42.157.130.159

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Weiyi Network Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SMB Server BruteForce Attack	2019-08-10 20:51:34

相同子网IP讨论:

IP	类型	评论内容	时间
42.157.130.250	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 15:59:14
42.157.130.250	attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-18 22:37:35
42.157.130.155	attackspambots	Fail2Ban Ban Triggered	2019-11-18 06:09:13
42.157.130.18	attackbotsspam	Invalid user isabella from 42.157.130.18 port 53476	2019-10-19 16:48:56
42.157.130.18	attackbots	Oct 3 19:58:30 tdfoods sshd\[16708\]: Invalid user P4SSW0RD2020 from 42.157.130.18 Oct 3 19:58:30 tdfoods sshd\[16708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Oct 3 19:58:32 tdfoods sshd\[16708\]: Failed password for invalid user P4SSW0RD2020 from 42.157.130.18 port 55364 ssh2 Oct 3 20:04:40 tdfoods sshd\[17204\]: Invalid user P4sswort1@1 from 42.157.130.18 Oct 3 20:04:40 tdfoods sshd\[17204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-10-04 16:45:41
42.157.130.18	attackbotsspam	Unauthorized SSH login attempts	2019-09-12 22:47:25
42.157.130.18	attackspam	Sep 8 23:56:30 OPSO sshd\[1956\]: Invalid user sysadmin from 42.157.130.18 port 56290 Sep 8 23:56:30 OPSO sshd\[1956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Sep 8 23:56:31 OPSO sshd\[1956\]: Failed password for invalid user sysadmin from 42.157.130.18 port 56290 ssh2 Sep 8 23:59:25 OPSO sshd\[2026\]: Invalid user user21 from 42.157.130.18 port 50526 Sep 8 23:59:25 OPSO sshd\[2026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-09-09 06:22:56
42.157.130.18	attackspam	$f2bV_matches	2019-09-05 06:49:35
42.157.130.18	attackspambots	Automatic report - Banned IP Access	2019-09-03 17:09:38
42.157.130.18	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-08-30 11:42:52
42.157.130.18	attackspam	Aug 28 16:12:03 rotator sshd\[22413\]: Invalid user sandeep from 42.157.130.18Aug 28 16:12:05 rotator sshd\[22413\]: Failed password for invalid user sandeep from 42.157.130.18 port 40934 ssh2Aug 28 16:15:30 rotator sshd\[23227\]: Invalid user blower from 42.157.130.18Aug 28 16:15:32 rotator sshd\[23227\]: Failed password for invalid user blower from 42.157.130.18 port 36010 ssh2Aug 28 16:18:51 rotator sshd\[23305\]: Invalid user suo from 42.157.130.18Aug 28 16:18:53 rotator sshd\[23305\]: Failed password for invalid user suo from 42.157.130.18 port 59322 ssh2 ...	2019-08-29 01:12:39
42.157.130.18	attackspambots	Aug 28 03:47:06 home sshd[1077]: Invalid user lk from 42.157.130.18 port 55678 Aug 28 03:47:06 home sshd[1077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Aug 28 03:47:06 home sshd[1077]: Invalid user lk from 42.157.130.18 port 55678 Aug 28 03:47:09 home sshd[1077]: Failed password for invalid user lk from 42.157.130.18 port 55678 ssh2 Aug 28 03:51:06 home sshd[1088]: Invalid user postgres from 42.157.130.18 port 58474 Aug 28 03:51:06 home sshd[1088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Aug 28 03:51:06 home sshd[1088]: Invalid user postgres from 42.157.130.18 port 58474 Aug 28 03:51:08 home sshd[1088]: Failed password for invalid user postgres from 42.157.130.18 port 58474 ssh2 Aug 28 03:53:59 home sshd[1097]: Invalid user andrei from 42.157.130.18 port 53546 Aug 28 03:53:59 home sshd[1097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.1	2019-08-28 19:38:32
42.157.130.18	attack	F2B jail: sshd. Time: 2019-08-19 10:42:32, Reported by: VKReport	2019-08-19 20:22:16
42.157.130.18	attackbots	Aug 17 00:59:16 friendsofhawaii sshd\[31680\]: Invalid user ht from 42.157.130.18 Aug 17 00:59:16 friendsofhawaii sshd\[31680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Aug 17 00:59:18 friendsofhawaii sshd\[31680\]: Failed password for invalid user ht from 42.157.130.18 port 53092 ssh2 Aug 17 01:04:33 friendsofhawaii sshd\[32576\]: Invalid user oracle from 42.157.130.18 Aug 17 01:04:33 friendsofhawaii sshd\[32576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-08-17 19:13:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.157.130.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34832
