157.245.194.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 05:14:35

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.194.35	attack	SSH Brute-Force attacks	2020-06-05 01:56:12
157.245.194.35	attackspambots	fail2ban/Jun 1 19:03:20 h1962932 sshd[32671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:03:22 h1962932 sshd[32671]: Failed password for root from 157.245.194.35 port 53438 ssh2 Jun 1 19:06:49 h1962932 sshd[552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:06:51 h1962932 sshd[552]: Failed password for root from 157.245.194.35 port 51594 ssh2 Jun 1 19:10:19 h1962932 sshd[643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 user=root Jun 1 19:10:22 h1962932 sshd[643]: Failed password for root from 157.245.194.35 port 49752 ssh2	2020-06-02 01:59:36
157.245.194.35	attackbotsspam	Invalid user admin from 157.245.194.35 port 45698	2020-05-31 05:09:44
157.245.194.35	attackbotsspam	Invalid user licheng from 157.245.194.35 port 49626	2020-05-23 16:41:01
157.245.194.38	attackspam	Invalid user detsuou from 157.245.194.38 port 46942	2020-05-21 13:02:47
157.245.194.38	attackspambots	$f2bV_matches	2020-05-20 03:24:59
157.245.194.254	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-20 03:03:53
157.245.194.254	attack	May 16 00:56:42 vps333114 sshd[25177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.254 May 16 00:56:43 vps333114 sshd[25177]: Failed password for invalid user ubuntu from 157.245.194.254 port 40066 ssh2 ...	2020-05-16 22:49:14
157.245.194.35	attackbots	$f2bV_matches	2020-05-15 14:53:47
157.245.194.35	attackbotsspam	May 14 22:36:41 ArkNodeAT sshd\[32071\]: Invalid user admin from 157.245.194.35 May 14 22:36:41 ArkNodeAT sshd\[32071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 May 14 22:36:43 ArkNodeAT sshd\[32071\]: Failed password for invalid user admin from 157.245.194.35 port 33790 ssh2	2020-05-15 04:48:44
157.245.194.254	attackbotsspam	May 13 05:03:22 askasleikir sshd[18822]: Failed password for root from 157.245.194.254 port 55604 ssh2 May 13 04:54:08 askasleikir sshd[18798]: Failed password for invalid user du from 157.245.194.254 port 53042 ssh2 May 13 05:12:03 askasleikir sshd[18849]: Failed password for invalid user help from 157.245.194.254 port 45060 ssh2	2020-05-13 20:15:10
157.245.194.38	attackbotsspam	May 10 04:49:24 onepixel sshd[2538521]: Failed password for invalid user ut2k4server from 157.245.194.38 port 41988 ssh2 May 10 04:53:57 onepixel sshd[2540721]: Invalid user website from 157.245.194.38 port 51508 May 10 04:53:57 onepixel sshd[2540721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.38 May 10 04:53:57 onepixel sshd[2540721]: Invalid user website from 157.245.194.38 port 51508 May 10 04:53:59 onepixel sshd[2540721]: Failed password for invalid user website from 157.245.194.38 port 51508 ssh2	2020-05-10 13:01:56
157.245.194.38	attack	$f2bV_matches	2020-05-07 12:39:28
157.245.194.35	attackspam	2020-05-06T18:14:30.198092server.espacesoutien.com sshd[19042]: Invalid user iac from 157.245.194.35 port 44114 2020-05-06T18:14:30.209778server.espacesoutien.com sshd[19042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.194.35 2020-05-06T18:14:30.198092server.espacesoutien.com sshd[19042]: Invalid user iac from 157.245.194.35 port 44114 2020-05-06T18:14:32.315676server.espacesoutien.com sshd[19042]: Failed password for invalid user iac from 157.245.194.35 port 44114 ssh2 2020-05-06T18:18:39.817113server.espacesoutien.com sshd[19867]: Invalid user clock from 157.245.194.35 port 53124 ...	2020-05-07 03:48:46
