157.230.245.16

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-08 02:42:17
attackbots	TCP (SYN) 157.230.245.16:60000 -> port 25, len 44	2020-10-07 18:55:49

相同子网IP讨论:

IP	类型	评论内容	时间
157.230.245.91	attackspambots	TCP (SYN) 157.230.245.91:57357 -> port 5336, len 44	2020-10-07 05:46:38
157.230.245.91	attack	TCP port : 1517	2020-10-06 21:58:40
157.230.245.91	attack	Port scan denied	2020-10-06 13:41:40
157.230.245.91	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-04 04:53:52
157.230.245.91	attackspam	Invalid user switch from 157.230.245.91 port 43234	2020-10-03 21:02:36
157.230.245.91	attackspambots	Failed password for invalid user kost from 157.230.245.91 port 46704 ssh2	2020-10-03 12:27:20
157.230.245.91	attack	srv02 Mass scanning activity detected Target: 22397 ..	2020-10-03 07:08:46
157.230.245.243	attackbotsspam	TCP port : 44022	2020-08-30 19:09:17
157.230.245.91	attackbotsspam	2020-08-28T13:26:16.134281paragon sshd[582516]: Failed password for root from 157.230.245.91 port 49490 ssh2 2020-08-28T13:30:25.315429paragon sshd[582864]: Invalid user admin from 157.230.245.91 port 54246 2020-08-28T13:30:25.317880paragon sshd[582864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.245.91 2020-08-28T13:30:25.315429paragon sshd[582864]: Invalid user admin from 157.230.245.91 port 54246 2020-08-28T13:30:27.440821paragon sshd[582864]: Failed password for invalid user admin from 157.230.245.91 port 54246 ssh2 ...	2020-08-28 18:19:30
157.230.245.243	attack	Port scan denied	2020-08-28 03:52:09
157.230.245.243	attackspambots	Port Scan ...	2020-08-27 07:50:09
157.230.245.91	attackspam	2020-08-23T16:38:09.021082mail.standpoint.com.ua sshd[14213]: Failed password for root from 157.230.245.91 port 49032 ssh2 2020-08-23T16:42:47.491555mail.standpoint.com.ua sshd[14878]: Invalid user matias from 157.230.245.91 port 58550 2020-08-23T16:42:47.495208mail.standpoint.com.ua sshd[14878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.245.91 2020-08-23T16:42:47.491555mail.standpoint.com.ua sshd[14878]: Invalid user matias from 157.230.245.91 port 58550 2020-08-23T16:42:49.603466mail.standpoint.com.ua sshd[14878]: Failed password for invalid user matias from 157.230.245.91 port 58550 ssh2 ...	2020-08-23 22:46:47
157.230.245.91	attackspambots	2020-08-20T01:20:51.177121mail.standpoint.com.ua sshd[31781]: Invalid user avl from 157.230.245.91 port 36964 2020-08-20T01:20:51.180529mail.standpoint.com.ua sshd[31781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.245.91 2020-08-20T01:20:51.177121mail.standpoint.com.ua sshd[31781]: Invalid user avl from 157.230.245.91 port 36964 2020-08-20T01:20:53.055408mail.standpoint.com.ua sshd[31781]: Failed password for invalid user avl from 157.230.245.91 port 36964 ssh2 2020-08-20T01:25:17.294076mail.standpoint.com.ua sshd[32438]: Invalid user hugo from 157.230.245.91 port 47064 ...	2020-08-20 07:23:03
157.230.245.91	attack	Aug 16 22:32:56 web1 sshd\[30543\]: Invalid user dmb from 157.230.245.91 Aug 16 22:32:56 web1 sshd\[30543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.245.91 Aug 16 22:32:58 web1 sshd\[30543\]: Failed password for invalid user dmb from 157.230.245.91 port 39514 ssh2 Aug 16 22:34:28 web1 sshd\[30613\]: Invalid user b from 157.230.245.91 Aug 16 22:34:28 web1 sshd\[30613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.245.91	2020-08-17 04:40:53
157.230.245.67	attack	157.230.245.67 - - [04/Aug/2020:00:24:38 +0100] "POST /wp-login.php HTTP/1.1" 200 1950 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.245.67 - - [04/Aug/2020:00:24:40 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.245.67 - - [04/Aug/2020:00:39:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1950 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 08:00:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.230.245.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18777
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.230.245.16.			IN	A

