157.245.252.94

基本信息:

城市(city): North Bergen

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.252.34	attackspambots	Oct 12 15:08:42 localhost sshd[119500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root Oct 12 15:08:44 localhost sshd[119500]: Failed password for root from 157.245.252.34 port 51008 ssh2 Oct 12 15:12:17 localhost sshd[119796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root Oct 12 15:12:19 localhost sshd[119796]: Failed password for root from 157.245.252.34 port 54610 ssh2 Oct 12 15:15:42 localhost sshd[120098]: Invalid user carlo from 157.245.252.34 port 58214 ...	2020-10-12 23:23:51
157.245.252.34	attack	2020-10-12T05:40:41.446305abusebot-6.cloudsearch.cf sshd[13097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root 2020-10-12T05:40:43.279740abusebot-6.cloudsearch.cf sshd[13097]: Failed password for root from 157.245.252.34 port 58976 ssh2 2020-10-12T05:44:19.665447abusebot-6.cloudsearch.cf sshd[13102]: Invalid user trade from 157.245.252.34 port 33580 2020-10-12T05:44:19.671738abusebot-6.cloudsearch.cf sshd[13102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 2020-10-12T05:44:19.665447abusebot-6.cloudsearch.cf sshd[13102]: Invalid user trade from 157.245.252.34 port 33580 2020-10-12T05:44:21.434594abusebot-6.cloudsearch.cf sshd[13102]: Failed password for invalid user trade from 157.245.252.34 port 33580 ssh2 2020-10-12T05:46:58.749306abusebot-6.cloudsearch.cf sshd[13113]: Invalid user its from 157.245.252.34 port 55134 ...	2020-10-12 14:48:42
157.245.252.154	attack	Failed password for root from 157.245.252.154 port 49176 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.154 user=root Failed password for root from 157.245.252.154 port 53796 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.154 user=root Failed password for root from 157.245.252.154 port 58412 ssh2	2020-10-11 05:14:45
157.245.252.154	attack	2020-10-10T17:01:44.232380paragon sshd[828487]: Failed password for invalid user nishant from 157.245.252.154 port 46958 ssh2 2020-10-10T17:05:59.208429paragon sshd[828613]: Invalid user ftpuser from 157.245.252.154 port 52192 2020-10-10T17:05:59.212667paragon sshd[828613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.154 2020-10-10T17:05:59.208429paragon sshd[828613]: Invalid user ftpuser from 157.245.252.154 port 52192 2020-10-10T17:06:01.535740paragon sshd[828613]: Failed password for invalid user ftpuser from 157.245.252.154 port 52192 ssh2 ...	2020-10-10 21:18:42
157.245.252.34	attack	Oct 7 23:20:00 h2829583 sshd[21509]: Failed password for root from 157.245.252.34 port 43172 ssh2	2020-10-08 05:55:43
157.245.252.34	attackspambots	$f2bV_matches	2020-10-07 14:13:02
157.245.252.34	attackbots	(sshd) Failed SSH login from 157.245.252.34 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 13:23:21 server2 sshd[29761]: Invalid user manager from 157.245.252.34 Sep 26 13:23:21 server2 sshd[29761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 Sep 26 13:23:22 server2 sshd[29761]: Failed password for invalid user manager from 157.245.252.34 port 46372 ssh2 Sep 26 13:28:45 server2 sshd[3125]: Invalid user centos from 157.245.252.34 Sep 26 13:28:45 server2 sshd[3125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34	2020-09-27 05:24:32
157.245.252.34	attack	(sshd) Failed SSH login from 157.245.252.34 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 12:07:36 server2 sshd[957]: Invalid user victor from 157.245.252.34 port 39100 Sep 26 12:07:39 server2 sshd[957]: Failed password for invalid user victor from 157.245.252.34 port 39100 ssh2 Sep 26 12:17:54 server2 sshd[3901]: Invalid user admin from 157.245.252.34 port 54238 Sep 26 12:17:55 server2 sshd[3901]: Failed password for invalid user admin from 157.245.252.34 port 54238 ssh2 Sep 26 12:20:22 server2 sshd[4480]: Invalid user julia from 157.245.252.34 port 44052	2020-09-26 21:39:21
