City: unknown
Region: unknown
Country: Singapore
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Lines containing failures of 157.245.54.18 Nov 23 08:19:04 shared12 sshd[21915]: Invalid user webadmin from 157.245.54.18 port 51324 Nov 23 08:19:04 shared12 sshd[21915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.18 Nov 23 08:19:06 shared12 sshd[21915]: Failed password for invalid user webadmin from 157.245.54.18 port 51324 ssh2 Nov 23 08:19:07 shared12 sshd[21915]: Received disconnect from 157.245.54.18 port 51324:11: Bye Bye [preauth] Nov 23 08:19:07 shared12 sshd[21915]: Disconnected from invalid user webadmin 157.245.54.18 port 51324 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=157.245.54.18 |
2019-11-23 16:02:34 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 157.245.54.15 | attackspam | Brute-force attempt banned |
2020-09-23 23:45:56 |
| 157.245.54.15 | attackbotsspam | Auto Fail2Ban report, multiple SSH login attempts. |
2020-09-23 15:57:06 |
| 157.245.54.15 | attackbots | 2020-09-22T17:34:29.683889mail.thespaminator.com sshd[5868]: Invalid user guest from 157.245.54.15 port 42656 2020-09-22T17:34:31.976898mail.thespaminator.com sshd[5868]: Failed password for invalid user guest from 157.245.54.15 port 42656 ssh2 ... |
2020-09-23 07:52:21 |
| 157.245.54.200 | attackbots | Sep 15 04:25:51 vps46666688 sshd[3410]: Failed password for root from 157.245.54.200 port 52448 ssh2 Sep 15 04:33:46 vps46666688 sshd[3515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ... |
2020-09-15 16:01:07 |
| 157.245.54.200 | attack | Sep 14 19:15:01 mout sshd[16839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 user=root Sep 14 19:15:03 mout sshd[16839]: Failed password for root from 157.245.54.200 port 60602 ssh2 |
2020-09-15 08:06:32 |
| 157.245.54.200 | attackspam | Invalid user music from 157.245.54.200 port 44726 |
2020-09-13 01:15:15 |
| 157.245.54.200 | attack | <6 unauthorized SSH connections |
2020-09-12 17:13:46 |
| 157.245.54.200 | attackspambots | Sep 10 10:25:30 root sshd[15315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ... |
2020-09-10 21:07:38 |
| 157.245.54.200 | attackspambots | "fail2ban match" |
2020-09-10 12:52:43 |
| 157.245.54.200 | attack | 157.245.54.200 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 9 12:49:21 jbs1 sshd[17354]: Failed password for root from 157.245.54.200 port 46116 ssh2 Sep 9 12:57:44 jbs1 sshd[20671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.99.197 user=root Sep 9 12:52:29 jbs1 sshd[18281]: Failed password for root from 49.235.215.147 port 36210 ssh2 Sep 9 12:49:19 jbs1 sshd[17354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 user=root Sep 9 12:52:27 jbs1 sshd[18269]: Failed password for root from 95.163.195.60 port 40440 ssh2 Sep 9 12:52:27 jbs1 sshd[18281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.215.147 user=root IP Addresses Blocked: |
2020-09-10 03:39:23 |
| 157.245.54.200 | attackspambots | Multiple SSH authentication failures from 157.245.54.200 |
2020-09-02 20:25:43 |
| 157.245.54.200 | attackbots | Sep 2 12:27:41 localhost sshd[3469176]: Invalid user john from 157.245.54.200 port 56192 ... |
2020-09-02 12:20:43 |
| 157.245.54.200 | attackbotsspam | 2020-09-01T16:51:00.304497dmca.cloudsearch.cf sshd[30649]: Invalid user manuela from 157.245.54.200 port 49350 2020-09-01T16:51:00.309640dmca.cloudsearch.cf sshd[30649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 2020-09-01T16:51:00.304497dmca.cloudsearch.cf sshd[30649]: Invalid user manuela from 157.245.54.200 port 49350 2020-09-01T16:51:02.356174dmca.cloudsearch.cf sshd[30649]: Failed password for invalid user manuela from 157.245.54.200 port 49350 ssh2 2020-09-01T16:53:33.659510dmca.cloudsearch.cf sshd[30680]: Invalid user hadoop from 157.245.54.200 port 59100 2020-09-01T16:53:33.665325dmca.cloudsearch.cf sshd[30680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 2020-09-01T16:53:33.659510dmca.cloudsearch.cf sshd[30680]: Invalid user hadoop from 157.245.54.200 port 59100 2020-09-01T16:53:35.716743dmca.cloudsearch.cf sshd[30680]: Failed password for invalid user hadoop ... |
2020-09-02 05:31:16 |
| 157.245.54.200 | attackspambots | Aug 30 14:16:20 haigwepa sshd[22797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Aug 30 14:16:22 haigwepa sshd[22797]: Failed password for invalid user soft from 157.245.54.200 port 56822 ssh2 ... |
2020-08-30 20:33:29 |
| 157.245.54.200 | attackbotsspam | Aug 17 15:55:21 NPSTNNYC01T sshd[26055]: Failed password for root from 157.245.54.200 port 58412 ssh2 Aug 17 15:59:17 NPSTNNYC01T sshd[26311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Aug 17 15:59:19 NPSTNNYC01T sshd[26311]: Failed password for invalid user ksenia from 157.245.54.200 port 39708 ssh2 ... |
