157.245.243.118

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.243.14	attackspambots	157.245.243.14 - - \[01/Oct/2020:21:20:25 +0200\] "POST /wp-login.php HTTP/1.0" 200 9641 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - \[01/Oct/2020:21:20:27 +0200\] "POST /wp-login.php HTTP/1.0" 200 9639 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - \[01/Oct/2020:21:20:28 +0200\] "POST /wp-login.php HTTP/1.0" 200 9487 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-10-02 03:56:12
157.245.243.14	attack	157.245.243.14 - - [01/Oct/2020:06:58:41 +0100] "POST /wp-login.php HTTP/1.1" 200 2348 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [01/Oct/2020:06:58:42 +0100] "POST /wp-login.php HTTP/1.1" 200 2328 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [01/Oct/2020:06:58:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2376 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 20:08:48
157.245.243.14	attackbotsspam	157.245.243.14 - - [01/Oct/2020:04:39:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2596 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [01/Oct/2020:04:39:19 +0100] "POST /wp-login.php HTTP/1.1" 200 2580 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [01/Oct/2020:04:39:20 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-01 12:17:48
157.245.243.236	attack	Sep 30 09:25:50 mavik sshd[14748]: Invalid user t3rr0r from 157.245.243.236 Sep 30 09:25:50 mavik sshd[14748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.236 Sep 30 09:25:52 mavik sshd[14748]: Failed password for invalid user t3rr0r from 157.245.243.236 port 38580 ssh2 Sep 30 09:29:26 mavik sshd[14879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.236 user=root Sep 30 09:29:28 mavik sshd[14879]: Failed password for root from 157.245.243.236 port 47604 ssh2 ...	2020-10-01 06:12:48
157.245.243.14	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-01 05:35:20
157.245.243.236	attack	Sep 30 09:25:50 mavik sshd[14748]: Invalid user t3rr0r from 157.245.243.236 Sep 30 09:25:50 mavik sshd[14748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.236 Sep 30 09:25:52 mavik sshd[14748]: Failed password for invalid user t3rr0r from 157.245.243.236 port 38580 ssh2 Sep 30 09:29:26 mavik sshd[14879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.236 user=root Sep 30 09:29:28 mavik sshd[14879]: Failed password for root from 157.245.243.236 port 47604 ssh2 ...	2020-09-30 22:33:10
157.245.243.14	attack	157.245.243.14 - - [29/Sep/2020:21:38:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2386 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [29/Sep/2020:21:38:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2336 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [29/Sep/2020:21:38:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2387 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 21:53:27
157.245.243.14	attack	157.245.243.14 - - [29/Sep/2020:21:38:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2386 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [29/Sep/2020:21:38:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2336 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [29/Sep/2020:21:38:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2387 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 14:24:58
157.245.243.14	attackspam	157.245.243.14 - - \[10/Sep/2020:08:01:11 +0200\] "POST /wp-login.php HTTP/1.0" 200 3535 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - \[10/Sep/2020:08:01:14 +0200\] "POST /wp-login.php HTTP/1.0" 200 3489 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - \[10/Sep/2020:08:01:15 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 778 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-10 18:10:32
157.245.243.14	attackspambots	157.245.243.14 - - [09/Sep/2020:19:43:09 +0200] "POST /xmlrpc.php HTTP/1.1" 403 10948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [09/Sep/2020:19:50:52 +0200] "POST /xmlrpc.php HTTP/1.1" 403 21241 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-10 08:42:38
157.245.243.14	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-09 02:41:24
157.245.243.14	attackspambots	157.245.243.14 - - [08/Sep/2020:11:55:33 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [08/Sep/2020:11:55:34 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [08/Sep/2020:11:55:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-08 18:12:10
157.245.243.14	attackbots	WordPress wp-login brute force :: 157.245.243.14 0.200 - [21/Aug/2020:20:22:25 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2411 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-08-22 07:20:57
157.245.243.14	attackspambots	157.245.243.14 - - [30/Jul/2020:18:48:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2000 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [30/Jul/2020:18:48:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1997 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [30/Jul/2020:18:48:54 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-31 02:03:54
157.245.243.14	attack	xmlrpc attack	2020-07-21 19:11:10

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       157.245.0.0 - 157.245.255.255
CIDR:           157.245.0.0/16
NetName:        DIGITALOCEAN-157-245-0-0
NetHandle:      NET-157-245-0-0-1
Parent:         NET157 (NET-157-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   DigitalOcean, LLC (DO-13)
RegDate:        2019-05-09
Updated:        2020-04-03
Comment:        Routing and Peering Policy can be found at https://www.as14061.net
Comment:        
Comment:        Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref:            https://rdap.arin.net/registry/ip/157.245.0.0



OrgName:        DigitalOcean, LLC
OrgId:          DO-13
Address:        105 Edgeview Drive, Suite 425
City:           Broomfield
StateProv:      CO
PostalCode:     80021
Country:        US
RegDate:        2012-05-14
Updated:        2025-04-11
Ref:            https://rdap.arin.net/registry/entity/DO-13


OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName:   DigitalOcean Abuse
OrgAbusePhone:  +1-646-827-4366 
OrgAbuseEmail:  abuse@digitalocean.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/DIGIT19-ARIN

