157.240.226.16

基本信息:

城市(city): Barueri

省份(region): Sao Paulo

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.240.226.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22829
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.240.226.16.			IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024060800 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 08 19:03:31 CST 2024
;; MSG SIZE  rcvd: 107

HOST信息:

16.226.240.157.in-addr.arpa domain name pointer edge-mqtt-latest-shv-02-gru1.facebook.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.226.240.157.in-addr.arpa	name = edge-mqtt-latest-shv-02-gru1.facebook.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
41.215.123.158	attackbotsspam	Nov 19 11:47:21 mxgate1 postfix/postscreen[659]: CONNECT from [41.215.123.158]:10194 to [176.31.12.44]:25 Nov 19 11:47:21 mxgate1 postfix/dnsblog[668]: addr 41.215.123.158 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 19 11:47:21 mxgate1 postfix/dnsblog[666]: addr 41.215.123.158 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 19 11:47:21 mxgate1 postfix/dnsblog[667]: addr 41.215.123.158 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 19 11:47:27 mxgate1 postfix/postscreen[659]: DNSBL rank 4 for [41.215.123.158]:10194 Nov x@x Nov 19 11:47:28 mxgate1 postfix/postscreen[659]: HANGUP after 1.2 from [41.215.123.158]:10194 in tests after SMTP handshake Nov 19 11:47:28 mxgate1 postfix/postscreen[659]: DISCONNECT [41.215.123.158]:10194 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.215.123.158	2019-11-21 16:16:34
63.88.23.201	attack	63.88.23.201 was recorded 12 times by 7 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 12, 91, 461	2019-11-21 15:52:45
51.89.13.177	attackspam	Nov 19 10:58:50 mxgate1 postfix/postscreen[30543]: CONNECT from [51.89.13.177]:49558 to [176.31.12.44]:25 Nov 19 10:58:50 mxgate1 postfix/dnsblog[30545]: addr 51.89.13.177 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 19 10:58:56 mxgate1 postfix/postscreen[30543]: DNSBL rank 2 for [51.89.13.177]:49558 Nov 19 10:58:56 mxgate1 postfix/tlsproxy[31214]: CONNECT from [51.89.13.177]:49558 Nov x@x Nov 19 10:58:56 mxgate1 postfix/postscreen[30543]: DISCONNECT [51.89.13.177]:49558 Nov 19 10:58:56 mxgate1 postfix/tlsproxy[31214]: DISCONNECT [51.89.13.177]:49558 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.89.13.177	2019-11-21 16:06:35
37.120.145.161	attackbotsspam	Nov 19 09:34:19 uapps sshd[4348]: Failed password for invalid user budzianowski from 37.120.145.161 port 56604 ssh2 Nov 19 09:34:19 uapps sshd[4348]: Received disconnect from 37.120.145.161: 11: Bye Bye [preauth] Nov 19 09:48:32 uapps sshd[4470]: User uucp from 37.120.145.161 not allowed because not listed in AllowUsers Nov 19 09:48:32 uapps sshd[4470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.145.161 user=uucp Nov 19 09:48:34 uapps sshd[4470]: Failed password for invalid user uucp from 37.120.145.161 port 54978 ssh2 Nov 19 09:48:34 uapps sshd[4470]: Received disconnect from 37.120.145.161: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.120.145.161	2019-11-21 15:48:05
23.129.64.163	attack	detected by Fail2Ban	2019-11-21 16:09:42
45.136.108.65	attackbotsspam	3389BruteforceFW23	2019-11-21 16:12:56
106.13.148.44	attackspambots	Nov 21 07:54:30 localhost sshd\[21620\]: Invalid user cream from 106.13.148.44 port 41652 Nov 21 07:54:30 localhost sshd\[21620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.148.44 Nov 21 07:54:31 localhost sshd\[21620\]: Failed password for invalid user cream from 106.13.148.44 port 41652 ssh2 Nov 21 07:58:55 localhost sshd\[21711\]: Invalid user test1test from 106.13.148.44 port 47534 Nov 21 07:58:55 localhost sshd\[21711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.148.44 ...	2019-11-21 16:08:38