157.245.252.34	attack	157.245.252.34 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 26 00:21:07 idl1-dfw sshd[3681305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.49.9.210 user=root Sep 26 00:21:09 idl1-dfw sshd[3681305]: Failed password for root from 178.49.9.210 port 60482 ssh2 Sep 26 00:18:04 idl1-dfw sshd[3679217]: Failed password for root from 157.245.252.34 port 49996 ssh2 Sep 26 00:18:02 idl1-dfw sshd[3679217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root Sep 26 00:24:26 idl1-dfw sshd[3683747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.36.106.68 user=root Sep 26 00:24:50 idl1-dfw sshd[3683920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.88.98 user=root IP Addresses Blocked: 178.49.9.210 (RU/Russia/-)	2020-09-26 13:21:13
157.245.252.101	attackbotsspam	Sep 15 19:54:11 ip106 sshd[24092]: Failed password for root from 157.245.252.101 port 56486 ssh2 ...	2020-09-16 02:50:04
157.245.252.101	attackspam	Sep 15 06:02:00 george sshd[21692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.101 user=root Sep 15 06:02:01 george sshd[21692]: Failed password for root from 157.245.252.101 port 58270 ssh2 Sep 15 06:05:39 george sshd[21722]: Invalid user chenys from 157.245.252.101 port 41988 Sep 15 06:05:39 george sshd[21722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.101 Sep 15 06:05:41 george sshd[21722]: Failed password for invalid user chenys from 157.245.252.101 port 41988 ssh2 ...	2020-09-15 18:49:01
157.245.252.34	attackspambots	Sep 12 11:52:04 web8 sshd\[4307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root Sep 12 11:52:07 web8 sshd\[4307\]: Failed password for root from 157.245.252.34 port 56234 ssh2 Sep 12 11:56:02 web8 sshd\[6382\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root Sep 12 11:56:05 web8 sshd\[6382\]: Failed password for root from 157.245.252.34 port 40066 ssh2 Sep 12 12:00:01 web8 sshd\[8280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root	2020-09-12 20:06:34
157.245.252.34	attack	2020-09-12T04:03:52.899329shield sshd\[2074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root 2020-09-12T04:03:54.469188shield sshd\[2074\]: Failed password for root from 157.245.252.34 port 58936 ssh2 2020-09-12T04:07:57.776421shield sshd\[2842\]: Invalid user smbtesting from 157.245.252.34 port 44444 2020-09-12T04:07:57.788218shield sshd\[2842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 2020-09-12T04:07:59.326846shield sshd\[2842\]: Failed password for invalid user smbtesting from 157.245.252.34 port 44444 ssh2	2020-09-12 12:09:59
157.245.252.34	attack	Sep 11 18:27:36 localhost sshd[3854918]: Failed password for invalid user hplip from 157.245.252.34 port 36320 ssh2 Sep 11 18:30:54 localhost sshd[3861796]: Invalid user bot from 157.245.252.34 port 40706 Sep 11 18:30:54 localhost sshd[3861796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 Sep 11 18:30:54 localhost sshd[3861796]: Invalid user bot from 157.245.252.34 port 40706 Sep 11 18:30:56 localhost sshd[3861796]: Failed password for invalid user bot from 157.245.252.34 port 40706 ssh2 ...	2020-09-12 03:57:40
157.245.252.34	attackbots	ssh intrusion attempt	2020-09-10 22:07:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.252.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49633
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.252.94.			IN	A