2020-08-18 04:01:36 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.54.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50025
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.54.18. IN A
;; AUTHORITY SECTION:
. 583 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019112300 1800 900 604800 86400
;; Query time: 569 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 23 16:02:28 CST 2019
;; MSG SIZE rcvd: 117Host 18.54.245.157.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 18.54.245.157.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 77.43.171.151 | attack | MVPower DVR TV Shell Unauthenticated Command Execution Vulnerability, PTR: homeuser77.43.171.151.ccl.perm.ru. |
2019-11-09 08:52:21 |
| 200.179.177.181 | attack | (sshd) Failed SSH login from 200.179.177.181 (BR/Brazil/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Nov 8 17:43:04 host sshd[37890]: Invalid user zhuai from 200.179.177.181 port 52981 |
2019-11-09 09:04:22 |
| 222.186.52.78 | attack | Nov 8 19:50:22 ny01 sshd[26370]: Failed password for root from 222.186.52.78 port 23212 ssh2 Nov 8 19:50:55 ny01 sshd[26413]: Failed password for root from 222.186.52.78 port 26039 ssh2 Nov 8 19:50:57 ny01 sshd[26413]: Failed password for root from 222.186.52.78 port 26039 ssh2 |
2019-11-09 08:52:43 |
| 122.224.220.140 | attackbots | FTP: login Brute Force attempt, PTR: PTR record not found |
2019-11-09 08:44:59 |
| 46.38.144.17 | attackbotsspam | 2019-11-09T05:55:52.230135mail01 postfix/smtpd[10121]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-09T05:55:54.231440mail01 postfix/smtpd[10119]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-09T05:56:04.077561mail01 postfix/smtpd[9771]: warning: unknown[46.38.144.17]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-11-09 13:01:40 |
| 111.35.168.187 | attack | Caught in portsentry honeypot |
2019-11-09 08:57:48 |
| 222.186.190.92 | attackspam | 2019-11-09T04:55:48.210575abusebot-5.cloudsearch.cf sshd\[8473\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root |
2019-11-09 13:11:02 |
| 2.63.78.224 | attack | Multiple failed RDP login attempts |
2019-11-09 08:46:42 |
| 222.186.175.202 | attack | Nov 9 00:39:48 marvibiene sshd[15461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Nov 9 00:39:50 marvibiene sshd[15461]: Failed password for root from 222.186.175.202 port 3740 ssh2 Nov 9 00:39:55 marvibiene sshd[15461]: Failed password for root from 222.186.175.202 port 3740 ssh2 Nov 9 00:39:48 marvibiene sshd[15461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Nov 9 00:39:50 marvibiene sshd[15461]: Failed password for root from 222.186.175.202 port 3740 ssh2 Nov 9 00:39:55 marvibiene sshd[15461]: Failed password for root from 222.186.175.202 port 3740 ssh2 ... |
2019-11-09 09:03:55 |
| 104.148.87.125 | attack | HTTP SQL Injection Attempt, PTR: edm12.vteexcx.com. |
2019-11-09 08:56:21 |
| 164.77.119.18 | attackspambots | SSH Brute-Force reported by Fail2Ban |
2019-11-09 08:58:55 |
| 45.154.255.44 | attack | Automatic report - Banned IP Access |
2019-11-09 09:02:36 |
| 182.52.134.179 | attackbots | Nov 9 00:40:53 vps691689 sshd[21041]: Failed password for root from 182.52.134.179 port 42070 ssh2 Nov 9 00:45:14 vps691689 sshd[21742]: Failed password for root from 182.52.134.179 port 49816 ssh2 ... |
2019-11-09 08:45:20 |
| 167.114.98.229 | attackbots | Nov 8 19:07:24 auw2 sshd\[14542\]: Invalid user plesk from 167.114.98.229 Nov 8 19:07:24 auw2 sshd\[14542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=229.ip-167-114-98.net Nov 8 19:07:26 auw2 sshd\[14542\]: Failed password for invalid user plesk from 167.114.98.229 port 33508 ssh2 Nov 8 19:11:26 auw2 sshd\[14745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=229.ip-167-114-98.net user=root Nov 8 19:11:28 auw2 sshd\[14745\]: Failed password for root from 167.114.98.229 port 43532 ssh2 |
2019-11-09 13:11:45 |
| 192.228.100.29 | attackbots | Nov 9 00:33:22 server2 sshd\[8230\]: User root from 192.228.100.29 not allowed because not listed in AllowUsers Nov 9 00:33:23 server2 sshd\[8232\]: Invalid user DUP from 192.228.100.29 Nov 9 00:33:25 server2 sshd\[8234\]: User root from 192.228.100.29 not allowed because not listed in AllowUsers Nov 9 00:33:26 server2 sshd\[8236\]: User root from 192.228.100.29 not allowed because not listed in AllowUsers Nov 9 00:33:27 server2 sshd\[8238\]: User root from 192.228.100.29 not allowed because not listed in AllowUsers Nov 9 00:33:28 server2 sshd\[8240\]: User root from 192.228.100.29 not allowed because not listed in AllowUsers |
2019-11-09 08:51:20 |