157.245.155.13

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jul 19 12:37:57 plex-server sshd[3773230]: Invalid user 123456 from 157.245.155.13 port 59320 Jul 19 12:37:57 plex-server sshd[3773230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 Jul 19 12:37:57 plex-server sshd[3773230]: Invalid user 123456 from 157.245.155.13 port 59320 Jul 19 12:37:59 plex-server sshd[3773230]: Failed password for invalid user 123456 from 157.245.155.13 port 59320 ssh2 Jul 19 12:41:31 plex-server sshd[3774383]: Invalid user ry from 157.245.155.13 port 52018 ...	2020-07-19 20:44:49
attackspam	Jul 14 13:29:55 pve1 sshd[4713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 Jul 14 13:29:57 pve1 sshd[4713]: Failed password for invalid user eugene from 157.245.155.13 port 52816 ssh2 ...	2020-07-14 20:01:43
attackbots	Bruteforce detected by fail2ban	2020-07-10 13:51:43
attack	Jul 7 23:57:44 h2865660 sshd[28381]: Invalid user kube from 157.245.155.13 port 35252 Jul 7 23:57:44 h2865660 sshd[28381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 Jul 7 23:57:44 h2865660 sshd[28381]: Invalid user kube from 157.245.155.13 port 35252 Jul 7 23:57:46 h2865660 sshd[28381]: Failed password for invalid user kube from 157.245.155.13 port 35252 ssh2 Jul 8 00:08:21 h2865660 sshd[29074]: Invalid user asunci\363n from 157.245.155.13 port 41514 ...	2020-07-08 10:42:53
attackspam	Jul 7 15:19:06 debian-2gb-nbg1-2 kernel: \[16386550.014946\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=157.245.155.13 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=40543 PROTO=TCP SPT=53379 DPT=12724 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-07 22:22:20
attackbots	Invalid user administracion from 157.245.155.13 port 51330	2020-07-04 14:51:30
attackspam	Invalid user openhab from 157.245.155.13 port 40294	2020-06-27 05:24:22
attack	2020-06-01T22:53:47.535057struts4.enskede.local sshd\[31433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 user=root 2020-06-01T22:53:51.099898struts4.enskede.local sshd\[31433\]: Failed password for root from 157.245.155.13 port 41966 ssh2 2020-06-01T22:57:30.175190struts4.enskede.local sshd\[31447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 user=root 2020-06-01T22:57:33.160618struts4.enskede.local sshd\[31447\]: Failed password for root from 157.245.155.13 port 47366 ssh2 2020-06-01T23:01:20.761697struts4.enskede.local sshd\[31482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 user=root ...	2020-06-02 06:14:23
attack	May 26 18:22:39 legacy sshd[30864]: Failed password for root from 157.245.155.13 port 45668 ssh2 May 26 18:26:44 legacy sshd[30976]: Failed password for root from 157.245.155.13 port 51078 ssh2 ...	2020-05-27 05:23:35
attackspambots	May 14 16:23:32 MainVPS sshd[30252]: Invalid user rtorres from 157.245.155.13 port 49110 May 14 16:23:32 MainVPS sshd[30252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 May 14 16:23:32 MainVPS sshd[30252]: Invalid user rtorres from 157.245.155.13 port 49110 May 14 16:23:33 MainVPS sshd[30252]: Failed password for invalid user rtorres from 157.245.155.13 port 49110 ssh2 May 14 16:27:51 MainVPS sshd[1706]: Invalid user bwadmin from 157.245.155.13 port 57192 ...	2020-05-15 04:10:40
attackbotsspam	May 5 19:54:46 vmd48417 sshd[14583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13	2020-05-06 05:13:13
attack	2020-05-03T08:47:43.590889randservbullet-proofcloud-66.localdomain sshd[19798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.13 user=root 2020-05-03T08:47:45.813478randservbullet-proofcloud-66.localdomain sshd[19798]: Failed password for root from 157.245.155.13 port 44932 ssh2 2020-05-03T09:02:55.208434randservbullet-proofcloud-66.localdomain sshd[19884]: Invalid user student from 157.245.155.13 port 39764 ...	2020-05-03 18:06:29

