42.157.128.50 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Weiyi Network Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-25 05:06:43

相同子网IP讨论:

IP	类型	评论内容	时间
42.157.128.188	attack	Dec 4 21:28:08 sauna sshd[51697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Dec 4 21:28:10 sauna sshd[51697]: Failed password for invalid user tryjefaczka from 42.157.128.188 port 47104 ssh2 ...	2019-12-05 03:42:41
42.157.128.188	attack	2019-11-11T09:36:22.831622abusebot-5.cloudsearch.cf sshd\[2253\]: Invalid user butthead from 42.157.128.188 port 60064	2019-11-11 19:08:44
42.157.128.188	attackbots	2019-11-08T08:12:00.416155abusebot-5.cloudsearch.cf sshd\[29726\]: Invalid user gong from 42.157.128.188 port 35226	2019-11-08 16:18:18
42.157.128.188	attack	2019-11-08T05:54:43.503809abusebot-5.cloudsearch.cf sshd\[28339\]: Invalid user waggoner from 42.157.128.188 port 59696	2019-11-08 14:20:58
42.157.128.188	attack	2019-10-29T09:35:42.747247abusebot-5.cloudsearch.cf sshd\[31459\]: Invalid user test from 42.157.128.188 port 57978	2019-10-29 17:37:28
42.157.128.188	attack	2019-10-18T12:02:44.356210abusebot-5.cloudsearch.cf sshd\[19744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 user=root	2019-10-19 03:54:10
42.157.128.188	attack	2019-10-15T07:48:34.028059abusebot-5.cloudsearch.cf sshd\[2265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 user=root	2019-10-15 15:53:16
42.157.128.188	attackbotsspam	Lines containing failures of 42.157.128.188 (max 1000) Oct 14 02:33:45 localhost sshd[5707]: Invalid user claire from 42.157.128.188 port 50542 Oct 14 02:33:45 localhost sshd[5707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Oct 14 02:33:47 localhost sshd[5707]: Failed password for invalid user claire from 42.157.128.188 port 50542 ssh2 Oct 14 02:33:48 localhost sshd[5707]: Received disconnect from 42.157.128.188 port 50542:11: Bye Bye [preauth] Oct 14 02:33:48 localhost sshd[5707]: Disconnected from invalid user claire 42.157.128.188 port 50542 [preauth] Oct 14 02:54:39 localhost sshd[3600]: Invalid user bot2 from 42.157.128.188 port 49012 Oct 14 02:54:39 localhost sshd[3600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Oct 14 02:54:41 localhost sshd[3600]: Failed password for invalid user bot2 from 42.157.128.188 port 49012 ssh2 Oct 14 02:54:42 local........ ------------------------------	2019-10-14 18:23:59
42.157.128.188	attack	2019-10-07T11:41:28.885551abusebot-5.cloudsearch.cf sshd\[21340\]: Invalid user max from 42.157.128.188 port 44572	2019-10-08 00:50:38
42.157.128.188	attack	Sep 26 05:43:47 OPSO sshd\[21465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 user=root Sep 26 05:43:49 OPSO sshd\[21465\]: Failed password for root from 42.157.128.188 port 57930 ssh2 Sep 26 05:45:46 OPSO sshd\[21952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 user=root Sep 26 05:45:48 OPSO sshd\[21952\]: Failed password for root from 42.157.128.188 port 48152 ssh2 Sep 26 05:47:42 OPSO sshd\[22089\]: Invalid user alpha from 42.157.128.188 port 38200 Sep 26 05:47:42 OPSO sshd\[22089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188	2019-09-26 16:54:43
42.157.128.188	attackspam	2019-09-05T20:28:36.991768ns557175 sshd\[28306\]: Invalid user ubuntu from 42.157.128.188 port 44472 2019-09-05T20:28:36.997184ns557175 sshd\[28306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 2019-09-05T20:28:39.039492ns557175 sshd\[28306\]: Failed password for invalid user ubuntu from 42.157.128.188 port 44472 ssh2 2019-09-05T20:41:44.145535ns557175 sshd\[8182\]: Invalid user zj from 42.157.128.188 port 56718 2019-09-05T20:41:44.149961ns557175 sshd\[8182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 2019-09-05T20:41:46.368230ns557175 sshd\[8182\]: Failed password for invalid user zj from 42.157.128.188 port 56718 ssh2 2019-09-05T20:45:54.020727ns557175 sshd\[12135\]: Invalid user steam from 42.157.128.188 port 42342 2019-09-05T20:45:54.026629ns557175 sshd\[12135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.1 ...	2019-09-07 15:26:34
42.157.128.188	attackbotsspam	Sep 4 04:47:55 wbs sshd\[15662\]: Invalid user dayz from 42.157.128.188 Sep 4 04:47:55 wbs sshd\[15662\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Sep 4 04:47:58 wbs sshd\[15662\]: Failed password for invalid user dayz from 42.157.128.188 port 39630 ssh2 Sep 4 04:50:55 wbs sshd\[15946\]: Invalid user hoandy from 42.157.128.188 Sep 4 04:50:55 wbs sshd\[15946\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188	2019-09-04 23:33:49
