144.160.159.22

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: AT&T Services Inc.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SSH login attempts.	2020-03-29 17:58:08
attack	SSH login attempts.	2020-02-17 20:59:32

Comments on same subnet:

IP	Type	Details	Datetime
144.160.159.21	attackbotsspam	SSH login attempts.	2020-02-17 14:48:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 144.160.159.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18973
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;144.160.159.22.			IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021700 1800 900 604800 86400

;; Query time: 502 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 20:59:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

22.159.160.144.in-addr.arpa domain name pointer ff-ip4-mx-vip2.prodigy.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.159.160.144.in-addr.arpa	name = ff-ip4-mx-vip2.prodigy.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.223.204.165	attackspambots	Jan 12 18:24:34 ny01 sshd[6867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.223.204.165 Jan 12 18:24:35 ny01 sshd[6867]: Failed password for invalid user kerry from 82.223.204.165 port 33992 ssh2 Jan 12 18:27:24 ny01 sshd[7521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.223.204.165	2020-01-13 07:36:48
92.118.37.86	attack	Jan 13 00:35:30 h2177944 kernel: \[2070589.307113\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.86 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=57709 PROTO=TCP SPT=51185 DPT=5010 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 00:35:30 h2177944 kernel: \[2070589.307127\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.86 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=57709 PROTO=TCP SPT=51185 DPT=5010 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 00:49:10 h2177944 kernel: \[2071409.205821\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.86 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=63904 PROTO=TCP SPT=51185 DPT=5243 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 00:49:10 h2177944 kernel: \[2071409.205836\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.86 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=63904 PROTO=TCP SPT=51185 DPT=5243 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 13 00:56:27 h2177944 kernel: \[2071846.072658\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.118.37.86 DST=85.214.117.9 LEN=	2020-01-13 08:05:03
201.90.17.6	attackspam	1578864295 - 01/12/2020 22:24:55 Host: 201.90.17.6/201.90.17.6 Port: 445 TCP Blocked	2020-01-13 07:54:03
49.88.112.114	attack	Jan 12 13:28:32 php1 sshd\[5513\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Jan 12 13:28:34 php1 sshd\[5513\]: Failed password for root from 49.88.112.114 port 32502 ssh2 Jan 12 13:29:36 php1 sshd\[5584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Jan 12 13:29:38 php1 sshd\[5584\]: Failed password for root from 49.88.112.114 port 39607 ssh2 Jan 12 13:30:36 php1 sshd\[5669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2020-01-13 07:39:14
222.186.175.140	attackspam	Jan 12 23:33:44 ip-172-31-62-245 sshd\[1336\]: Failed password for root from 222.186.175.140 port 46548 ssh2\ Jan 12 23:33:47 ip-172-31-62-245 sshd\[1336\]: Failed password for root from 222.186.175.140 port 46548 ssh2\ Jan 12 23:33:56 ip-172-31-62-245 sshd\[1336\]: Failed password for root from 222.186.175.140 port 46548 ssh2\ Jan 12 23:34:14 ip-172-31-62-245 sshd\[1352\]: Failed password for root from 222.186.175.140 port 65472 ssh2\ Jan 12 23:34:17 ip-172-31-62-245 sshd\[1352\]: Failed password for root from 222.186.175.140 port 65472 ssh2\	2020-01-13 07:37:58
186.4.125.26	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 12-01-2020 21:25:15.	2020-01-13 07:40:43
142.93.163.77	attackspambots	Jan 13 00:05:03 mout sshd[14360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.163.77 user=root Jan 13 00:05:05 mout sshd[14360]: Failed password for root from 142.93.163.77 port 51598 ssh2	2020-01-13 07:30:08
221.195.189.154	attack	Unauthorized connection attempt detected from IP address 221.195.189.154 to port 2220 [J]	2020-01-13 08:00:33
159.203.74.227	attackbots	Unauthorized connection attempt detected from IP address 159.203.74.227 to port 2220 [J]	2020-01-13 07:27:56
218.92.0.212	attack	SSH-BruteForce	2020-01-13 07:46:44
219.93.106.33	attackspam	Jan 13 00:24:29 ArkNodeAT sshd\[23075\]: Invalid user test from 219.93.106.33 Jan 13 00:24:29 ArkNodeAT sshd\[23075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.93.106.33 Jan 13 00:24:31 ArkNodeAT sshd\[23075\]: Failed password for invalid user test from 219.93.106.33 port 52281 ssh2	2020-01-13 07:30:51
198.1.65.159	attackbots	2020-01-13 00:05:38,857 fail2ban.actions: WARNING [ssh] Ban 198.1.65.159	2020-01-13 07:32:08
193.107.3.251	attackspam	Unauthorized connection attempt detected from IP address 193.107.3.251 to port 81 [J]	2020-01-13 08:05:48
206.189.40.187	attackspambots	Jan 12 16:37:51 hostnameproxy sshd[10776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.40.187 user=r.r Jan 12 16:37:53 hostnameproxy sshd[10776]: Failed password for r.r from 206.189.40.187 port 58864 ssh2 Jan 12 16:40:50 hostnameproxy sshd[10882]: Invalid user hydra from 206.189.40.187 port 58470 Jan 12 16:40:50 hostnameproxy sshd[10882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.40.187 Jan 12 16:40:52 hostnameproxy sshd[10882]: Failed password for invalid user hydra from 206.189.40.187 port 58470 ssh2 Jan 12 16:43:49 hostnameproxy sshd[10929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.40.187 user=r.r Jan 12 16:43:51 hostnameproxy sshd[10929]: Failed password for r.r from 206.189.40.187 port 58076 ssh2 Jan 12 16:46:53 hostnameproxy sshd[11019]: Invalid user wolf from 206.189.40.187 port 57682 Jan 12 16:46:53 ho........ ------------------------------	2020-01-13 07:55:39
92.118.37.88	attackspam	01/12/2020-17:49:15.410048 92.118.37.88 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-13 07:59:16

Recently Reported IPs

43.147.146.133	137.12.181.180	68.246.218.66	230.40.114.252
216.171.192.25	40.213.227.99	61.144.250.63	89.134.87.42
175.121.69.217	88.12.201.88	67.195.204.80	174.30.37.10
125.69.130.166	242.165.220.129	52.7.114.241	116.72.90.139
196.206.225.136	159.138.159.57	200.163.69.245	117.1.244.12