157.245.142.119

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	02/19/2020-14:32:46.984255 157.245.142.119 Protocol: 6 ET POLICY Cleartext WordPress Login	2020-02-20 03:44:36

Comments on same subnet:

IP	Type	Details	Datetime
157.245.142.218	attack	Aug 15 22:43:05 ns381471 sshd[7565]: Failed password for root from 157.245.142.218 port 37624 ssh2	2020-08-16 05:18:20
157.245.142.218	attack	Port scan denied	2020-08-15 15:08:21
157.245.142.218	attackbots	Aug 10 23:06:14 abendstille sshd\[24717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 10 23:06:15 abendstille sshd\[24717\]: Failed password for root from 157.245.142.218 port 34218 ssh2 Aug 10 23:10:33 abendstille sshd\[29164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 10 23:10:35 abendstille sshd\[29164\]: Failed password for root from 157.245.142.218 port 43558 ssh2 Aug 10 23:15:00 abendstille sshd\[1642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root ...	2020-08-11 05:35:05
157.245.142.218	attackbots	Bruteforce detected by fail2ban	2020-08-05 05:31:23
157.245.142.218	attackspambots	Aug 2 12:56:48 vps-51d81928 sshd[394133]: Failed password for root from 157.245.142.218 port 36314 ssh2 Aug 2 12:58:04 vps-51d81928 sshd[394156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 2 12:58:06 vps-51d81928 sshd[394156]: Failed password for root from 157.245.142.218 port 54280 ssh2 Aug 2 12:59:22 vps-51d81928 sshd[394174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 2 12:59:24 vps-51d81928 sshd[394174]: Failed password for root from 157.245.142.218 port 44014 ssh2 ...	2020-08-02 22:55:46
157.245.142.218	attackspambots	TCP (SYN) 157.245.142.218:49998 -> port 18905, len 44	2020-07-23 15:54:40
157.245.142.218	attackspambots	TCP (SYN) 157.245.142.218:58825 -> port 25226, len 44	2020-07-14 02:06:50
157.245.142.218	attackbotsspam	Jul 12 13:59:49 debian-2gb-nbg1-2 kernel: \[16813768.259166\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=157.245.142.218 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=8646 PROTO=TCP SPT=47129 DPT=14331 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-12 20:14:34
157.245.142.218	attackbots	k+ssh-bruteforce	2020-07-01 22:06:00
157.245.142.218	attackbotsspam	SSH Brute-Force Attack	2020-06-22 03:46:00
157.245.142.218	attackbots	Invalid user administrator from 157.245.142.218 port 58666	2020-06-20 20:12:49
157.245.142.218	attack	Jun 1 22:48:04 eventyay sshd[15531]: Failed password for root from 157.245.142.218 port 53294 ssh2 Jun 1 22:51:34 eventyay sshd[15610]: Failed password for root from 157.245.142.218 port 58242 ssh2 ...	2020-06-02 05:06:00
157.245.142.78	attackbots	8291/tcp 5094/tcp 515/tcp... [2020-04-09/05-03]19pkt,14pt.(tcp),1pt.(udp)	2020-05-04 08:30:30
157.245.142.212	attackspam	Unauthorized connection attempt detected from IP address 157.245.142.212 to port 6379	2020-05-04 01:15:34
157.245.142.78	attackspambots	[Wed Apr 22 08:11:28 2020] - DDoS Attack From IP: 157.245.142.78 Port: 32909	2020-04-28 08:00:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.142.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24819
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.142.119.		IN	A

