157.245.194.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 05:14:35

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.194.35	attack	SSH Brute-Force attacks	2020-06-05 01:56:12
157.245.194.35	attackspambots	fail2ban/Jun 1 19:03:20 h1962932 sshd[32671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:03:22 h1962932 sshd[32671]: Failed password for root from 157.245.194.35 port 53438 ssh2 Jun 1 19:06:49 h1962932 sshd[552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:06:51 h1962932 sshd[552]: Failed password for root from 157.245.194.35 port 51594 ssh2 Jun 1 19:10:19 h1962932 sshd[643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:10:22 h1962932 sshd[643]: Failed password for root from 157.245.194.35 port 49752 ssh2	2020-06-02 01:59:36
157.245.194.35	attackbotsspam	Invalid user admin from 157.245.194.35 port 45698	2020-05-31 05:09:44
157.245.194.35	attackbotsspam	Invalid user licheng from 157.245.194.35 port 49626	2020-05-23 16:41:01
157.245.194.38	attackspam	Invalid user detsuou from 157.245.194.38 port 46942	2020-05-21 13:02:47
157.245.194.38	attackspambots	$f2bV_matches	2020-05-20 03:24:59
157.245.194.254	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-20 03:03:53
157.245.194.254	attack	May 16 00:56:42 vps333114 sshd[25177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.254 May 16 00:56:43 vps333114 sshd[25177]: Failed password for invalid user ubuntu from 157.245.194.254 port 40066 ssh2 ...	2020-05-16 22:49:14
157.245.194.35	attackbots	$f2bV_matches	2020-05-15 14:53:47
157.245.194.35	attackbotsspam	May 14 22:36:41 ArkNodeAT sshd\[32071\]: Invalid user admin from 157.245.194.35 May 14 22:36:41 ArkNodeAT sshd\[32071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 May 14 22:36:43 ArkNodeAT sshd\[32071\]: Failed password for invalid user admin from 157.245.194.35 port 33790 ssh2	2020-05-15 04:48:44
157.245.194.254	attackbotsspam	May 13 05:03:22 askasleikir sshd[18822]: Failed password for root from 157.245.194.254 port 55604 ssh2 May 13 04:54:08 askasleikir sshd[18798]: Failed password for invalid user du from 157.245.194.254 port 53042 ssh2 May 13 05:12:03 askasleikir sshd[18849]: Failed password for invalid user help from 157.245.194.254 port 45060 ssh2	2020-05-13 20:15:10
157.245.194.38	attackbotsspam	May 10 04:49:24 onepixel sshd[2538521]: Failed password for invalid user ut2k4server from 157.245.194.38 port 41988 ssh2 May 10 04:53:57 onepixel sshd[2540721]: Invalid user website from 157.245.194.38 port 51508 May 10 04:53:57 onepixel sshd[2540721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.38 May 10 04:53:57 onepixel sshd[2540721]: Invalid user website from 157.245.194.38 port 51508 May 10 04:53:59 onepixel sshd[2540721]: Failed password for invalid user website from 157.245.194.38 port 51508 ssh2	2020-05-10 13:01:56
157.245.194.38	attack	$f2bV_matches	2020-05-07 12:39:28
157.245.194.35	attackspam	2020-05-06T18:14:30.198092server.espacesoutien.com sshd[19042]: Invalid user iac from 157.245.194.35 port 44114 2020-05-06T18:14:30.209778server.espacesoutien.com sshd[19042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 2020-05-06T18:14:30.198092server.espacesoutien.com sshd[19042]: Invalid user iac from 157.245.194.35 port 44114 2020-05-06T18:14:32.315676server.espacesoutien.com sshd[19042]: Failed password for invalid user iac from 157.245.194.35 port 44114 ssh2 2020-05-06T18:18:39.817113server.espacesoutien.com sshd[19867]: Invalid user clock from 157.245.194.35 port 53124 ...	2020-05-07 03:48:46
157.245.194.254	attackspam	Invalid user kumari from 157.245.194.254 port 48464	2020-05-03 15:21:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.194.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.194.145.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092401 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 25 05:14:32 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 145.194.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.194.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