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.155.129	attackbotsspam	Feb 11 06:12:41 web8 sshd\[4411\]: Invalid user xjp from 157.245.155.129 Feb 11 06:12:41 web8 sshd\[4411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.129 Feb 11 06:12:42 web8 sshd\[4411\]: Failed password for invalid user xjp from 157.245.155.129 port 57096 ssh2 Feb 11 06:15:31 web8 sshd\[5954\]: Invalid user fit from 157.245.155.129 Feb 11 06:15:31 web8 sshd\[5954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.129	2020-02-11 14:24:57
157.245.155.129	attackbots	(sshd) Failed SSH login from 157.245.155.129 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 9 09:28:01 ubnt-55d23 sshd[11510]: Invalid user nik from 157.245.155.129 port 55814 Feb 9 09:28:03 ubnt-55d23 sshd[11510]: Failed password for invalid user nik from 157.245.155.129 port 55814 ssh2	2020-02-09 21:01:55
157.245.155.240	attack	Unauthorized connection attempt detected from IP address 157.245.155.240 to port 2220 [J]	2020-01-20 03:47:10
157.245.155.240	attackspambots	Unauthorized connection attempt detected from IP address 157.245.155.240 to port 2220 [J]	2020-01-15 17:21:43
157.245.155.230	attack	SSH/22 MH Probe, BF, Hack -	2019-11-13 18:09:40
157.245.155.230	attackbotsspam	Nov 12 22:41:19 gw1 sshd[20966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.155.230 Nov 12 22:41:20 gw1 sshd[20966]: Failed password for invalid user application from 157.245.155.230 port 55792 ssh2 ...	2019-11-13 01:42:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.155.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64634
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.155.13.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050300 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 03 18:06:23 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 13.155.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.155.245.157.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
124.82.127.114	attackbotsspam	Unauthorized connection attempt detected from IP address 124.82.127.114 to port 8000 [J]	2020-01-14 15:19:12
171.251.238.85	attack	Unauthorized connection attempt from IP address 171.251.238.85 on Port 445(SMB)	2020-01-14 15:40:06
62.12.83.235	attackbotsspam	Unauthorized connection attempt detected from IP address 62.12.83.235 to port 5555 [J]	2020-01-14 15:00:44
201.95.102.47	attackbots	Unauthorized connection attempt detected from IP address 201.95.102.47 to port 81 [J]	2020-01-14 15:32:26
106.13.232.184	attackspambots	Unauthorized connection attempt detected from IP address 106.13.232.184 to port 2220 [J]	2020-01-14 15:23:05
194.246.121.114	attackspambots	Unauthorized connection attempt detected from IP address 194.246.121.114 to port 8080 [J]	2020-01-14 15:06:38
219.140.119.139	attack	Unauthorized connection attempt detected from IP address 219.140.119.139 to port 80 [J]	2020-01-14 15:03:45
60.26.200.201	attackbotsspam	Unauthorized connection attempt detected from IP address 60.26.200.201 to port 2220 [J]	2020-01-14 15:25:49
84.236.50.124	attackbotsspam	Unauthorized connection attempt detected from IP address 84.236.50.124 to port 88 [J]	2020-01-14 15:24:43
45.165.208.71	attack	Unauthorized connection attempt detected from IP address 45.165.208.71 to port 8080 [J]	2020-01-14 15:27:25
200.85.62.6	attackspam	Unauthorized connection attempt detected from IP address 200.85.62.6 to port 8080	2020-01-14 15:32:45
2.34.157.146	attack	Unauthorized connection attempt detected from IP address 2.34.157.146 to port 8000	2020-01-14 15:02:33
42.247.5.67	attackspam	Unauthorized connection attempt detected from IP address 42.247.5.67 to port 1433 [J]	2020-01-14 15:01:43
222.82.233.138	attackspam	Unauthorized connection attempt detected from IP address 222.82.233.138 to port 4899 [J]	2020-01-14 15:03:08
114.215.177.141	attackbots	Unauthorized connection attempt detected from IP address 114.215.177.141 to port 1433 [J]	2020-01-14 15:20:33

最近上报的IP列表

217.66.101.42	133.193.63.160	166.92.45.194	103.83.93.129
29.164.22.151	118.173.218.129	21.52.221.174	128.199.200.117
151.233.72.134	29.56.26.111	198.54.121.131	213.202.235.77
124.121.1.91	5.196.74.23	118.68.25.124	54.160.220.245
139.162.16.60	198.199.115.134	63.80.88.194	85.190.157.149