157.245.34.126

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.245.34.59	attack	Port scan: Attack repeated for 24 hours	2020-06-08 01:13:37
157.245.34.72	attack	Automatic report - XMLRPC Attack	2020-05-28 03:39:59
157.245.34.72	attackspam	pixelfritteuse.de 157.245.34.72 [26/May/2020:01:25:58 +0200] "POST /wp-login.php HTTP/1.1" 200 5983 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" pixelfritteuse.de 157.245.34.72 [26/May/2020:01:25:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4087 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 10:20:56
157.245.34.72	attack	Lines containing failures of 157.245.34.72 Mar 6 22:13:02 cdb sshd[22029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 user=r.r Mar 6 22:13:04 cdb sshd[22029]: Failed password for r.r from 157.245.34.72 port 32818 ssh2 Mar 6 22:13:04 cdb sshd[22029]: Received disconnect from 157.245.34.72 port 32818:11: Bye Bye [preauth] Mar 6 22:13:04 cdb sshd[22029]: Disconnected from authenticating user r.r 157.245.34.72 port 32818 [preauth] Mar 6 22:21:38 cdb sshd[23260]: Invalid user alex from 157.245.34.72 port 34768 Mar 6 22:21:38 cdb sshd[23260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 Mar 6 22:21:40 cdb sshd[23260]: Failed password for invalid user alex from 157.245.34.72 port 34768 ssh2 Mar 6 22:21:40 cdb sshd[23260]: Received disconnect from 157.245.34.72 port 34768:11: Bye Bye [preauth] Mar 6 22:21:40 cdb sshd[23260]: Disconnected from invalid user........ ------------------------------	2020-03-07 23:33:29
157.245.34.72	attackbots	Mar 6 19:41:32 web1 sshd\[9031\]: Invalid user marr from 157.245.34.72 Mar 6 19:41:32 web1 sshd\[9031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 Mar 6 19:41:33 web1 sshd\[9031\]: Failed password for invalid user marr from 157.245.34.72 port 60686 ssh2 Mar 6 19:45:18 web1 sshd\[9384\]: Invalid user P@SSW0RD1 from 157.245.34.72 Mar 6 19:45:18 web1 sshd\[9384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72	2020-03-07 13:58:03
157.245.34.72	attack	$f2bV_matches	2020-03-07 08:37:46
157.245.34.150	attack	Unauthorized connection attempt detected from IP address 157.245.34.150 to port 6000 [J]	2020-03-03 02:45:48
157.245.34.150	attackbots	Unauthorized connection attempt detected from IP address 157.245.34.150 to port 443 [J]	2020-01-20 20:14:46
157.245.34.150	attack	Unauthorized connection attempt detected from IP address 157.245.34.150 to port 3388 [J]	2020-01-19 05:56:10
157.245.34.63	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-23 04:27:04
157.245.34.63	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 21:33:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.34.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25015
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.34.126.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062601 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 27 12:32:35 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 126.34.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.34.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.26.113.98	attack	Sep 26 15:17:22 lnxmysql61 sshd[21746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.26.113.98 Sep 26 15:17:22 lnxmysql61 sshd[21746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.26.113.98	2019-09-26 21:47:22
190.164.95.209	attackspambots	firewall-block, port(s): 5555/tcp	2019-09-26 22:05:26
185.209.0.17	attackbots	Excessive Port-Scanning	2019-09-26 22:17:33
207.154.234.102	attack	Sep 26 13:44:56 hcbbdb sshd\[14816\]: Invalid user cloud from 207.154.234.102 Sep 26 13:44:56 hcbbdb sshd\[14816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.234.102 Sep 26 13:44:58 hcbbdb sshd\[14816\]: Failed password for invalid user cloud from 207.154.234.102 port 40088 ssh2 Sep 26 13:49:09 hcbbdb sshd\[15306\]: Invalid user johnh from 207.154.234.102 Sep 26 13:49:09 hcbbdb sshd\[15306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.234.102	2019-09-26 22:09:02
151.80.75.124	attackspam	Rude login attack (49 tries in 1d)	2019-09-26 22:30:40
54.36.149.4	attack	Automatic report - Banned IP Access	2019-09-26 21:44:00
222.186.175.8	attackbotsspam	19/9/26@09:42:23: FAIL: IoT-SSH address from=222.186.175.8 ...	2019-09-26 21:46:07
86.190.102.134	attackspam	firewall-block, port(s): 23/tcp	2019-09-26 22:19:52
188.128.39.127	attackspambots	Sep 26 15:50:51 localhost sshd\[16522\]: Invalid user oracle from 188.128.39.127 port 37386 Sep 26 15:50:51 localhost sshd\[16522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.127 Sep 26 15:50:53 localhost sshd\[16522\]: Failed password for invalid user oracle from 188.128.39.127 port 37386 ssh2	2019-09-26 21:59:31
42.191.17.127	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-26 21:53:10
163.172.225.71	attackspambots	\[2019-09-26 10:08:36\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '163.172.225.71:60229' - Wrong password \[2019-09-26 10:08:36\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-26T10:08:36.234-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="22400",SessionID="0x7f1e1c011788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.225.71/60229",Challenge="5ab40fd0",ReceivedChallenge="5ab40fd0",ReceivedHash="258fd839e7579e37e12c589ecf2bddb2" \[2019-09-26 10:11:31\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '163.172.225.71:51365' - Wrong password \[2019-09-26 10:11:31\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-26T10:11:31.509-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="618000",SessionID="0x7f1e1c011788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/	2019-09-26 22:19:15
103.1.251.245	attackbotsspam	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-26 21:55:16
180.76.100.178	attack	Sep 26 15:59:07 lnxweb62 sshd[1452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.100.178	2019-09-26 22:05:46
103.1.251.148	attackbots	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-26 21:56:32
37.187.5.137	attackbots	Sep 26 16:21:38 OPSO sshd\[30882\]: Invalid user banana from 37.187.5.137 port 48984 Sep 26 16:21:38 OPSO sshd\[30882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.5.137 Sep 26 16:21:41 OPSO sshd\[30882\]: Failed password for invalid user banana from 37.187.5.137 port 48984 ssh2 Sep 26 16:26:07 OPSO sshd\[31601\]: Invalid user adaskin from 37.187.5.137 port 34222 Sep 26 16:26:07 OPSO sshd\[31601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.5.137	2019-09-26 22:27:50

Recently Reported IPs

180.76.13.186	180.76.255.163	180.76.96.164	180.76.96.48
180.76.202.174	180.76.96.187	131.161.8.21	180.76.31.66
169.229.161.94	169.229.161.77	180.76.139.102	180.76.139.110
180.76.95.216	131.161.8.9	169.229.173.5	169.229.207.187
169.229.151.5	169.229.173.12	169.229.154.186	169.229.173.20