40.142.169.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Windstream Communications LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-01-17 15:38:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 40.142.169.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;40.142.169.6.			IN	A

;; AUTHORITY SECTION:
.			430	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011700 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 15:38:05 CST 2020
;; MSG SIZE  rcvd: 116

Host info

6.169.142.40.in-addr.arpa domain name pointer h6.169.142.40.ip.windstream.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.169.142.40.in-addr.arpa	name = h6.169.142.40.ip.windstream.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.131.146.147	attackbots	Nov 5 19:23:53 srv3 sshd\[6586\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.146.147 user=root Nov 5 19:23:56 srv3 sshd\[6586\]: Failed password for root from 188.131.146.147 port 37064 ssh2 Nov 5 19:28:33 srv3 sshd\[6615\]: Invalid user xi from 188.131.146.147 Nov 5 19:43:02 srv3 sshd\[6910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.146.147 user=root Nov 5 19:43:04 srv3 sshd\[6910\]: Failed password for root from 188.131.146.147 port 47628 ssh2 Nov 5 19:47:53 srv3 sshd\[6943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.146.147 user=root Nov 5 20:02:18 srv3 sshd\[7212\]: Invalid user jking from 188.131.146.147 Nov 5 20:02:18 srv3 sshd\[7212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.146.147 Nov 5 20:02:20 srv3 sshd\[7212\]: Failed password for inv ...	2019-11-06 17:22:46
175.207.13.200	attack	Nov 5 20:58:46 web9 sshd\[7397\]: Invalid user sds33322 from 175.207.13.200 Nov 5 20:58:46 web9 sshd\[7397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.13.200 Nov 5 20:58:48 web9 sshd\[7397\]: Failed password for invalid user sds33322 from 175.207.13.200 port 37420 ssh2 Nov 5 21:03:52 web9 sshd\[8068\]: Invalid user apaajaboleh from 175.207.13.200 Nov 5 21:03:52 web9 sshd\[8068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.13.200	2019-11-06 17:44:36
222.186.175.183	attackbots	Nov 6 16:32:57 lcl-usvr-02 sshd[27189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Nov 6 16:32:59 lcl-usvr-02 sshd[27189]: Failed password for root from 222.186.175.183 port 23530 ssh2 ...	2019-11-06 17:33:13
189.69.54.45	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.69.54.45/ BR - 1H : (303) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 189.69.54.45 CIDR : 189.69.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 6 3H - 14 6H - 29 12H - 67 24H - 117 DateTime : 2019-11-06 07:27:08 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-06 17:15:06
190.119.190.122	attackspambots	Nov 6 09:34:52 MK-Soft-VM7 sshd[31327]: Failed password for root from 190.119.190.122 port 36694 ssh2 Nov 6 09:39:07 MK-Soft-VM7 sshd[31405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.119.190.122 ...	2019-11-06 17:08:40
92.119.160.107	attack	Nov 6 09:56:30 mc1 kernel: \[4316889.623390\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=29067 PROTO=TCP SPT=43393 DPT=52701 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 10:02:58 mc1 kernel: \[4317278.502564\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=9036 PROTO=TCP SPT=43393 DPT=53065 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 10:04:23 mc1 kernel: \[4317363.421521\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=45285 PROTO=TCP SPT=43393 DPT=53011 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-06 17:07:01
181.40.76.162	attackspambots	Nov 5 19:25:21 srv3 sshd\[6606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.76.162 user=root Nov 5 19:25:24 srv3 sshd\[6606\]: Failed password for root from 181.40.76.162 port 59076 ssh2 Nov 5 19:30:04 srv3 sshd\[6680\]: Invalid user mqm from 181.40.76.162 Nov 5 19:44:08 srv3 sshd\[6914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.76.162 user=root Nov 5 19:44:10 srv3 sshd\[6914\]: Failed password for root from 181.40.76.162 port 42112 ssh2 Nov 5 19:49:01 srv3 sshd\[6987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.76.162 user=root Nov 5 20:03:10 srv3 sshd\[7243\]: Invalid user silvester from 181.40.76.162 Nov 5 20:03:10 srv3 sshd\[7243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.76.162 Nov 5 20:03:12 srv3 sshd\[7243\]: Failed password for invalid user s ...	2019-11-06 17:25:01
94.158.54.251	attackbots	Nov 6 07:09:18 mxgate1 postfix/postscreen[20039]: CONNECT from [94.158.54.251]:65322 to [176.31.12.44]:25 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20043]: addr 94.158.54.251 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20043]: addr 94.158.54.251 listed by domain zen.spamhaus.org as 127.0.0.10 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20042]: addr 94.158.54.251 listed by domain bl.spamcop.net as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20041]: addr 94.158.54.251 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20040]: addr 94.158.54.251 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/dnsblog[20050]: addr 94.158.54.251 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 6 07:09:18 mxgate1 postfix/postscreen[20039]: PREGREET 22 after 0.17 from [94.158.54.251]:65322: EHLO [94.158.54.251] Nov 6 07:09:18 mxgate1 postfix/postscreen[20039]: DNSBL rank ........ -------------------------------	2019-11-06 17:29:41
193.203.215.196	attack	11/06/2019-07:27:15.984463 193.203.215.196 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-06 17:08:13
159.89.154.19	attack	Nov 6 04:29:15 ny01 sshd[22765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.154.19 Nov 6 04:29:17 ny01 sshd[22765]: Failed password for invalid user openelec from 159.89.154.19 port 47304 ssh2 Nov 6 04:33:14 ny01 sshd[23104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.154.19	2019-11-06 17:34:57
113.125.25.73	attackspambots	Nov 5 19:31:36 srv3 sshd\[6706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.25.73 user=root Nov 5 19:31:38 srv3 sshd\[6706\]: Failed password for root from 113.125.25.73 port 60578 ssh2 Nov 5 19:36:13 srv3 sshd\[6769\]: Invalid user byte from 113.125.25.73 Nov 5 19:50:32 srv3 sshd\[7017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.25.73 user=root Nov 5 19:50:35 srv3 sshd\[7017\]: Failed password for root from 113.125.25.73 port 42460 ssh2 Nov 5 19:55:15 srv3 sshd\[7102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.25.73 user=root Nov 5 20:10:18 srv3 sshd\[7395\]: Invalid user mailserver from 113.125.25.73 Nov 5 20:10:18 srv3 sshd\[7395\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.25.73 Nov 5 20:10:20 srv3 sshd\[7395\]: Failed password for invalid user ...	2019-11-06 17:39:07
222.186.169.194	attackbots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Failed password for root from 222.186.169.194 port 40828 ssh2 Failed password for root from 222.186.169.194 port 40828 ssh2 Failed password for root from 222.186.169.194 port 40828 ssh2 Failed password for root from 222.186.169.194 port 40828 ssh2	2019-11-06 17:46:18
203.189.206.109	attackbots	Nov 6 06:26:48 marvibiene sshd[47110]: Invalid user ftp from 203.189.206.109 port 34386 Nov 6 06:26:48 marvibiene sshd[47110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.189.206.109 Nov 6 06:26:48 marvibiene sshd[47110]: Invalid user ftp from 203.189.206.109 port 34386 Nov 6 06:26:50 marvibiene sshd[47110]: Failed password for invalid user ftp from 203.189.206.109 port 34386 ssh2 ...	2019-11-06 17:36:40
138.68.89.76	attackspambots	Nov 5 20:53:56 srv3 sshd\[8141\]: Invalid user nginx from 138.68.89.76 Nov 5 20:53:57 srv3 sshd\[8141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.89.76 Nov 5 20:53:59 srv3 sshd\[8141\]: Failed password for invalid user nginx from 138.68.89.76 port 60648 ssh2 Nov 5 23:36:24 srv3 sshd\[11546\]: Invalid user test from 138.68.89.76 Nov 5 23:36:24 srv3 sshd\[11546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.89.76 Nov 5 23:36:26 srv3 sshd\[11546\]: Failed password for invalid user test from 138.68.89.76 port 52280 ssh2 ...	2019-11-06 17:31:48
144.91.76.115	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: vmi303423.contaboserver.net.	2019-11-06 17:14:07

Recently Reported IPs

244.223.148.191	52.60.31.199	177.137.253.46	201.226.9.243
5.254.229.106	148.240.219.119	128.106.146.233	119.236.243.22
118.166.176.133	118.163.194.9	114.32.10.185	111.230.183.58
103.251.120.238	103.47.169.112	95.15.48.193	87.7.82.131
85.113.202.147	82.65.1.45	81.149.243.96	76.11.0.54