157.245.51.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 23 08:43:02 pi sshd\[29891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.107 Dec 23 08:43:04 pi sshd\[29891\]: Failed password for invalid user paillet from 157.245.51.107 port 60884 ssh2 Dec 23 08:48:54 pi sshd\[30200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.107 user=root Dec 23 08:48:55 pi sshd\[30200\]: Failed password for root from 157.245.51.107 port 38702 ssh2 Dec 23 08:54:49 pi sshd\[30491\]: Invalid user webstyleuk from 157.245.51.107 port 44714 Dec 23 08:54:49 pi sshd\[30491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.107 ...	2019-12-23 16:57:16

类型

评论内容

时间

attack

Dec 23 08:43:02 pi sshd\[29891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.107
Dec 23 08:43:04 pi sshd\[29891\]: Failed password for invalid user paillet from 157.245.51.107 port 60884 ssh2
Dec 23 08:48:54 pi sshd\[30200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.107  user=root
Dec 23 08:48:55 pi sshd\[30200\]: Failed password for root from 157.245.51.107 port 38702 ssh2
Dec 23 08:54:49 pi sshd\[30491\]: Invalid user webstyleuk from 157.245.51.107 port 44714
Dec 23 08:54:49 pi sshd\[30491\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.107
...

2019-12-23 16:57:16

相同子网IP讨论:

IP	类型	评论内容	时间
157.245.51.201	attackbotsspam	Dec 15 13:36:11 h2040555 sshd[25605]: Invalid user minichillo from 157.245.51.201 Dec 15 13:36:11 h2040555 sshd[25605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.201 Dec 15 13:36:13 h2040555 sshd[25605]: Failed password for invalid user minichillo from 157.245.51.201 port 47600 ssh2 Dec 15 13:36:14 h2040555 sshd[25605]: Received disconnect from 157.245.51.201: 11: Bye Bye [preauth] Dec 15 13:47:14 h2040555 sshd[25763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.201 user=r.r Dec 15 13:47:16 h2040555 sshd[25763]: Failed password for r.r from 157.245.51.201 port 46534 ssh2 Dec 15 13:47:17 h2040555 sshd[25763]: Received disconnect from 157.245.51.201: 11: Bye Bye [preauth] Dec 15 13:53:42 h2040555 sshd[25832]: Invalid user lannie from 157.245.51.201 Dec 15 13:53:42 h2040555 sshd[25832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ........ -------------------------------	2019-12-16 01:50:18

类型

评论内容

时间

157.245.51.201

attackbotsspam

Dec 15 13:36:11 h2040555 sshd[25605]: Invalid user minichillo from 157.245.51.201
Dec 15 13:36:11 h2040555 sshd[25605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.201 
Dec 15 13:36:13 h2040555 sshd[25605]: Failed password for invalid user minichillo from 157.245.51.201 port 47600 ssh2
Dec 15 13:36:14 h2040555 sshd[25605]: Received disconnect from 157.245.51.201: 11: Bye Bye [preauth]
Dec 15 13:47:14 h2040555 sshd[25763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.51.201  user=r.r
Dec 15 13:47:16 h2040555 sshd[25763]: Failed password for r.r from 157.245.51.201 port 46534 ssh2
Dec 15 13:47:17 h2040555 sshd[25763]: Received disconnect from 157.245.51.201: 11: Bye Bye [preauth]
Dec 15 13:53:42 h2040555 sshd[25832]: Invalid user lannie from 157.245.51.201
Dec 15 13:53:42 h2040555 sshd[25832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ........
-------------------------------

2019-12-16 01:50:18

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.51.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16480
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.51.107.			IN	A

