157.100.234.45

Basic Info

City: Guayaquil

Region: Provincia del Guayas

Country: Ecuador

Internet Service Provider: Ecuanet - Corporacion Ecuatoriana de Informacion

Hostname: unknown

Organization: Telconet S.A

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 1 23:49:56 lnxmysql61 sshd[14204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-12-02 07:42:20
attack	fail2ban	2019-12-01 03:41:09
attackbots	2019-11-27T23:35:25.222120ns386461 sshd\[14056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 user=root 2019-11-27T23:35:27.174597ns386461 sshd\[14056\]: Failed password for root from 157.100.234.45 port 41474 ssh2 2019-11-27T23:49:54.506174ns386461 sshd\[26421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 user=ftp 2019-11-27T23:49:56.086599ns386461 sshd\[26421\]: Failed password for ftp from 157.100.234.45 port 38832 ssh2 2019-11-27T23:56:57.692457ns386461 sshd\[32669\]: Invalid user rpm from 157.100.234.45 port 46322 2019-11-27T23:56:57.697285ns386461 sshd\[32669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 ...	2019-11-28 08:55:40
attack	Nov 26 19:16:54 sd-53420 sshd\[22332\]: Invalid user tobi from 157.100.234.45 Nov 26 19:16:54 sd-53420 sshd\[22332\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Nov 26 19:16:55 sd-53420 sshd\[22332\]: Failed password for invalid user tobi from 157.100.234.45 port 47718 ssh2 Nov 26 19:24:10 sd-53420 sshd\[23770\]: User sshd from 157.100.234.45 not allowed because none of user's groups are listed in AllowGroups Nov 26 19:24:10 sd-53420 sshd\[23770\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 user=sshd ...	2019-11-27 02:24:15
attackspambots	Oct 26 15:10:37 [host] sshd[9448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 user=root Oct 26 15:10:39 [host] sshd[9448]: Failed password for root from 157.100.234.45 port 41032 ssh2 Oct 26 15:15:20 [host] sshd[9464]: Invalid user hiperg from 157.100.234.45	2019-10-26 21:35:33
attackspam	Oct 25 14:11:48 dedicated sshd[29114]: Invalid user sir from 157.100.234.45 port 56994	2019-10-25 20:19:32
attackbots	Oct 24 05:55:01 ArkNodeAT sshd\[23420\]: Invalid user admin from 157.100.234.45 Oct 24 05:55:01 ArkNodeAT sshd\[23420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Oct 24 05:55:03 ArkNodeAT sshd\[23420\]: Failed password for invalid user admin from 157.100.234.45 port 48166 ssh2	2019-10-24 12:51:48
attackspambots	Oct 22 19:02:36 [host] sshd[20214]: Invalid user csvn from 157.100.234.45 Oct 22 19:02:36 [host] sshd[20214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Oct 22 19:02:38 [host] sshd[20214]: Failed password for invalid user csvn from 157.100.234.45 port 52800 ssh2	2019-10-23 02:19:30
attackspambots	Oct 17 12:12:37 php1 sshd\[9349\]: Invalid user P@\$\$w0rd from 157.100.234.45 Oct 17 12:12:37 php1 sshd\[9349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Oct 17 12:12:39 php1 sshd\[9349\]: Failed password for invalid user P@\$\$w0rd from 157.100.234.45 port 56662 ssh2 Oct 17 12:17:09 php1 sshd\[10224\]: Invalid user rootme from 157.100.234.45 Oct 17 12:17:09 php1 sshd\[10224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-10-18 07:11:36
