157.245.42.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.42.25	attack	Scan port	2022-09-26 12:24:49
157.245.42.253	attack	157.245.42.253 - - [23/Aug/2020:15:07:54 +0200] "GET /wp-login.php HTTP/1.1" 200 8691 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - [23/Aug/2020:15:08:00 +0200] "POST /wp-login.php HTTP/1.1" 200 8921 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - [23/Aug/2020:15:08:06 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-24 02:28:43
157.245.42.253	attackspambots	[Wed Aug 19 11:43:40.116539 2020] [php7:error] [pid 1400] [client 157.245.42.253:51238] script /Library/Server/Web/Data/Sites/interfaithministryservices.com/wp-login.php not found or unable to stat, referer: http://reverendrhonda.com/wp-login.php	2020-08-20 01:51:48
157.245.42.253	attackspambots	157.245.42.253 - - [15/Aug/2020:15:42:24 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - [15/Aug/2020:15:42:26 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - [15/Aug/2020:15:42:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-15 22:08:31
157.245.42.253	attackspambots	157.245.42.253 - - \[07/Aug/2020:14:08:23 +0200\] "POST /wp-login.php HTTP/1.0" 200 6462 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - \[07/Aug/2020:14:08:34 +0200\] "POST /wp-login.php HTTP/1.0" 200 6431 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - \[07/Aug/2020:14:08:35 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-08-07 20:32:16
157.245.42.253	attackspam	157.245.42.253 - - [29/Jul/2020:13:54:43 +0200] "POST /xmlrpc.php HTTP/1.1" 403 10684 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - [29/Jul/2020:14:12:58 +0200] "POST /xmlrpc.php HTTP/1.1" 403 20980 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-29 21:45:25
157.245.42.253	attackspam	Automatic report - Banned IP Access	2020-07-21 12:20:11
157.245.42.253	attackspambots	xmlrpc attack	2020-06-15 17:10:59
157.245.42.253	attackspambots	Attempt to log in with non-existing username	2020-05-17 04:18:58
157.245.42.253	attackspam	Apr 29 19:45:56 wordpress[]: XML-RPC authentication failure [host:] [remote:157.245.42.253] May 1 00:43:19 wordpress[]: blocked authentication attempt for [] [host:] [remote:157.245.42.253] May 1 14:17:26 wordpress[]: blocked authentication attempt for [] [host:] [remote:157.245.42.253] May 2 00:22:55 wordpress[]: blocked authentication attempt for [] [host:] [remote:157.245.42.253] May 2 14:49:42 wordpress[]: XML-RPC authentication failure [host:] [remote:157.245.42.253] May 3 14:06:56 wordpress[]: authentication attempt for unknown user []] [host:] [remote:157.245.42.253] May 3 14:06:56 wordpress[]: XML-RPC authentication failure [host:] [remote:157.245.42.253]	2020-05-04 02:30:49
157.245.42.253	attack	05/03/2020-08:37:19.081794 157.245.42.253 Protocol: 6 ET POLICY Cleartext WordPress Login	2020-05-03 17:25:46
157.245.42.253	attackbots	157.245.42.253 - - \[21/Apr/2020:21:48:26 +0200\] "POST /wp-login.php HTTP/1.0" 200 6811 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - \[21/Apr/2020:21:48:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 6626 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.42.253 - - \[21/Apr/2020:21:48:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 6623 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-22 06:14:15
157.245.42.253	attackspam	157.245.42.253 - - [28/Mar/2020:15:42:51 +0300] "POST /wp-login.php HTTP/1.1" 200 2790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-28 23:51:58
157.245.42.171	attackspambots	Sep 16 01:14:01 nextcloud sshd\[6673\]: Invalid user dev from 157.245.42.171 Sep 16 01:14:01 nextcloud sshd\[6673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.42.171 Sep 16 01:14:02 nextcloud sshd\[6673\]: Failed password for invalid user dev from 157.245.42.171 port 55994 ssh2 ...	2019-09-16 13:28:34
157.245.42.171	attack	Sep 15 19:04:14 [host] sshd[18805]: Invalid user ian from 157.245.42.171 Sep 15 19:04:14 [host] sshd[18805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.42.171 Sep 15 19:04:15 [host] sshd[18805]: Failed password for invalid user ian from 157.245.42.171 port 34738 ssh2	2019-09-16 04:03:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.42.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48333
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.42.12.			IN	A