157.245.194.254	attackspam	Invalid user kumari from 157.245.194.254 port 48464	2020-05-03 15:21:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.194.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.194.145.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092401 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 25 05:14:32 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 145.194.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.194.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
81.70.22.3	attack	Port scan denied	2020-10-02 20:13:23
66.70.189.203	attack	Invalid user glassfish from 66.70.189.203 port 45472	2020-10-02 20:27:19
45.77.176.234	attackspambots	5x Failed Password	2020-10-02 20:21:47
211.159.186.152	attackbotsspam	$f2bV_matches	2020-10-02 20:38:47
202.169.63.85	attackspambots	firewall-block, port(s): 8080/tcp	2020-10-02 20:45:28
103.154.234.246	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-02 20:50:08
2.57.122.116	attackbots	TCP (SYN) 2.57.122.116:37157 -> port 22, len 44	2020-10-02 20:27:05
157.245.163.0	attackbotsspam	srv02 Mass scanning activity detected Target: 16339 ..	2020-10-02 20:23:10
182.121.96.204	attackspambots	" "	2020-10-02 20:35:35
154.209.228.248	attack	Lines containing failures of 154.209.228.248 Oct 1 22:10:50 mc sshd[17743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.209.228.248 user=r.r Oct 1 22:10:52 mc sshd[17743]: Failed password for r.r from 154.209.228.248 port 30790 ssh2 Oct 1 22:10:53 mc sshd[17743]: Received disconnect from 154.209.228.248 port 30790:11: Bye Bye [preauth] Oct 1 22:10:53 mc sshd[17743]: Disconnected from authenticating user r.r 154.209.228.248 port 30790 [preauth] Oct 1 22:27:40 mc sshd[18081]: Invalid user angie from 154.209.228.248 port 35068 Oct 1 22:27:40 mc sshd[18081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.209.228.248 Oct 1 22:27:41 mc sshd[18081]: Failed password for invalid user angie from 154.209.228.248 port 35068 ssh2 Oct 1 22:27:43 mc sshd[18081]: Received disconnect from 154.209.228.248 port 35068:11: Bye Bye [preauth] Oct 1 22:27:43 mc sshd[18081]: Disconnected from i........ ------------------------------	2020-10-02 20:25:55
54.38.156.63	attackspambots	SSH Brute-Force reported by Fail2Ban	2020-10-02 20:28:03
40.114.197.106	attackbots	2020-10-01T22:44:04.044087mail.broermann.family sshd[8088]: Invalid user www from 40.114.197.106 port 60884 2020-10-01T22:44:04.049233mail.broermann.family sshd[8088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.197.106 2020-10-01T22:44:04.044087mail.broermann.family sshd[8088]: Invalid user www from 40.114.197.106 port 60884 2020-10-01T22:44:06.644814mail.broermann.family sshd[8088]: Failed password for invalid user www from 40.114.197.106 port 60884 ssh2 2020-10-01T22:48:17.971000mail.broermann.family sshd[8444]: Invalid user pepe from 40.114.197.106 port 42090 ...	2020-10-02 20:42:25
111.230.29.17	attackbotsspam	Invalid user cb from 111.230.29.17 port 34434	2020-10-02 20:41:53
41.44.207.131	attack	DATE:2020-10-01 22:38:00, IP:41.44.207.131, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-02 20:44:34
94.102.49.137	attackbotsspam	no-reverse-dns-configured.com	2020-10-02 20:24:29

最近上报的IP列表

128.199.123.220	128.199.29.118	93.241.148.194	121.63.176.13
238.89.61.241	119.45.239.87	119.27.189.65	117.86.10.32
115.31.139.210	113.186.42.25	111.74.11.82	109.244.103.137
184.49.247.113	106.13.80.167	168.20.226.148	88.242.1.95
143.163.135.207	45.170.100.60	173.69.64.213	104.131.126.10