42.157.130.250

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Weiyi Network Technology Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-28 15:59:14
attackbots	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-18 22:37:35

相同子网IP讨论:

IP	类型	评论内容	时间
42.157.130.155	attackspambots	Fail2Ban Ban Triggered	2019-11-18 06:09:13
42.157.130.18	attackbotsspam	Invalid user isabella from 42.157.130.18 port 53476	2019-10-19 16:48:56
42.157.130.18	attackbots	Oct 3 19:58:30 tdfoods sshd\[16708\]: Invalid user P4SSW0RD2020 from 42.157.130.18 Oct 3 19:58:30 tdfoods sshd\[16708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Oct 3 19:58:32 tdfoods sshd\[16708\]: Failed password for invalid user P4SSW0RD2020 from 42.157.130.18 port 55364 ssh2 Oct 3 20:04:40 tdfoods sshd\[17204\]: Invalid user P4sswort1@1 from 42.157.130.18 Oct 3 20:04:40 tdfoods sshd\[17204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-10-04 16:45:41
42.157.130.18	attackbotsspam	Unauthorized SSH login attempts	2019-09-12 22:47:25
42.157.130.18	attackspam	Sep 8 23:56:30 OPSO sshd\[1956\]: Invalid user sysadmin from 42.157.130.18 port 56290 Sep 8 23:56:30 OPSO sshd\[1956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Sep 8 23:56:31 OPSO sshd\[1956\]: Failed password for invalid user sysadmin from 42.157.130.18 port 56290 ssh2 Sep 8 23:59:25 OPSO sshd\[2026\]: Invalid user user21 from 42.157.130.18 port 50526 Sep 8 23:59:25 OPSO sshd\[2026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-09-09 06:22:56
42.157.130.18	attackspam	$f2bV_matches	2019-09-05 06:49:35
42.157.130.18	attackspambots	Automatic report - Banned IP Access	2019-09-03 17:09:38
42.157.130.18	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-08-30 11:42:52
42.157.130.18	attackspam	Aug 28 16:12:03 rotator sshd\[22413\]: Invalid user sandeep from 42.157.130.18Aug 28 16:12:05 rotator sshd\[22413\]: Failed password for invalid user sandeep from 42.157.130.18 port 40934 ssh2Aug 28 16:15:30 rotator sshd\[23227\]: Invalid user blower from 42.157.130.18Aug 28 16:15:32 rotator sshd\[23227\]: Failed password for invalid user blower from 42.157.130.18 port 36010 ssh2Aug 28 16:18:51 rotator sshd\[23305\]: Invalid user suo from 42.157.130.18Aug 28 16:18:53 rotator sshd\[23305\]: Failed password for invalid user suo from 42.157.130.18 port 59322 ssh2 ...	2019-08-29 01:12:39
42.157.130.18	attackspambots	Aug 28 03:47:06 home sshd[1077]: Invalid user lk from 42.157.130.18 port 55678 Aug 28 03:47:06 home sshd[1077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Aug 28 03:47:06 home sshd[1077]: Invalid user lk from 42.157.130.18 port 55678 Aug 28 03:47:09 home sshd[1077]: Failed password for invalid user lk from 42.157.130.18 port 55678 ssh2 Aug 28 03:51:06 home sshd[1088]: Invalid user postgres from 42.157.130.18 port 58474 Aug 28 03:51:06 home sshd[1088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Aug 28 03:51:06 home sshd[1088]: Invalid user postgres from 42.157.130.18 port 58474 Aug 28 03:51:08 home sshd[1088]: Failed password for invalid user postgres from 42.157.130.18 port 58474 ssh2 Aug 28 03:53:59 home sshd[1097]: Invalid user andrei from 42.157.130.18 port 53546 Aug 28 03:53:59 home sshd[1097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.1	2019-08-28 19:38:32
42.157.130.18	attack	F2B jail: sshd. Time: 2019-08-19 10:42:32, Reported by: VKReport	2019-08-19 20:22:16
