JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 42.57.149.57

42.57.149.57 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	UNICOM Liaoning Province Network
Usage Type	Fixed Line ISP
ASN	AS4837
Domain Name	chinaunicom.cn
Country	🇨🇳 China
City	Shenyang, Liaoning

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 42.57.149.57

Whois 42.57.149.57

IP Abuse Reports for 42.57.149.57:

This IP address has been reported a total of 22 times from 17 distinct sources. 42.57.149.57 was first reported on April 11th 2023, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 bigscoots.com	2023-12-15 01:05:02 (2 years ago)	(sshd) Failed SSH login from 42.57.149.57 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction ... show more (sshd) Failed SSH login from 42.57.149.57 (CN/China/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Dec 14 18:44:16 10814 sshd[2786]: Invalid user samba from 42.57.149.57 port 39122 Dec 14 18:44:18 10814 sshd[2786]: Failed password for invalid user samba from 42.57.149.57 port 39122 ssh2 Dec 14 19:00:52 10814 sshd[3875]: Invalid user john from 42.57.149.57 port 59996 Dec 14 19:00:54 10814 sshd[3875]: Failed password for invalid user john from 42.57.149.57 port 59996 ssh2 Dec 14 19:04:41 10814 sshd[4139]: Invalid user manager from 42.57.149.57 port 54084 show less	Brute-Force SSH
🇮🇳 Parth Maniar	2023-08-30 09:52:21 (2 years ago)	This IP address carried out 4 SSH credential attack (attempts) on 29-08-2023. For more information o ... show more This IP address carried out 4 SSH credential attack (attempts) on 29-08-2023. For more information or to report interesting/incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Brute-Force SSH
🇮🇳 Parth Maniar	2023-08-29 08:42:00 (2 years ago)	This IP address carried out 116 port scanning attempts on 28-08-2023. For more information or to rep ... show more This IP address carried out 116 port scanning attempts on 28-08-2023. For more information or to report interesting/incorrect findings, give me a shoutout @parthmaniar on Twitter. show less	Port Scan SSH
🇨🇳 ThreatBook.io	2023-08-29 00:45:51 (2 years ago)	ThreatBook Intelligence: VPN,Zombie more details on https://threatbook.io/ip/42.57.149.57	SSH
🇭🇺 HoneyPotEu	2023-08-28 21:58:23 (2 years ago)	Aug 28 23:57:04 [redacted] sshd[66451]: Failed password for root from 42.57.149.57 port 36390 ssh2 A ... show more Aug 28 23:57:04 [redacted] sshd[66451]: Failed password for root from 42.57.149.57 port 36390 ssh2 Aug 28 23:58:22 [redacted] sshd[66465]: Invalid user oracle from 42.57.149.57 port 56290 ... show less	Brute-Force SSH
🇩🇪 www.blocklist.de	2023-08-28 21:42:41 (2 years ago)	Lines containing failures of 42.57.149.57 (max 1000) Aug 28 13:42:09 srv02 sshd[2471647]: Connection ... show more Lines containing failures of 42.57.149.57 (max 1000) Aug 28 13:42:09 srv02 sshd[2471647]: Connection from 42.57.149.57 port 50414 on 65.108.178.77 port 22 rdomain "" Aug 28 13:42:11 srv02 sshd[2471647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.57.149.57 user=r.r Aug 28 13:42:13 srv02 sshd[2471647]: Failed password for r.r from 42.57.149.57 port 50414 ssh2 Aug 28 13:42:14 srv02 sshd[2471647]: Received disconnect from 42.57.149.57 port 50414:11: Bye Bye [preauth] Aug 28 13:42:14 srv02 sshd[2471647]: Disconnected from authenticating user r.r 42.57.149.57 port 50414 [preauth] Aug 28 13:43:47 srv02 sshd[2472104]: Connection from 42.57.149.57 port 40608 on 65.108.178.77 port 22 rdomain "" Aug 28 13:43:55 srv02 sshd[2472104]: Connection closed by 42.57.149.57 port 40608 [preauth] Aug 28 13:45:18 srv02 sshd[2472814]: Connection from 42.57.149.57 port 58668 on 65.108.178.77 port 22 rdomain "" Aug 28 13:45:21 srv02 sshd[2472814]: ........ ------------------------------ show less	FTP Brute-Force Hacking
🇫🇮 pr0vieh	2023-08-28 21:31:26 (2 years ago)	Aug 28 21:29:30 Linux101 sshd[2091519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Aug 28 21:29:30 Linux101 sshd[2091519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.57.149.57 Aug 28 21:29:33 Linux101 sshd[2091519]: Failed password for invalid user xh from 42.57.149.57 port 43396 ssh2 Aug 28 21:30:10 Linux101 sshd[2098176]: Invalid user demo from 42.57.149.57 port 53348 Aug 28 21:30:10 Linux101 sshd[2098176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.57.149.57 Aug 28 21:30:12 Linux101 sshd[2098176]: Failed password for invalid user demo from 42.57.149.57 port 53348 ssh2 Aug 28 21:30:46 Linux101 sshd[2103567]: Invalid user hxhtftp from 42.57.149.57 port 35056 Aug 28 21:30:46 Linux101 sshd[2103567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.57.149.57 Aug 28 21:30:49 Linux101 sshd[2103567]: Failed password for invalid user hxhtftp from 42.57.149.57 port 35056 ssh2 Aug 28 21:31:24 Linux101 sshd[2110230]: pam_unix(sshd:auth): ... show less	Brute-Force SSH