OrgNOCHandle: NOC32014-ARIN
OrgNOCName:   Network Operations Center
OrgNOCPhone:  +1-646-827-4366 
OrgNOCEmail:  noc@digitalocean.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgTechHandle: NOC32014-ARIN
OrgTechName:   Network Operations Center
OrgTechPhone:  +1-646-827-4366 
OrgTechEmail:  noc@digitalocean.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.243.118
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41259
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.243.118.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026031000 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 11 01:00:10 CST 2026
;; MSG SIZE  rcvd: 108

HOST信息:

118.243.245.157.in-addr.arpa domain name pointer 4b6e8198.tidalcoinage.internet-measurement.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
118.243.245.157.in-addr.arpa	name = 4b6e8198.tidalcoinage.internet-measurement.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.42.155	attackspambots	Unauthorized connection attempt detected from IP address 222.186.42.155 to port 22	2020-06-07 17:20:58
112.161.78.70	attackspam	<6 unauthorized SSH connections	2020-06-07 17:24:08
175.6.0.190	attack	Jun 7 08:08:15 [host] sshd[25771]: pam_unix(sshd: Jun 7 08:08:17 [host] sshd[25771]: Failed passwor Jun 7 08:12:03 [host] sshd[26151]: pam_unix(sshd:	2020-06-07 17:42:23
114.103.136.69	attack	Jun 7 06:31:59 lnxmysql61 sshd[14530]: Failed password for root from 114.103.136.69 port 60881 ssh2 Jun 7 06:31:59 lnxmysql61 sshd[14530]: Failed password for root from 114.103.136.69 port 60881 ssh2	2020-06-07 17:44:27
121.191.183.123	attack	firewall-block, port(s): 88/tcp	2020-06-07 17:31:19
185.156.73.52	attack	06/07/2020-05:19:47.617177 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-07 17:35:35
159.203.111.100	attackbots	2020-06-06T22:54:09.057792linuxbox-skyline sshd[189164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.111.100 user=root 2020-06-06T22:54:10.936295linuxbox-skyline sshd[189164]: Failed password for root from 159.203.111.100 port 52686 ssh2 ...	2020-06-07 17:52:42
58.64.204.5	attackbotsspam	firewall-block, port(s): 445/tcp	2020-06-07 17:37:13
195.54.161.40	attackbotsspam	Jun 7 12:46:42 debian kernel: [425761.241435] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=195.54.161.40 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=23486 PROTO=TCP SPT=49661 DPT=5762 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-07 17:49:58
206.189.108.32	attackbotsspam	2020-06-07T10:02:29+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-06-07 17:39:51
103.237.76.100	attackspambots	06/06/2020-23:50:19.397680 103.237.76.100 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-07 17:31:41
118.97.213.194	attack	(sshd) Failed SSH login from 118.97.213.194 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 7 10:12:59 elude sshd[24725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.213.194 user=root Jun 7 10:13:01 elude sshd[24725]: Failed password for root from 118.97.213.194 port 57455 ssh2 Jun 7 10:17:14 elude sshd[25604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.213.194 user=root Jun 7 10:17:15 elude sshd[25604]: Failed password for root from 118.97.213.194 port 58805 ssh2 Jun 7 10:21:26 elude sshd[26480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.213.194 user=root	2020-06-07 17:45:44
182.43.165.158	attackspam	2020-06-07T09:31:51.542594 sshd[25576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.43.165.158 user=root 2020-06-07T09:31:53.721451 sshd[25576]: Failed password for root from 182.43.165.158 port 51904 ssh2 2020-06-07T09:43:48.156421 sshd[25799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.43.165.158 user=root 2020-06-07T09:43:50.435292 sshd[25799]: Failed password for root from 182.43.165.158 port 35278 ssh2 ...	2020-06-07 17:34:23
27.128.162.183	attackspambots	Jun 7 05:46:57 minden010 sshd[31433]: Failed password for root from 27.128.162.183 port 43336 ssh2 Jun 7 05:48:26 minden010 sshd[31931]: Failed password for root from 27.128.162.183 port 52252 ssh2 ...	2020-06-07 17:37:38
46.101.174.188	attackspam	Jun 7 10:32:51 vserver sshd\[27286\]: Failed password for root from 46.101.174.188 port 55978 ssh2Jun 7 10:35:57 vserver sshd\[27355\]: Failed password for root from 46.101.174.188 port 57898 ssh2Jun 7 10:39:00 vserver sshd\[27396\]: Failed password for root from 46.101.174.188 port 59822 ssh2Jun 7 10:42:04 vserver sshd\[27466\]: Failed password for root from 46.101.174.188 port 33506 ssh2 ...	2020-06-07 17:28:46

最近上报的IP列表

47.92.232.117	36.43.201.192	159.65.156.72	139.59.67.232
68.183.81.163	157.245.108.89	38.34.8.202	52.87.243.92
139.59.66.30	139.59.89.35	116.76.37.65	216.167.1.158
34.58.19.223	192.81.168.2	41.59.227.69	167.71.230.20
159.65.156.134	216.167.83.137	1.9.4.61	58.35.19.126