attackbotsspam	Sep 27 00:10:38 ArkNodeAT sshd\[30096\]: Invalid user administrator from 157.100.234.45 Sep 27 00:10:38 ArkNodeAT sshd\[30096\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 27 00:10:40 ArkNodeAT sshd\[30096\]: Failed password for invalid user administrator from 157.100.234.45 port 42650 ssh2	2019-09-27 06:22:06
attack	$f2bV_matches_ltvn	2019-09-17 13:54:23
attackspambots	Sep 16 03:04:32 SilenceServices sshd[21375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 16 03:04:34 SilenceServices sshd[21375]: Failed password for invalid user hs from 157.100.234.45 port 45904 ssh2 Sep 16 03:08:44 SilenceServices sshd[24441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-09-16 09:12:51
attack	Sep 15 18:34:35 MK-Soft-VM6 sshd\[2672\]: Invalid user user1 from 157.100.234.45 port 58896 Sep 15 18:34:35 MK-Soft-VM6 sshd\[2672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 15 18:34:37 MK-Soft-VM6 sshd\[2672\]: Failed password for invalid user user1 from 157.100.234.45 port 58896 ssh2 ...	2019-09-16 02:42:02
attackbots	Sep 14 10:48:23 microserver sshd[16027]: Invalid user john from 157.100.234.45 port 60972 Sep 14 10:48:23 microserver sshd[16027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 14 10:48:25 microserver sshd[16027]: Failed password for invalid user john from 157.100.234.45 port 60972 ssh2 Sep 14 10:52:53 microserver sshd[16646]: Invalid user telegraf from 157.100.234.45 port 47254 Sep 14 10:52:53 microserver sshd[16646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 14 11:05:57 microserver sshd[18522]: Invalid user ts from 157.100.234.45 port 34318 Sep 14 11:05:57 microserver sshd[18522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 14 11:05:58 microserver sshd[18522]: Failed password for invalid user ts from 157.100.234.45 port 34318 ssh2 Sep 14 11:10:28 microserver sshd[18906]: Invalid user axfrdns from 157.100.234.45 port 48838	2019-09-14 16:02:16
attackspam	Sep 9 20:43:51 hb sshd\[10554\]: Invalid user test from 157.100.234.45 Sep 9 20:43:51 hb sshd\[10554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Sep 9 20:43:53 hb sshd\[10554\]: Failed password for invalid user test from 157.100.234.45 port 48230 ssh2 Sep 9 20:50:13 hb sshd\[11153\]: Invalid user test from 157.100.234.45 Sep 9 20:50:13 hb sshd\[11153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-09-10 05:03:38
attackspambots	Automatic report - Banned IP Access	2019-09-01 06:49:06
attackspambots	Aug 28 18:34:38 web8 sshd\[12171\]: Invalid user kigwa from 157.100.234.45 Aug 28 18:34:38 web8 sshd\[12171\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Aug 28 18:34:40 web8 sshd\[12171\]: Failed password for invalid user kigwa from 157.100.234.45 port 53324 ssh2 Aug 28 18:39:33 web8 sshd\[14629\]: Invalid user opera from 157.100.234.45 Aug 28 18:39:33 web8 sshd\[14629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-08-29 02:56:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.100.234.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20567
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.100.234.45.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082000 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 21 00:30:27 CST 2019
;; MSG SIZE  rcvd: 118

