157.245.240.222

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.240.22	attackspam	(PERMBLOCK) 157.245.240.22 (US/United States/360417.cloudwaysapps.com) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-10-13 03:03:48
157.245.240.22	attackbots	Automatic report - Banned IP Access	2020-10-12 18:31:33
157.245.240.22	attackbotsspam	157.245.240.22 - - [01/Oct/2020:15:01:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2472 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:01:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2470 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:02:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2444 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 05:47:17
157.245.240.22	attack	157.245.240.22 - - [01/Oct/2020:15:01:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2472 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:01:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2470 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.22 - - [01/Oct/2020:15:02:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2444 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 22:09:09
157.245.240.22	attackbots	CMS (WordPress or Joomla) login attempt.	2020-10-01 14:26:59
157.245.240.102	attack	uvcm 157.245.240.102 [29/Sep/2020:03:45:40 "-" "POST /wp-login.php 200 6728 157.245.240.102 [29/Sep/2020:03:45:42 "-" "GET /wp-login.php 200 6619 157.245.240.102 [29/Sep/2020:03:45:43 "-" "POST /wp-login.php 200 6726	2020-09-30 06:11:27
157.245.240.102	attackbots	uvcm 157.245.240.102 [29/Sep/2020:03:45:40 "-" "POST /wp-login.php 200 6728 157.245.240.102 [29/Sep/2020:03:45:42 "-" "GET /wp-login.php 200 6619 157.245.240.102 [29/Sep/2020:03:45:43 "-" "POST /wp-login.php 200 6726	2020-09-29 22:24:07
157.245.240.102	attackbots	uvcm 157.245.240.102 [29/Sep/2020:03:45:40 "-" "POST /wp-login.php 200 6728 157.245.240.102 [29/Sep/2020:03:45:42 "-" "GET /wp-login.php 200 6619 157.245.240.102 [29/Sep/2020:03:45:43 "-" "POST /wp-login.php 200 6726	2020-09-29 14:41:41
157.245.240.102	attack	157.245.240.102 - - [25/Sep/2020:18:58:59 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [25/Sep/2020:18:59:01 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [25/Sep/2020:18:59:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-26 01:38:46
157.245.240.102	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-25 17:17:08
157.245.240.102	attackspam	ENG,WP GET /wp-login.php	2020-09-17 23:09:41
157.245.240.102	attackbots	Wordpress attack	2020-09-17 15:16:01
157.245.240.102	attackbotsspam	157.245.240.102 - - [16/Sep/2020:19:00:09 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [16/Sep/2020:19:00:10 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [16/Sep/2020:19:00:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-17 06:24:04
157.245.240.102	attackspam	157.245.240.102 - - [26/Aug/2020:09:41:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [26/Aug/2020:09:41:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.240.102 - - [26/Aug/2020:09:41:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-26 18:08:13
157.245.240.102	attackbots	Automatic report - Banned IP Access	2020-07-29 17:33:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.240.222
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.240.222.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026012300 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 23 22:01:36 CST 2026
;; MSG SIZE  rcvd: 108

HOST信息:

Host 222.240.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 222.240.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
14.215.165.133	attackspambots	Nov 29 01:55:18 firewall sshd[482]: Invalid user monk from 14.215.165.133 Nov 29 01:55:19 firewall sshd[482]: Failed password for invalid user monk from 14.215.165.133 port 60316 ssh2 Nov 29 01:59:01 firewall sshd[563]: Invalid user kiran from 14.215.165.133 ...	2019-11-29 13:07:56
106.12.152.194	attackspam	11/28/2019-23:59:06.975780 106.12.152.194 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-29 13:02:24
107.189.11.168	attackspam	Nov 29 10:20:08 vibhu-HP-Z238-Microtower-Workstation sshd\[31347\]: Invalid user huaqi from 107.189.11.168 Nov 29 10:20:08 vibhu-HP-Z238-Microtower-Workstation sshd\[31347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.11.168 Nov 29 10:20:11 vibhu-HP-Z238-Microtower-Workstation sshd\[31347\]: Failed password for invalid user huaqi from 107.189.11.168 port 50712 ssh2 Nov 29 10:29:00 vibhu-HP-Z238-Microtower-Workstation sshd\[31950\]: Invalid user quest from 107.189.11.168 Nov 29 10:29:00 vibhu-HP-Z238-Microtower-Workstation sshd\[31950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.11.168 ...	2019-11-29 13:06:56
118.25.133.121	attack	Nov 28 23:36:21 minden010 sshd[2597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.133.121 Nov 28 23:36:23 minden010 sshd[2597]: Failed password for invalid user efdal from 118.25.133.121 port 55782 ssh2 Nov 28 23:43:22 minden010 sshd[5035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.133.121 ...	2019-11-29 09:26:02
123.206.22.145	attackspam	Nov 28 18:55:54 tdfoods sshd\[2382\]: Invalid user postgres from 123.206.22.145 Nov 28 18:55:54 tdfoods sshd\[2382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.22.145 Nov 28 18:55:56 tdfoods sshd\[2382\]: Failed password for invalid user postgres from 123.206.22.145 port 33318 ssh2 Nov 28 18:59:48 tdfoods sshd\[2669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.22.145 user=root Nov 28 18:59:50 tdfoods sshd\[2669\]: Failed password for root from 123.206.22.145 port 34522 ssh2	2019-11-29 13:01:37
52.187.106.61	attackbots	Nov 29 05:50:30 MK-Soft-VM8 sshd[2764]: Failed password for backup from 52.187.106.61 port 40700 ssh2 Nov 29 05:58:46 MK-Soft-VM8 sshd[2783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.187.106.61 ...	2019-11-29 13:16:15
119.28.239.222	attackbots	" "	2019-11-29 09:26:52
61.182.230.41	attack	Nov 29 07:49:01 server sshd\[3118\]: Invalid user qwe789456 from 61.182.230.41 Nov 29 07:49:01 server sshd\[3118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.182.230.41 Nov 29 07:49:03 server sshd\[3118\]: Failed password for invalid user qwe789456 from 61.182.230.41 port 22592 ssh2 Nov 29 07:58:12 server sshd\[5491\]: Invalid user huawei!@\# from 61.182.230.41 Nov 29 07:58:12 server sshd\[5491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.182.230.41 ...	2019-11-29 13:33:02
185.211.245.198	attackbotsspam	Nov 29 05:58:33 andromeda postfix/smtpd\[14407\]: warning: unknown\[185.211.245.198\]: SASL PLAIN authentication failed: authentication failure Nov 29 05:58:34 andromeda postfix/smtpd\[16073\]: warning: unknown\[185.211.245.198\]: SASL PLAIN authentication failed: authentication failure Nov 29 05:58:34 andromeda postfix/smtpd\[15782\]: warning: unknown\[185.211.245.198\]: SASL PLAIN authentication failed: authentication failure Nov 29 05:58:35 andromeda postfix/smtpd\[14407\]: warning: unknown\[185.211.245.198\]: SASL PLAIN authentication failed: authentication failure Nov 29 05:58:35 andromeda postfix/smtpd\[15985\]: warning: unknown\[185.211.245.198\]: SASL PLAIN authentication failed: authentication failure	2019-11-29 13:22:05
123.206.88.24	attackspam	Nov 29 05:58:59 ks10 sshd[20421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.88.24 Nov 29 05:59:01 ks10 sshd[20421]: Failed password for invalid user grawberger from 123.206.88.24 port 35340 ssh2 ...	2019-11-29 13:03:41
182.77.123.134	attackbots	Tried sshing with brute force.	2019-11-29 13:12:21
178.47.131.202	attackspambots	postfix (unknown user, SPF fail or relay access denied)	2019-11-29 13:10:02
125.21.173.242	attackspambots	Unauthorised access (Nov 29) SRC=125.21.173.242 LEN=52 TTL=116 ID=12139 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-29 13:16:44
206.189.129.38	attackbotsspam	Nov 28 18:54:52 kapalua sshd\[3728\]: Invalid user team-speak from 206.189.129.38 Nov 28 18:54:52 kapalua sshd\[3728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.129.38 Nov 28 18:54:53 kapalua sshd\[3728\]: Failed password for invalid user team-speak from 206.189.129.38 port 56300 ssh2 Nov 28 18:58:37 kapalua sshd\[4192\]: Invalid user soelverud from 206.189.129.38 Nov 28 18:58:37 kapalua sshd\[4192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.129.38	2019-11-29 13:19:45
54.37.157.41	attack	Nov 28 18:55:52 web9 sshd\[6942\]: Invalid user www from 54.37.157.41 Nov 28 18:55:52 web9 sshd\[6942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.157.41 Nov 28 18:55:54 web9 sshd\[6942\]: Failed password for invalid user www from 54.37.157.41 port 56742 ssh2 Nov 28 18:58:52 web9 sshd\[7398\]: Invalid user informix from 54.37.157.41 Nov 28 18:58:52 web9 sshd\[7398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.157.41	2019-11-29 13:11:15

最近上报的IP列表

27.46.125.162	165.227.90.199	1.12.229.45	180.153.236.169
103.17.242.173	151.242.152.180	91.230.168.89	91.230.168.215
47.92.222.82	185.247.137.103	45.230.66.125	211.121.247.232
116.76.38.223	217.154.69.208	147.185.133.249	92.63.197.50
18.208.146.82	100.24.4.107	212.135.214.2	161.35.191.39