd[19489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.86.62 user=root Dec 14 18:27:44 herz-der-gamer sshd[19489]: Failed password for root from 91.121.86.62 port 40872 ssh2 ...	2019-12-15 05:19:46
103.89.56.42	attack	(imapd) Failed IMAP login from 103.89.56.42 (IN/India/host103-89-56-42.adriinfocom.in): 1 in the last 3600 secs	2019-12-15 04:49:44
141.101.24.171	attackbotsspam	Automatic report - Banned IP Access	2019-12-15 05:03:32
77.247.109.74	attackbotsspam	ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak	2019-12-15 04:58:14
209.97.179.209	attackspambots	Dec 14 20:56:22 MK-Soft-VM5 sshd[20045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.179.209 Dec 14 20:56:24 MK-Soft-VM5 sshd[20045]: Failed password for invalid user jayendra from 209.97.179.209 port 56342 ssh2 ...	2019-12-15 04:53:10
193.188.22.187	attackbots	Unauthorized connection attempt detected from IP address 193.188.22.187 to port 3389	2019-12-15 04:58:50
207.244.117.218	attackspambots	(From eric@talkwithcustomer.com) Hello rolleyfamilychiropractic.com, People ask, “why does TalkWithCustomer work so well?” It’s simple. TalkWithCustomer enables you to connect with a prospective customer at EXACTLY the Perfect Time. - NOT one week, two weeks, three weeks after they’ve checked out your website rolleyfamilychiropractic.com. - NOT with a form letter style email that looks like it was written by a bot. - NOT with a robocall that could come at any time out of the blue. TalkWithCustomer connects you to that person within seconds of THEM asking to hear from YOU. They kick off the conversation. They take that first step. They ask to hear from you regarding what you have to offer and how it can make their life better. And it happens almost immediately. In real time. While they’re still looking over your website rolleyfamilychiropractic.com, trying to make up their mind whether you are right for them. When you connect with them at that very moment it’s the ultimate in P	2019-12-15 04:50:46
141.101.69.167	attack	IP blocked	2019-12-15 05:14:38
184.64.13.67	attackspambots	Invalid user canja from 184.64.13.67 port 46038	2019-12-15 05:12:42
46.217.248.7	attack	Unauthorized connection attempt detected from IP address 46.217.248.7 to port 23	2019-12-15 05:05:57
58.42.212.177	attack		2019-12-15 04:46:38
106.249.25.137	attackbots	fail2ban honeypot	2019-12-15 05:01:48
183.63.87.236	attackbotsspam	Dec 14 16:49:28 dedicated sshd[21695]: Invalid user kiandra from 183.63.87.236 port 33312	2019-12-15 05:02:57
139.59.37.209	attackbotsspam	Dec 15 03:45:32 webhost01 sshd[13492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.37.209 Dec 15 03:45:34 webhost01 sshd[13492]: Failed password for invalid user guest from 139.59.37.209 port 60454 ssh2 ...	2019-12-15 04:57:11

Recently Reported IPs

181.164.131.236	142.54.172.230	147.216.203.172	171.224.24.210
232.58.229.24	179.175.151.139	194.175.227.109	138.5.9.5
165.255.47.47	38.40.21.74	205.219.124.251	131.212.37.95
54.189.59.162	58.119.65.135	200.194.241.183	123.45.128.166
250.90.192.79	18.244.226.42	38.219.171.140	170.30.33.146