Host info

45.234.100.157.in-addr.arpa domain name pointer host-157-100-234-45.ecua.net.ec.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
45.234.100.157.in-addr.arpa	name = host-157-100-234-45.ecua.net.ec.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
110.35.173.2	attackbotsspam	Dec 5 09:43:46 meumeu sshd[31464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.2 Dec 5 09:43:48 meumeu sshd[31464]: Failed password for invalid user wwwrun from 110.35.173.2 port 4408 ssh2 Dec 5 09:50:42 meumeu sshd[32395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.35.173.2 ...	2019-12-05 17:00:52
92.118.38.38	attackbotsspam	Dec 5 09:34:39 webserver postfix/smtpd\[14170\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 5 09:35:14 webserver postfix/smtpd\[14170\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 5 09:35:48 webserver postfix/smtpd\[14170\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 5 09:36:23 webserver postfix/smtpd\[14170\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 5 09:36:58 webserver postfix/smtpd\[14170\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-05 16:47:03
49.235.240.21	attackbotsspam	Dec 5 09:37:31 MK-Soft-VM6 sshd[8400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.240.21 Dec 5 09:37:33 MK-Soft-VM6 sshd[8400]: Failed password for invalid user kapeckas from 49.235.240.21 port 44704 ssh2 ...	2019-12-05 17:10:24
51.91.212.81	attackspam	Honeypot hit: [2019-12-05 11:28:05 +0300] Connected from 51.91.212.81 to (HoneypotIP):995	2019-12-05 16:32:37
134.175.36.138	attackbots	$f2bV_matches	2019-12-05 16:57:42
222.186.180.223	attackbots	Dec 5 05:31:42 firewall sshd[10497]: Failed password for root from 222.186.180.223 port 2630 ssh2 Dec 5 05:31:56 firewall sshd[10497]: error: maximum authentication attempts exceeded for root from 222.186.180.223 port 2630 ssh2 [preauth] Dec 5 05:31:56 firewall sshd[10497]: Disconnecting: Too many authentication failures [preauth] ...	2019-12-05 16:38:26
45.55.12.248	attackspam	3x Failed Password	2019-12-05 16:59:27
104.131.15.189	attackspam	Dec 5 09:45:27 MK-Soft-Root2 sshd[20543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.15.189 Dec 5 09:45:29 MK-Soft-Root2 sshd[20543]: Failed password for invalid user sites from 104.131.15.189 port 54139 ssh2 ...	2019-12-05 17:04:10
106.13.162.75	attackspambots	detected by Fail2Ban	2019-12-05 16:40:29
51.68.226.66	attack	Dec 5 09:20:03 sd-53420 sshd\[26890\]: Invalid user karl from 51.68.226.66 Dec 5 09:20:03 sd-53420 sshd\[26890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.226.66 Dec 5 09:20:06 sd-53420 sshd\[26890\]: Failed password for invalid user karl from 51.68.226.66 port 59628 ssh2 Dec 5 09:25:30 sd-53420 sshd\[27778\]: Invalid user admin from 51.68.226.66 Dec 5 09:25:30 sd-53420 sshd\[27778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.226.66 ...	2019-12-05 16:38:52
186.167.64.204	attackbots	Port Scan	2019-12-05 16:34:07
45.80.65.82	attackspam	Dec 5 05:47:59 firewall sshd[10987]: Failed password for invalid user sankaran from 45.80.65.82 port 60716 ssh2 Dec 5 05:54:25 firewall sshd[11127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.65.82 user=nobody Dec 5 05:54:27 firewall sshd[11127]: Failed password for nobody from 45.80.65.82 port 41984 ssh2 ...	2019-12-05 17:02:55
222.186.175.161	attackbotsspam	Fail2Ban - SSH Bruteforce Attempt	2019-12-05 16:44:56
217.182.74.125	attack	detected by Fail2Ban	2019-12-05 16:42:27
222.186.180.6	attack	Dec 5 09:41:29 serwer sshd\[30718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Dec 5 09:41:29 serwer sshd\[30720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Dec 5 09:41:31 serwer sshd\[30718\]: Failed password for root from 222.186.180.6 port 45878 ssh2 Dec 5 09:41:32 serwer sshd\[30720\]: Failed password for root from 222.186.180.6 port 50656 ssh2 ...	2019-12-05 16:48:45

Recently Reported IPs

172.199.165.87	100.16.129.222	40.76.227.202	99.152.147.53
77.105.187.88	65.183.223.205	23.55.157.101	201.63.117.246
50.84.142.223	115.26.144.224	198.68.197.4	46.29.172.246
179.72.141.171	84.71.79.149	101.2.157.76	84.41.51.12
63.167.197.183	214.147.31.102	145.12.61.51	70.102.86.171