209.17.96.130	attackspambots	Brute force attack stopped by firewall	2020-04-16 07:26:51
192.241.237.107	attack	Port Scan: Events[2] countPorts[2]: 873 102 ..	2020-04-16 08:01:11
198.100.146.98	attackbots	Apr 16 01:39:31 vps sshd[386160]: Failed password for invalid user test from 198.100.146.98 port 44566 ssh2 Apr 16 01:42:51 vps sshd[405457]: Invalid user zt from 198.100.146.98 port 51408 Apr 16 01:42:51 vps sshd[405457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns504733.ip-198-100-146.net Apr 16 01:42:53 vps sshd[405457]: Failed password for invalid user zt from 198.100.146.98 port 51408 ssh2 Apr 16 01:46:18 vps sshd[425910]: Invalid user test2 from 198.100.146.98 port 60998 ...	2020-04-16 07:46:57
68.183.219.43	attackspam	Invalid user elastic from 68.183.219.43 port 37728	2020-04-16 07:50:13
178.34.154.51	spamattack	Threatening to hack various business websites. Demanded money in Bitcoin.	2020-04-16 07:51:34
37.59.229.31	attackbotsspam	Invalid user fnjoroge from 37.59.229.31 port 52640	2020-04-16 07:52:24
114.67.76.166	attack	SSH bruteforce	2020-04-16 07:54:32
106.13.181.147	attackspambots	Invalid user j from 106.13.181.147 port 40748	2020-04-16 07:58:35
115.239.253.241	attack	Apr 14 22:41:39 cumulus sshd[13353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.239.253.241 user=r.r Apr 14 22:41:41 cumulus sshd[13353]: Failed password for r.r from 115.239.253.241 port 57641 ssh2 Apr 14 22:41:41 cumulus sshd[13353]: Received disconnect from 115.239.253.241 port 57641:11: Bye Bye [preauth] Apr 14 22:41:41 cumulus sshd[13353]: Disconnected from 115.239.253.241 port 57641 [preauth] Apr 14 22:48:00 cumulus sshd[13658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.239.253.241 user=r.r Apr 14 22:48:02 cumulus sshd[13658]: Failed password for r.r from 115.239.253.241 port 59047 ssh2 Apr 14 22:48:02 cumulus sshd[13658]: Received disconnect from 115.239.253.241 port 59047:11: Bye Bye [preauth] Apr 14 22:48:02 cumulus sshd[13658]: Disconnected from 115.239.253.241 port 59047 [preauth] Apr 14 22:51:08 cumulus sshd[13808]: pam_unix(sshd:auth): authentication failure........ -------------------------------	2020-04-16 07:24:07
110.185.104.126	attack	SASL PLAIN auth failed: ruser=...	2020-04-16 08:01:37
171.244.140.174	attackspambots	Apr 15 19:37:19 mail sshd\[64222\]: Invalid user ubnt from 171.244.140.174 Apr 15 19:37:19 mail sshd\[64222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.140.174 ...	2020-04-16 07:57:56
181.48.155.149	attackspam	Invalid user ubuntu from 181.48.155.149 port 42356	2020-04-16 07:45:39
222.186.52.78	attackspambots	Apr 15 19:35:28 ny01 sshd[17076]: Failed password for root from 222.186.52.78 port 51022 ssh2 Apr 15 19:35:30 ny01 sshd[17076]: Failed password for root from 222.186.52.78 port 51022 ssh2 Apr 15 19:35:32 ny01 sshd[17076]: Failed password for root from 222.186.52.78 port 51022 ssh2	2020-04-16 07:55:24
123.184.42.217	attackbots	Apr 16 04:28:39 webhost01 sshd[19045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.184.42.217 Apr 16 04:28:40 webhost01 sshd[19045]: Failed password for invalid user wt from 123.184.42.217 port 54208 ssh2 ...	2020-04-16 07:23:38
196.52.43.86	attackspam	Port Scan: Events[2] countPorts[2]: 83 2121 ..	2020-04-16 07:26:00

最近上报的IP列表

128.199.123.220	128.199.29.118	93.241.148.194	121.63.176.13
238.89.61.241	119.45.239.87	119.27.189.65	117.86.10.32
115.31.139.210	113.186.42.25	111.74.11.82	109.244.103.137
184.49.247.113	106.13.80.167	168.20.226.148	88.242.1.95
143.163.135.207	45.170.100.60	173.69.64.213	104.131.126.10