160.16.101.242

Basic Info

City: unknown

Region: unknown

Country: Japan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
160.16.101.57	attack	160.16.101.57 (JP/Japan/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 7 12:35:43 cvps sshd[14616]: Failed password for root from 160.16.101.57 port 35866 ssh2 Sep 7 12:34:22 cvps sshd[14243]: Failed password for root from 176.31.163.192 port 47762 ssh2 Sep 7 12:44:45 cvps sshd[17810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.40.83 user=root Sep 7 12:28:51 cvps sshd[12201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.225.205 user=root Sep 7 12:28:53 cvps sshd[12201]: Failed password for root from 189.240.225.205 port 55814 ssh2 IP Addresses Blocked:	2020-09-08 04:32:31
160.16.101.57	attack	2020-09-07T07:03:54.022395morrigan.ad5gb.com sshd[2012407]: Failed password for root from 160.16.101.57 port 49550 ssh2 2020-09-07T07:03:54.304674morrigan.ad5gb.com sshd[2012407]: Disconnected from authenticating user root 160.16.101.57 port 49550 [preauth]	2020-09-07 20:12:05
160.16.101.81	attack	Aug 19 21:23:09 sip sshd[1360740]: Invalid user fuckyou from 160.16.101.81 port 43486 Aug 19 21:23:12 sip sshd[1360740]: Failed password for invalid user fuckyou from 160.16.101.81 port 43486 ssh2 Aug 19 21:27:40 sip sshd[1360780]: Invalid user fax from 160.16.101.81 port 52404 ...	2020-08-20 03:55:08
160.16.101.81	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-17T11:55:38Z and 2020-08-17T12:07:04Z	2020-08-17 23:16:40
160.16.101.57	attackspam	SSH Login Bruteforce	2020-07-28 17:33:47
160.16.101.228	attack	May 22 12:25:39 163-172-32-151 sshd[25665]: Invalid user kec from 160.16.101.228 port 50602 ...	2020-05-22 18:38:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 160.16.101.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13454
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;160.16.101.242.			IN	A

;; AUTHORITY SECTION:
.			434	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 05:17:47 CST 2022
;; MSG SIZE  rcvd: 107

Host info

242.101.16.160.in-addr.arpa domain name pointer tk2-226-22988.vs.sakura.ne.jp.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.101.16.160.in-addr.arpa	name = tk2-226-22988.vs.sakura.ne.jp.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.135.152.97	attack	Jul 21 22:28:14 SilenceServices sshd[5877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.152.97 Jul 21 22:28:16 SilenceServices sshd[5877]: Failed password for invalid user postgres from 5.135.152.97 port 60968 ssh2 Jul 21 22:33:31 SilenceServices sshd[9549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.152.97	2019-07-22 04:45:26
191.242.223.246	attack	Autoban 191.242.223.246 AUTH/CONNECT	2019-07-22 04:51:41
157.230.91.45	attackbotsspam	Jul 21 21:12:19 debian sshd\[18468\]: Invalid user nexus from 157.230.91.45 port 55662 Jul 21 21:12:19 debian sshd\[18468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.91.45 ...	2019-07-22 04:19:02
191.53.222.98	attackspambots	Autoban 191.53.222.98 AUTH/CONNECT	2019-07-22 04:11:40
187.158.156.105	attackbotsspam	Sun, 21 Jul 2019 18:28:41 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 04:15:39
111.92.75.116	attackbots	Sun, 21 Jul 2019 18:28:31 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 04:48:23
191.243.146.46	attackbots	Autoban 191.243.146.46 AUTH/CONNECT	2019-07-22 04:49:07
191.53.193.133	attack	Autoban 191.53.193.133 AUTH/CONNECT	2019-07-22 04:35:05
37.252.90.88	attack	Sun, 21 Jul 2019 18:28:32 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 04:44:46
139.194.207.158	attackbotsspam	Sun, 21 Jul 2019 18:28:30 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 04:50:29
191.253.40.117	attack	Autoban 191.253.40.117 AUTH/CONNECT	2019-07-22 04:46:32
113.21.69.17	attackbotsspam	Sun, 21 Jul 2019 18:28:40 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 04:20:07
191.53.106.1	attackbotsspam	Autoban 191.53.106.1 AUTH/CONNECT	2019-07-22 04:37:46
92.38.108.204	attack	Sun, 21 Jul 2019 18:28:40 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 04:20:26
191.37.16.64	attackspam	Autoban 191.37.16.64 AUTH/CONNECT	2019-07-22 04:43:33

Recently Reported IPs

160.16.102.101	160.16.238.47	160.16.243.179	160.16.243.76
160.16.240.134	160.16.50.189	160.16.243.95	160.16.239.22
160.16.239.84	160.16.240.239	160.16.51.191	160.16.51.181
160.16.52.27	160.16.54.34	160.16.52.33	160.16.54.78
160.16.55.68	160.16.59.139	160.16.55.193	160.16.58.222