157.119.21.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: CSL Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.119.216.103	attack	Unauthorized connection attempt from IP address 157.119.216.103 on Port 445(SMB)	2020-09-24 23:31:43
157.119.216.103	attackspam	Unauthorized connection attempt from IP address 157.119.216.103 on Port 445(SMB)	2020-09-24 15:18:51
157.119.216.103	attackspambots	Unauthorized connection attempt from IP address 157.119.216.103 on Port 445(SMB)	2020-09-24 06:44:54
157.119.214.111	attackspam	Port probing on unauthorized port 23	2020-08-21 16:34:26
157.119.213.85	attackbots	trying to access non-authorized port	2020-08-09 20:51:28
157.119.214.243	attackspam	Unauthorized connection attempt detected from IP address 157.119.214.243 to port 8080 [J]	2020-03-01 02:36:59
157.119.212.122	attackspam	Honeypot attack, port: 445, PTR: axntech-dynamic-122.212.119.157.axntechnologies.in.	2020-02-20 18:55:46
157.119.214.236	attackbots	Unauthorized connection attempt detected from IP address 157.119.214.236 to port 80 [J]	2020-01-22 07:42:06
157.119.213.186	attack	Unauthorized connection attempt from IP address 157.119.213.186 on Port 445(SMB)	2019-12-04 08:34:10
157.119.215.249	attackspambots	port scan and connect, tcp 23 (telnet)	2019-09-05 04:39:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.119.21.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43121
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.119.21.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120701 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 09:03:55 CST 2024
;; MSG SIZE  rcvd: 106

Host info

Host 48.21.119.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.21.119.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.59.38.216	attack	2019-11-06T18:25:59.848294abusebot-5.cloudsearch.cf sshd\[10278\]: Invalid user mis from 37.59.38.216 port 41013	2019-11-07 02:46:28
182.254.184.247	attackspam	Nov 6 19:17:04 server sshd\[16192\]: Invalid user a from 182.254.184.247 Nov 6 19:17:04 server sshd\[16192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.184.247 Nov 6 19:17:06 server sshd\[16192\]: Failed password for invalid user a from 182.254.184.247 port 47920 ssh2 Nov 6 19:44:12 server sshd\[23265\]: Invalid user wilhelm from 182.254.184.247 Nov 6 19:44:12 server sshd\[23265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.184.247 ...	2019-11-07 02:52:31
124.207.17.66	attackspam	Nov 6 16:08:20 localhost sshd\[27936\]: Invalid user tsserver from 124.207.17.66 Nov 6 16:08:20 localhost sshd\[27936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.17.66 Nov 6 16:08:22 localhost sshd\[27936\]: Failed password for invalid user tsserver from 124.207.17.66 port 2136 ssh2 Nov 6 16:14:21 localhost sshd\[28263\]: Invalid user @admin from 124.207.17.66 Nov 6 16:14:21 localhost sshd\[28263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.17.66 ...	2019-11-07 02:25:49
116.105.225.127	attack	19/11/6@09:36:37: FAIL: IoT-SSH address from=116.105.225.127 ...	2019-11-07 03:01:26
92.63.194.17	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-07 02:23:47
62.234.180.200	attack	Nov 6 19:03:48 srv206 sshd[3306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.180.200 user=root Nov 6 19:03:50 srv206 sshd[3306]: Failed password for root from 62.234.180.200 port 43510 ssh2 ...	2019-11-07 02:31:10
45.136.110.47	attackspam	Nov 6 17:50:22 h2177944 kernel: \[5934653.547012\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.47 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=39318 PROTO=TCP SPT=42494 DPT=7748 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 17:54:23 h2177944 kernel: \[5934894.994228\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.47 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=49519 PROTO=TCP SPT=42494 DPT=6852 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 18:19:41 h2177944 kernel: \[5936411.864883\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.47 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=38599 PROTO=TCP SPT=42494 DPT=7285 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 18:23:08 h2177944 kernel: \[5936619.217779\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.47 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=45860 PROTO=TCP SPT=42494 DPT=7819 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 18:27:35 h2177944 kernel: \[5936886.104204\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.47 DST=85.214.117.9	2019-11-07 02:19:35
188.166.115.226	attackspam	Nov 6 18:48:11 game-panel sshd[9837]: Failed password for root from 188.166.115.226 port 47726 ssh2 Nov 6 18:52:00 game-panel sshd[9956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.115.226 Nov 6 18:52:02 game-panel sshd[9956]: Failed password for invalid user bill from 188.166.115.226 port 57168 ssh2	2019-11-07 02:57:41
112.85.42.186	attackspambots	Nov 7 00:00:58 areeb-Workstation sshd[2756]: Failed password for root from 112.85.42.186 port 33866 ssh2 ...	2019-11-07 02:42:56
46.38.144.146	attackbotsspam	Nov 6 19:23:22 vmanager6029 postfix/smtpd\[7994\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 6 19:24:10 vmanager6029 postfix/smtpd\[7994\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-07 02:31:47
218.28.168.4	attack	Nov 6 16:39:02 MK-Soft-VM7 sshd[3711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.28.168.4 Nov 6 16:39:04 MK-Soft-VM7 sshd[3711]: Failed password for invalid user Pass123456789 from 218.28.168.4 port 12930 ssh2 ...	2019-11-07 02:28:40
92.119.160.247	attackbotsspam	92.119.160.247 was recorded 33 times by 2 hosts attempting to connect to the following ports: 2019,8080,3396,50003,33333,2018,50004,53389,33389,53390,3000,10005,50001,3398,54321,33892,33391,3403,3394,10003,3333,9999,43389,4000,33890,5001,33896,3389,5000,3390. Incident counter (4h, 24h, all-time): 33, 176, 231	2019-11-07 02:29:04
77.250.208.21	attackspam	SSH bruteforce	2019-11-07 02:49:19
190.175.142.142	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/190.175.142.142/ AR - 1H : (52) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AR NAME ASN : ASN22927 IP : 190.175.142.142 CIDR : 190.174.0.0/15 PREFIX COUNT : 244 UNIQUE IP COUNT : 4001024 ATTACKS DETECTED ASN22927 : 1H - 1 3H - 4 6H - 6 12H - 13 24H - 26 DateTime : 2019-11-06 15:37:07 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-07 02:38:52
200.68.133.148	attackspambots	$f2bV_matches	2019-11-07 02:34:15

Recently Reported IPs

72.14.151.53	141.215.104.48	251.165.39.231	222.19.64.30
3.70.52.163	70.187.236.194	201.4.16.249	17.72.89.244
92.117.243.233	226.133.126.38	238.60.151.107	221.105.138.196
118.12.83.128	96.220.244.220	212.34.107.7	99.116.219.80
168.140.86.112	51.16.156.26	129.89.24.42	212.112.180.174