159.65.142.157

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.65.142.192	attack	Sep 25 04:10:59 lunarastro sshd[15105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 Sep 25 04:11:01 lunarastro sshd[15105]: Failed password for invalid user zabbix from 159.65.142.192 port 51816 ssh2	2020-09-25 06:43:53
159.65.142.192	attack	Sep 19 18:23:27 fhem-rasp sshd[2318]: Failed password for root from 159.65.142.192 port 36350 ssh2 Sep 19 18:23:27 fhem-rasp sshd[2318]: Disconnected from authenticating user root 159.65.142.192 port 36350 [preauth] ...	2020-09-20 01:01:39
159.65.142.192	attackspambots	(sshd) Failed SSH login from 159.65.142.192 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 19 00:01:29 server sshd[1869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 user=mysql Sep 19 00:01:31 server sshd[1869]: Failed password for mysql from 159.65.142.192 port 43166 ssh2 Sep 19 00:05:43 server sshd[4159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 user=ftp Sep 19 00:05:45 server sshd[4159]: Failed password for ftp from 159.65.142.192 port 54150 ssh2 Sep 19 00:09:59 server sshd[5153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 user=root	2020-09-19 16:50:02
159.65.142.192	attackspam	(sshd) Failed SSH login from 159.65.142.192 (SG/Singapore/-): 5 in the last 3600 secs	2020-09-02 21:36:47
159.65.142.192	attackbots	Invalid user roy from 159.65.142.192 port 34022	2020-09-02 13:30:54
159.65.142.192	attackbots	Sep 1 22:18:43 rush sshd[6985]: Failed password for root from 159.65.142.192 port 37160 ssh2 Sep 1 22:22:24 rush sshd[7047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 Sep 1 22:22:26 rush sshd[7047]: Failed password for invalid user ljq from 159.65.142.192 port 37954 ssh2 ...	2020-09-02 06:32:20
159.65.142.192	attackspambots	Aug 31 20:48:39 dignus sshd[18213]: Failed password for invalid user ubnt from 159.65.142.192 port 33064 ssh2 Aug 31 20:52:27 dignus sshd[18708]: Invalid user gmodserver from 159.65.142.192 port 33582 Aug 31 20:52:27 dignus sshd[18708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 Aug 31 20:52:29 dignus sshd[18708]: Failed password for invalid user gmodserver from 159.65.142.192 port 33582 ssh2 Aug 31 20:56:27 dignus sshd[19185]: Invalid user atul from 159.65.142.192 port 34100 ...	2020-09-01 12:18:02
159.65.142.192	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-31T12:30:13Z and 2020-08-31T12:35:42Z	2020-08-31 22:23:02
159.65.142.192	attack	Port Scan detected from 159.65.142.192 (SG/Singapore/-/Singapore (Pioneer)/-). 4 hits in the last 235 seconds	2020-08-26 03:42:38
159.65.142.103	attackspam	Aug 17 05:58:53 h2829583 sshd[11224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.103	2020-08-17 14:10:08
159.65.142.103	attackspam	detected by Fail2Ban	2020-08-13 16:03:14
159.65.142.103	attack	Aug 9 05:52:49 hidden sshd[8124]: Failed password for hidden from 159.65.142.103 port 41678 ssh2 Aug 9 05:55:41 hidden sshd[8542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.103 user=root Aug 9 05:55:44 hidden sshd[8542]: Failed password for hidden from 159.65.142.103 port 45066 ssh2	2020-08-09 12:29:18
159.65.142.192	attackspambots	Aug 7 06:08:48 ip-172-31-61-156 sshd[1980]: Failed password for root from 159.65.142.192 port 44210 ssh2 Aug 7 06:13:13 ip-172-31-61-156 sshd[2322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 user=root Aug 7 06:13:15 ip-172-31-61-156 sshd[2322]: Failed password for root from 159.65.142.192 port 56480 ssh2 Aug 7 06:13:13 ip-172-31-61-156 sshd[2322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.142.192 user=root Aug 7 06:13:15 ip-172-31-61-156 sshd[2322]: Failed password for root from 159.65.142.192 port 56480 ssh2 ...	2020-08-07 14:32:24
159.65.142.192	attackbots	Aug 2 00:44:10 Host-KLAX-C sshd[23530]: Disconnected from invalid user root 159.65.142.192 port 50792 [preauth] ...	2020-08-02 17:30:19
159.65.142.192	attack	Invalid user bx from 159.65.142.192 port 33852	2020-07-24 21:07:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.65.142.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3388
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.65.142.157.			IN	A

;; AUTHORITY SECTION:
.			360	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:40:09 CST 2022
;; MSG SIZE  rcvd: 107

Host info

157.142.65.159.in-addr.arpa domain name pointer dapentelkom.co.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.142.65.159.in-addr.arpa	name = dapentelkom.co.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.27.10.61	attackspam	May 14 06:50:14 minden010 sshd[799]: Failed password for root from 118.27.10.61 port 47520 ssh2 May 14 06:54:25 minden010 sshd[2536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.10.61 May 14 06:54:27 minden010 sshd[2536]: Failed password for invalid user dewiretnowati from 118.27.10.61 port 55464 ssh2 ...	2020-05-14 16:31:32
119.57.247.86	attackbotsspam	May 14 02:16:41 r.ca sshd[17890]: Failed password for root from 119.57.247.86 port 38730 ssh2	2020-05-14 15:39:20
213.238.181.133	attack	213.238.181.133 - - \[14/May/2020:05:49:11 +0200\] "POST /wp-login.php HTTP/1.0" 200 6718 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 213.238.181.133 - - \[14/May/2020:05:49:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 6726 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 213.238.181.133 - - \[14/May/2020:05:49:25 +0200\] "POST /wp-login.php HTTP/1.0" 200 6714 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-14 16:28:36
51.77.194.232	attackbots	IP blocked	2020-05-14 16:12:31
138.197.151.129	attackbotsspam	$f2bV_matches	2020-05-14 16:09:28
36.27.30.208	attackspambots	2020-05-14T05:50:23.606709 X postfix/smtpd[398059]: NOQUEUE: reject: RCPT from unknown[36.27.30.208]: 554 5.7.1 Service unavailable; Client host [36.27.30.208] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/36.27.30.208 / https://www.spamhaus.org/sbl/query/SBL467436; from= to= proto=ESMTP helo=	2020-05-14 15:45:07
196.203.53.20	attackbots	Invalid user test2 from 196.203.53.20 port 34174	2020-05-14 15:44:12
180.168.36.2	attackspam	Invalid user user from 180.168.36.2 port 34171	2020-05-14 15:38:51
148.0.43.37	attackspam	port scan and connect, tcp 8080 (http-proxy)	2020-05-14 15:58:05
222.186.31.166	attack	May 14 10:12:16 vps sshd[771598]: Failed password for root from 222.186.31.166 port 45500 ssh2 May 14 10:12:18 vps sshd[771598]: Failed password for root from 222.186.31.166 port 45500 ssh2 May 14 10:12:21 vps sshd[772222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root May 14 10:12:23 vps sshd[772222]: Failed password for root from 222.186.31.166 port 15254 ssh2 May 14 10:12:25 vps sshd[772222]: Failed password for root from 222.186.31.166 port 15254 ssh2 ...	2020-05-14 16:15:20
13.82.6.13	attackspambots	Unauthorized connection attempt detected from IP address 13.82.6.13 to port 23	2020-05-14 15:53:11
185.63.216.127	attackspam	TCP (SYN) 185.63.216.127:4935 -> port 3389, len 52	2020-05-14 16:20:38
106.53.20.166	attackbots	May 14 07:05:30 dev0-dcde-rnet sshd[5115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.20.166 May 14 07:05:33 dev0-dcde-rnet sshd[5115]: Failed password for invalid user julio from 106.53.20.166 port 36314 ssh2 May 14 07:07:30 dev0-dcde-rnet sshd[5185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.20.166	2020-05-14 16:16:15
5.135.164.201	attack	(sshd) Failed SSH login from 5.135.164.201 (FR/France/ns3317498.ip-5-135-164.eu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 14 05:50:33 ubnt-55d23 sshd[31649]: Invalid user csd from 5.135.164.201 port 45106 May 14 05:50:34 ubnt-55d23 sshd[31649]: Failed password for invalid user csd from 5.135.164.201 port 45106 ssh2	2020-05-14 15:37:41
129.211.7.173	attackspambots	May 14 08:57:39 server sshd[10252]: Failed password for invalid user sammy from 129.211.7.173 port 60642 ssh2 May 14 09:05:17 server sshd[16104]: Failed password for invalid user ridha from 129.211.7.173 port 35106 ssh2 May 14 09:08:36 server sshd[18289]: Failed password for invalid user victor from 129.211.7.173 port 50732 ssh2	2020-05-14 16:14:42

Recently Reported IPs

159.65.139.203	159.65.141.28	159.65.143.208	159.65.139.1
159.65.146.138	159.65.143.171	159.65.144.197	159.65.145.51
159.65.146.51	159.65.146.2	159.65.147.108	159.65.147.113
159.65.148.12	159.65.147.169	159.65.147.203	159.65.145.102
159.65.148.129	159.65.149.78	159.65.148.239	159.65.150.25