41.251.144.98	attackspambots	TCP Port Scanning	2019-11-21 15:45:42
183.87.157.202	attack	Nov 20 21:33:47 php1 sshd\[31066\]: Invalid user lowander from 183.87.157.202 Nov 20 21:33:47 php1 sshd\[31066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202 Nov 20 21:33:49 php1 sshd\[31066\]: Failed password for invalid user lowander from 183.87.157.202 port 55600 ssh2 Nov 20 21:38:14 php1 sshd\[31436\]: Invalid user hieldbrant from 183.87.157.202 Nov 20 21:38:14 php1 sshd\[31436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202	2019-11-21 15:46:53
176.107.131.128	attackspam	Nov 21 07:41:39 meumeu sshd[28867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.131.128 Nov 21 07:41:40 meumeu sshd[28867]: Failed password for invalid user konecny from 176.107.131.128 port 54054 ssh2 Nov 21 07:46:06 meumeu sshd[29557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.131.128 ...	2019-11-21 15:54:55
179.182.63.223	attackbots	Nov 19 05:27:25 localhost postfix/smtpd[2269304]: disconnect from unknown[179.182.63.223] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Nov 19 05:45:18 localhost postfix/smtpd[2275106]: disconnect from unknown[179.182.63.223] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Nov 19 05:50:50 localhost postfix/smtpd[2275106]: servereout after EHLO from unknown[179.182.63.223] Nov 19 06:02:58 localhost postfix/smtpd[2279945]: disconnect from unknown[179.182.63.223] ehlo=1 auth=0/1 quhostname=1 commands=2/3 Nov 19 06:04:09 localhost postfix/smtpd[2279945]: lost connection after EHLO from unknown[179.182.63.223] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.182.63.223	2019-11-21 15:51:23
93.174.93.5	attack	Nov 21 07:20:55 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session= Nov 21 07:21:23 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session= Nov 21 07:24:53 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session=<3pTaWtWXmuJdrl0F> Nov 21 07:25:22 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session= Nov 21 07:28:09 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session ...	2019-11-21 16:14:05
69.21.156.29	attack	TCP Port Scanning	2019-11-21 16:04:37
94.23.21.52	attack	94.23.21.52 - - \[21/Nov/2019:06:28:49 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 94.23.21.52 - - \[21/Nov/2019:06:28:50 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-21 15:47:27
177.132.246.251	attack	Nov 19 08:29:34 riskplan-s sshd[29865]: reveeclipse mapping checking getaddrinfo for 177.132.246.251.dynamic.adsl.gvt.net.br [177.132.246.251] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 19 08:29:34 riskplan-s sshd[29865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.132.246.251 user=r.r Nov 19 08:29:36 riskplan-s sshd[29865]: Failed password for r.r from 177.132.246.251 port 39988 ssh2 Nov 19 08:29:36 riskplan-s sshd[29865]: Received disconnect from 177.132.246.251: 11: Bye Bye [preauth] Nov 19 08:40:47 riskplan-s sshd[30023]: reveeclipse mapping checking getaddrinfo for 177.132.246.251.dynamic.adsl.gvt.net.br [177.132.246.251] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 19 08:40:47 riskplan-s sshd[30023]: Invalid user eps from 177.132.246.251 Nov 19 08:40:47 riskplan-s sshd[30023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.132.246.251 Nov 19 08:40:50 riskplan-s sshd[30023]: Fail........ -------------------------------	2019-11-21 15:43:44

最近上报的IP列表

109.178.49.173	175.89.203.1	88.223.9.154	226.129.54.123
79.22.139.134	65.208.186.119	212.68.92.147	140.53.118.148
117.38.251.147	56.134.238.3	179.41.245.5	181.55.226.231
90.172.127.122	186.91.20.100	163.42.2.198	204.184.169.36
13.103.98.216	110.205.109.207	73.48.14.15	147.100.180.187