;; AUTHORITY SECTION:
.			200	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 14:22:55 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

12.42.245.157.in-addr.arpa domain name pointer jerry-se-do-eu-west-scanners-21.do.binaryedge.ninja.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.42.245.157.in-addr.arpa	name = jerry-se-do-eu-west-scanners-21.do.binaryedge.ninja.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.158.177.209	attackspambots	TCP (SYN) 51.158.177.209:46355 -> port 8080, len 44	2020-08-09 19:24:24
193.243.164.33	attackspam	Aug 9 18:07:49 localhost sshd[2424341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.243.164.33 user=root Aug 9 18:07:51 localhost sshd[2424341]: Failed password for root from 193.243.164.33 port 48960 ssh2 ...	2020-08-09 19:06:33
145.239.11.166	attackspambots	[2020-08-09 07:07:33] NOTICE[1248][C-00005105] chan_sip.c: Call from '' (145.239.11.166:43426) to extension '00447441399590' rejected because extension not found in context 'public'. [2020-08-09 07:07:33] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T07:07:33.712-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00447441399590",SessionID="0x7f27203c7888",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/145.239.11.166/5060",ACLName="no_extension_match" [2020-08-09 07:08:03] NOTICE[1248][C-00005107] chan_sip.c: Call from '' (145.239.11.166:34149) to extension '00447441399590' rejected because extension not found in context 'public'. ...	2020-08-09 19:26:13
216.244.66.233	attackbots	Bad Web Bot (DotBot).	2020-08-09 19:18:25
51.91.110.170	attackspambots	Aug 9 00:34:09 ws24vmsma01 sshd[228815]: Failed password for root from 51.91.110.170 port 38578 ssh2 ...	2020-08-09 19:14:37
184.22.144.226	attackbots	1596944836 - 08/09/2020 05:47:16 Host: 184.22.144.226/184.22.144.226 Port: 445 TCP Blocked	2020-08-09 19:00:11
91.135.200.202	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 88 - port: 3389 proto: tcp cat: Misc Attackbytes: 60	2020-08-09 19:08:12
51.178.78.154	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 39 - port: 389 proto: tcp cat: Misc Attackbytes: 60	2020-08-09 19:05:10
85.249.2.10	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-09T11:12:36Z and 2020-08-09T11:19:26Z	2020-08-09 19:20:42
132.148.28.20	attackbotsspam	Automatic report generated by Wazuh	2020-08-09 19:00:36
103.98.16.135	attack	Aug 9 12:15:46 eventyay sshd[27116]: Failed password for root from 103.98.16.135 port 56048 ssh2 Aug 9 12:16:12 eventyay sshd[27135]: Failed password for root from 103.98.16.135 port 60722 ssh2 ...	2020-08-09 19:25:34
45.76.152.151	attackspam	45.76.152.151 - - [09/Aug/2020:07:03:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.76.152.151 - - [09/Aug/2020:07:04:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2177 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.76.152.151 - - [09/Aug/2020:07:04:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 19:32:11
51.178.53.233	attackspambots	Aug 9 06:33:03 scw-tender-jepsen sshd[26747]: Failed password for root from 51.178.53.233 port 36106 ssh2	2020-08-09 19:01:40
49.69.158.156	attackbotsspam	(sshd) Failed SSH login from 49.69.158.156 (CN/China/-): 5 in the last 300 secs	2020-08-09 19:21:34
75.157.30.43	attack	Automatic report - Banned IP Access	2020-08-09 19:10:17

最近上报的IP列表

197.184.182.56	152.67.253.33	58.255.138.100	180.183.225.88
45.14.36.146	45.169.46.249	183.225.107.174	193.202.11.100
139.196.27.237	137.184.188.96	41.144.149.205	117.155.234.68
194.110.150.36	46.214.29.136	36.4.18.212	183.171.158.249
138.99.152.78	201.184.138.18	39.103.181.93	106.75.250.68

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表