18.142.99.158 - IPInfo

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.142.99.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37817
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.142.99.158.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040903 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 05:54:24 CST 2020
;; MSG SIZE  rcvd: 117

Host info

158.99.142.18.in-addr.arpa domain name pointer ec2-18-142-99-158.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.99.142.18.in-addr.arpa	name = ec2-18-142-99-158.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.136.110.46	attackspambots	Nov 11 11:42:28 h2177944 kernel: \[6344506.027114\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=35266 PROTO=TCP SPT=58557 DPT=5837 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 11 11:55:04 h2177944 kernel: \[6345261.599596\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=51856 PROTO=TCP SPT=58557 DPT=5570 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 11 11:58:05 h2177944 kernel: \[6345443.062125\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=1436 PROTO=TCP SPT=58557 DPT=6382 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 11 12:03:45 h2177944 kernel: \[6345782.948046\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=45767 PROTO=TCP SPT=58557 DPT=5389 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 11 12:08:24 h2177944 kernel: \[6346061.592640\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.46 DST=85.214.117.9	2019-11-11 19:30:35
157.245.69.186	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-11 19:09:46
114.246.11.178	attackbotsspam	Automatic report - Banned IP Access	2019-11-11 19:04:18
222.186.180.9	attack	Nov 11 11:27:14 sshgateway sshd\[6087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root Nov 11 11:27:16 sshgateway sshd\[6087\]: Failed password for root from 222.186.180.9 port 65238 ssh2 Nov 11 11:27:29 sshgateway sshd\[6087\]: error: maximum authentication attempts exceeded for root from 222.186.180.9 port 65238 ssh2 \[preauth\]	2019-11-11 19:29:08
119.28.105.127	attack	Automatic report - Banned IP Access	2019-11-11 19:16:23
145.249.251.13	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/145.249.251.13/ KZ - 1H : (4) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KZ NAME ASN : ASN21299 IP : 145.249.251.13 CIDR : 145.249.251.0/24 PREFIX COUNT : 1019 UNIQUE IP COUNT : 358912 ATTACKS DETECTED ASN21299 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-11 09:48:07 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-11-11 19:16:07
2.132.84.155	attackbotsspam	Nov 11 07:05:18 mxgate1 postfix/postscreen[31181]: CONNECT from [2.132.84.155]:48639 to [176.31.12.44]:25 Nov 11 07:05:18 mxgate1 postfix/dnsblog[31182]: addr 2.132.84.155 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 11 07:05:18 mxgate1 postfix/dnsblog[31184]: addr 2.132.84.155 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 11 07:05:18 mxgate1 postfix/dnsblog[31182]: addr 2.132.84.155 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 11 07:05:18 mxgate1 postfix/dnsblog[31201]: addr 2.132.84.155 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 11 07:05:18 mxgate1 postfix/postscreen[31181]: PREGREET 21 after 0.16 from [2.132.84.155]:48639: EHLO [2.132.84.155] Nov 11 07:05:18 mxgate1 postfix/postscreen[31181]: DNSBL rank 4 for [2.132.84.155]:48639 Nov x@x Nov 11 07:05:19 mxgate1 postfix/postscreen[31181]: HANGUP after 0.56 from [2.132.84.155]:48639 in tests after SMTP handshake Nov 11 07:05:19 mxgate1 postfix/postscreen[31181]: DISCONNECT [2.132.84.155]........ -------------------------------	2019-11-11 19:37:42
180.168.55.110	attackbots	Nov 11 09:00:27 server sshd\[5556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.55.110 user=root Nov 11 09:00:28 server sshd\[5556\]: Failed password for root from 180.168.55.110 port 44101 ssh2 Nov 11 09:23:21 server sshd\[11342\]: Invalid user ahmed from 180.168.55.110 Nov 11 09:23:21 server sshd\[11342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.55.110 Nov 11 09:23:23 server sshd\[11342\]: Failed password for invalid user ahmed from 180.168.55.110 port 52763 ssh2 ...	2019-11-11 19:19:24
171.91.157.135	attackbotsspam	Port 1433 Scan	2019-11-11 19:39:31
51.158.113.194	attack	[ssh] SSH attack	2019-11-11 19:08:10
183.47.3.72	attackbotsspam	Port 1433 Scan	2019-11-11 19:23:41
23.94.46.192	attack	Nov 11 13:37:36 server sshd\[13959\]: Invalid user teste from 23.94.46.192 Nov 11 13:37:36 server sshd\[13959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.46.192 Nov 11 13:37:38 server sshd\[13959\]: Failed password for invalid user teste from 23.94.46.192 port 44056 ssh2 Nov 11 13:44:06 server sshd\[15950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.46.192 user=root Nov 11 13:44:08 server sshd\[15950\]: Failed password for root from 23.94.46.192 port 41132 ssh2 ...	2019-11-11 19:11:11
152.136.50.26	attack	'Fail2Ban'	2019-11-11 19:13:14
41.141.64.115	attackspambots	Automatic report - Port Scan Attack	2019-11-11 19:28:05
201.238.198.114	attack	Nov 10 11:54:36 host sshd[6511]: Failed password for invalid user admin from 201.238.198.114 port 11017	2019-11-11 19:36:28

Recently Reported IPs

94.22.11.224	121.170.35.204	118.70.52.95	107.208.97.45
180.107.58.210	133.48.80.254	124.63.255.62	113.139.31.5
95.168.63.198	187.140.167.214	105.7.245.194	89.132.41.86
98.126.31.146	81.190.106.143	154.145.152.178	200.140.196.214
196.126.7.128	44.213.134.2	162.197.122.43	117.50.8.61