42.157.131.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): CHINANET Guangdong province network

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
42.157.131.201	attackbotsspam	Oct 2 00:59:38 m3061 sshd[5499]: Invalid user xiang from 42.157.131.201 Oct 2 00:59:38 m3061 sshd[5499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.157.131.201	2019-10-03 14:05:59
42.157.131.201	attackspambots	Oct 3 00:43:21 srv206 sshd[24656]: Invalid user sysdba from 42.157.131.201 Oct 3 00:43:21 srv206 sshd[24656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Oct 3 00:43:21 srv206 sshd[24656]: Invalid user sysdba from 42.157.131.201 Oct 3 00:43:23 srv206 sshd[24656]: Failed password for invalid user sysdba from 42.157.131.201 port 52730 ssh2 ...	2019-10-03 07:13:34
42.157.131.201	attack	Sep 26 23:03:49 hanapaa sshd\[32154\]: Invalid user adrc from 42.157.131.201 Sep 26 23:03:49 hanapaa sshd\[32154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Sep 26 23:03:51 hanapaa sshd\[32154\]: Failed password for invalid user adrc from 42.157.131.201 port 54030 ssh2 Sep 26 23:07:55 hanapaa sshd\[32525\]: Invalid user kai from 42.157.131.201 Sep 26 23:07:55 hanapaa sshd\[32525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201	2019-09-27 19:53:07
42.157.131.201	attackspam	Sep 26 20:37:53 plex sshd[1986]: Invalid user zhao from 42.157.131.201 port 35790	2019-09-27 02:48:46
42.157.131.201	attack	Sep 21 18:19:09 tdfoods sshd\[24845\]: Invalid user gentry from 42.157.131.201 Sep 21 18:19:09 tdfoods sshd\[24845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Sep 21 18:19:11 tdfoods sshd\[24845\]: Failed password for invalid user gentry from 42.157.131.201 port 58520 ssh2 Sep 21 18:23:26 tdfoods sshd\[25189\]: Invalid user listen from 42.157.131.201 Sep 21 18:23:26 tdfoods sshd\[25189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201	2019-09-22 19:15:02
42.157.131.201	attack	Sep 20 08:50:40 hpm sshd\[18288\]: Invalid user user from 42.157.131.201 Sep 20 08:50:40 hpm sshd\[18288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Sep 20 08:50:42 hpm sshd\[18288\]: Failed password for invalid user user from 42.157.131.201 port 33346 ssh2 Sep 20 08:55:09 hpm sshd\[18643\]: Invalid user test101 from 42.157.131.201 Sep 20 08:55:09 hpm sshd\[18643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201	2019-09-21 03:00:41
42.157.131.201	attackspambots	Sep 11 01:04:05 friendsofhawaii sshd\[7732\]: Invalid user 119 from 42.157.131.201 Sep 11 01:04:05 friendsofhawaii sshd\[7732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Sep 11 01:04:07 friendsofhawaii sshd\[7732\]: Failed password for invalid user 119 from 42.157.131.201 port 42794 ssh2 Sep 11 01:08:16 friendsofhawaii sshd\[8093\]: Invalid user 162 from 42.157.131.201 Sep 11 01:08:16 friendsofhawaii sshd\[8093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201	2019-09-12 02:37:03
42.157.131.201	attack	Sep 9 10:50:05 nextcloud sshd\[23923\]: Invalid user www from 42.157.131.201 Sep 9 10:50:05 nextcloud sshd\[23923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Sep 9 10:50:07 nextcloud sshd\[23923\]: Failed password for invalid user www from 42.157.131.201 port 45444 ssh2 ...	2019-09-09 17:03:17
42.157.131.201	attackspam	Aug 30 08:33:50 lcdev sshd\[16254\]: Invalid user romaric from 42.157.131.201 Aug 30 08:33:50 lcdev sshd\[16254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Aug 30 08:33:53 lcdev sshd\[16254\]: Failed password for invalid user romaric from 42.157.131.201 port 45006 ssh2 Aug 30 08:38:28 lcdev sshd\[16653\]: Invalid user magenta from 42.157.131.201 Aug 30 08:38:28 lcdev sshd\[16653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201	2019-08-31 05:18:51
42.157.131.201	attack	Aug 29 18:50:16 server sshd\[27320\]: Invalid user hh from 42.157.131.201 port 48604 Aug 29 18:50:16 server sshd\[27320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201 Aug 29 18:50:18 server sshd\[27320\]: Failed password for invalid user hh from 42.157.131.201 port 48604 ssh2 Aug 29 18:56:51 server sshd\[20301\]: Invalid user gmod from 42.157.131.201 port 32854 Aug 29 18:56:51 server sshd\[20301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.131.201	2019-08-30 03:39:36

