158.42.165.12 - IPInfo

Basic Info

City: Valencia

Region: Comunidad Valenciana

Country: Spain

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.42.165.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1952
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;158.42.165.12.			IN	A

;; AUTHORITY SECTION:
.			136	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022072202 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 23 08:48:51 CST 2022
;; MSG SIZE  rcvd: 106

Host info

12.165.42.158.in-addr.arpa domain name pointer ttmi002.iot.upv.es.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.165.42.158.in-addr.arpa	name = ttmi002.iot.upv.es.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.198.170	attackspambots	/var/log/messages:Oct 2 02:58:50 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1569985130.366:74726): pid=7424 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=7425 suid=74 rport=59722 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=140.143.198.170 terminal=? res=success' /var/log/messages:Oct 2 02:58:50 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1569985130.370:74727): pid=7424 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=7425 suid=74 rport=59722 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=140.143.198.170 terminal=? res=success' /var/log/messages:Oct 2 02:58:51 sanyalnet-cloud-vps fail2ban.filter[1378]: INFO [sshd] Found........ -------------------------------	2019-10-03 16:28:30
42.4.3.149	attackbots	Unauthorised access (Oct 3) SRC=42.4.3.149 LEN=40 TTL=49 ID=10907 TCP DPT=8080 WINDOW=31082 SYN Unauthorised access (Oct 2) SRC=42.4.3.149 LEN=40 TTL=49 ID=61332 TCP DPT=8080 WINDOW=31082 SYN Unauthorised access (Oct 1) SRC=42.4.3.149 LEN=40 TTL=49 ID=58188 TCP DPT=8080 WINDOW=31082 SYN	2019-10-03 16:24:59
101.228.74.0	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-03 16:57:44
62.234.81.63	attack	Oct 3 10:03:50 nextcloud sshd\[26625\]: Invalid user kung from 62.234.81.63 Oct 3 10:03:50 nextcloud sshd\[26625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.81.63 Oct 3 10:03:52 nextcloud sshd\[26625\]: Failed password for invalid user kung from 62.234.81.63 port 37079 ssh2 ...	2019-10-03 16:35:35
180.167.233.252	attack	Oct 3 12:55:40 gw1 sshd[23101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.233.252 Oct 3 12:55:42 gw1 sshd[23101]: Failed password for invalid user svnrobot from 180.167.233.252 port 43278 ssh2 ...	2019-10-03 17:01:53
139.155.118.190	attackbotsspam	Oct 3 10:42:09 dedicated sshd[22524]: Invalid user martinez from 139.155.118.190 port 48092	2019-10-03 17:00:25
163.172.216.150	attackbots	Automatic report - XMLRPC Attack	2019-10-03 16:42:18
61.155.238.121	attackspambots	Oct 3 11:48:08 taivassalofi sshd[162189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.155.238.121 Oct 3 11:48:09 taivassalofi sshd[162189]: Failed password for invalid user webmail from 61.155.238.121 port 48587 ssh2 ...	2019-10-03 16:48:15
112.84.60.111	attackspam	[Aegis] @ 2019-10-03 04:55:08 0100 -> Sendmail rejected message.	2019-10-03 16:42:41
114.67.66.199	attack	Oct 3 06:54:52 www5 sshd\[21223\]: Invalid user gavrilov from 114.67.66.199 Oct 3 06:54:52 www5 sshd\[21223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.66.199 Oct 3 06:54:53 www5 sshd\[21223\]: Failed password for invalid user gavrilov from 114.67.66.199 port 55239 ssh2 ...	2019-10-03 17:02:09