42.157.128.188	attackspam	$f2bV_matches	2019-09-01 13:50:23
42.157.128.188	attackspambots	2019-08-29T20:29:39.785343abusebot-2.cloudsearch.cf sshd\[2769\]: Invalid user metin2 from 42.157.128.188 port 43154	2019-08-30 04:47:30
42.157.128.188	attackspambots	Aug 22 22:43:35 tdfoods sshd\[17619\]: Invalid user hb from 42.157.128.188 Aug 22 22:43:35 tdfoods sshd\[17619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188 Aug 22 22:43:37 tdfoods sshd\[17619\]: Failed password for invalid user hb from 42.157.128.188 port 36602 ssh2 Aug 22 22:49:07 tdfoods sshd\[18139\]: Invalid user postgres from 42.157.128.188 Aug 22 22:49:07 tdfoods sshd\[18139\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.128.188	2019-08-23 16:51:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.157.128.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20266
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.157.128.50.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 05:06:38 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 50.128.157.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 50.128.157.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
60.169.81.28	attackbots	2020-01-29 22:56:32 dovecot_login authenticator failed for (DuhWgEvEtd) [60.169.81.28]:63967 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=feng@lerctr.org) 2020-01-29 22:56:50 dovecot_login authenticator failed for (61WBmz) [60.169.81.28]:58764 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=feng@lerctr.org) 2020-01-29 22:57:11 dovecot_login authenticator failed for (cMCHJqY4) [60.169.81.28]:58767 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=feng@lerctr.org) ...	2020-01-30 20:09:23
103.242.105.180	attackbotsspam	Unauthorized connection attempt detected from IP address 103.242.105.180 to port 445	2020-01-30 20:27:25
177.139.218.79	attackbots	20/1/29@23:56:50: FAIL: Alarm-Network address from=177.139.218.79 20/1/29@23:56:50: FAIL: Alarm-Network address from=177.139.218.79 ...	2020-01-30 20:21:11
107.12.103.16	attack	RDP Bruteforce	2020-01-30 20:29:52
178.88.112.22	attack	Jan 30 05:55:50 amit sshd\[22068\]: Invalid user loshitha from 178.88.112.22 Jan 30 05:55:50 amit sshd\[22068\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.88.112.22 Jan 30 05:55:52 amit sshd\[22068\]: Failed password for invalid user loshitha from 178.88.112.22 port 56256 ssh2 ...	2020-01-30 20:36:01
103.254.56.106	attack	Unauthorized connection attempt detected from IP address 103.254.56.106 to port 23 [J]	2020-01-30 20:20:22
40.126.120.71	attackbots	Unauthorized connection attempt detected from IP address 40.126.120.71 to port 2220 [J]	2020-01-30 20:22:19
202.80.232.194	attack	1580360238 - 01/30/2020 05:57:18 Host: 202.80.232.194/202.80.232.194 Port: 445 TCP Blocked	2020-01-30 20:02:48
46.101.17.215	attack	Unauthorized connection attempt detected from IP address 46.101.17.215 to port 2220 [J]	2020-01-30 20:05:32
164.132.107.245	attackspam	Unauthorized connection attempt detected from IP address 164.132.107.245 to port 2220 [J]	2020-01-30 20:27:40
124.156.114.168	attack	Jan 30 05:46:01 sip sshd[29343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.114.168 Jan 30 05:46:04 sip sshd[29343]: Failed password for invalid user sivanta from 124.156.114.168 port 42790 ssh2 Jan 30 05:57:00 sip sshd[32094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.114.168	2020-01-30 20:16:28
185.73.113.89	attack	Unauthorized connection attempt detected from IP address 185.73.113.89 to port 2220 [J]	2020-01-30 20:18:33
187.167.192.25	attackbotsspam	Automatic report - Port Scan Attack	2020-01-30 20:03:34
112.85.42.185	attack	2020-1-30 11:35:34 AM: failed ssh attempt	2020-01-30 20:10:18
222.252.39.43	attackbotsspam	Jan 30 05:57:21 icinga sshd[37848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.39.43 Jan 30 05:57:23 icinga sshd[37848]: Failed password for invalid user admin from 222.252.39.43 port 36662 ssh2 Jan 30 05:57:30 icinga sshd[38020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.39.43 ...	2020-01-30 19:59:55

最近上报的IP列表

207.180.192.52	124.195.168.82	217.58.186.155	171.242.11.115
218.150.220.198	170.130.187.2	138.0.145.192	200.52.60.227
189.194.132.250	183.159.182.39	114.67.74.139	117.60.133.122
114.239.164.196	113.160.223.167	52.167.43.30	2604:180:3:ba4::8374
36.233.101.79	27.66.127.191	14.223.54.139	14.11.36.2