160.238.72.142

Basic Info

City: Visakhapatnam

Region: Andhra Pradesh

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
160.238.72.29	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-24 23:26:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 160.238.72.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 466
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;160.238.72.142.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025010702 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 08 12:20:28 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 142.72.238.160.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.72.238.160.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.15.66.144	attackbots	Feb 26 02:36:06 pl2server sshd[3535]: Invalid user pi from 78.15.66.144 Feb 26 02:36:06 pl2server sshd[3535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=dynamic-adsl-78-15-66-144.clienti.tiscali.hostname Feb 26 02:36:06 pl2server sshd[3537]: Invalid user pi from 78.15.66.144 Feb 26 02:36:06 pl2server sshd[3537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=dynamic-adsl-78-15-66-144.clienti.tiscali.hostname Feb 26 02:36:08 pl2server sshd[3535]: Failed password for invalid user pi from 78.15.66.144 port 36626 ssh2 Feb 26 02:36:08 pl2server sshd[3537]: Failed password for invalid user pi from 78.15.66.144 port 36628 ssh2 Feb 26 02:36:09 pl2server sshd[3535]: Connection closed by 78.15.66.144 [preauth] Feb 26 02:36:09 pl2server sshd[3537]: Connection closed by 78.15.66.144 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.15.66.144	2020-02-26 10:23:41
211.24.110.125	attackspam	(sshd) Failed SSH login from 211.24.110.125 (MY/Malaysia/cgw-211-24-110-125.bbrtl.time.net.my): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 26 00:55:07 amsweb01 sshd[22481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.24.110.125 user=root Feb 26 00:55:09 amsweb01 sshd[22481]: Failed password for root from 211.24.110.125 port 44046 ssh2 Feb 26 01:34:33 amsweb01 sshd[25752]: Invalid user zyy from 211.24.110.125 port 47022 Feb 26 01:34:34 amsweb01 sshd[25752]: Failed password for invalid user zyy from 211.24.110.125 port 47022 ssh2 Feb 26 01:45:32 amsweb01 sshd[26662]: Invalid user jyoti from 211.24.110.125 port 49064	2020-02-26 10:14:02
81.213.144.88	attackbots	Unauthorized connection attempt from IP address 81.213.144.88 on Port 445(SMB)	2020-02-26 10:33:56
190.152.8.161	attackspam	Unauthorized connection attempt from IP address 190.152.8.161 on Port 445(SMB)	2020-02-26 10:30:06
2.135.222.114	attackspambots	Unauthorized connection attempt from IP address 2.135.222.114 on Port 445(SMB)	2020-02-26 10:21:24
88.34.126.169	attackbotsspam	Linear eMerge E3 Unauthenticated Command Injection Remote Root Exploit Vulnerability	2020-02-26 10:25:33
39.85.185.139	attackbotsspam	Feb 26 01:30:56 srv1 sshd[31921]: Invalid user pi from 39.85.185.139 Feb 26 01:30:56 srv1 sshd[31921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.85.185.139 Feb 26 01:30:58 srv1 sshd[31922]: Invalid user pi from 39.85.185.139 Feb 26 01:30:58 srv1 sshd[31921]: Failed password for invalid user pi from 39.85.185.139 port 44281 ssh2 Feb 26 01:30:58 srv1 sshd[31922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.85.185.139 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=39.85.185.139	2020-02-26 10:27:43
148.66.133.91	attackspambots	2020-02-26T03:15:57.129017struts4.enskede.local sshd\[3187\]: Invalid user VM from 148.66.133.91 port 50680 2020-02-26T03:15:57.317201struts4.enskede.local sshd\[3187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.133.91 2020-02-26T03:16:00.078805struts4.enskede.local sshd\[3187\]: Failed password for invalid user VM from 148.66.133.91 port 50680 ssh2 2020-02-26T03:20:35.492814struts4.enskede.local sshd\[3190\]: Invalid user localhost from 148.66.133.91 port 37786 2020-02-26T03:20:35.500628struts4.enskede.local sshd\[3190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.133.91 ...	2020-02-26 10:44:04
87.18.199.178	attackbots	Feb 26 01:45:32 debian-2gb-nbg1-2 kernel: \[4937129.251259\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.18.199.178 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=50102 PROTO=TCP SPT=18158 DPT=23 WINDOW=27590 RES=0x00 SYN URGP=0	2020-02-26 10:19:00
69.229.6.42	attackbotsspam	Feb 26 03:21:32 server sshd\[16561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.42 user=root Feb 26 03:21:34 server sshd\[16561\]: Failed password for root from 69.229.6.42 port 47572 ssh2 Feb 26 03:45:07 server sshd\[21769\]: Invalid user fabian from 69.229.6.42 Feb 26 03:45:07 server sshd\[21769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.42 Feb 26 03:45:09 server sshd\[21769\]: Failed password for invalid user fabian from 69.229.6.42 port 48412 ssh2 ...	2020-02-26 10:42:21
117.3.171.190	attackspam	Unauthorised access (Feb 26) SRC=117.3.171.190 LEN=44 TTL=40 ID=54893 TCP DPT=23 WINDOW=3559 SYN	2020-02-26 10:09:30
69.94.144.21	attackbotsspam	Feb 26 00:36:24 tempelhof postfix/smtpd[31197]: warning: hostname rock.myginni.com does not resolve to address 69.94.144.21: Name or service not known Feb 26 00:36:24 tempelhof postfix/smtpd[31197]: connect from unknown[69.94.144.21] Feb 26 00:36:24 tempelhof postfix/smtpd[31197]: EB7F7548301C: client=unknown[69.94.144.21] Feb 26 00:36:25 tempelhof postfix/smtpd[31197]: disconnect from unknown[69.94.144.21] Feb 26 01:26:45 tempelhof postfix/smtpd[21840]: warning: hostname rock.myginni.com does not resolve to address 69.94.144.21: Name or service not known Feb 26 01:26:45 tempelhof postfix/smtpd[21840]: connect from unknown[69.94.144.21] Feb 26 01:26:45 tempelhof postfix/smtpd[22815]: warning: hostname rock.myginni.com does not resolve to address 69.94.144.21: Name or service not known Feb 26 01:26:45 tempelhof postfix/smtpd[22815]: connect from unknown[69.94.144.21] Feb x@x Feb x@x Feb 26 01:26:46 tempelhof postfix/smtpd[21840]: disconnect from unknown[69.94.144.21] Feb........ -------------------------------	2020-02-26 10:36:02
46.119.190.88	attackspam	Unauthorized connection attempt from IP address 46.119.190.88 on Port 445(SMB)	2020-02-26 10:08:31
101.255.12.249	attackspam	Unauthorized connection attempt from IP address 101.255.12.249 on Port 445(SMB)	2020-02-26 10:12:28
79.113.63.253	attackbots	trying to access non-authorized port	2020-02-26 10:32:33

Recently Reported IPs

10.10.204.105	59.92.226.29	111.51.76.68	197.249.182.45
101.28.250.72	117.177.67.5	229.60.116.236	221.147.166.194
111.76.206.149	111.76.206.246	95.38.248.93	210.65.47.114
185.230.4.182	49.235.184.230	10.40.184.216	20.152.174.46
110.172.174.55	29.0.199.95	95.126.95.137	79.117.110.30