158.181.19.142

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: Mega-Line Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SpamReport	2019-11-07 15:10:32
attack	proto=tcp . spt=57278 . dpt=25 . (listed on Blocklist de Sep 10) (836)	2019-09-11 08:43:37

Comments on same subnet:

IP	Type	Details	Datetime
158.181.190.176	attackbots	ece-Joomla Admin : try to force the door...	2020-06-24 05:59:01
158.181.190.176	attack	vie-Joomla Admin : try to force the door...	2020-06-23 17:11:56
158.181.190.176	attack	WordPress brute force	2020-03-14 07:33:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.181.19.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8818
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.181.19.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091003 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 11 08:43:31 CST 2019
;; MSG SIZE  rcvd: 118

Host info

142.19.181.158.in-addr.arpa domain name pointer 158.181.19.142.mega.kg.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.19.181.158.in-addr.arpa	name = 158.181.19.142.mega.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.53.82.182	attack	445/tcp [2019-10-22]1pkt	2019-10-23 08:09:27
178.166.40.152	attack	Port Scan: TCP/443	2019-10-23 07:40:49
5.196.217.177	attack	Oct 23 00:02:39 postfix/smtpd: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed	2019-10-23 08:14:31
116.90.165.26	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-10-23 08:03:58
42.115.136.81	attack	Oct 21 13:31:29 our-server-hostname postfix/smtpd[23434]: connect from unknown[42.115.136.81] Oct 21 13:31:31 our-server-hostname postfix/smtpd[23434]: lost connection after CONNECT from unknown[42.115.136.81] Oct 21 13:31:31 our-server-hostname postfix/smtpd[23434]: disconnect from unknown[42.115.136.81] Oct 21 13:33:46 our-server-hostname postfix/smtpd[16759]: connect from unknown[42.115.136.81] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct 21 13:34:07 our-server-hostname postfix/smtpd[16759]: lost connection after RCPT from unknown[42.115.136.81] Oct 21 13:34:07 our-server-hostname postfix/smtpd[16759]: disconnect from unknown[42.115.136.81] Oct 21 13:39:43 our-server-hostname postfix/smtpd[17414]: connect from unknown[42.115.136.81] Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.115.136.81	2019-10-23 07:58:43
51.75.205.122	attackbots	Oct 22 23:50:10 MainVPS sshd[9224]: Invalid user calendar from 51.75.205.122 port 53334 Oct 22 23:50:10 MainVPS sshd[9224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.205.122 Oct 22 23:50:10 MainVPS sshd[9224]: Invalid user calendar from 51.75.205.122 port 53334 Oct 22 23:50:11 MainVPS sshd[9224]: Failed password for invalid user calendar from 51.75.205.122 port 53334 ssh2 Oct 22 23:59:00 MainVPS sshd[9874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.205.122 user=root Oct 22 23:59:02 MainVPS sshd[9874]: Failed password for root from 51.75.205.122 port 35850 ssh2 ...	2019-10-23 07:44:19
14.226.84.104	attackspambots	445/tcp [2019-10-22]1pkt	2019-10-23 08:11:33
210.192.94.6	attackspambots	23/tcp [2019-10-22]1pkt	2019-10-23 07:38:08
49.232.11.112	attack	Oct 23 02:41:30 www sshd\[104925\]: Invalid user y from 49.232.11.112 Oct 23 02:41:30 www sshd\[104925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.11.112 Oct 23 02:41:31 www sshd\[104925\]: Failed password for invalid user y from 49.232.11.112 port 34782 ssh2 ...	2019-10-23 07:47:42
222.186.175.216	attackbots	Oct 23 02:13:03 dedicated sshd[19205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Oct 23 02:13:05 dedicated sshd[19205]: Failed password for root from 222.186.175.216 port 5110 ssh2	2019-10-23 08:13:18
51.38.125.51	attackspambots	Automatic report - Banned IP Access	2019-10-23 08:12:18
91.121.205.83	attackspambots	Oct 22 19:15:32 ny01 sshd[9237]: Failed password for root from 91.121.205.83 port 38882 ssh2 Oct 22 19:22:36 ny01 sshd[9894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.205.83 Oct 22 19:22:38 ny01 sshd[9894]: Failed password for invalid user iplsupport from 91.121.205.83 port 50226 ssh2	2019-10-23 07:42:35
103.36.84.180	attack	Oct 23 02:00:32 [host] sshd[30062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.84.180 user=root Oct 23 02:00:33 [host] sshd[30062]: Failed password for root from 103.36.84.180 port 43890 ssh2 Oct 23 02:04:43 [host] sshd[30107]: Invalid user nagios from 103.36.84.180	2019-10-23 08:09:58
41.213.216.242	attackbots	Automatic report - Banned IP Access	2019-10-23 07:50:31
140.143.72.21	attackbots	Oct 22 23:57:10 microserver sshd[19671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.72.21 user=root Oct 22 23:57:12 microserver sshd[19671]: Failed password for root from 140.143.72.21 port 36206 ssh2 Oct 23 00:07:06 microserver sshd[21164]: Invalid user china-channel from 140.143.72.21 port 48014 Oct 23 00:07:06 microserver sshd[21164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.72.21 Oct 23 00:07:08 microserver sshd[21164]: Failed password for invalid user china-channel from 140.143.72.21 port 48014 ssh2 Oct 23 00:44:31 microserver sshd[26889]: Invalid user asteriskuser from 140.143.72.21 port 38784 Oct 23 00:44:31 microserver sshd[26889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.72.21 Oct 23 00:44:33 microserver sshd[26889]: Failed password for invalid user asteriskuser from 140.143.72.21 port 38784 ssh2 Oct 23 00:53:52 microserver sshd[28175]: In	2019-10-23 08:16:57

Recently Reported IPs

87.72.176.20	193.207.235.170	118.169.241.230	103.114.106.134
40.114.53.171	180.191.84.112	122.116.119.93	200.115.157.210
131.72.220.134	115.76.46.85	103.211.152.242	168.135.45.179
184.107.50.244	170.231.48.4	119.142.215.221	118.169.241.26
180.244.234.43	206.121.188.184	78.188.59.112	189.147.224.58