;; AUTHORITY SECTION:
.			380	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021802 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 13:09:32 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 94.252.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.252.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
23.90.57.208	attackspambots	ruleset=check_relay, arg1=[23.90.57.208], arg2=23.90.57.208, relay=tottering.reloanup.com [23.90.57.208] (may be forged), discard	2020-03-26 05:25:35
203.230.6.175	attack	Mar 25 21:43:43 markkoudstaal sshd[23971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.230.6.175 Mar 25 21:43:44 markkoudstaal sshd[23971]: Failed password for invalid user inpre from 203.230.6.175 port 46060 ssh2 Mar 25 21:47:44 markkoudstaal sshd[24472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.230.6.175	2020-03-26 05:12:48
51.91.69.20	attack	" "	2020-03-26 05:20:11
92.62.131.124	attackspambots	Mar 25 20:58:20 dev0-dcde-rnet sshd[18421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.62.131.124 Mar 25 20:58:22 dev0-dcde-rnet sshd[18421]: Failed password for invalid user nexus from 92.62.131.124 port 36698 ssh2 Mar 25 21:02:56 dev0-dcde-rnet sshd[18475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.62.131.124	2020-03-26 04:51:26
14.63.167.192	attack	SSH Brute Force	2020-03-26 05:03:14
3.6.237.72	attack	Brute force SMTP login attempted. ...	2020-03-26 05:00:35
54.37.232.137	attack	Invalid user nifi from 54.37.232.137 port 35460	2020-03-26 05:00:07
177.191.154.98	attackbotsspam	1585140220 - 03/25/2020 13:43:40 Host: 177.191.154.98/177.191.154.98 Port: 445 TCP Blocked	2020-03-26 05:18:00
185.36.81.78	attack	Mar 25 21:21:26 srv01 postfix/smtpd\[26303\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 25 21:23:06 srv01 postfix/smtpd\[26303\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 25 21:23:43 srv01 postfix/smtpd\[26303\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 25 21:25:44 srv01 postfix/smtpd\[26296\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 25 21:30:47 srv01 postfix/smtpd\[26300\]: warning: unknown\[185.36.81.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-26 04:45:43
49.234.143.64	attack	Mar 25 20:15:44 v22019038103785759 sshd\[18987\]: Invalid user amdsa from 49.234.143.64 port 48872 Mar 25 20:15:44 v22019038103785759 sshd\[18987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.143.64 Mar 25 20:15:46 v22019038103785759 sshd\[18987\]: Failed password for invalid user amdsa from 49.234.143.64 port 48872 ssh2 Mar 25 20:20:15 v22019038103785759 sshd\[19319\]: Invalid user arthur from 49.234.143.64 port 49532 Mar 25 20:20:15 v22019038103785759 sshd\[19319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.143.64 ...	2020-03-26 04:53:46
118.25.27.67	attackbotsspam	Mar 25 22:24:28 ncomp sshd[22037]: Invalid user linkinpark from 118.25.27.67 Mar 25 22:24:28 ncomp sshd[22037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.27.67 Mar 25 22:24:28 ncomp sshd[22037]: Invalid user linkinpark from 118.25.27.67 Mar 25 22:24:30 ncomp sshd[22037]: Failed password for invalid user linkinpark from 118.25.27.67 port 55570 ssh2	2020-03-26 04:58:03
50.4.32.91	attack	Invalid user rajesh from 50.4.32.91 port 40670	2020-03-26 05:25:01
31.20.193.52	attackspam	$f2bV_matches	2020-03-26 05:08:27
223.194.33.72	attack	fail2ban -- 223.194.33.72 ...	2020-03-26 04:46:53
103.7.52.52	attackspambots	Honeypot attack, port: 445, PTR: www.ppk-kp3k.kkp.go.id.	2020-03-26 04:51:07

最近上报的IP列表

157.245.246.235	157.245.32.53	157.245.53.178	157.245.71.137
157.245.92.156	159.138.142.253	159.138.44.212	218.213.38.15
231.237.18.65	159.223.112.78	159.223.116.173	159.223.116.71
159.223.116.75	159.223.131.10	159.223.149.254	159.223.178.231
159.223.24.4	159.223.37.14	159.223.79.49	159.223.89.144