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.157.131.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22051
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.157.131.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 07 03:58:27 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 48.131.157.42.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 48.131.157.42.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
176.223.138.252	attackbots	Invalid user admin from 176.223.138.252 port 42286	2019-12-20 08:14:30
118.179.200.131	attackspambots	SPF Fail sender not permitted to send mail for @lomopress.it / Sent Mail to target address hacked/leaked from Planet3DNow.de	2019-12-20 08:50:17
58.221.238.62	attackbots	Dec 19 14:30:19 hpm sshd\[22642\]: Invalid user tchai from 58.221.238.62 Dec 19 14:30:19 hpm sshd\[22642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.238.62 Dec 19 14:30:21 hpm sshd\[22642\]: Failed password for invalid user tchai from 58.221.238.62 port 46036 ssh2 Dec 19 14:37:42 hpm sshd\[23362\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.238.62 user=root Dec 19 14:37:44 hpm sshd\[23362\]: Failed password for root from 58.221.238.62 port 13345 ssh2	2019-12-20 08:37:58
193.31.24.113	attack	12/20/2019-01:19:27.002188 193.31.24.113 Protocol: 17 ET INFO Session Traversal Utilities for NAT (STUN Binding Request)	2019-12-20 08:29:40
83.160.62.252	attackbots	TCP Port Scanning	2019-12-20 08:28:39
185.175.93.17	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-12-20 08:44:55
206.81.11.216	attack	Dec 20 01:20:17 markkoudstaal sshd[9369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.11.216 Dec 20 01:20:20 markkoudstaal sshd[9369]: Failed password for invalid user bulmanis from 206.81.11.216 port 37022 ssh2 Dec 20 01:25:02 markkoudstaal sshd[9904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.11.216	2019-12-20 08:39:52
175.140.23.240	attack	Dec 19 23:28:02 srv01 sshd[22222]: Invalid user tembrock from 175.140.23.240 port 36149 Dec 19 23:28:02 srv01 sshd[22222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.140.23.240 Dec 19 23:28:02 srv01 sshd[22222]: Invalid user tembrock from 175.140.23.240 port 36149 Dec 19 23:28:05 srv01 sshd[22222]: Failed password for invalid user tembrock from 175.140.23.240 port 36149 ssh2 Dec 19 23:34:18 srv01 sshd[22688]: Invalid user kunkler from 175.140.23.240 port 5111 ...	2019-12-20 08:16:28
5.88.161.197	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-20 08:35:10
108.36.170.24	attack	Invalid user lisa from 108.36.170.24 port 59298	2019-12-20 08:22:12
92.112.202.118	attackbotsspam	Unauthorized connection attempt detected from IP address 92.112.202.118 to port 445	2019-12-20 08:34:04
104.236.250.88	attack	Dec 20 01:37:07 * sshd[32465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.250.88 Dec 20 01:37:08 * sshd[32465]: Failed password for invalid user bootsie from 104.236.250.88 port 41810 ssh2	2019-12-20 08:47:51
87.107.124.133	attackbots	87.107.124.133 - - [19/Dec/2019:23:33:55 +0100] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 87.107.124.133 - - [19/Dec/2019:23:33:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 87.107.124.133 - - [19/Dec/2019:23:33:56 +0100] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 87.107.124.133 - - [19/Dec/2019:23:33:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1508 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 87.107.124.133 - - [19/Dec/2019:23:33:58 +0100] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 87.107.124.133 - - [19/Dec/2019:23:33:58 +0100] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-20 08:36:09
36.75.177.16	attackbotsspam	1576794860 - 12/19/2019 23:34:20 Host: 36.75.177.16/36.75.177.16 Port: 445 TCP Blocked	2019-12-20 08:15:39
178.128.24.84	attack	Invalid user postigo from 178.128.24.84 port 59320	2019-12-20 08:10:24

最近上报的IP列表

1.251.83.112	88.156.32.27	67.27.249.35	192.227.210.138
80.128.180.202	173.82.94.126	143.0.140.218	130.36.225.38
31.221.66.187	119.112.136.90	175.22.37.207	119.132.10.197
113.160.131.160	229.100.234.111	237.117.41.195	112.81.119.200
78.123.55.150	183.11.16.175	108.250.71.177	200.165.48.202