157.245.34.134

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.245.34.59	attack	Port scan: Attack repeated for 24 hours	2020-06-08 01:13:37
157.245.34.72	attack	Automatic report - XMLRPC Attack	2020-05-28 03:39:59
157.245.34.72	attackspam	pixelfritteuse.de 157.245.34.72 [26/May/2020:01:25:58 +0200] "POST /wp-login.php HTTP/1.1" 200 5983 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" pixelfritteuse.de 157.245.34.72 [26/May/2020:01:25:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4087 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-26 10:20:56
157.245.34.72	attack	Lines containing failures of 157.245.34.72 Mar 6 22:13:02 cdb sshd[22029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 user=r.r Mar 6 22:13:04 cdb sshd[22029]: Failed password for r.r from 157.245.34.72 port 32818 ssh2 Mar 6 22:13:04 cdb sshd[22029]: Received disconnect from 157.245.34.72 port 32818:11: Bye Bye [preauth] Mar 6 22:13:04 cdb sshd[22029]: Disconnected from authenticating user r.r 157.245.34.72 port 32818 [preauth] Mar 6 22:21:38 cdb sshd[23260]: Invalid user alex from 157.245.34.72 port 34768 Mar 6 22:21:38 cdb sshd[23260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 Mar 6 22:21:40 cdb sshd[23260]: Failed password for invalid user alex from 157.245.34.72 port 34768 ssh2 Mar 6 22:21:40 cdb sshd[23260]: Received disconnect from 157.245.34.72 port 34768:11: Bye Bye [preauth] Mar 6 22:21:40 cdb sshd[23260]: Disconnected from invalid user........ ------------------------------	2020-03-07 23:33:29
157.245.34.72	attackbots	Mar 6 19:41:32 web1 sshd\[9031\]: Invalid user marr from 157.245.34.72 Mar 6 19:41:32 web1 sshd\[9031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72 Mar 6 19:41:33 web1 sshd\[9031\]: Failed password for invalid user marr from 157.245.34.72 port 60686 ssh2 Mar 6 19:45:18 web1 sshd\[9384\]: Invalid user P@SSW0RD1 from 157.245.34.72 Mar 6 19:45:18 web1 sshd\[9384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.34.72	2020-03-07 13:58:03
157.245.34.72	attack	$f2bV_matches	2020-03-07 08:37:46
157.245.34.150	attack	Unauthorized connection attempt detected from IP address 157.245.34.150 to port 6000 [J]	2020-03-03 02:45:48
157.245.34.150	attackbots	Unauthorized connection attempt detected from IP address 157.245.34.150 to port 443 [J]	2020-01-20 20:14:46
157.245.34.150	attack	Unauthorized connection attempt detected from IP address 157.245.34.150 to port 3388 [J]	2020-01-19 05:56:10
157.245.34.63	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-10-23 04:27:04
157.245.34.63	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 21:33:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.34.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9232
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.34.134.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 08:47:12 CST 2022
;; MSG SIZE  rcvd: 107