🇩🇪 blackpanther	2023-08-28 21:30:20 (2 years ago)	2023-08-28T23:29:40.082856 sshd[390607]: Invalid user xh from 42.57.149.57 port 35162 2023-08-28T23: ... show more 2023-08-28T23:29:40.082856 sshd[390607]: Invalid user xh from 42.57.149.57 port 35162 2023-08-28T23:29:40.381144 sshd[390607]: Disconnected from invalid user xh 42.57.149.57 port 35162 [preauth] 2023-08-28T23:30:20.416866 sshd[399551]: Invalid user demo from 42.57.149.57 port 45104 show less	Brute-Force SSH
🇨🇿 plzenskypruvodce.cz	2023-08-28 21:10:48 (2 years ago)	Aug 28 23:09:29 phishsim sshd[48012]: Invalid user service from 42.57.149.57 port 33246 Aug 28 23:10 ... show more Aug 28 23:09:29 phishsim sshd[48012]: Invalid user service from 42.57.149.57 port 33246 Aug 28 23:10:46 phishsim sshd[48094]: Invalid user test from 42.57.149.57 port 52266 ... show less	Web App Attack
🇨🇿 plzenskypruvodce.cz	2023-08-28 20:39:30 (2 years ago)	Aug 28 22:34:27 phishsim sshd[46155]: Invalid user test from 42.57.149.57 port 58238 Aug 28 22:39:29 ... show more Aug 28 22:34:27 phishsim sshd[46155]: Invalid user test from 42.57.149.57 port 58238 Aug 28 22:39:29 phishsim sshd[46484]: Invalid user admin from 42.57.149.57 port 37430 ... show less	Web App Attack
🇩🇪 Threat Intelligence Agency	2023-08-28 18:46:27 (2 years ago)	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2023-08-28T18:40:54Z and 2023-08- ... show more Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2023-08-28T18:40:54Z and 2023-08-28T18:46:27Z show less	Brute-Force SSH
🇧🇷 ufn.edu.br	2023-08-28 18:40:44 (2 years ago)	Aug 28 18:28:51 wslbvm01 sshd[325275]: Failed password for invalid user lijj from 42.57.149.57 port ... show more Aug 28 18:28:51 wslbvm01 sshd[325275]: Failed password for invalid user lijj from 42.57.149.57 port 48094 ssh2 Aug 28 18:40:40 wslbvm01 sshd[328503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.57.149.57 user=root Aug 28 18:40:42 wslbvm01 sshd[328503]: Failed password for root from 42.57.149.57 port 49446 ssh2 ... show less	Brute-Force SSH
🇨🇿 lp	2023-08-28 16:52:53 (2 years ago)	SSH Brute force: 7 attempts were recorded from 42.57.149.57 2023-08-28T17:23:28+02:00 Invalid user t ... show more SSH Brute force: 7 attempts were recorded from 42.57.149.57 2023-08-28T17:23:28+02:00 Invalid user tabadmin from 42.57.149.57 port 57584 2023-08-28T17:27:16+02:00 Invalid user administrator from 42.57.149.57 port 44532 2023-08-28T17:34:24+02:00 Invalid user appadmin from 42.57.149.57 port 46660 2023-08-28T17:35:47+02:00 Invalid user admin from 42.57.149.57 port 35792 2023-08-28T16:31:53+02:00 Invalid user test from 42.57.149.57 port 50068 2023-08-28T16:33:27+02:00 Invalid user admin from 42.57.149.57 port 38882 2023-08-28T17:03:07+02:00 Invalid user admin from 42.57.149.57 port 46846 show less	Brute-Force SSH
🇫🇷 DiLenaTech	2023-08-28 15:54:11 (2 years ago)	2023-08-28T16:50:06.199787voip.dilenatech.com sshd[22280]: Failed password for invalid user apiadmin ... show more 2023-08-28T16:50:06.199787voip.dilenatech.com sshd[22280]: Failed password for invalid user apiadmin from 42.57.149.57 port 51620 ssh2 2023-08-28T16:54:08.304056voip.dilenatech.com sshd[22474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.57.149.57 user=root 2023-08-28T16:54:10.389346voip.dilenatech.com sshd[22474]: Failed password for root from 42.57.149.57 port 39338 ssh2 ... show less	Brute-Force SSH
🇷🇺 webserfer	2023-08-28 15:45:52 (2 years ago)	[f2b] sshd attack [W0:1:90d]	Brute-Force SSH

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 91.231.89.172

🇺🇸 217.216.84.206

🇺🇸 162.252.54.197

🇲🇾 47.250.88.177

🇺🇸 2607:f8b0:4004:1007::123

🇺🇸 135.237.125.160

🇩🇪 130.12.180.174

🇨🇳 116.62.163.56

🇭🇰 103.149.26.43

🇮🇳 103.2.135.152

🇫🇷 91.231.89.139

🇫🇷 5.189.141.246

🇺🇸 207.174.0.36

🇨🇳 123.13.64.164

🇳🇱 89.248.163.200

🇷🇺 87.226.190.225

🇵🇱 57.128.214.238

🇭🇰 47.75.112.90

🇺🇸 198.46.168.51

🇺🇸 162.216.150.234