159.158.228.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.158.228.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.158.228.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 07:36:43 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 42.228.158.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.228.158.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
35.181.46.85	attack	Brute force attack against VPN service	2020-03-30 03:21:25
92.118.38.66	attackbotsspam	2020-03-29 21:52:05 dovecot_login authenticator failed for $User$ \[92.118.38.66\]: 535 Incorrect authentication data $set_id=salenews@no-server.de$ 2020-03-29 21:52:18 dovecot_login authenticator failed for $User$ \[92.118.38.66\]: 535 Incorrect authentication data $set_id=salenews@no-server.de$ 2020-03-29 21:52:34 dovecot_login authenticator failed for $User$ \[92.118.38.66\]: 535 Incorrect authentication data $set_id=schedule@no-server.de$ 2020-03-29 21:52:53 dovecot_login authenticator failed for $User$ \[92.118.38.66\]: 535 Incorrect authentication data $set_id=schedule@no-server.de$ 2020-03-29 21:52:56 dovecot_login authenticator failed for $User$ \[92.118.38.66\]: 535 Incorrect authentication data $set_id=schedule@no-server.de$ ...	2020-03-30 03:54:06
45.143.220.229	attack	[2020-03-29 12:50:28] NOTICE[1148][C-000189ae] chan_sip.c: Call from '' (45.143.220.229:61285) to extension '91110441768733904' rejected because extension not found in context 'public'. [2020-03-29 12:50:28] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-29T12:50:28.199-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="91110441768733904",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.229/61285",ACLName="no_extension_match" [2020-03-29 12:51:24] NOTICE[1148][C-000189af] chan_sip.c: Call from '' (45.143.220.229:49317) to extension '91120441768733904' rejected because extension not found in context 'public'. [2020-03-29 12:51:24] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-29T12:51:24.583-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="91120441768733904",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress ...	2020-03-30 03:41:07
185.156.73.67	attack	03/29/2020-14:58:46.359387 185.156.73.67 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-03-30 03:32:19
200.30.142.250	attack	Mar 29 15:38:11 vh1 sshd[26979]: Did not receive identification string from 200.30.142.250 Mar 29 15:42:16 vh1 sshd[27082]: Address 200.30.142.250 maps to celasa.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Mar 29 15:42:16 vh1 sshd[27082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.30.142.250 user=r.r Mar 29 15:42:19 vh1 sshd[27082]: Failed password for r.r from 200.30.142.250 port 33551 ssh2 Mar 29 15:42:19 vh1 sshd[27083]: Received disconnect from 200.30.142.250: 11: Normal Shutdown, Thank you for playing Mar 29 15:46:35 vh1 sshd[27173]: Address 200.30.142.250 maps to celasa.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Mar 29 15:46:35 vh1 sshd[27173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.30.142.250 user=r.r Mar 29 15:46:37 vh1 sshd[27173]: Failed password for r.r from 200.30.142.250 port 51536 ssh2 Mar ........ -------------------------------	2020-03-30 03:41:40
35.181.103.139	attack	Brute force attack against VPN service	2020-03-30 03:35:22
161.82.136.55	attackbotsspam	port scan and connect, tcp 81 (hosts2-ns)	2020-03-30 03:52:27
122.129.243.28	attackspam	Unauthorized connection attempt detected from IP address 122.129.243.28 to port 23	2020-03-30 03:33:59
76.174.205.199	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-30 03:20:05
140.143.199.169	attack	$f2bV_matches	2020-03-30 03:45:31
106.38.70.178	attackbots	" "	2020-03-30 03:47:22
64.251.10.207	attackspambots	Wordpress brute-force	2020-03-30 03:40:10
2.177.116.77	attackspambots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-30 03:50:10
59.60.180.183	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-30 03:22:42
169.255.222.227	attackbotsspam	DATE:2020-03-29 14:39:21, IP:169.255.222.227, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-30 03:17:56

最近上报的IP列表

117.203.83.175	48.107.123.156	29.27.67.209	170.195.49.197
224.253.91.58	171.107.164.110	135.125.118.217	193.56.184.225
38.88.84.95	15.194.100.178	27.121.97.109	25.69.252.151
194.38.88.117	51.211.135.199	155.200.205.104	210.127.50.240
221.126.180.83	30.199.242.178	101.132.207.169	252.86.157.145