Host info

134.34.245.157.in-addr.arpa domain name pointer jerry-se-do-eu-west-scanners-30.do.binaryedge.ninja.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.34.245.157.in-addr.arpa	name = jerry-se-do-eu-west-scanners-30.do.binaryedge.ninja.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.38.184.67	attack	A user with IP addr 84.38.184.67 has been locked out from signing in or using the password recovery form for the following reason: Used an invalid username '[login]' to try to sign in.	2020-08-04 00:42:03
152.136.104.57	attack	Aug 3 16:52:41 fhem-rasp sshd[17727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.104.57 user=root Aug 3 16:52:43 fhem-rasp sshd[17727]: Failed password for root from 152.136.104.57 port 47780 ssh2 ...	2020-08-04 00:16:38
162.217.55.7	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-03T14:42:57Z and 2020-08-03T14:51:32Z	2020-08-04 00:21:59
156.96.46.226	attackspam	2020-08-03T18:19:43.861369+02:00 lumpi kernel: [21761184.747713] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=156.96.46.226 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=55185 PROTO=TCP SPT=57001 DPT=40291 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2020-08-04 00:29:09
177.139.195.214	attackbotsspam	DATE:2020-08-03 16:24:21, IP:177.139.195.214, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-08-04 00:21:08
152.170.65.133	attackspambots	Aug 3 14:41:10 buvik sshd[26519]: Failed password for root from 152.170.65.133 port 55752 ssh2 Aug 3 14:46:48 buvik sshd[27270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.170.65.133 user=root Aug 3 14:46:50 buvik sshd[27270]: Failed password for root from 152.170.65.133 port 41348 ssh2 ...	2020-08-04 00:22:31
49.233.148.2	attackspam	Aug 3 15:25:39 nextcloud sshd\[22046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.148.2 user=root Aug 3 15:25:41 nextcloud sshd\[22046\]: Failed password for root from 49.233.148.2 port 44594 ssh2 Aug 3 15:28:59 nextcloud sshd\[25786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.148.2 user=root	2020-08-04 01:00:51
181.143.172.106	attack	SSH brutforce	2020-08-04 00:34:33
157.230.53.57	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-04 00:19:22
129.211.70.87	attack	Aug 3 14:20:58 pve1 sshd[28685]: Failed password for root from 129.211.70.87 port 32966 ssh2 ...	2020-08-04 00:30:25
167.71.210.7	attack	2020-08-03T21:12:43.459749hostname sshd[73748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.210.7 user=root 2020-08-03T21:12:45.156964hostname sshd[73748]: Failed password for root from 167.71.210.7 port 56682 ssh2 ...	2020-08-04 00:46:46
212.70.149.19	attackspambots	Aug 3 18:10:58 relay postfix/smtpd\[21447\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 18:11:13 relay postfix/smtpd\[24647\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 18:11:20 relay postfix/smtpd\[30462\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 18:11:35 relay postfix/smtpd\[24647\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 18:11:43 relay postfix/smtpd\[30462\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-04 00:23:31
134.175.19.39	attackbots	Aug 3 20:39:46 webhost01 sshd[15298]: Failed password for root from 134.175.19.39 port 53444 ssh2 ...	2020-08-04 00:37:01
167.172.163.162	attackspam	Aug 3 15:14:29 OPSO sshd\[31963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.163.162 user=root Aug 3 15:14:31 OPSO sshd\[31963\]: Failed password for root from 167.172.163.162 port 60404 ssh2 Aug 3 15:18:23 OPSO sshd\[32704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.163.162 user=root Aug 3 15:18:25 OPSO sshd\[32704\]: Failed password for root from 167.172.163.162 port 43896 ssh2 Aug 3 15:22:28 OPSO sshd\[816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.163.162 user=root	2020-08-04 00:34:55
177.25.85.149	attack	Aug 3 13:38:42 xxxxxxx sshd[20012]: reveeclipse mapping checking getaddrinfo for ip-177-25-85-149.user.vivozap.com.br [177.25.85.149] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 3 13:38:42 xxxxxxx sshd[20012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.25.85.149 user=r.r Aug 3 13:38:44 xxxxxxx sshd[20012]: Failed password for r.r from 177.25.85.149 port 40778 ssh2 Aug 3 13:38:44 xxxxxxx sshd[20012]: Received disconnect from 177.25.85.149: 11: Bye Bye [preauth] Aug 3 13:42:53 xxxxxxx sshd[21472]: reveeclipse mapping checking getaddrinfo for ip-177-25-85-149.user.vivozap.com.br [177.25.85.149] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 3 13:42:53 xxxxxxx sshd[21472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.25.85.149 user=r.r Aug 3 13:42:55 xxxxxxx sshd[21472]: Failed password for r.r from 177.25.85.149 port 47258 ssh2 Aug 3 13:42:55 xxxxxxx sshd[21472]: Received disconn........ -------------------------------	2020-08-04 00:55:12

Recently Reported IPs

192.177.186.70	70.28.69.194	187.162.123.58	117.189.191.11
87.70.175.243	151.37.204.21	79.101.21.33	176.63.12.184
1.15.223.133	94.232.42.173	213.166.76.210	177.99.198.74
120.231.204.137	45.186.91.36	31.167.184.155	126.40.38.196
27.3.43.70	177.249.42.250	177.154.226.113	31.131.72.10