1.1.157.42 - IPInfo

Basic Info

City: Ban Lao

Region: Ang Thong

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.1.157.118	attackspam	Unauthorized connection attempt detected from IP address 1.1.157.118 to port 445	2019-12-11 21:32:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.157.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46098
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.157.42.			IN	A

;; AUTHORITY SECTION:
.			227	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022082300 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 23 19:50:36 CST 2022
;; MSG SIZE  rcvd: 103

Host info

42.157.1.1.in-addr.arpa domain name pointer node-5re.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.157.1.1.in-addr.arpa	name = node-5re.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.66.135.152	attack	148.66.135.152 - - \[28/Apr/2020:16:31:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 7302 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 148.66.135.152 - - \[28/Apr/2020:16:32:00 +0200\] "POST /wp-login.php HTTP/1.0" 200 7302 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 148.66.135.152 - - \[28/Apr/2020:16:32:01 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-28 22:46:35
202.137.155.222	attackspam	(imapd) Failed IMAP login from 202.137.155.222 (LA/Laos/-): 1 in the last 3600 secs	2020-04-28 22:19:57
139.59.58.155	attack	Apr 28 16:00:57 PorscheCustomer sshd[16837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.58.155 Apr 28 16:00:59 PorscheCustomer sshd[16837]: Failed password for invalid user rico from 139.59.58.155 port 49612 ssh2 Apr 28 16:02:59 PorscheCustomer sshd[16953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.58.155 ...	2020-04-28 22:11:01
2.187.18.222	attackspam	Unauthorized connection attempt detected from IP address 2.187.18.222 to port 81	2020-04-28 22:46:08
62.171.191.2	attackbots	Apr 28 15:36:26 vps sshd[507626]: Failed password for invalid user joomla from 62.171.191.2 port 40712 ssh2 Apr 28 15:40:16 vps sshd[529634]: Invalid user common from 62.171.191.2 port 52852 Apr 28 15:40:16 vps sshd[529634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi374120.contaboserver.net Apr 28 15:40:18 vps sshd[529634]: Failed password for invalid user common from 62.171.191.2 port 52852 ssh2 Apr 28 15:44:05 vps sshd[546714]: Invalid user sheng from 62.171.191.2 port 36756 ...	2020-04-28 22:42:30
178.128.94.116	attackbots	odoo8 ...	2020-04-28 22:41:17
109.206.60.106	attackbots	28.04.2020 14:13:31 - Try to Hack Trapped in ELinOX-Honeypot	2020-04-28 22:26:50
103.124.92.184	attack	Apr 28 16:05:21 home sshd[29475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.92.184 Apr 28 16:05:23 home sshd[29475]: Failed password for invalid user techuser from 103.124.92.184 port 58750 ssh2 Apr 28 16:10:18 home sshd[30303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.92.184 ...	2020-04-28 22:27:17
111.229.57.138	attack	Apr 28 10:14:01 firewall sshd[4131]: Invalid user lcm from 111.229.57.138 Apr 28 10:14:03 firewall sshd[4131]: Failed password for invalid user lcm from 111.229.57.138 port 59262 ssh2 Apr 28 10:15:53 firewall sshd[4164]: Invalid user opus from 111.229.57.138 ...	2020-04-28 22:49:39
5.152.18.50	attack	28.04.2020 14:13:36 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2020-04-28 22:24:38
183.62.139.167	attackbotsspam	Apr 28 19:13:08 webhost01 sshd[18593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.62.139.167 Apr 28 19:13:10 webhost01 sshd[18593]: Failed password for invalid user srvadmin from 183.62.139.167 port 53215 ssh2 ...	2020-04-28 22:37:16
138.68.17.223	attackbotsspam	Automatic report - XMLRPC Attack	2020-04-28 22:17:54
112.85.42.173	attackspam	Apr 28 16:10:51 eventyay sshd[19189]: Failed password for root from 112.85.42.173 port 64702 ssh2 Apr 28 16:10:54 eventyay sshd[19189]: Failed password for root from 112.85.42.173 port 64702 ssh2 Apr 28 16:10:57 eventyay sshd[19189]: Failed password for root from 112.85.42.173 port 64702 ssh2 Apr 28 16:11:04 eventyay sshd[19189]: error: maximum authentication attempts exceeded for root from 112.85.42.173 port 64702 ssh2 [preauth] ...	2020-04-28 22:14:14
41.32.237.29	attackspam	Icarus honeypot on github	2020-04-28 22:24:12
93.2.145.168	attack	Repeated attempts against wp-login	2020-04-28 22:18:58

Recently Reported IPs

207.82.231.186	113.162.55.224	185.182.105.12	3.22.30.40
46.30.212.3	154.85.31.202	34.220.71.150	122.193.187.124
103.191.171.200	110.93.84.82	136.158.71.167	2001:4453:499:6500:84be:e8d1:207e:9a42
49.144.170.20	2001:fd8:556:947:2d1d:33ce:2be1:a817	94.52.12.252	147.182.170.29
154.26.132.43	178.128.17.157	190.92.112.251	79.77.25.123