157.245.240.222

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.240.22	attackspam	(PERMBLOCK) 157.245.240.22 (US/United States/360417.cloudwaysapps.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-10-13 03:03:48
157.245.240.22	attackbots	Automatic report - Banned IP Access	2020-10-12 18:31:33
157.245.240.22	attackbotsspam	157.245.240.22 - - [01/Oct/2020:15:01:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2472 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:01:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2470 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:02:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2444 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 05:47:17
157.245.240.22	attack	157.245.240.22 - - [01/Oct/2020:15:01:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2472 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:01:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2470 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:02:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2444 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 22:09:09
157.245.240.22	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-01 14:26:59
157.245.240.102	attack	uvcm 157.245.240.102 [29/Sep/2020:03:45:40 "-" "POST /wp-login.php 200 6728 157.245.240.102 [29/Sep/2020:03:45:42 "-" "GET /wp-login.php 200 6619 157.245.240.102 [29/Sep/2020:03:45:43 "-" "POST /wp-login.php 200 6726	2020-09-30 06:11:27
157.245.240.102	attackbots	uvcm 157.245.240.102 [29/Sep/2020:03:45:40 "-" "POST /wp-login.php 200 6728 157.245.240.102 [29/Sep/2020:03:45:42 "-" "GET /wp-login.php 200 6619 157.245.240.102 [29/Sep/2020:03:45:43 "-" "POST /wp-login.php 200 6726	2020-09-29 22:24:07
157.245.240.102	attackbots	uvcm 157.245.240.102 [29/Sep/2020:03:45:40 "-" "POST /wp-login.php 200 6728 157.245.240.102 [29/Sep/2020:03:45:42 "-" "GET /wp-login.php 200 6619 157.245.240.102 [29/Sep/2020:03:45:43 "-" "POST /wp-login.php 200 6726	2020-09-29 14:41:41
157.245.240.102	attack	157.245.240.102 - - [25/Sep/2020:18:58:59 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [25/Sep/2020:18:59:01 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [25/Sep/2020:18:59:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-26 01:38:46
157.245.240.102	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-25 17:17:08
157.245.240.102	attackspam	ENG,WP GET /wp-login.php	2020-09-17 23:09:41
157.245.240.102	attackbots	Wordpress attack	2020-09-17 15:16:01
157.245.240.102	attackbotsspam	157.245.240.102 - - [16/Sep/2020:19:00:09 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [16/Sep/2020:19:00:10 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [16/Sep/2020:19:00:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-17 06:24:04
157.245.240.102	attackspam	157.245.240.102 - - [26/Aug/2020:09:41:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [26/Aug/2020:09:41:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [26/Aug/2020:09:41:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-26 18:08:13
157.245.240.102	attackbots	Automatic report - Banned IP Access	2020-07-29 17:33:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.240.222
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.240.222.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026012300 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 23 22:01:36 CST 2026
;; MSG SIZE  rcvd: 108

HOST信息:

Host 222.240.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 222.240.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
138.121.22.18	attackbots	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 19:04:44
31.171.0.49	attack	Automatic report - SSH Brute-Force Attack	2019-07-08 19:31:17
177.129.206.36	attackbots	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-07-08 18:50:40
17.133.234.33	attackspambots	24 2019-07-08 16:53:33 notice Firewall Match default rule, DROP [count=12] 17.133.234.33:16387 192.168.3.108:16403 ACCESS BLOCK	2019-07-08 19:05:20
114.225.199.34	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-08 19:10:39
36.90.156.136	attackspambots	Jul 8 10:10:57 xb3 sshd[5180]: Failed password for invalid user user from 36.90.156.136 port 39376 ssh2 Jul 8 10:10:58 xb3 sshd[5180]: Received disconnect from 36.90.156.136: 11: Bye Bye [preauth] Jul 8 10:14:12 xb3 sshd[12833]: Failed password for invalid user rafal from 36.90.156.136 port 36896 ssh2 Jul 8 10:14:12 xb3 sshd[12833]: Received disconnect from 36.90.156.136: 11: Bye Bye [preauth] Jul 8 10:16:04 xb3 sshd[2590]: Failed password for invalid user frank from 36.90.156.136 port 52054 ssh2 Jul 8 10:16:04 xb3 sshd[2590]: Received disconnect from 36.90.156.136: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.90.156.136	2019-07-08 19:35:34
81.22.45.32	attackbotsspam	Multiport scan : 76 ports scanned 2222 3000 3322 3333 3344 3350 3355 3366 3369 3370 3372 3377 3379 3380 3381 3382 3383 3384 3385 3386 3387 3388 3390 3391 3392 3394 3395 3396 3397 3398 3399 3400 3401 3402 3403 3404 3489 3492 3500 3589 3889 3900 4000 4001 4002 4003 4005 4006 4007 4100 4200 4389 4400 4444 4489 4490 4499 5000 5001 5389 5555 5589 6000 6666 7000 7777 8000 8888 9000 9833 9999 13389 23389 33389 43389 63389	2019-07-08 18:48:07
131.255.222.125	attackspambots	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 19:15:50
81.214.12.249	attackspam	Hit on /xmlrpc.php	2019-07-08 19:34:39
131.72.102.16	attackspambots	Scan or attack attempt on email service.	2019-07-08 19:21:18
62.210.248.12	attack	\[2019-07-08 06:40:26\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-08T06:40:26.432-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="526401148814503008",SessionID="0x7f02f876b078",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.248.12/60410",ACLName="no_extension_match" \[2019-07-08 06:40:31\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-08T06:40:31.161-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="322001148814503008",SessionID="0x7f02f81ae088",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.248.12/55802",ACLName="no_extension_match" \[2019-07-08 06:41:31\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-08T06:41:31.899-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="526501148814503008",SessionID="0x7f02f85da9d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.248.12/65034",ACL	2019-07-08 19:27:57
46.3.96.67	attackspambots	08.07.2019 10:18:47 Connection to port 3482 blocked by firewall	2019-07-08 18:59:30
138.219.201.13	attackspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:56:02
123.30.240.121	attackbots	Jul 8 11:12:40 * sshd[1471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.240.121 Jul 8 11:12:42 * sshd[1471]: Failed password for invalid user radio from 123.30.240.121 port 44316 ssh2	2019-07-08 19:17:21
77.247.110.165	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-08 18:53:17

最近上报的IP列表

27.46.125.162	165.227.90.199	1.12.229.45	180.153.236.169
103.17.242.173	151.242.152.180	91.230.168.89	91.230.168.215
47.92.222.82	185.247.137.103	45.230.66.125	211.121.247.232
116.76.38.223	217.154.69.208	147.185.133.249	92.63.197.50
18.208.146.82	100.24.4.107	212.135.214.2	161.35.191.39