158.181.19.142

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: Mega-Line Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SpamReport	2019-11-07 15:10:32
attack	proto=tcp . spt=57278 . dpt=25 . (listed on Blocklist de Sep 10) (836)	2019-09-11 08:43:37

Comments on same subnet:

IP	Type	Details	Datetime
158.181.190.176	attackbots	ece-Joomla Admin : try to force the door...	2020-06-24 05:59:01
158.181.190.176	attack	vie-Joomla Admin : try to force the door...	2020-06-23 17:11:56
158.181.190.176	attack	WordPress brute force	2020-03-14 07:33:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.181.19.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8818
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.181.19.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091003 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 11 08:43:31 CST 2019
;; MSG SIZE  rcvd: 118

Host info

142.19.181.158.in-addr.arpa domain name pointer 158.181.19.142.mega.kg.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.19.181.158.in-addr.arpa	name = 158.181.19.142.mega.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.156.200.240	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-28 12:18:45
78.176.165.192	attackspambots	port scan and connect, tcp 23 (telnet)	2019-08-28 12:59:22
49.81.39.139	attackbots	Brute force SMTP login attempts.	2019-08-28 12:53:52
200.199.6.204	attackbots	Aug 27 18:24:41 friendsofhawaii sshd\[15201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.6.204 user=root Aug 27 18:24:43 friendsofhawaii sshd\[15201\]: Failed password for root from 200.199.6.204 port 38498 ssh2 Aug 27 18:29:40 friendsofhawaii sshd\[15598\]: Invalid user technicom from 200.199.6.204 Aug 27 18:29:40 friendsofhawaii sshd\[15598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.6.204 Aug 27 18:29:42 friendsofhawaii sshd\[15598\]: Failed password for invalid user technicom from 200.199.6.204 port 60693 ssh2	2019-08-28 12:46:08
213.130.128.207	attackspambots	Aug 28 07:48:16 taivassalofi sshd[143168]: Failed password for root from 213.130.128.207 port 39082 ssh2 ...	2019-08-28 13:00:11
94.23.207.142	attackspambots	Aug 28 06:44:57 SilenceServices sshd[12997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.207.142 Aug 28 06:44:59 SilenceServices sshd[12997]: Failed password for invalid user kmathieu from 94.23.207.142 port 60096 ssh2 Aug 28 06:48:41 SilenceServices sshd[14401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.207.142	2019-08-28 12:54:40
94.9.83.219	attackbotsspam	Honeypot attack, port: 23, PTR: 5e0953db.bb.sky.com.	2019-08-28 12:27:17
13.127.123.49	attackbotsspam	Aug 28 04:25:37 hb sshd\[3865\]: Invalid user rajeev from 13.127.123.49 Aug 28 04:25:37 hb sshd\[3865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-127-123-49.ap-south-1.compute.amazonaws.com Aug 28 04:25:39 hb sshd\[3865\]: Failed password for invalid user rajeev from 13.127.123.49 port 50636 ssh2 Aug 28 04:30:00 hb sshd\[4246\]: Invalid user smile from 13.127.123.49 Aug 28 04:30:00 hb sshd\[4246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-127-123-49.ap-south-1.compute.amazonaws.com	2019-08-28 12:34:02
150.242.213.189	attackspambots	Aug 28 06:50:53 mail sshd\[6661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Aug 28 06:50:55 mail sshd\[6661\]: Failed password for invalid user internat123 from 150.242.213.189 port 55772 ssh2 Aug 28 06:55:17 mail sshd\[7212\]: Invalid user postgres from 150.242.213.189 port 45638 Aug 28 06:55:17 mail sshd\[7212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Aug 28 06:55:19 mail sshd\[7212\]: Failed password for invalid user postgres from 150.242.213.189 port 45638 ssh2	2019-08-28 13:05:29
191.53.52.249	attackbots	failed_logins	2019-08-28 13:11:36
138.197.72.48	attackspambots	SSH Brute-Force attacks	2019-08-28 12:38:34
175.151.60.246	attackbotsspam	Aug 26 10:45:43 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 175.151.60.246 port 56125 ssh2 (target: 158.69.100.132:22, password: admin) Aug 26 10:45:44 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 175.151.60.246 port 56125 ssh2 (target: 158.69.100.132:22, password: welc0me) Aug 26 10:45:45 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 175.151.60.246 port 56125 ssh2 (target: 158.69.100.132:22, password: default) Aug 26 10:45:45 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 175.151.60.246 port 56125 ssh2 (target: 158.69.100.132:22, password: 000000) Aug 26 10:45:45 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 175.151.60.246 port 56125 ssh2 (target: 158.69.100.132:22, password: system) Aug 26 10:45:46 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 175.151.60.246 port 56125 ssh2 (target: 158.69.100.132:22, password: system) Aug 26 10:45:46 wildwolf ssh-honeypotd[26164]: Failed password for........ ------------------------------	2019-08-28 12:19:09
203.75.29.68	attackspam	" "	2019-08-28 12:20:41
193.56.28.47	attackbots	Aug 28 06:29:43 host sshd\[53302\]: Invalid user dff from 193.56.28.47 port 58228 Aug 28 06:29:43 host sshd\[53302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.56.28.47 ...	2019-08-28 12:45:06
144.34.221.47	attackspam	Aug 27 18:57:05 hcbb sshd\[25957\]: Invalid user alyson from 144.34.221.47 Aug 27 18:57:05 hcbb sshd\[25957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.221.47.16clouds.com Aug 27 18:57:08 hcbb sshd\[25957\]: Failed password for invalid user alyson from 144.34.221.47 port 48398 ssh2 Aug 27 19:01:07 hcbb sshd\[26308\]: Invalid user raphaell from 144.34.221.47 Aug 27 19:01:07 hcbb sshd\[26308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.34.221.47.16clouds.com	2019-08-28 13:08:04

Recently Reported IPs

87.72.176.20	193.207.235.170	118.169.241.230	103.114.106.134
40.114.53.171	180.191.84.112	122.116.119.93	200.115.157.210
131.72.220.134	115.76.46.85	103.211.152.242	168.135.45.179
184.107.50.244	170.231.48.4	119.142.215.221	118.169.241.26
180.244.234.43	206.121.188.184	78.188.59.112	189.147.224.58