157.230.20.207

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.230.20.53	attack	Invalid user test from 157.230.20.53 port 42262	2020-07-26 06:26:02
157.230.20.53	attackspambots	Jul 24 08:34:35 home sshd[432849]: Failed password for invalid user ftptest from 157.230.20.53 port 55246 ssh2 Jul 24 08:38:43 home sshd[433291]: Invalid user casino from 157.230.20.53 port 41778 Jul 24 08:38:43 home sshd[433291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.20.53 Jul 24 08:38:43 home sshd[433291]: Invalid user casino from 157.230.20.53 port 41778 Jul 24 08:38:44 home sshd[433291]: Failed password for invalid user casino from 157.230.20.53 port 41778 ssh2 ...	2020-07-24 16:48:49
157.230.20.53	attackspam	2020-07-23T08:55:07.628256v22018076590370373 sshd[22654]: Invalid user shadow from 157.230.20.53 port 52558 2020-07-23T08:55:07.635536v22018076590370373 sshd[22654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.20.53 2020-07-23T08:55:07.628256v22018076590370373 sshd[22654]: Invalid user shadow from 157.230.20.53 port 52558 2020-07-23T08:55:08.811002v22018076590370373 sshd[22654]: Failed password for invalid user shadow from 157.230.20.53 port 52558 ssh2 2020-07-23T08:57:36.488706v22018076590370373 sshd[31418]: Invalid user tiscali from 157.230.20.53 port 42738 ...	2020-07-23 17:47:37
157.230.20.53	attackspam	20 attempts against mh-ssh on pluto	2020-07-08 12:16:21
157.230.208.92	attackspambots	May 31 06:13:25 *** sshd[13640]: Invalid user rig from 157.230.208.92	2020-05-31 15:14:43
157.230.208.92	attackbotsspam	May 26 09:26:34 vps687878 sshd\[18028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.208.92 user=root May 26 09:26:36 vps687878 sshd\[18028\]: Failed password for root from 157.230.208.92 port 34326 ssh2 May 26 09:29:34 vps687878 sshd\[18218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.208.92 user=root May 26 09:29:36 vps687878 sshd\[18218\]: Failed password for root from 157.230.208.92 port 55636 ssh2 May 26 09:32:28 vps687878 sshd\[18635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.208.92 user=root ...	2020-05-26 16:08:48
157.230.208.92	attackbotsspam	Invalid user gzg from 157.230.208.92 port 48372	2020-05-20 20:01:50
157.230.208.92	attack	Bruteforce detected by fail2ban	2020-05-14 02:24:42
157.230.208.92	attackspam	Apr 20 06:58:56 server sshd[42234]: Failed password for root from 157.230.208.92 port 53212 ssh2 Apr 20 07:03:08 server sshd[43458]: Failed password for invalid user si from 157.230.208.92 port 43008 ssh2 Apr 20 07:07:18 server sshd[44511]: Failed password for invalid user qc from 157.230.208.92 port 32802 ssh2	2020-04-20 14:22:49
157.230.208.92	attack	SSH Invalid Login	2020-04-12 06:59:30
157.230.208.92	attackspambots	<6 unauthorized SSH connections	2020-04-09 15:31:33
157.230.209.1	attack	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-08 05:09:46
157.230.208.92	attack	Apr 6 12:40:58 markkoudstaal sshd[4257]: Failed password for root from 157.230.208.92 port 53798 ssh2 Apr 6 12:44:46 markkoudstaal sshd[4809]: Failed password for root from 157.230.208.92 port 37620 ssh2	2020-04-06 18:54:26
157.230.208.92	attackbots	Invalid user uct from 157.230.208.92 port 40326	2020-04-05 14:38:54
157.230.208.92	attackbotsspam	Apr 1 22:42:39 legacy sshd[4658]: Failed password for root from 157.230.208.92 port 48082 ssh2 Apr 1 22:46:10 legacy sshd[4730]: Failed password for root from 157.230.208.92 port 60048 ssh2 Apr 1 22:49:54 legacy sshd[4789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.208.92 ...	2020-04-02 04:54:40

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.230.20.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52492
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.230.20.207.			IN	A

