157.245.104.49

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.104.19	attackbots	Sep 22 21:11:58 dhoomketu sshd[3306075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.104.19 Sep 22 21:11:58 dhoomketu sshd[3306075]: Invalid user ftptest from 157.245.104.19 port 49890 Sep 22 21:12:00 dhoomketu sshd[3306075]: Failed password for invalid user ftptest from 157.245.104.19 port 49890 ssh2 Sep 22 21:16:12 dhoomketu sshd[3306125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.104.19 user=root Sep 22 21:16:15 dhoomketu sshd[3306125]: Failed password for root from 157.245.104.19 port 58776 ssh2 ...	2020-09-22 23:59:25
157.245.104.19	attackspambots	$f2bV_matches	2020-09-22 16:03:17
157.245.104.19	attackspam	2020-09-22T01:27:35.185122afi-git.jinr.ru sshd[32617]: Invalid user user1 from 157.245.104.19 port 44898 2020-09-22T01:27:35.188566afi-git.jinr.ru sshd[32617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.104.19 2020-09-22T01:27:35.185122afi-git.jinr.ru sshd[32617]: Invalid user user1 from 157.245.104.19 port 44898 2020-09-22T01:27:36.959421afi-git.jinr.ru sshd[32617]: Failed password for invalid user user1 from 157.245.104.19 port 44898 ssh2 2020-09-22T01:31:55.137208afi-git.jinr.ru sshd[1280]: Invalid user nginx from 157.245.104.19 port 55918 ...	2020-09-22 08:06:45
157.245.104.19	attackspam	SSH brute-force attempt	2020-08-22 22:18:18
157.245.104.19	attackbotsspam	Aug 20 14:05:16 rancher-0 sshd[1177594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.104.19 user=root Aug 20 14:05:18 rancher-0 sshd[1177594]: Failed password for root from 157.245.104.19 port 50204 ssh2 ...	2020-08-20 23:07:32
157.245.104.19	attackbotsspam	Bruteforce detected by fail2ban	2020-08-10 22:34:52
157.245.104.19	attackspam	Fail2Ban Ban Triggered (2)	2020-08-05 03:37:38
157.245.104.19	attackspambots	Aug 3 11:55:05 ip-172-31-62-245 sshd\[7517\]: Failed password for root from 157.245.104.19 port 44240 ssh2\ Aug 3 11:56:54 ip-172-31-62-245 sshd\[7546\]: Failed password for root from 157.245.104.19 port 43652 ssh2\ Aug 3 11:58:49 ip-172-31-62-245 sshd\[7562\]: Failed password for root from 157.245.104.19 port 43064 ssh2\ Aug 3 12:00:49 ip-172-31-62-245 sshd\[7596\]: Failed password for root from 157.245.104.19 port 42476 ssh2\ Aug 3 12:02:45 ip-172-31-62-245 sshd\[7617\]: Failed password for root from 157.245.104.19 port 41888 ssh2\	2020-08-03 20:25:43
157.245.104.19	attackspam	Invalid user ruby from 157.245.104.19 port 42212	2020-08-01 19:31:25
157.245.104.19	attackspam	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-27 22:08:31
157.245.104.19	attackbots	Brute force SMTP login attempted. ...	2020-07-24 16:14:03
157.245.104.19	attackspambots	leo_www	2020-07-24 00:28:38
157.245.104.19	attackbotsspam	Jul 22 21:41:38 vps639187 sshd\[16835\]: Invalid user spiceworks from 157.245.104.19 port 39828 Jul 22 21:41:38 vps639187 sshd\[16835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.104.19 Jul 22 21:41:41 vps639187 sshd\[16835\]: Failed password for invalid user spiceworks from 157.245.104.19 port 39828 ssh2 ...	2020-07-23 04:51:51
157.245.104.19	attack	Invalid user kkj from 157.245.104.19 port 45406	2020-07-12 22:00:05
157.245.104.19	attackspam	(sshd) Failed SSH login from 157.245.104.19 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 10 14:23:35 grace sshd[26366]: Invalid user news from 157.245.104.19 port 52442 Jul 10 14:23:38 grace sshd[26366]: Failed password for invalid user news from 157.245.104.19 port 52442 ssh2 Jul 10 14:29:09 grace sshd[27031]: Invalid user testuser from 157.245.104.19 port 35494 Jul 10 14:29:11 grace sshd[27031]: Failed password for invalid user testuser from 157.245.104.19 port 35494 ssh2 Jul 10 14:31:42 grace sshd[27572]: Invalid user fisher from 157.245.104.19 port 47002	2020-07-11 02:28:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.104.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.104.49.			IN	A

