122.157.59.149

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Heilongjiang Province Network

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorised access (Aug 26) SRC=122.157.59.149 LEN=40 TTL=46 ID=39795 TCP DPT=8080 WINDOW=42537 SYN Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=3047 TCP DPT=8080 WINDOW=52530 SYN Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=48783 TCP DPT=8080 WINDOW=42537 SYN Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=37748 TCP DPT=8080 WINDOW=42537 SYN Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=45832 TCP DPT=8080 WINDOW=52530 SYN Unauthorised access (Aug 24) SRC=122.157.59.149 LEN=40 TTL=46 ID=33247 TCP DPT=8080 WINDOW=52530 SYN	2020-08-26 07:21:26

Type

Details

Datetime

attackspam

Unauthorised access (Aug 26) SRC=122.157.59.149 LEN=40 TTL=46 ID=39795 TCP DPT=8080 WINDOW=42537 SYN 
Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=3047 TCP DPT=8080 WINDOW=52530 SYN 
Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=48783 TCP DPT=8080 WINDOW=42537 SYN 
Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=37748 TCP DPT=8080 WINDOW=42537 SYN 
Unauthorised access (Aug 25) SRC=122.157.59.149 LEN=40 TTL=46 ID=45832 TCP DPT=8080 WINDOW=52530 SYN 
Unauthorised access (Aug 24) SRC=122.157.59.149 LEN=40 TTL=46 ID=33247 TCP DPT=8080 WINDOW=52530 SYN

2020-08-26 07:21:26

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.157.59.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.157.59.149.			IN	A

;; AUTHORITY SECTION:
.			528	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082501 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 26 07:21:22 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 149.59.157.122.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.59.157.122.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.38.70.24	attackspambots	Invalid user zl from 196.38.70.24 port 16962	2020-06-28 16:52:19
222.186.15.115	attack	Jun 28 08:41:32 localhost sshd[128971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Jun 28 08:41:34 localhost sshd[128971]: Failed password for root from 222.186.15.115 port 58396 ssh2 Jun 28 08:41:36 localhost sshd[128971]: Failed password for root from 222.186.15.115 port 58396 ssh2 Jun 28 08:41:32 localhost sshd[128971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Jun 28 08:41:34 localhost sshd[128971]: Failed password for root from 222.186.15.115 port 58396 ssh2 Jun 28 08:41:36 localhost sshd[128971]: Failed password for root from 222.186.15.115 port 58396 ssh2 Jun 28 08:41:32 localhost sshd[128971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Jun 28 08:41:34 localhost sshd[128971]: Failed password for root from 222.186.15.115 port 58396 ssh2 Jun 28 08:41:36 localhost sshd[12 ...	2020-06-28 16:46:29
195.54.167.47	attackbots	Jun 28 09:57:35 debian-2gb-nbg1-2 kernel: \[15589703.582195\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.47 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=59577 PROTO=TCP SPT=43858 DPT=9592 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-28 16:48:16
194.26.29.231	attack	Port-scan: detected 119 distinct ports within a 24-hour window.	2020-06-28 16:47:43
49.235.149.108	attack	Jun 28 07:53:11 santamaria sshd\[24860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.149.108 user=root Jun 28 07:53:13 santamaria sshd\[24860\]: Failed password for root from 49.235.149.108 port 54166 ssh2 Jun 28 07:55:28 santamaria sshd\[24897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.149.108 user=root ...	2020-06-28 17:27:00
125.76.212.138	attackbots	2020-06-28T08:11:38.673983ks3355764 sshd[26149]: Invalid user dspace from 125.76.212.138 port 2163 2020-06-28T08:11:40.313228ks3355764 sshd[26149]: Failed password for invalid user dspace from 125.76.212.138 port 2163 ssh2 ...	2020-06-28 17:17:26
170.106.3.225	attack	2020-06-28T04:30:41.858520abusebot.cloudsearch.cf sshd[19828]: Invalid user qlz from 170.106.3.225 port 59308 2020-06-28T04:30:41.863561abusebot.cloudsearch.cf sshd[19828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.3.225 2020-06-28T04:30:41.858520abusebot.cloudsearch.cf sshd[19828]: Invalid user qlz from 170.106.3.225 port 59308 2020-06-28T04:30:43.966587abusebot.cloudsearch.cf sshd[19828]: Failed password for invalid user qlz from 170.106.3.225 port 59308 ssh2 2020-06-28T04:35:44.558911abusebot.cloudsearch.cf sshd[19876]: Invalid user lyy from 170.106.3.225 port 59948 2020-06-28T04:35:44.567999abusebot.cloudsearch.cf sshd[19876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.106.3.225 2020-06-28T04:35:44.558911abusebot.cloudsearch.cf sshd[19876]: Invalid user lyy from 170.106.3.225 port 59948 2020-06-28T04:35:46.600706abusebot.cloudsearch.cf sshd[19876]: Failed password for invalid user ...	2020-06-28 16:56:08
151.62.217.170	attackbotsspam	0,19-02/02 [bc01/m08] PostRequest-Spammer scoring: harare01	2020-06-28 17:25:18
222.186.173.226	attackspambots	Jun 28 11:26:17 pve1 sshd[10923]: Failed password for root from 222.186.173.226 port 23633 ssh2 Jun 28 11:26:22 pve1 sshd[10923]: Failed password for root from 222.186.173.226 port 23633 ssh2 ...	2020-06-28 17:27:41
52.168.167.179	attack	<6 unauthorized SSH connections	2020-06-28 17:00:57
163.172.127.251	attackspambots	Jun 28 08:39:27 localhost sshd[128793]: Invalid user cyl from 163.172.127.251 port 50220 Jun 28 08:39:27 localhost sshd[128793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251 Jun 28 08:39:27 localhost sshd[128793]: Invalid user cyl from 163.172.127.251 port 50220 Jun 28 08:39:28 localhost sshd[128793]: Failed password for invalid user cyl from 163.172.127.251 port 50220 ssh2 Jun 28 08:46:47 localhost sshd[129404]: Invalid user admin from 163.172.127.251 port 48732 ...	2020-06-28 17:28:29
77.42.91.166	attack	Automatic report - Port Scan Attack	2020-06-28 17:01:40
67.227.248.129	attackspambots	Trolling for resource vulnerabilities	2020-06-28 17:20:58
217.182.252.12	attackbotsspam	Invalid user amministratore from 217.182.252.12 port 36600	2020-06-28 17:04:17
160.153.154.18	attackspambots	C2,WP GET /old/wp-includes/wlwmanifest.xml	2020-06-28 16:59:38

Recently Reported IPs

139.90.112.79	92.84.194.97	97.192.149.61	136.41.152.81
195.62.109.8	144.253.7.12	112.67.119.253	174.56.208.137
31.155.176.68	86.120.12.42	106.54.20.184	90.85.247.177
17.253.54.123	204.210.155.225	122.103.82.183	86.159.28.49
179.24.211.24	83.191.88.134	171.70.43.221	13.72.98.209