157.245.194.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 05:14:35

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.194.35	attack	SSH Brute-Force attacks	2020-06-05 01:56:12
157.245.194.35	attackspambots	fail2ban/Jun 1 19:03:20 h1962932 sshd[32671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:03:22 h1962932 sshd[32671]: Failed password for root from 157.245.194.35 port 53438 ssh2 Jun 1 19:06:49 h1962932 sshd[552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:06:51 h1962932 sshd[552]: Failed password for root from 157.245.194.35 port 51594 ssh2 Jun 1 19:10:19 h1962932 sshd[643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:10:22 h1962932 sshd[643]: Failed password for root from 157.245.194.35 port 49752 ssh2	2020-06-02 01:59:36
157.245.194.35	attackbotsspam	Invalid user admin from 157.245.194.35 port 45698	2020-05-31 05:09:44
157.245.194.35	attackbotsspam	Invalid user licheng from 157.245.194.35 port 49626	2020-05-23 16:41:01
157.245.194.38	attackspam	Invalid user detsuou from 157.245.194.38 port 46942	2020-05-21 13:02:47
157.245.194.38	attackspambots	$f2bV_matches	2020-05-20 03:24:59
157.245.194.254	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-20 03:03:53
157.245.194.254	attack	May 16 00:56:42 vps333114 sshd[25177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.254 May 16 00:56:43 vps333114 sshd[25177]: Failed password for invalid user ubuntu from 157.245.194.254 port 40066 ssh2 ...	2020-05-16 22:49:14
157.245.194.35	attackbots	$f2bV_matches	2020-05-15 14:53:47
157.245.194.35	attackbotsspam	May 14 22:36:41 ArkNodeAT sshd\[32071\]: Invalid user admin from 157.245.194.35 May 14 22:36:41 ArkNodeAT sshd\[32071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 May 14 22:36:43 ArkNodeAT sshd\[32071\]: Failed password for invalid user admin from 157.245.194.35 port 33790 ssh2	2020-05-15 04:48:44
157.245.194.254	attackbotsspam	May 13 05:03:22 askasleikir sshd[18822]: Failed password for root from 157.245.194.254 port 55604 ssh2 May 13 04:54:08 askasleikir sshd[18798]: Failed password for invalid user du from 157.245.194.254 port 53042 ssh2 May 13 05:12:03 askasleikir sshd[18849]: Failed password for invalid user help from 157.245.194.254 port 45060 ssh2	2020-05-13 20:15:10
157.245.194.38	attackbotsspam	May 10 04:49:24 onepixel sshd[2538521]: Failed password for invalid user ut2k4server from 157.245.194.38 port 41988 ssh2 May 10 04:53:57 onepixel sshd[2540721]: Invalid user website from 157.245.194.38 port 51508 May 10 04:53:57 onepixel sshd[2540721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.38 May 10 04:53:57 onepixel sshd[2540721]: Invalid user website from 157.245.194.38 port 51508 May 10 04:53:59 onepixel sshd[2540721]: Failed password for invalid user website from 157.245.194.38 port 51508 ssh2	2020-05-10 13:01:56
157.245.194.38	attack	$f2bV_matches	2020-05-07 12:39:28
157.245.194.35	attackspam	2020-05-06T18:14:30.198092server.espacesoutien.com sshd[19042]: Invalid user iac from 157.245.194.35 port 44114 2020-05-06T18:14:30.209778server.espacesoutien.com sshd[19042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 2020-05-06T18:14:30.198092server.espacesoutien.com sshd[19042]: Invalid user iac from 157.245.194.35 port 44114 2020-05-06T18:14:32.315676server.espacesoutien.com sshd[19042]: Failed password for invalid user iac from 157.245.194.35 port 44114 ssh2 2020-05-06T18:18:39.817113server.espacesoutien.com sshd[19867]: Invalid user clock from 157.245.194.35 port 53124 ...	2020-05-07 03:48:46
157.245.194.254	attackspam	Invalid user kumari from 157.245.194.254 port 48464	2020-05-03 15:21:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.194.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.194.145.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092401 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 25 05:14:32 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 145.194.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.194.245.157.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
183.165.11.185	attackspambots	Unauthorized connection attempt detected from IP address 183.165.11.185 to port 6656 [T]	2020-01-29 21:14:30
3.113.28.235	attackbots	unauthorized connection attempt	2020-01-29 20:33:59
64.202.188.156	attackspam	REQUESTED PAGE: /wp-login.php	2020-01-29 20:51:29
223.242.93.138	attackspam	Unauthorized connection attempt detected from IP address 223.242.93.138 to port 6656 [T]	2020-01-29 20:54:29
223.241.29.227	attackspambots	Unauthorized connection attempt detected from IP address 223.241.29.227 to port 6656 [T]	2020-01-29 20:55:04
220.177.3.237	attackspambots	Unauthorized connection attempt detected from IP address 220.177.3.237 to port 6656 [T]	2020-01-29 20:36:35
103.56.76.170	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-01-29 20:49:27
115.198.38.76	attackspam	Unauthorized connection attempt detected from IP address 115.198.38.76 to port 6656 [T]	2020-01-29 20:44:16
125.111.145.113	attackbotsspam	Unauthorized connection attempt detected from IP address 125.111.145.113 to port 6656 [T]	2020-01-29 20:40:47
39.66.112.92	attack	Unauthorized connection attempt detected from IP address 39.66.112.92 to port 6656 [T]	2020-01-29 20:31:07
60.2.245.166	attack	Unauthorized connection attempt detected from IP address 60.2.245.166 to port 1433 [T]	2020-01-29 20:51:56
175.42.158.7	attackbotsspam	Unauthorized connection attempt detected from IP address 175.42.158.7 to port 6656 [T]	2020-01-29 20:39:51
180.116.168.101	attack	Unauthorized connection attempt detected from IP address 180.116.168.101 to port 6656 [T]	2020-01-29 20:58:28
42.113.254.122	attackspam	Unauthorized connection attempt detected from IP address 42.113.254.122 to port 23 [J]	2020-01-29 20:30:35
106.6.233.119	attack	Unauthorized connection attempt detected from IP address 106.6.233.119 to port 6656 [T]	2020-01-29 20:48:34

最近上报的IP列表

128.199.123.220	128.199.29.118	93.241.148.194	121.63.176.13
238.89.61.241	119.45.239.87	119.27.189.65	117.86.10.32
115.31.139.210	113.186.42.25	111.74.11.82	109.244.103.137
184.49.247.113	106.13.80.167	168.20.226.148	88.242.1.95
143.163.135.207	45.170.100.60	173.69.64.213	104.131.126.10