1.42.167.157 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.42.167.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19597
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.42.167.157.			IN	A

;; AUTHORITY SECTION:
.			5	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092401 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 25 07:18:27 CST 2022
;; MSG SIZE  rcvd: 105

Host info

157.167.42.1.in-addr.arpa domain name pointer n1-42-167-157.mas1.nsw.optusnet.com.au.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.167.42.1.in-addr.arpa	name = n1-42-167-157.mas1.nsw.optusnet.com.au.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.29.230.78	attackbotsspam	Sep 9 04:16:21 ws12vmsma01 sshd[62811]: Failed password for invalid user hscroot from 119.29.230.78 port 42872 ssh2 Sep 9 04:21:34 ws12vmsma01 sshd[63548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.230.78 user=root Sep 9 04:21:36 ws12vmsma01 sshd[63548]: Failed password for root from 119.29.230.78 port 41120 ssh2 ...	2020-09-09 19:02:54
218.92.0.171	attack	"fail2ban match"	2020-09-09 19:14:53
164.132.46.14	attack	2020-09-09T12:54:12.888802n23.at sshd[3138617]: Failed password for root from 164.132.46.14 port 38228 ssh2 2020-09-09T12:58:29.496512n23.at sshd[3142219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.46.14 user=root 2020-09-09T12:58:31.601561n23.at sshd[3142219]: Failed password for root from 164.132.46.14 port 43600 ssh2 ...	2020-09-09 19:13:54
109.110.52.77	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-09 18:48:29
222.186.173.142	attack	Sep 9 13:05:11 vps647732 sshd[15184]: Failed password for root from 222.186.173.142 port 3266 ssh2 Sep 9 13:05:25 vps647732 sshd[15184]: error: maximum authentication attempts exceeded for root from 222.186.173.142 port 3266 ssh2 [preauth] ...	2020-09-09 19:07:12
180.244.233.147	attack	abasicmove.de 180.244.233.147 [08/Sep/2020:18:57:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6647 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" abasicmove.de 180.244.233.147 [08/Sep/2020:18:57:24 +0200] "POST /wp-login.php HTTP/1.1" 200 6618 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 18:53:17
45.142.120.78	attack	Sep 9 04:36:05 relay postfix/smtpd\[29777\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 04:36:46 relay postfix/smtpd\[31779\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 04:37:24 relay postfix/smtpd\[31781\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 04:38:10 relay postfix/smtpd\[29777\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 9 04:38:37 relay postfix/smtpd\[31779\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-09 19:12:18
132.232.137.62	attackbotsspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-09 18:51:28
82.205.118.37	attackspambots	Automatic report - Port Scan Attack	2020-09-09 19:06:39
163.172.42.123	attackspam	163.172.42.123 - - [09/Sep/2020:12:55:20 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.42.123 - - [09/Sep/2020:12:55:22 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.42.123 - - [09/Sep/2020:12:55:22 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 19:22:38
113.230.237.7	attackspambots	DATE:2020-09-08 18:55:52, IP:113.230.237.7, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-09 19:03:09
168.197.209.90	attackspam	Telnetd brute force attack detected by fail2ban	2020-09-09 18:57:48
114.35.170.236	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-09-09 19:00:00
185.43.8.43	attack	2020-09-09T02:12:07+02:00 exim[13050]: [1\32] 1kFniZ-0003OU-65 H=(lorgat.it) [185.43.8.43] F= rejected after DATA: This message scored 103.5 spam points.	2020-09-09 18:59:36
95.69.247.207	attack	Icarus honeypot on github	2020-09-09 19:16:06

Recently Reported IPs

1.45.90.15	1.41.57.141	1.42.90.165	1.43.194.248
1.41.230.238	1.42.222.235	1.44.143.143	1.42.182.145
1.42.7.18	1.43.42.171	1.43.116.144	1.44.121.198
1.42.208.25	1.46.115.41	1.42.251.244	1.41.185.160
1.41.71.97	1.42.166.167	1.41.7.207	1.41.203.154