;; AUTHORITY SECTION:
.			456	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122300 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 16:57:12 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 107.51.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.51.245.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
123.207.7.130	attack	Sep 25 07:18:47 hpm sshd\[23807\]: Invalid user tfmas from 123.207.7.130 Sep 25 07:18:47 hpm sshd\[23807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.7.130 Sep 25 07:18:50 hpm sshd\[23807\]: Failed password for invalid user tfmas from 123.207.7.130 port 49816 ssh2 Sep 25 07:23:21 hpm sshd\[24202\]: Invalid user misc from 123.207.7.130 Sep 25 07:23:21 hpm sshd\[24202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.7.130	2019-09-26 02:00:02
218.92.0.132	attackspam	Sep 25 16:31:06 mail sshd\[11771\]: Failed password for root from 218.92.0.132 port 15013 ssh2 Sep 25 16:31:09 mail sshd\[11771\]: Failed password for root from 218.92.0.132 port 15013 ssh2 Sep 25 16:31:12 mail sshd\[11771\]: Failed password for root from 218.92.0.132 port 15013 ssh2 Sep 25 16:31:14 mail sshd\[11771\]: Failed password for root from 218.92.0.132 port 15013 ssh2 Sep 25 16:31:17 mail sshd\[11771\]: Failed password for root from 218.92.0.132 port 15013 ssh2 Sep 25 16:31:17 mail sshd\[11771\]: error: maximum authentication attempts exceeded for root from 218.92.0.132 port 15013 ssh2 \[preauth\]	2019-09-26 02:23:42
122.161.192.206	attackbotsspam	Sep 25 14:17:10 bouncer sshd\[6716\]: Invalid user cleopatra from 122.161.192.206 port 56382 Sep 25 14:17:10 bouncer sshd\[6716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.161.192.206 Sep 25 14:17:13 bouncer sshd\[6716\]: Failed password for invalid user cleopatra from 122.161.192.206 port 56382 ssh2 ...	2019-09-26 02:15:51
50.239.143.6	attackbots	Sep 25 18:26:55 s64-1 sshd[29457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.6 Sep 25 18:26:56 s64-1 sshd[29457]: Failed password for invalid user winadmin from 50.239.143.6 port 49656 ssh2 Sep 25 18:30:40 s64-1 sshd[29506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.6 ...	2019-09-26 01:58:07
222.186.175.154	attackbotsspam	Sep 25 13:43:28 xtremcommunity sshd\[465260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 25 13:43:30 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 Sep 25 13:43:34 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 Sep 25 13:43:38 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 Sep 25 13:43:42 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 ...	2019-09-26 01:49:01
14.207.140.52	attackspam	34567/tcp [2019-09-25]1pkt	2019-09-26 02:07:40
165.227.210.71	attackspam	Sep 25 13:06:17 ip-172-31-1-72 sshd\[11411\]: Invalid user psrao from 165.227.210.71 Sep 25 13:06:17 ip-172-31-1-72 sshd\[11411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.210.71 Sep 25 13:06:18 ip-172-31-1-72 sshd\[11411\]: Failed password for invalid user psrao from 165.227.210.71 port 40864 ssh2 Sep 25 13:10:26 ip-172-31-1-72 sshd\[11570\]: Invalid user xpdb from 165.227.210.71 Sep 25 13:10:26 ip-172-31-1-72 sshd\[11570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.210.71	2019-09-26 02:12:51
132.232.61.57	attackbotsspam	Sep 25 19:51:49 OPSO sshd\[19369\]: Invalid user desop from 132.232.61.57 port 10143 Sep 25 19:51:49 OPSO sshd\[19369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.61.57 Sep 25 19:51:51 OPSO sshd\[19369\]: Failed password for invalid user desop from 132.232.61.57 port 10143 ssh2 Sep 25 19:58:19 OPSO sshd\[20608\]: Invalid user raw from 132.232.61.57 port 51137 Sep 25 19:58:19 OPSO sshd\[20608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.61.57	2019-09-26 02:11:56
203.156.125.195	attack	Sep 25 04:51:42 eddieflores sshd\[5939\]: Invalid user syd from 203.156.125.195 Sep 25 04:51:42 eddieflores sshd\[5939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.156.125.195 Sep 25 04:51:44 eddieflores sshd\[5939\]: Failed password for invalid user syd from 203.156.125.195 port 44392 ssh2 Sep 25 04:56:15 eddieflores sshd\[6316\]: Invalid user magicspam from 203.156.125.195 Sep 25 04:56:15 eddieflores sshd\[6316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.156.125.195	2019-09-26 01:57:12
92.246.17.5	attack	Sep 25 15:17:36 www sshd\[45794\]: Invalid user admin from 92.246.17.5 Sep 25 15:17:36 www sshd\[45794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.246.17.5 Sep 25 15:17:37 www sshd\[45794\]: Failed password for invalid user admin from 92.246.17.5 port 38942 ssh2 ...	2019-09-26 01:56:53
52.100.135.50	attackspambots	Message ID Created at: Wed, Sep 25, 2019 at 7:01 AM (Delivered after 7 seconds) From: Learn Piano To: Subject: Play-by-ear and learn to read music at the same time SPF: PASS with IP 52.100.135.50 Learn more DKIM: 'PASS' with domain ointerex.info	2019-09-26 01:56:21
186.123.184.66	attack	Brute force attempt	2019-09-26 01:59:45
222.186.175.182	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-09-26 02:23:26
201.188.116.22	attackspambots	Brute force attempt	2019-09-26 02:14:15
187.34.72.50	attackbots	23/tcp [2019-09-25]1pkt	2019-09-26 02:24:37

最近上报的IP列表

115.88.201.13	41.235.41.117	117.97.180.91	171.253.56.27
156.197.122.163	1.10.133.120	104.168.141.84	156.211.108.204
103.242.168.20	156.208.164.229	46.249.18.143	197.34.54.207
156.205.128.0	41.45.207.19	113.190.160.160	2604:a00:6:1650:5054:ff:fedb:92b2
156.219.23.33	91.238.248.71	197.60.233.117	183.82.122.126