1.42.167.157 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.42.167.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19597
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.42.167.157.			IN	A

;; AUTHORITY SECTION:
.			5	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092401 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 25 07:18:27 CST 2022
;; MSG SIZE  rcvd: 105

Host info

157.167.42.1.in-addr.arpa domain name pointer n1-42-167-157.mas1.nsw.optusnet.com.au.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.167.42.1.in-addr.arpa	name = n1-42-167-157.mas1.nsw.optusnet.com.au.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
1.36.166.126	attackspambots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-13 00:20:45
114.34.248.100	attackspam	Jul 12 13:56:41 debian-2gb-nbg1-2 kernel: \[16813580.520839\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=114.34.248.100 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=36591 PROTO=TCP SPT=32765 DPT=81 WINDOW=30453 RES=0x00 SYN URGP=0	2020-07-13 00:12:13
207.244.86.169	attackbotsspam	207.244.86.169 - - [12/Jul/2020:14:31:04 +0200] "POST //xmlrpc.php HTTP/1.1" 403 37127 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" 207.244.86.169 - - [12/Jul/2020:14:31:05 +0200] "POST //xmlrpc.php HTTP/1.1" 403 37127 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36" ...	2020-07-13 00:40:36
14.142.143.138	attackbotsspam	2020-07-12T19:21:00.619881afi-git.jinr.ru sshd[20579]: Invalid user zq from 14.142.143.138 port 29753 2020-07-12T19:21:00.623138afi-git.jinr.ru sshd[20579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.143.138 2020-07-12T19:21:00.619881afi-git.jinr.ru sshd[20579]: Invalid user zq from 14.142.143.138 port 29753 2020-07-12T19:21:03.254724afi-git.jinr.ru sshd[20579]: Failed password for invalid user zq from 14.142.143.138 port 29753 ssh2 2020-07-12T19:23:05.718037afi-git.jinr.ru sshd[21559]: Invalid user ubuntu from 14.142.143.138 port 22772 ...	2020-07-13 00:27:40
213.149.187.118	attack	DATE:2020-07-12 13:56:36, IP:213.149.187.118, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-07-13 00:09:01
103.21.53.11	attackbots	Jul 12 14:47:20 meumeu sshd[472229]: Invalid user pub from 103.21.53.11 port 50520 Jul 12 14:47:21 meumeu sshd[472229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.53.11 Jul 12 14:47:20 meumeu sshd[472229]: Invalid user pub from 103.21.53.11 port 50520 Jul 12 14:47:22 meumeu sshd[472229]: Failed password for invalid user pub from 103.21.53.11 port 50520 ssh2 Jul 12 14:51:20 meumeu sshd[472340]: Invalid user test from 103.21.53.11 port 45460 Jul 12 14:51:20 meumeu sshd[472340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.21.53.11 Jul 12 14:51:20 meumeu sshd[472340]: Invalid user test from 103.21.53.11 port 45460 Jul 12 14:51:22 meumeu sshd[472340]: Failed password for invalid user test from 103.21.53.11 port 45460 ssh2 Jul 12 14:55:19 meumeu sshd[472420]: Invalid user ipadm from 103.21.53.11 port 40398 ...	2020-07-13 00:33:17
60.167.176.251	attackbotsspam	Invalid user crete from 60.167.176.251 port 56648	2020-07-13 00:37:46
120.92.114.71	attack	Jul 12 11:53:09 vlre-nyc-1 sshd\[21449\]: Invalid user tom from 120.92.114.71 Jul 12 11:53:09 vlre-nyc-1 sshd\[21449\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.114.71 Jul 12 11:53:12 vlre-nyc-1 sshd\[21449\]: Failed password for invalid user tom from 120.92.114.71 port 39686 ssh2 Jul 12 11:56:33 vlre-nyc-1 sshd\[21515\]: Invalid user yhk from 120.92.114.71 Jul 12 11:56:33 vlre-nyc-1 sshd\[21515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.114.71 ...	2020-07-13 00:14:42
148.72.171.85	attackspambots	IP 148.72.171.85 attacked honeypot on port: 5038 at 7/12/2020 7:13:40 AM	2020-07-13 00:32:03
92.243.18.181	attack	Jul 12 15:42:39 abendstille sshd\[4874\]: Invalid user rabbitmq from 92.243.18.181 Jul 12 15:42:39 abendstille sshd\[4874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.243.18.181 Jul 12 15:42:41 abendstille sshd\[4874\]: Failed password for invalid user rabbitmq from 92.243.18.181 port 48642 ssh2 Jul 12 15:47:31 abendstille sshd\[9701\]: Invalid user nagios from 92.243.18.181 Jul 12 15:47:31 abendstille sshd\[9701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.243.18.181 ...	2020-07-12 23:53:04
142.4.22.236	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-07-13 00:11:44
58.250.164.246	attack	Jul 12 16:22:53 roki sshd[16246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.250.164.246 user=irc Jul 12 16:22:55 roki sshd[16246]: Failed password for irc from 58.250.164.246 port 33102 ssh2 Jul 12 16:36:36 roki sshd[17322]: Invalid user pgonta from 58.250.164.246 Jul 12 16:36:36 roki sshd[17322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.250.164.246 Jul 12 16:36:38 roki sshd[17322]: Failed password for invalid user pgonta from 58.250.164.246 port 34808 ssh2 ...	2020-07-13 00:22:34
200.27.212.22	attackspam	SSH Brute-Forcing (server2)	2020-07-13 00:26:27
41.41.0.187	attackbotsspam	Jul 12 13:56:56 mail sshd[16099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.41.0.187 Jul 12 13:56:57 mail sshd[16099]: Failed password for invalid user test from 41.41.0.187 port 56540 ssh2 ...	2020-07-12 23:56:08
134.175.46.166	attackbots	Jul 12 16:50:55 melroy-server sshd[19637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.46.166 Jul 12 16:50:56 melroy-server sshd[19637]: Failed password for invalid user wilson from 134.175.46.166 port 58962 ssh2 ...	2020-07-12 23:56:38

Recently Reported IPs

1.45.90.15	1.41.57.141	1.42.90.165	1.43.194.248
1.41.230.238	1.42.222.235	1.44.143.143	1.42.182.145
1.42.7.18	1.43.42.171	1.43.116.144	1.44.121.198
1.42.208.25	1.46.115.41	1.42.251.244	1.41.185.160
1.41.71.97	1.42.166.167	1.41.7.207	1.41.203.154