157.245.56.245 Threat Intelligence and Host Information

Feb 18, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 157.245.56.245 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 50/100

Host and Network Information

  • Tags: auto-generated security, cyber security, ioc, malicious, Nextray, phishing

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: bruteforceblocker, haley_ssh

  • Country: Singapore
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: haibayoo.com

Open Ports Detected

10000 10027 10030 10034 10037 101 10134 102 10210 1023 1024 10240 1026 1029 104 10533 10909 10911 10933 110 11000 11027 1103 111 1110 11101 11112 1119 11210 11211 11300 11434 11601 11602 1200 122 1224 1234 1235 1311 1337 135 1400 1414 1521 1604 1605 1723 1741 1800 1801 1901 1911 1925 1926 1935 2000 2001 2002 2003 2008 2010 2031 2100 2109 211 2111 2130 22 2201 221 2222 225 23 2323 2327 2332 2404 2433 25 2525 26 2628 3001 3013 3015 3018 3020 3042 3107 311 3111 3114 3115 3120 3124 3125 3128 3129 3139 314 3301 3306 3310 3333 3389 3407 3409 3410 3541 3542 3842 4000 4002 4010 4022 4040 4103 4118 4242 427 4321 4400 441 443 4433 4434 4436 4502 4506 4528 4808 4840 4911 4933 5000 5001 5002 5005 5006 5007 5009 5010 502 5025 503 5105 5123 513 5130 5140 515 5201 522 5222 5230 5233 5241 541 5431 5432 5435 5503 5601 5602 5608 5609 5614 5640 5800 5804 5900 5901 5912 5915 5916 5917 5919 5938 6000 6001 6002 6007 6010 6134 631 636 6432 6433 6505 6511 6602 6633 6700 7001 7013 7218 7401 7415 7434 7441 7535 7634 7900 8000 8001 8009 8010 8012 8019 8020 8021 8028 8035 8042 805 809 8100 8104 8112 8119 8123 8125 8126 8135 8139 8140 8141 8200 8237 831 8317 8318 832 8333 8334 8402 8405 8418 8424 8425 8426 8427 8428 8440 8519 8524 8532 8602 8607 8623 8702 8703 8704 8705 88 8805 8806 8808 8813 8822 8823 8834 8835 8842 888 8901 8906 8910 8911 8913 8916 9000 9002 9004 9006 9009 9014 902 9020 9024 9026 9028 9030 9038 9039 9042 9100 9117 9119 9127 9134 9136 9137 9200 9209 9218 9222 9226 9305 9306 9312 9333 9418 9505 9600 9800 9901 9908 9923 9926 9929 9999

CVEs Detected

CVE-2009-2940 CVE-2009-3720 CVE-2020-29396 CVE-2021-32052 CVE-2023-27043 CVE-2023-30861 CVE-2023-36632 CVE-2024-6232 CVE-2024-7592 CVE-2024-9287 CVE-2025-12084 CVE-2025-13836 CVE-2025-13837

Map

Whois Information

Links to attack logs

****** bruteforce-ip-list-2021-09-10 bruteforce-ip-list-2021-09-12 bruteforce-ip-list-2021-09-09 ****** bruteforce-ip-list-2021-09-25 ****** bruteforce-ip-list-2021-09-26 bruteforce-ip-list-2021-09-08

Share on: