119.18.157.142

Basic Info

City: Bogor

Region: West Java

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
119.18.157.154	attack	Sep 1 13:26:39 shivevps sshd[27485]: Bad protocol version identification '\024' from 119.18.157.154 port 53440 ...	2020-09-02 04:36:38
119.18.157.10	attackspam	Dec 14 12:58:46 server sshd\[17094\]: Failed password for root from 119.18.157.10 port 27230 ssh2 Dec 14 19:03:45 server sshd\[27296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 user=apache Dec 14 19:03:48 server sshd\[27296\]: Failed password for apache from 119.18.157.10 port 52287 ssh2 Dec 14 19:13:14 server sshd\[30077\]: Invalid user esx from 119.18.157.10 Dec 14 19:13:14 server sshd\[30077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 ...	2019-12-15 06:21:36
119.18.157.10	attack	Dec 14 14:29:17 MK-Soft-VM8 sshd[27309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 Dec 14 14:29:20 MK-Soft-VM8 sshd[27309]: Failed password for invalid user theriot from 119.18.157.10 port 15459 ssh2 ...	2019-12-14 22:00:35
119.18.157.10	attack	Nov 25 13:21:08 webhost01 sshd[20595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 Nov 25 13:21:10 webhost01 sshd[20595]: Failed password for invalid user nathalie12 from 119.18.157.10 port 39023 ssh2 ...	2019-11-25 21:07:37
119.18.157.10	attack	Nov 24 22:36:01 MK-Soft-VM4 sshd[16632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 Nov 24 22:36:03 MK-Soft-VM4 sshd[16632]: Failed password for invalid user num from 119.18.157.10 port 12902 ssh2 ...	2019-11-25 06:25:18
119.18.157.10	attackspam	$f2bV_matches	2019-11-19 06:28:57
119.18.157.1	attack	SSH login attempts with user root.	2019-11-19 02:04:20
119.18.157.10	attackbotsspam	Lines containing failures of 119.18.157.10 Oct 29 03:37:55 * sshd[79695]: Invalid user installer from 119.18.157.10 port 42976 Oct 29 03:37:55 * sshd[79695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 Oct 29 03:37:56 * sshd[79695]: Failed password for invalid user installer from 119.18.157.10 port 42976 ssh2 Oct 29 03:37:57 * sshd[79695]: Received disconnect from 119.18.157.10 port 42976:11: Bye Bye [preauth] Oct 29 03:37:57 * sshd[79695]: Disconnected from invalid user installer 119.18.157.10 port 42976 [preauth] Oct 29 03:54:39 * sshd[81267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 user=r.r Oct 29 03:54:40 * sshd[81267]: Failed password for r.r from 119.18.157.10 port 10115 ssh2 Oct 29 03:54:41 * sshd[81267]: Received disconnect from 119.18.157.10 port 10115:11: Bye Bye [preauth] Oct 29 03:54:41 *** sshd[81267]: Disconnected from aut........ ------------------------------	2019-10-30 00:40:37
119.18.157.10	attackspam	Oct 18 17:18:23 archiv sshd[19462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 user=r.r Oct 18 17:18:24 archiv sshd[19462]: Failed password for r.r from 119.18.157.10 port 33341 ssh2 Oct 18 17:18:25 archiv sshd[19462]: Received disconnect from 119.18.157.10 port 33341:11: Bye Bye [preauth] Oct 18 17:18:25 archiv sshd[19462]: Disconnected from 119.18.157.10 port 33341 [preauth] Oct 18 17:36:37 archiv sshd[19615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.157.10 user=r.r Oct 18 17:36:40 archiv sshd[19615]: Failed password for r.r from 119.18.157.10 port 65478 ssh2 Oct 18 17:36:40 archiv sshd[19615]: Received disconnect from 119.18.157.10 port 65478:11: Bye Bye [preauth] Oct 18 17:36:40 archiv sshd[19615]: Disconnected from 119.18.157.10 port 65478 [preauth] Oct 18 17:47:48 archiv sshd[19664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 t........ -------------------------------	2019-10-19 21:39:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.18.157.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15695
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.18.157.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091600 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 00:53:16 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 142.157.18.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 142.157.18.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.253.98.49	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-02 03:52:55,884 INFO [shellcode_manager] (84.253.98.49) no match, writing hexdump (a43e41b16ed14e1c9f1f010d44468c5c :16331) - SMB (Unknown)	2019-07-03 14:57:12
190.210.42.83	attack	Jul 3 08:36:57 ns37 sshd[23052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.42.83 Jul 3 08:36:57 ns37 sshd[23052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.42.83	2019-07-03 15:16:31
43.242.210.138	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:24:30,876 INFO [amun_request_handler] PortScan Detected on Port: 445 (43.242.210.138)	2019-07-03 15:14:14
68.163.100.254	attackspambots	Jul 3 08:20:34 mail sshd\[11529\]: Invalid user cmschine from 68.163.100.254 Jul 3 08:20:34 mail sshd\[11529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.163.100.254 Jul 3 08:20:36 mail sshd\[11529\]: Failed password for invalid user cmschine from 68.163.100.254 port 38636 ssh2 Jul 3 08:22:44 mail sshd\[11594\]: Invalid user mw from 68.163.100.254 Jul 3 08:22:44 mail sshd\[11594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.163.100.254	2019-07-03 15:26:21
219.248.137.8	attackbotsspam	Invalid user config from 219.248.137.8 port 60657	2019-07-03 14:52:11
14.230.162.57	attackspam	SMTP Fraud Orders	2019-07-03 15:17:45
5.128.152.227	attackbots	23/tcp 23/tcp 60001/tcp [2019-06-26/07-03]3pkt	2019-07-03 14:52:31
210.221.220.68	attackspambots	03.07.2019 03:51:34 SSH access blocked by firewall	2019-07-03 15:20:22
118.232.163.200	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:29:53,506 INFO [shellcode_manager] (118.232.163.200) no match, writing hexdump (49e90b2a40fd8cfbf3e002d3c44ccc90 :2393089) - MS17010 (EternalBlue)	2019-07-03 14:50:36
115.153.166.2	attack	Jul 1 13:37:57 eola postfix/smtpd[25187]: connect from unknown[115.153.166.2] Jul 1 13:37:57 eola postfix/smtpd[25194]: connect from unknown[115.153.166.2] Jul 1 13:38:01 eola postfix/smtpd[25194]: lost connection after AUTH from unknown[115.153.166.2] Jul 1 13:38:01 eola postfix/smtpd[25194]: disconnect from unknown[115.153.166.2] ehlo=1 auth=0/1 commands=1/2 Jul 1 13:38:01 eola postfix/smtpd[25194]: connect from unknown[115.153.166.2] Jul 1 13:38:04 eola postfix/smtpd[25194]: lost connection after AUTH from unknown[115.153.166.2] Jul 1 13:38:04 eola postfix/smtpd[25194]: disconnect from unknown[115.153.166.2] ehlo=1 auth=0/1 commands=1/2 Jul 1 13:38:05 eola postfix/smtpd[25194]: connect from unknown[115.153.166.2] Jul 1 13:38:08 eola postfix/smtpd[25194]: lost connection after AUTH from unknown[115.153.166.2] Jul 1 13:38:08 eola postfix/smtpd[25194]: disconnect from unknown[115.153.166.2] ehlo=1 auth=0/1 commands=1/2 Jul 1 13:38:08 eola postfix/smtpd[25194]........ -------------------------------	2019-07-03 15:14:32
78.188.63.97	attackspam	5555/tcp 23/tcp [2019-06-22/07-03]2pkt	2019-07-03 14:44:57
180.183.168.66	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-02 03:34:48,408 INFO [shellcode_manager] (180.183.168.66) no match, writing hexdump (8b2950d7ec1611c467ee73c29149f1e6 :2105970) - MS17010 (EternalBlue)	2019-07-03 15:13:45
67.205.135.65	attackbotsspam	Brute force attempt	2019-07-03 15:11:31
153.36.240.126	attack	2019-07-03T09:04:11.974776scmdmz1 sshd\[29661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.240.126 user=root 2019-07-03T09:04:14.431510scmdmz1 sshd\[29661\]: Failed password for root from 153.36.240.126 port 62681 ssh2 2019-07-03T09:04:16.527467scmdmz1 sshd\[29661\]: Failed password for root from 153.36.240.126 port 62681 ssh2 ...	2019-07-03 15:08:43
71.6.233.150	attack	17/udp 8820/tcp 8500/tcp... [2019-05-05/07-03]5pkt,4pt.(tcp),1pt.(udp)	2019-07-03 15:16:03

Recently Reported IPs

177.20.224.201	168.4.210.45	70.240.105.40	98.222.75.8
201.179.182.86	31.15.41.66	197.211.212.152	47.85.64.251
144.79.44.214	187.211.151.73	207.208.116.98	150.115.3.8
189.52.56.69	196.53.74.114	191.249.165.89	109.77.183.28
49.64.52.159	123.64.167.246	182.87.214.235	35.223.196.248