117.90.137.111	attack	Sep 30 11:13:25 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:30 eola postfix/smtpd[368]: lost connection after AUTH from unknown[117.90.137.111] Sep 30 11:13:30 eola postfix/smtpd[368]: disconnect from unknown[117.90.137.111] ehlo=1 auth=0/1 commands=1/2 Sep 30 11:13:32 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:34 eola postfix/smtpd[368]: lost connection after AUTH from unknown[117.90.137.111] Sep 30 11:13:34 eola postfix/smtpd[368]: disconnect from unknown[117.90.137.111] ehlo=1 auth=0/1 commands=1/2 Sep 30 11:13:34 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:37 eola postfix/smtpd[368]: lost connection after AUTH from unknown[117.90.137.111] Sep 30 11:13:37 eola postfix/smtpd[368]: disconnect from unknown[117.90.137.111] ehlo=1 auth=0/1 commands=1/2 Sep 30 11:13:37 eola postfix/smtpd[368]: connect from unknown[117.90.137.111] Sep 30 11:13:38 eola postfix/smtpd[368]: lost conne........ -------------------------------	2019-10-03 16:54:20
27.122.59.86	attack	Oct 2 16:38:20 risk sshd[29980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.122.59.86 user=r.r Oct 2 16:38:22 risk sshd[29980]: Failed password for r.r from 27.122.59.86 port 34767 ssh2 Oct 2 16:38:26 risk sshd[29980]: Failed password for r.r from 27.122.59.86 port 34767 ssh2 Oct 2 16:38:29 risk sshd[29980]: Failed password for r.r from 27.122.59.86 port 34767 ssh2 Oct 2 16:38:32 risk sshd[29980]: Failed password for r.r from 27.122.59.86 port 34767 ssh2 Oct 2 16:38:35 risk sshd[29980]: Failed password for r.r from 27.122.59.86 port 34767 ssh2 Oct 2 16:38:38 risk sshd[29980]: Failed password for r.r from 27.122.59.86 port 34767 ssh2 Oct 2 16:38:38 risk sshd[29980]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.122.59.86 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.122.59.86	2019-10-03 16:24:12
189.213.47.36	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-03 16:23:02
168.232.125.6	attackbots	Lines containing failures of 168.232.125.6 Sep 30 14:39:40 shared04 postfix/smtpd[12833]: connect from unknown[168.232.125.6] Sep x@x Sep x@x Sep x@x Sep x@x Sep 30 14:39:44 shared04 postfix/smtpd[12833]: lost connection after RCPT from unknown[168.232.125.6] Sep 30 14:39:44 shared04 postfix/smtpd[12833]: disconnect from unknown[168.232.125.6] ehlo=1 mail=1 rcpt=0/4 commands=2/6 Sep 30 14:51:00 shared04 postfix/smtpd[12829]: connect from unknown[168.232.125.6] Sep x@x Sep 30 14:51:04 shared04 postfix/smtpd[12829]: lost connection after RCPT from unknown[168.232.125.6] Sep 30 14:51:04 shared04 postfix/smtpd[12829]: disconnect from unknown[168.232.125.6] ehlo=1 mail=1 rcpt=0/1 commands=2/3 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=168.232.125.6	2019-10-03 16:46:51
157.230.168.4	attackbots	Apr 10 09:25:55 vtv3 sshd\[26417\]: Invalid user jenkins from 157.230.168.4 port 58772 Apr 10 09:25:55 vtv3 sshd\[26417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Apr 10 09:25:56 vtv3 sshd\[26417\]: Failed password for invalid user jenkins from 157.230.168.4 port 58772 ssh2 Apr 10 09:31:52 vtv3 sshd\[29153\]: Invalid user cinstall from 157.230.168.4 port 37996 Apr 10 09:31:52 vtv3 sshd\[29153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Aug 1 10:18:33 vtv3 sshd\[17383\]: Invalid user connie from 157.230.168.4 port 37708 Aug 1 10:18:33 vtv3 sshd\[17383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Aug 1 10:18:35 vtv3 sshd\[17383\]: Failed password for invalid user connie from 157.230.168.4 port 37708 ssh2 Aug 1 10:24:02 vtv3 sshd\[20067\]: Invalid user daniel from 157.230.168.4 port 34038 Aug 1 10:24:02 vtv3 sshd\[2006	2019-10-03 16:53:00

Recently Reported IPs

158.44.89.86	158.42.164.8	158.44.95.8	158.44.184.211
158.43.218.148	158.46.26.254	158.46.55.208	158.44.165.182
158.44.190.116	158.43.14.17	158.45.143.118	158.45.170.41
158.43.199.92	158.42.196.237	158.42.145.80	158.41.78.1
158.43.216.247	158.44.144.98	158.44.52.70	158.43.117.40