;; AUTHORITY SECTION:
.			3000	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072401 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 07:06:34 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 207.20.230.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.20.230.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
73.118.64.17	attackspam	" "	2019-11-06 08:39:57
107.173.145.168	attack	$f2bV_matches	2019-11-06 08:47:45
185.176.27.178	attackbots	Nov 6 01:45:32 mc1 kernel: \[4287433.530163\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=44174 PROTO=TCP SPT=52561 DPT=40552 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 01:47:19 mc1 kernel: \[4287540.048466\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=46155 PROTO=TCP SPT=52561 DPT=24927 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 01:51:58 mc1 kernel: \[4287819.088782\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=30612 PROTO=TCP SPT=52561 DPT=50476 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-06 09:00:27
93.93.128.203	attackbots	ssh failed login	2019-11-06 08:54:46
111.198.54.177	attackspam	Nov 6 01:27:40 dedicated sshd[13002]: Invalid user sato from 111.198.54.177 port 62870	2019-11-06 08:52:06
119.1.238.156	attackspam	Nov 5 22:35:18 *** sshd[14650]: User root from 119.1.238.156 not allowed because not listed in AllowUsers	2019-11-06 08:58:38
45.148.10.40	attackbots	Only those who intend to destroy a site make attempts like this below, so if this ip appears on your site, block it immediately 45.148.10.0/24 is high risk: 45.148.10.40 - - [03/Nov/2019:23:35:31 -0300] "GET /.git/index HTTP/1.1" 404 101 "-" "git/2.0.0" 45.148.10.40 - - [04/Nov/2019:00:16:32 -0300] "GET /.git/index HTTP/1.1" 404 101 "-" "git/2.0.0" 45.148.10.40 - - [04/Nov/2019:00:16:33 -0300] "GET /.git/index HTTP/1.1" 404 101 "-" "git/2.0.0"	2019-11-06 08:42:25
92.222.77.175	attack	SSH bruteforce	2019-11-06 13:15:12
222.186.173.183	attackspam	Nov 6 01:12:50 tux-35-217 sshd\[26810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Nov 6 01:12:52 tux-35-217 sshd\[26810\]: Failed password for root from 222.186.173.183 port 44020 ssh2 Nov 6 01:12:56 tux-35-217 sshd\[26810\]: Failed password for root from 222.186.173.183 port 44020 ssh2 Nov 6 01:13:00 tux-35-217 sshd\[26810\]: Failed password for root from 222.186.173.183 port 44020 ssh2 ...	2019-11-06 08:45:30
41.216.186.89	attack	scan z	2019-11-06 13:00:22
45.143.220.56	attackbots	\[2019-11-05 23:57:59\] NOTICE\[2601\] chan_sip.c: Registration from '"999" \' failed for '45.143.220.56:5716' - Wrong password \[2019-11-05 23:57:59\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-05T23:57:59.717-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="999",SessionID="0x7fdf2c3f5928",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.56/5716",Challenge="5bbed4af",ReceivedChallenge="5bbed4af",ReceivedHash="31817a5ffc766f4efd0d560ca05ef925" \[2019-11-05 23:57:59\] NOTICE\[2601\] chan_sip.c: Registration from '"999" \' failed for '45.143.220.56:5716' - Wrong password \[2019-11-05 23:57:59\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-05T23:57:59.812-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="999",SessionID="0x7fdf2cd1cd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.1	2019-11-06 13:09:57
202.112.180.22	attack	Nov 5 18:52:33 eddieflores sshd\[10152\]: Invalid user apps from 202.112.180.22 Nov 5 18:52:33 eddieflores sshd\[10152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ddl.bjmu.edu.cn Nov 5 18:52:34 eddieflores sshd\[10152\]: Failed password for invalid user apps from 202.112.180.22 port 53376 ssh2 Nov 5 18:58:01 eddieflores sshd\[10590\]: Invalid user hadoop from 202.112.180.22 Nov 5 18:58:01 eddieflores sshd\[10590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ddl.bjmu.edu.cn	2019-11-06 13:09:25
203.192.231.218	attack	Nov 5 23:47:21 ovpn sshd\[21952\]: Invalid user silverelites from 203.192.231.218 Nov 5 23:47:21 ovpn sshd\[21952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.192.231.218 Nov 5 23:47:23 ovpn sshd\[21952\]: Failed password for invalid user silverelites from 203.192.231.218 port 11072 ssh2 Nov 6 00:03:57 ovpn sshd\[25448\]: Invalid user nagios from 203.192.231.218 Nov 6 00:03:57 ovpn sshd\[25448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.192.231.218	2019-11-06 08:40:38
212.64.127.106	attack	2019-11-06T00:28:44.502675shield sshd\[30557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.127.106 user=root 2019-11-06T00:28:46.772065shield sshd\[30557\]: Failed password for root from 212.64.127.106 port 58148 ssh2 2019-11-06T00:33:19.598684shield sshd\[31540\]: Invalid user oracle from 212.64.127.106 port 49189 2019-11-06T00:33:19.603128shield sshd\[31540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.127.106 2019-11-06T00:33:21.290488shield sshd\[31540\]: Failed password for invalid user oracle from 212.64.127.106 port 49189 ssh2	2019-11-06 08:50:17
181.126.83.125	attackbotsspam	Nov 6 01:30:42 dedicated sshd[13476]: Invalid user hola123 from 181.126.83.125 port 43036	2019-11-06 08:46:55

最近上报的IP列表

45.232.242.239	189.221.47.1	168.0.83.193	104.245.144.61
21.232.76.186	41.41.77.39	39.64.184.131	177.196.207.139
130.161.64.212	244.132.63.67	192.99.175.190	173.212.212.109
35.240.134.192	177.128.138.109	54.36.150.29	60.2.100.146
203.109.83.243	240e:d2:801a:4650:d4e7:343d:987c:126f	187.112.148.225	202.136.88.198