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.157.130.159.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 20:51:29 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 159.130.157.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 159.130.157.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.222.141.171	attackspambots	2020-03-18T13:58:05.756844shield sshd\[7869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.141.171 user=root 2020-03-18T13:58:07.558876shield sshd\[7869\]: Failed password for root from 222.222.141.171 port 44389 ssh2 2020-03-18T14:00:17.988236shield sshd\[8323\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.141.171 user=root 2020-03-18T14:00:20.243963shield sshd\[8323\]: Failed password for root from 222.222.141.171 port 57066 ssh2 2020-03-18T14:02:33.110946shield sshd\[8622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.141.171 user=root	2020-03-19 03:17:33
104.27.177.33	spam	AGAIN and AGAIN and ALWAYS the same REGISTRARS as namecheap.com, whoisguard.com, namesilo.com, privacyguardian.org and cloudflare.com TO STOP IMMEDIATELY for keeping SPAMMERS, LIERS, ROBERS and else since too many years ! The cheapest service, as usual... And Link as usual by bit.ly to delette IMMEDIATELY too ! MARRE de ces ORDURES et autres FILS de PUTE genre SOUS MERDES capables de POLLUER STUPIDEMENT pour ne pas dire CONNEMENT la Planète par des POURRIELS INUTILES sur des listes VOLÉES on ne sait où et SANS notre accord ! surfsupport.club => namecheap.com => whoisguard.com surfsupport.club => 192.64.119.6 162.255.119.153 => namecheap.com https://www.mywot.com/scorecard/surfsupport.club https://www.mywot.com/scorecard/namecheap.com https://www.mywot.com/scorecard/whoisguard.com https://en.asytech.cn/check-ip/162.255.119.153 AS USUAL since few days for PHISHING and SCAM send to : http://bit.ly/412dd4z which resend to : https://enticingse.com/fr-carrefour/?s1=16T&s2=d89bb555-d96f-468b-b60b-1dc635000f2b&s3=&s4=&s5=&Fname=&Lname=&Email=#/0 enticingse.com => namesilo.com => privacyguardian.org enticingse.com => 104.27.177.33 104.27.177.33 => cloudflare.com namesilo.com => 104.17.175.85 privacyguardian.org => 2606:4700:20::681a:56 => cloudflare.com https://www.mywot.com/scorecard/enticingse.com https://www.mywot.com/scorecard/namesilo.com https://www.mywot.com/scorecard/privacyguardian.org https://www.mywot.com/scorecard/cloudflare.com https://en.asytech.cn/check-ip/104.27.177.33 https://en.asytech.cn/check-ip/2606:4700:20::681a:56	2020-03-19 03:07:11
175.24.36.114	attack	Invalid user xgridagent from 175.24.36.114 port 58262	2020-03-19 03:09:38
85.10.199.185	attack	20 attempts against mh-misbehave-ban on storm	2020-03-19 03:21:00
171.124.65.242	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/171.124.65.242/ CN - 1H : (68) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 171.124.65.242 CIDR : 171.120.0.0/13 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 1 3H - 1 6H - 4 12H - 12 24H - 15 DateTime : 2020-03-18 14:07:29 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery	2020-03-19 03:18:50
218.92.0.201	attack	Mar 18 18:45:33 vpn01 sshd[15674]: Failed password for root from 218.92.0.201 port 49759 ssh2 ...	2020-03-19 03:15:28
162.14.22.99	attack	Mar 18 13:59:50 ovpn sshd\[13398\]: Invalid user james from 162.14.22.99 Mar 18 13:59:50 ovpn sshd\[13398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.14.22.99 Mar 18 13:59:51 ovpn sshd\[13398\]: Failed password for invalid user james from 162.14.22.99 port 47150 ssh2 Mar 18 14:07:22 ovpn sshd\[15307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.14.22.99 user=root Mar 18 14:07:24 ovpn sshd\[15307\]: Failed password for root from 162.14.22.99 port 9217 ssh2	2020-03-19 03:24:07
65.229.5.158	attackspam	Mar 18 19:56:22 legacy sshd[18566]: Failed password for root from 65.229.5.158 port 33104 ssh2 Mar 18 19:59:23 legacy sshd[18670]: Failed password for root from 65.229.5.158 port 42825 ssh2 ...	2020-03-19 03:24:59
112.94.191.158	attackspam	SSH/22 MH Probe, BF, Hack -	2020-03-19 03:18:12
178.171.42.253	attackbotsspam	Chat Spam	2020-03-19 03:31:34
1.53.37.162	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-19 03:47:23
157.245.91.72	attack	SSH bruteforce (Triggered fail2ban)	2020-03-19 03:43:55
120.151.194.117	attack	SSH login attempts with user root.	2020-03-19 03:28:52
125.142.213.22	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-03-19 03:23:23
200.85.110.240	attackbots	SSH login attempts with user root.	2020-03-19 03:22:35

最近上报的IP列表

66.150.8.0	14.139.228.217	115.29.3.34	14.139.155.19
14.139.127.91	62.97.41.107	62.44.249.80	14.139.126.36
64.94.45.69	150.216.197.208	14.139.125.70	178.122.239.121
14.139.120.51	176.89.115.112	172.245.159.142	153.11.219.71
118.71.48.247	160.153.154.2	64.94.45.68	14.116.254.127