;; AUTHORITY SECTION:
.			106	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 10:49:10 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 49.104.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.104.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
27.198.10.136	attackbotsspam	Icarus honeypot on github	2020-06-30 21:14:40
159.203.35.141	attackbots	$f2bV_matches	2020-06-30 21:22:24
64.227.9.252	attack	2020-06-30 14:24:36,385 fail2ban.actions: WARNING [ssh] Ban 64.227.9.252	2020-06-30 21:27:48
51.91.157.101	attack	Jun 30 14:26:34 serwer sshd\[25378\]: Invalid user zzg from 51.91.157.101 port 45872 Jun 30 14:26:34 serwer sshd\[25378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.157.101 Jun 30 14:26:36 serwer sshd\[25378\]: Failed password for invalid user zzg from 51.91.157.101 port 45872 ssh2 ...	2020-06-30 21:30:57
212.64.19.123	attackspambots	Jun 30 07:31:45 askasleikir sshd[8826]: Failed password for invalid user mgu from 212.64.19.123 port 60694 ssh2 Jun 30 07:42:58 askasleikir sshd[8886]: Failed password for invalid user test from 212.64.19.123 port 43340 ssh2 Jun 30 07:15:43 askasleikir sshd[8773]: Failed password for invalid user shivam from 212.64.19.123 port 60698 ssh2	2020-06-30 21:37:24
122.51.86.234	attack	Fail2Ban Ban Triggered	2020-06-30 21:02:10
111.67.193.218	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-30T12:04:34Z and 2020-06-30T12:24:41Z	2020-06-30 21:08:39
154.127.92.73	attackspambots	154.127.92.73 - - [30/Jun/2020:13:24:46 +0100] "POST /wp-login.php HTTP/1.1" 200 5575 "http://leerichard.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 154.127.92.73 - - [30/Jun/2020:13:24:47 +0100] "POST /wp-login.php HTTP/1.1" 200 5575 "http://leerichard.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 154.127.92.73 - - [30/Jun/2020:13:24:48 +0100] "POST /wp-login.php HTTP/1.1" 200 5582 "http://leerichard.co.uk/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" ...	2020-06-30 21:11:46
13.82.140.132	attack	13.82.140.132 has been banned for [WebApp Attack] ...	2020-06-30 21:39:49
106.54.85.36	attackspambots	Lines containing failures of 106.54.85.36 Jun 29 16:53:29 neweola sshd[19383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.85.36 user=backup Jun 29 16:53:31 neweola sshd[19383]: Failed password for backup from 106.54.85.36 port 52712 ssh2 Jun 29 16:53:33 neweola sshd[19383]: Received disconnect from 106.54.85.36 port 52712:11: Bye Bye [preauth] Jun 29 16:53:33 neweola sshd[19383]: Disconnected from authenticating user backup 106.54.85.36 port 52712 [preauth] Jun 29 17:06:42 neweola sshd[20723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.85.36 user=r.r Jun 29 17:06:44 neweola sshd[20723]: Failed password for r.r from 106.54.85.36 port 43758 ssh2 Jun 29 17:06:45 neweola sshd[20723]: Received disconnect from 106.54.85.36 port 43758:11: Bye Bye [preauth] Jun 29 17:06:45 neweola sshd[20723]: Disconnected from authenticating user r.r 106.54.85.36 port 43758 [preauth] Jun 29........ ------------------------------	2020-06-30 21:09:10
178.254.136.94	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 178.254.136.94 (RS/Serbia/free-136-94.mediaworksit.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-30 16:54:22 plain authenticator failed for ([178.254.136.94]) [178.254.136.94]: 535 Incorrect authentication data (set_id=marketin)	2020-06-30 21:35:16
185.156.73.42	attackspambots	" "	2020-06-30 20:56:08
114.141.167.190	attackspambots	sshd jail - ssh hack attempt	2020-06-30 21:05:19
1.9.46.177	attackspam	2020-06-30T12:59:32.687611abusebot-4.cloudsearch.cf sshd[27325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.9.46.177 user=root 2020-06-30T12:59:34.931069abusebot-4.cloudsearch.cf sshd[27325]: Failed password for root from 1.9.46.177 port 37208 ssh2 2020-06-30T13:04:35.555317abusebot-4.cloudsearch.cf sshd[27496]: Invalid user hugo from 1.9.46.177 port 60927 2020-06-30T13:04:35.563110abusebot-4.cloudsearch.cf sshd[27496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.9.46.177 2020-06-30T13:04:35.555317abusebot-4.cloudsearch.cf sshd[27496]: Invalid user hugo from 1.9.46.177 port 60927 2020-06-30T13:04:37.400408abusebot-4.cloudsearch.cf sshd[27496]: Failed password for invalid user hugo from 1.9.46.177 port 60927 ssh2 2020-06-30T13:09:21.872837abusebot-4.cloudsearch.cf sshd[27548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.9.46.177 user=root 2020-06-3 ...	2020-06-30 21:40:12
90.126.241.175	attackspambots	2020-06-30T12:26:47.263594abusebot-8.cloudsearch.cf sshd[26771]: Invalid user cheryl from 90.126.241.175 port 54312 2020-06-30T12:26:47.268453abusebot-8.cloudsearch.cf sshd[26771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-str-1-544-175.w90-126.abo.wanadoo.fr 2020-06-30T12:26:47.263594abusebot-8.cloudsearch.cf sshd[26771]: Invalid user cheryl from 90.126.241.175 port 54312 2020-06-30T12:26:49.085267abusebot-8.cloudsearch.cf sshd[26771]: Failed password for invalid user cheryl from 90.126.241.175 port 54312 ssh2 2020-06-30T12:30:59.600207abusebot-8.cloudsearch.cf sshd[26786]: Invalid user jeremias from 90.126.241.175 port 54449 2020-06-30T12:30:59.606399abusebot-8.cloudsearch.cf sshd[26786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-str-1-544-175.w90-126.abo.wanadoo.fr 2020-06-30T12:30:59.600207abusebot-8.cloudsearch.cf sshd[26786]: Invalid user jeremias from 90.126.241.175 port 54449 2 ...	2020-06-30 21:33:20

最近上报的IP列表

157.245.32.17	157.230.98.135	157.61.201.12	157.245.97.207
158.69.245.213	158.69.52.142	158.51.84.8	157.90.38.9
159.0.223.224	159.146.74.156	158.140.163.56	159.192.176.146
159.192.171.247	159.192.220.159	159.192.232.127	159.0.122.211
159.192.36.198	159.223.50.222	159.192.82.142	159.192.77.235

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表