42.157.130.18	attackbots	Aug 17 00:59:16 friendsofhawaii sshd\[31680\]: Invalid user ht from 42.157.130.18 Aug 17 00:59:16 friendsofhawaii sshd\[31680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Aug 17 00:59:18 friendsofhawaii sshd\[31680\]: Failed password for invalid user ht from 42.157.130.18 port 53092 ssh2 Aug 17 01:04:33 friendsofhawaii sshd\[32576\]: Invalid user oracle from 42.157.130.18 Aug 17 01:04:33 friendsofhawaii sshd\[32576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-08-17 19:13:00
42.157.130.159	attack	SMB Server BruteForce Attack	2019-08-10 20:51:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.157.130.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.157.130.250.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121800 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 18 22:37:30 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 250.130.157.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 250.130.157.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.173.32.170	attackbots	Attempted connection to port 445.	2020-06-13 03:42:32
112.85.42.176	attackbots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root Failed password for root from 112.85.42.176 port 2105 ssh2 Failed password for root from 112.85.42.176 port 2105 ssh2 Failed password for root from 112.85.42.176 port 2105 ssh2 Failed password for root from 112.85.42.176 port 2105 ssh2	2020-06-13 04:04:40
109.123.117.238	attackspambots	Attempted connection to ports 1400, 3790.	2020-06-13 03:54:09
109.123.117.254	attackspam	Portscan or hack attempt detected by psad/fwsnort	2020-06-13 03:51:00
5.63.151.111	attackspam	Attempted connection to port 2443.	2020-06-13 03:38:15
125.94.151.124	attackspam	Attempted connection to port 1433.	2020-06-13 03:46:15
138.0.137.76	attack	Unauthorized connection attempt detected from IP address 138.0.137.76 to port 8080	2020-06-13 03:43:46
13.59.76.106	attackspambots	mue-Direct access to plugin not allowed	2020-06-13 03:56:06
61.157.91.159	attackspambots	Jun 12 21:08:06 vps687878 sshd\[28238\]: Failed password for invalid user frappe from 61.157.91.159 port 37400 ssh2 Jun 12 21:10:16 vps687878 sshd\[28467\]: Invalid user croitoru12345 from 61.157.91.159 port 53081 Jun 12 21:10:16 vps687878 sshd\[28467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.157.91.159 Jun 12 21:10:18 vps687878 sshd\[28467\]: Failed password for invalid user croitoru12345 from 61.157.91.159 port 53081 ssh2 Jun 12 21:12:28 vps687878 sshd\[28809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.157.91.159 user=root ...	2020-06-13 03:44:37
106.53.5.85	attack	Jun 13 00:52:50 gw1 sshd[31710]: Failed password for root from 106.53.5.85 port 40506 ssh2 Jun 13 00:54:52 gw1 sshd[31810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.5.85 ...	2020-06-13 04:10:27
185.176.27.102	attackspam	TCP (SYN) 185.176.27.102:57483 -> port 21499, len 44	2020-06-13 03:48:11
128.134.248.29	attackbots	Unauthorized connection attempt detected from IP address 128.134.248.29 to port 8080	2020-06-13 03:45:59
187.250.247.133	attackbotsspam	1591981450 - 06/12/2020 19:04:10 Host: 187.250.247.133/187.250.247.133 Port: 445 TCP Blocked	2020-06-13 03:45:13
91.106.193.72	attackspambots	Jun 12 21:23:50 lnxmail61 sshd[31924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72	2020-06-13 04:06:48
203.133.56.2	attackspambots	Unauthorized connection attempt from IP address 203.133.56.2 on Port 445(SMB)	2020-06-13 04:09:14

最近上报的IP列表

51.83.254.106	40.92.3.73	58.71.59.93	131.72.105.11
49.247.192.42	35.220.150.49	190.39.154.238	120.188.34.0
61.223.51.151	139.59.155.139	217.132.233.173	117.85.115.45
40.92.73.36	206.189.194.163	5.188.206.212	51.77.223.62
13.228.27.22	223.197.183.229	188.221.42.189	169.149.199.238