;; AUTHORITY SECTION:
.			127	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100700 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 07 18:55:46 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 16.245.230.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 16.245.230.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.50.197.217	attack	2019-12-22T18:27:42.598020 sshd[22395]: Invalid user kofstad from 198.50.197.217 port 59160 2019-12-22T18:27:42.608539 sshd[22395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.197.217 2019-12-22T18:27:42.598020 sshd[22395]: Invalid user kofstad from 198.50.197.217 port 59160 2019-12-22T18:27:44.624934 sshd[22395]: Failed password for invalid user kofstad from 198.50.197.217 port 59160 ssh2 2019-12-22T18:39:19.188189 sshd[22684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.197.217 user=root 2019-12-22T18:39:21.556180 sshd[22684]: Failed password for root from 198.50.197.217 port 49372 ssh2 ...	2019-12-23 01:43:22
54.39.138.251	attackspambots	Dec 22 23:26:27 areeb-Workstation sshd[4197]: Failed password for root from 54.39.138.251 port 47652 ssh2 ...	2019-12-23 02:09:56
106.51.3.214	attackbotsspam	Dec 22 16:56:50 mail sshd\[16710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.3.214 user=root Dec 22 16:56:52 mail sshd\[16710\]: Failed password for root from 106.51.3.214 port 51325 ssh2 Dec 22 17:03:28 mail sshd\[17286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.3.214 user=root ...	2019-12-23 01:40:59
183.220.146.249	attackspambots	Dec 22 17:30:55 zeus sshd[21244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.220.146.249 Dec 22 17:30:58 zeus sshd[21244]: Failed password for invalid user pcap from 183.220.146.249 port 27749 ssh2 Dec 22 17:37:23 zeus sshd[21389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.220.146.249 Dec 22 17:37:25 zeus sshd[21389]: Failed password for invalid user janaye from 183.220.146.249 port 64201 ssh2	2019-12-23 01:55:25
217.182.204.72	attack	Dec 22 16:00:45 debian-2gb-nbg1-2 kernel: \[679595.648899\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=217.182.204.72 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=12346 PROTO=TCP SPT=57873 DPT=40122 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-23 02:05:28
183.81.96.135	attackbots	firewall-block, port(s): 23/tcp	2019-12-23 01:47:07
78.29.32.122	attackbots	SPAM Delivery Attempt	2019-12-23 02:03:02
86.211.94.186	attack	Dec 22 15:49:53 ns382633 sshd\[5407\]: Invalid user pi from 86.211.94.186 port 33702 Dec 22 15:49:53 ns382633 sshd\[5407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.211.94.186 Dec 22 15:49:53 ns382633 sshd\[5409\]: Invalid user pi from 86.211.94.186 port 33706 Dec 22 15:49:53 ns382633 sshd\[5409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.211.94.186 Dec 22 15:49:56 ns382633 sshd\[5407\]: Failed password for invalid user pi from 86.211.94.186 port 33702 ssh2 Dec 22 15:49:56 ns382633 sshd\[5409\]: Failed password for invalid user pi from 86.211.94.186 port 33706 ssh2	2019-12-23 02:10:31
154.92.16.51	attackspam	Dec 22 12:51:36 TORMINT sshd\[21223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.92.16.51 user=root Dec 22 12:51:38 TORMINT sshd\[21223\]: Failed password for root from 154.92.16.51 port 34892 ssh2 Dec 22 12:57:34 TORMINT sshd\[21664\]: Invalid user Acotas from 154.92.16.51 Dec 22 12:57:34 TORMINT sshd\[21664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.92.16.51 ...	2019-12-23 01:59:36
222.82.250.4	attackbotsspam	Dec 22 18:54:38 amit sshd\[20238\]: Invalid user kramar from 222.82.250.4 Dec 22 18:54:38 amit sshd\[20238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.82.250.4 Dec 22 18:54:40 amit sshd\[20238\]: Failed password for invalid user kramar from 222.82.250.4 port 40687 ssh2 ...	2019-12-23 01:54:58
185.175.93.27	attackspam	12/22/2019-18:48:23.571938 185.175.93.27 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-23 01:54:32
129.204.87.153	attack	Dec 22 22:40:48 vibhu-HP-Z238-Microtower-Workstation sshd\[18417\]: Invalid user ichiro from 129.204.87.153 Dec 22 22:40:48 vibhu-HP-Z238-Microtower-Workstation sshd\[18417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.87.153 Dec 22 22:40:50 vibhu-HP-Z238-Microtower-Workstation sshd\[18417\]: Failed password for invalid user ichiro from 129.204.87.153 port 55773 ssh2 Dec 22 22:48:29 vibhu-HP-Z238-Microtower-Workstation sshd\[18832\]: Invalid user tmdplc from 129.204.87.153 Dec 22 22:48:29 vibhu-HP-Z238-Microtower-Workstation sshd\[18832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.87.153 ...	2019-12-23 01:39:10
183.230.199.54	attack	Dec 22 14:06:45 firewall sshd[2777]: Failed password for invalid user mysql from 183.230.199.54 port 52577 ssh2 Dec 22 14:13:20 firewall sshd[2918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.230.199.54 user=root Dec 22 14:13:22 firewall sshd[2918]: Failed password for root from 183.230.199.54 port 47563 ssh2 ...	2019-12-23 01:44:38
35.181.61.133	attack	404 NOT FOUND	2019-12-23 01:52:24
74.82.47.2	attackspam	Unauthorized connection attempt detected from IP address 74.82.47.2 to port 5555	2019-12-23 01:49:32

最近上报的IP列表

122.226.167.246	198.12.157.28	185.191.171.21	188.82.92.144
188.166.225.17	176.32.34.102	31.171.152.131	122.70.178.5
102.137.59.183	116.86.157.34	23.255.132.212	119.148.191.48
17.214.48.248	37.49.225.199	62.170.238.213	80.162.246.200
121.104.8.251	115.96.140.91	38.119.134.178	178.128.187.109