157.245.117.94

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	port scan and connect, tcp 80 (http)	2019-10-01 12:35:41

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.117.187	attack	157.245.117.187 Multiple Bad Request error 400...	2020-09-11 02:31:33
157.245.117.187	attackbots	157.245.117.187 Multiple Bad Request error 400...	2020-09-10 17:54:49
157.245.117.187	attackspam	157.245.117.187 Multiple Bad Request error 400...	2020-09-10 08:27:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.117.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24179
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.117.94.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100100 1800 900 604800 86400

;; Query time: 245 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 01 12:35:37 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

94.117.245.157.in-addr.arpa domain name pointer jobqueue-listener.jobqueue.netcraft.com-u78afbc88e3e611e9b1e5ff02838d6ab1u-digitalocean.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.117.245.157.in-addr.arpa	name = jobqueue-listener.jobqueue.netcraft.com-u78afbc88e3e611e9b1e5ff02838d6ab1u-digitalocean.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
43.252.231.204	attackspam	C1,WP GET /wp-login.php	2019-08-28 05:35:08
103.107.17.134	attackspam	Aug 27 23:40:20 dev0-dcde-rnet sshd[7125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.17.134 Aug 27 23:40:22 dev0-dcde-rnet sshd[7125]: Failed password for invalid user francesco from 103.107.17.134 port 33012 ssh2 Aug 27 23:45:15 dev0-dcde-rnet sshd[7139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.17.134	2019-08-28 06:11:17
80.219.37.205	attackspam	Aug 27 11:46:05 hiderm sshd\[23576\]: Invalid user agi from 80.219.37.205 Aug 27 11:46:05 hiderm sshd\[23576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80-219-37-205.dclient.hispeed.ch Aug 27 11:46:06 hiderm sshd\[23576\]: Failed password for invalid user agi from 80.219.37.205 port 48072 ssh2 Aug 27 11:50:21 hiderm sshd\[23946\]: Invalid user anita from 80.219.37.205 Aug 27 11:50:21 hiderm sshd\[23946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80-219-37-205.dclient.hispeed.ch	2019-08-28 05:58:14
46.101.101.66	attackspambots	Aug 27 11:52:59 sachi sshd\[4771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.101.66 user=root Aug 27 11:53:01 sachi sshd\[4771\]: Failed password for root from 46.101.101.66 port 49400 ssh2 Aug 27 12:00:56 sachi sshd\[5426\]: Invalid user oracle from 46.101.101.66 Aug 27 12:00:56 sachi sshd\[5426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.101.66 Aug 27 12:00:58 sachi sshd\[5426\]: Failed password for invalid user oracle from 46.101.101.66 port 36470 ssh2	2019-08-28 06:07:17
138.94.211.232	attack	Try access to SMTP/POP/IMAP server.	2019-08-28 06:02:49
49.34.107.197	attackspambots	Chat Spam	2019-08-28 06:05:44
80.82.77.18	attackspam	Aug 27 23:25:21 webserver postfix/smtpd\[9295\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 23:26:00 webserver postfix/smtpd\[9295\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 23:26:38 webserver postfix/smtpd\[9295\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 23:27:15 webserver postfix/smtpd\[9295\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 23:27:54 webserver postfix/smtpd\[9295\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-28 05:38:59
49.88.112.90	attack	Aug 27 23:51:00 ncomp sshd[2122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.90 user=root Aug 27 23:51:01 ncomp sshd[2122]: Failed password for root from 49.88.112.90 port 53384 ssh2 Aug 27 23:51:08 ncomp sshd[2124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.90 user=root Aug 27 23:51:10 ncomp sshd[2124]: Failed password for root from 49.88.112.90 port 41459 ssh2	2019-08-28 05:52:21
112.85.42.180	attackspambots	Aug 27 23:02:26 vserver sshd\[21752\]: Failed password for root from 112.85.42.180 port 8133 ssh2Aug 27 23:02:29 vserver sshd\[21752\]: Failed password for root from 112.85.42.180 port 8133 ssh2Aug 27 23:02:31 vserver sshd\[21752\]: Failed password for root from 112.85.42.180 port 8133 ssh2Aug 27 23:02:35 vserver sshd\[21752\]: Failed password for root from 112.85.42.180 port 8133 ssh2 ...	2019-08-28 06:15:57
47.91.90.132	attackspam	Aug 27 21:30:19 icinga sshd[32235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.91.90.132 Aug 27 21:30:21 icinga sshd[32235]: Failed password for invalid user nu from 47.91.90.132 port 49590 ssh2 Aug 27 21:37:14 icinga sshd[36405]: Failed password for root from 47.91.90.132 port 34218 ssh2 ...	2019-08-28 05:51:56
197.254.38.250	attack	IP: 197.254.38.250 ASN: AS15808 ACCESSKENYA GROUP LTD is an ISP serving Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 27/08/2019 7:38:28 PM UTC	2019-08-28 05:26:13
89.248.174.27	attackspambots	IP: 89.248.174.27 ASN: AS202425 IP Volume inc Port: Message Submission 587 Date: 27/08/2019 7:38:27 PM UTC	2019-08-28 05:26:47
187.19.155.170	attackbotsspam	Try access to SMTP/POP/IMAP server.	2019-08-28 05:49:04
68.183.102.174	attackspambots	Aug 27 11:34:32 sachi sshd\[3111\]: Invalid user 09 from 68.183.102.174 Aug 27 11:34:32 sachi sshd\[3111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.102.174 Aug 27 11:34:34 sachi sshd\[3111\]: Failed password for invalid user 09 from 68.183.102.174 port 56248 ssh2 Aug 27 11:38:23 sachi sshd\[3436\]: Invalid user alvin from 68.183.102.174 Aug 27 11:38:23 sachi sshd\[3436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.102.174	2019-08-28 05:41:13
142.93.130.169	attackbotsspam	Wordpress XMLRPC attack	2019-08-28 05:37:32

最近上报的IP列表

1.144.210.96	147.101.29.237	168.80.175.205	9.72.116.111
84.3.34.254	202.226.32.147	135.43.113.61	108.226.248.185
70.119.4.231	56.20.222.241	149.219.245.58	87.11.12.108
61.231.200.119	218.227.82.215	165.227.186.227	111.182.167.195
191.89.167.141	160.249.202.118	92.52.184.26	42.119.75.149