142.44.254.107

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
142.44.254.100	attack	Bruteforce detected by fail2ban	2020-09-23 21:59:29
142.44.254.100	attack	(sshd) Failed SSH login from 142.44.254.100 (CA/Canada/ip100.ip-142-44-254.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD	2020-09-23 14:19:37
142.44.254.100	attackspam	Sep 23 00:04:58 vm1 sshd[15670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.254.100 Sep 23 00:05:00 vm1 sshd[15670]: Failed password for invalid user xiaoming from 142.44.254.100 port 4528 ssh2 ...	2020-09-23 06:09:00

Type

Details

Datetime

142.44.254.100

attack

Bruteforce detected by fail2ban

2020-09-23 21:59:29

142.44.254.100

attack

(sshd) Failed SSH login from 142.44.254.100 (CA/Canada/ip100.ip-142-44-254.net): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD

2020-09-23 14:19:37

142.44.254.100

attackspam

Sep 23 00:04:58 vm1 sshd[15670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.254.100
Sep 23 00:05:00 vm1 sshd[15670]: Failed password for invalid user xiaoming from 142.44.254.100 port 4528 ssh2
...

2020-09-23 06:09:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.44.254.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26237
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.44.254.107.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:04:56 CST 2022
;; MSG SIZE  rcvd: 107

Host info

107.254.44.142.in-addr.arpa domain name pointer breizhcafe.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
107.254.44.142.in-addr.arpa	name = breizhcafe.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.239.180.188	attackbots	Automatic report - XMLRPC Attack	2020-05-10 06:30:27
103.75.33.195	attack	May 9 22:17:07 web01.agentur-b-2.de postfix/smtpd[280362]: NOQUEUE: reject: RCPT from unknown[103.75.33.195]: 554 5.7.1 Service unavailable; Client host [103.75.33.195] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/103.75.33.195 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<1000gem.org> May 9 22:17:10 web01.agentur-b-2.de postfix/smtpd[280362]: NOQUEUE: reject: RCPT from unknown[103.75.33.195]: 554 5.7.1 Service unavailable; Client host [103.75.33.195] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/103.75.33.195 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<1000gem.org> May 9 22:17:11 web01.agentur-b-2.de postfix/smtpd[280362]: NOQUEUE: reject: RCPT from unknown[103.75.33.195]: 554 5.7.1 Service unavailable; Client host [103.75.33.195] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/103.75.33	2020-05-10 06:56:04
219.144.68.15	attackspam	Fail2Ban Ban Triggered	2020-05-10 06:38:21
61.182.232.38	attackbots	May 10 00:24:08 cloud sshd[2663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.182.232.38 May 10 00:24:11 cloud sshd[2663]: Failed password for invalid user postgres from 61.182.232.38 port 48124 ssh2	2020-05-10 07:03:41
89.163.132.37	attackbots	(sshd) Failed SSH login from 89.163.132.37 (DE/Germany/rs003578.fastrootserver.de): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 9 22:28:43 ubnt-55d23 sshd[3795]: Invalid user jenkins from 89.163.132.37 port 50495 May 9 22:28:45 ubnt-55d23 sshd[3795]: Failed password for invalid user jenkins from 89.163.132.37 port 50495 ssh2	2020-05-10 06:45:07
185.50.149.17	attack	May 10 00:16:01 web01.agentur-b-2.de postfix/smtpd[448403]: warning: unknown[185.50.149.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:16:01 web01.agentur-b-2.de postfix/smtpd[448403]: lost connection after AUTH from unknown[185.50.149.17] May 10 00:16:06 web01.agentur-b-2.de postfix/smtpd[448103]: lost connection after AUTH from unknown[185.50.149.17] May 10 00:16:10 web01.agentur-b-2.de postfix/smtpd[448403]: lost connection after AUTH from unknown[185.50.149.17] May 10 00:16:15 web01.agentur-b-2.de postfix/smtpd[448103]: lost connection after AUTH from unknown[185.50.149.17]	2020-05-10 06:33:57
77.247.110.109	attack	Port scan detected on ports: 5060[UDP], 5062[UDP], 5066[UDP]	2020-05-10 06:30:44
218.92.0.173	attack	2020-05-09T22:37:47.113743abusebot-2.cloudsearch.cf sshd[9141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root 2020-05-09T22:37:48.850030abusebot-2.cloudsearch.cf sshd[9141]: Failed password for root from 218.92.0.173 port 54575 ssh2 2020-05-09T22:37:52.195388abusebot-2.cloudsearch.cf sshd[9141]: Failed password for root from 218.92.0.173 port 54575 ssh2 2020-05-09T22:37:47.113743abusebot-2.cloudsearch.cf sshd[9141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root 2020-05-09T22:37:48.850030abusebot-2.cloudsearch.cf sshd[9141]: Failed password for root from 218.92.0.173 port 54575 ssh2 2020-05-09T22:37:52.195388abusebot-2.cloudsearch.cf sshd[9141]: Failed password for root from 218.92.0.173 port 54575 ssh2 2020-05-09T22:37:47.113743abusebot-2.cloudsearch.cf sshd[9141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218. ...	2020-05-10 06:38:09
185.50.149.12	attack	May 9 23:45:45 mail postfix/smtpd\[14176\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 9 23:46:11 mail postfix/smtpd\[14152\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 10 00:50:48 mail postfix/smtpd\[15356\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ May 10 00:51:11 mail postfix/smtpd\[15308\]: warning: unknown\[185.50.149.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-05-10 06:53:18
217.112.142.244	attackspam	May 9 23:25:18 web01.agentur-b-2.de postfix/smtpd[300244]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 9 23:30:14 web01.agentur-b-2.de postfix/smtpd[298866]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 9 23:30:15 web01.agentur-b-2.de postfix/smtpd[293228]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 9 23:30:16 web01.agentur-b-2.de postfix/smtpd[300244]: NOQUEUE: reject: RCPT from unknown[217.112.142.244]: 450 4.7.1	2020-05-10 06:50:26
222.186.190.17	attackbots	May 10 00:31:15 ovpn sshd\[26706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.17 user=root May 10 00:31:17 ovpn sshd\[26706\]: Failed password for root from 222.186.190.17 port 18675 ssh2 May 10 00:32:49 ovpn sshd\[27075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.17 user=root May 10 00:32:51 ovpn sshd\[27075\]: Failed password for root from 222.186.190.17 port 53335 ssh2 May 10 00:34:20 ovpn sshd\[27431\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.17 user=root	2020-05-10 06:38:42
185.50.149.9	attack	Brute force attack stopped by firewall	2020-05-10 06:53:46
92.154.95.236	attackbotsspam	Port scan on 14 port(s): 1040 1045 1105 1119 1641 2065 3211 3306 5907 5988 5998 6007 10001 61900	2020-05-10 06:34:55
209.85.220.41	attack	Pretends to be renting apartments on craigslist, seeks personal information. Actual location is not for rent and people residing there are fed up with numerous people going there. The craigslist photos were obtained from an online real estate website.	2020-05-10 06:46:53
176.53.69.2	attack	Detected by ModSecurity. Request URI: /wp-login.php	2020-05-10 07:04:11

Recently Reported IPs

142.44.255.217	142.44.235.148	142.44.244.84	142.47.104.50
142.54.166.100	142.44.246.164	142.54.166.101	33.159.21.8
142.93.101.239	142.93.119.71	142.93.124.125	142.93.119.125
142.93.100.187	142.93.115.176	142.93.113.138	142.93.112.229
142.93.107.166	142.93.114.28	142.93.118.22	142.93.124.196