164.147.143.142

Basic Info

City: unknown

Region: Western Cape

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.147.143.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57445
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.147.143.142.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 08 02:27:39 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 142.143.147.164.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 142.143.147.164.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.178	attack	Feb 8 23:01:02 firewall sshd[20118]: Failed password for root from 218.92.0.178 port 27860 ssh2 Feb 8 23:01:12 firewall sshd[20118]: error: maximum authentication attempts exceeded for root from 218.92.0.178 port 27860 ssh2 [preauth] Feb 8 23:01:12 firewall sshd[20118]: Disconnecting: Too many authentication failures [preauth] ...	2020-02-09 10:09:03
198.23.192.74	attack	[2020-02-08 19:44:20] NOTICE[1148][C-00007243] chan_sip.c: Call from '' (198.23.192.74:60993) to extension '40046510420904' rejected because extension not found in context 'public'. [2020-02-08 19:44:20] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-08T19:44:20.932-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="40046510420904",SessionID="0x7fd82c31abc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.23.192.74/60993",ACLName="no_extension_match" [2020-02-08 19:45:38] NOTICE[1148][C-00007244] chan_sip.c: Call from '' (198.23.192.74:62916) to extension '50046510420904' rejected because extension not found in context 'public'. [2020-02-08 19:45:38] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-02-08T19:45:38.752-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="50046510420904",SessionID="0x7fd82cfcf5b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198. ...	2020-02-09 10:40:50
107.173.34.178	attackbots	Feb 9 02:28:16 lnxmysql61 sshd[13692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.34.178	2020-02-09 10:42:55
113.178.33.94	attackbotsspam	2020-02-0901:44:591j0aiZ-0004mj-3q\<=verena@rs-solution.chH=static-170-246-152-4.ideay.net.ni$localhost$[170.246.152.4]:39920P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2305id=CACF792A21F5DB68B4B1F840B4EFCA03@rs-solution.chT="Ihopeyouareadecentperson"forlabanwillymwaijibe2015@gmail.com2020-02-0901:45:331j0aj6-00052T-H1\<=verena@rs-solution.chH=$localhost$[113.172.132.138]:48870P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2095id=7E7BCD9E95416FDC00054CF400D04DB4@rs-solution.chT="Ihopeyouareadecentperson"forguruprasad.gym@gmail.com2020-02-0901:46:151j0ajn-00054V-0g\<=verena@rs-solution.chH=$localhost$[113.172.230.198]:51953P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2179id=FDF84E1D16C2EC5F8386CF7783F3990C@rs-solution.chT="curiositysake"forhuntercogar9@gmail.com2020-02-0901:45:541j0ajR-00053O-2H\<=verena@rs-solution.chH=$localhost$[113.178.33.94]:34233P	2020-02-09 10:15:31
202.108.140.114	attackbotsspam	Port probing on unauthorized port 1433	2020-02-09 10:20:23
206.41.184.157	attackbotsspam	WordPress XMLRPC scan :: 206.41.184.157 0.096 BYPASS [09/Feb/2020:00:45:47 0000] www.[censored_2] "POST /xmlrpc.php HTTP/1.1" 200 217 "https://www.[censored_2]/" "PHP/7.2.12"	2020-02-09 10:31:09
179.232.1.254	attackbots	Feb 9 01:44:38 novum-srv2 sshd[4708]: Invalid user joh from 179.232.1.254 port 33961 Feb 9 01:44:54 novum-srv2 sshd[4710]: Invalid user joh from 179.232.1.254 port 36863 Feb 9 01:45:41 novum-srv2 sshd[4730]: Invalid user joh from 179.232.1.254 port 43375 ...	2020-02-09 10:36:09
113.172.132.138	attackspam	2020-02-0901:44:591j0aiZ-0004mj-3q\<=verena@rs-solution.chH=static-170-246-152-4.ideay.net.ni$localhost$[170.246.152.4]:39920P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2305id=CACF792A21F5DB68B4B1F840B4EFCA03@rs-solution.chT="Ihopeyouareadecentperson"forlabanwillymwaijibe2015@gmail.com2020-02-0901:45:331j0aj6-00052T-H1\<=verena@rs-solution.chH=$localhost$[113.172.132.138]:48870P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2095id=7E7BCD9E95416FDC00054CF400D04DB4@rs-solution.chT="Ihopeyouareadecentperson"forguruprasad.gym@gmail.com2020-02-0901:46:151j0ajn-00054V-0g\<=verena@rs-solution.chH=$localhost$[113.172.230.198]:51953P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2179id=FDF84E1D16C2EC5F8386CF7783F3990C@rs-solution.chT="curiositysake"forhuntercogar9@gmail.com2020-02-0901:45:541j0ajR-00053O-2H\<=verena@rs-solution.chH=$localhost$[113.178.33.94]:34233P	2020-02-09 10:16:46
176.107.131.58	attack	SIPVicious Scanner Detection	2020-02-09 10:44:23
183.187.94.212	attackbots	Telnet Server BruteForce Attack	2020-02-09 10:23:21
106.13.121.175	attack	$f2bV_matches	2020-02-09 10:39:51
128.199.166.224	attackspambots	Feb 8 22:48:06 firewall sshd[19551]: Invalid user mbi from 128.199.166.224 Feb 8 22:48:09 firewall sshd[19551]: Failed password for invalid user mbi from 128.199.166.224 port 42812 ssh2 Feb 8 22:51:08 firewall sshd[19754]: Invalid user fjt from 128.199.166.224 ...	2020-02-09 10:39:30
116.247.81.100	attack	Feb 3 13:04:35 hgb10502 sshd[10702]: User r.r from 116.247.81.100 not allowed because not listed in AllowUsers Feb 3 13:04:35 hgb10502 sshd[10702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.247.81.100 user=r.r Feb 3 13:04:38 hgb10502 sshd[10702]: Failed password for invalid user r.r from 116.247.81.100 port 34917 ssh2 Feb 3 13:04:38 hgb10502 sshd[10702]: Received disconnect from 116.247.81.100 port 34917:11: Bye Bye [preauth] Feb 3 13:04:38 hgb10502 sshd[10702]: Disconnected from 116.247.81.100 port 34917 [preauth] Feb 3 13:13:04 hgb10502 sshd[11531]: User r.r from 116.247.81.100 not allowed because not listed in AllowUsers Feb 3 13:13:04 hgb10502 sshd[11531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.247.81.100 user=r.r Feb 3 13:13:06 hgb10502 sshd[11531]: Failed password for invalid user r.r from 116.247.81.100 port 42804 ssh2 Feb 3 13:13:06 hgb10502 sshd[115........ -------------------------------	2020-02-09 10:41:52
104.227.139.186	attackspambots	$f2bV_matches	2020-02-09 10:39:07
62.148.143.182	attackspambots	RDP Brute-Force (honeypot 7)	2020-02-09 10:44:52

Recently Reported IPs

124.135.213.26	5.108.11.141	35.48.72.246	206.122.159.2
218.32.103.118	191.191.111.218	95.236.246.130	28.205.134.76
252.141.180.198	13.191.152.109	170.41.148.210	88.97.229.165
183.67.5.46	246.113.210.131	133.218.239.78	77.204.163.31
2.41.189.220	42.113.155.35	37.102.8.40	101.37.143.109