;; AUTHORITY SECTION:
.			192	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021901 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 03:44:33 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 119.142.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.142.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
158.46.159.112	attackspam	Chat Spam	2020-03-14 09:40:28
45.151.254.218	attackspambots	45.151.254.218 was recorded 27 times by 9 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 27, 104, 1554	2020-03-14 09:30:33
138.197.98.251	attackbotsspam	Mar 14 04:43:42 h2646465 sshd[10263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.98.251 user=root Mar 14 04:43:45 h2646465 sshd[10263]: Failed password for root from 138.197.98.251 port 40592 ssh2 Mar 14 04:50:32 h2646465 sshd[12743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.98.251 user=root Mar 14 04:50:35 h2646465 sshd[12743]: Failed password for root from 138.197.98.251 port 55456 ssh2 Mar 14 04:53:40 h2646465 sshd[13471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.98.251 user=root Mar 14 04:53:42 h2646465 sshd[13471]: Failed password for root from 138.197.98.251 port 43444 ssh2 Mar 14 04:57:38 h2646465 sshd[14843]: Invalid user omega from 138.197.98.251 Mar 14 04:57:38 h2646465 sshd[14843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.98.251 Mar 14 04:57:38 h2646465 sshd[14843]: Invalid user om	2020-03-14 12:11:47
114.67.81.251	attackbots	k+ssh-bruteforce	2020-03-14 12:13:03
45.230.176.242	attack	Automatic report - Port Scan Attack	2020-03-14 09:37:41
183.134.217.238	attackspam	k+ssh-bruteforce	2020-03-14 09:36:46
24.9.94.119	attackbots	Mar 13 20:13:11 NPSTNNYC01T sshd[11051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.9.94.119 Mar 13 20:13:11 NPSTNNYC01T sshd[11053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.9.94.119 Mar 13 20:13:13 NPSTNNYC01T sshd[11051]: Failed password for invalid user pi from 24.9.94.119 port 40920 ssh2 Mar 13 20:13:13 NPSTNNYC01T sshd[11053]: Failed password for invalid user pi from 24.9.94.119 port 40926 ssh2 ...	2020-03-14 09:31:02
222.186.31.135	attackbotsspam	2020-03-14T04:00:17.341295shield sshd\[12245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root 2020-03-14T04:00:18.896030shield sshd\[12245\]: Failed password for root from 222.186.31.135 port 64212 ssh2 2020-03-14T04:00:20.953756shield sshd\[12245\]: Failed password for root from 222.186.31.135 port 64212 ssh2 2020-03-14T04:00:22.952544shield sshd\[12245\]: Failed password for root from 222.186.31.135 port 64212 ssh2 2020-03-14T04:01:38.528732shield sshd\[12382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root	2020-03-14 12:04:16
111.93.235.74	attackspambots	Mar 14 04:57:52 mail sshd[30364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.235.74 user=root Mar 14 04:57:54 mail sshd[30364]: Failed password for root from 111.93.235.74 port 4939 ssh2 ...	2020-03-14 12:02:54
139.59.172.23	attack	CMS (WordPress or Joomla) login attempt.	2020-03-14 12:18:26
202.191.200.227	attackbots	Mar 14 04:50:23 h1745522 sshd[19472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.200.227 user=root Mar 14 04:50:25 h1745522 sshd[19472]: Failed password for root from 202.191.200.227 port 39113 ssh2 Mar 14 04:55:57 h1745522 sshd[19824]: Invalid user csgo from 202.191.200.227 port 49749 Mar 14 04:55:57 h1745522 sshd[19824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.200.227 Mar 14 04:55:57 h1745522 sshd[19824]: Invalid user csgo from 202.191.200.227 port 49749 Mar 14 04:55:59 h1745522 sshd[19824]: Failed password for invalid user csgo from 202.191.200.227 port 49749 ssh2 Mar 14 04:56:56 h1745522 sshd[19890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.200.227 user=root Mar 14 04:56:57 h1745522 sshd[19890]: Failed password for root from 202.191.200.227 port 55170 ssh2 Mar 14 04:57:48 h1745522 sshd[19924]: pam_unix(sshd:auth): auth ...	2020-03-14 12:00:05
177.94.178.245	attackbotsspam	Automatic report - Port Scan Attack	2020-03-14 09:25:35
178.128.72.80	attackspam	Mar 14 05:47:50 ift sshd\[7461\]: Invalid user as-hadoop from 178.128.72.80Mar 14 05:47:52 ift sshd\[7461\]: Failed password for invalid user as-hadoop from 178.128.72.80 port 45258 ssh2Mar 14 05:54:58 ift sshd\[8716\]: Invalid user ftpuser from 178.128.72.80Mar 14 05:55:01 ift sshd\[8716\]: Failed password for invalid user ftpuser from 178.128.72.80 port 36832 ssh2Mar 14 05:57:24 ift sshd\[9299\]: Invalid user tester from 178.128.72.80 ...	2020-03-14 12:16:31
138.197.162.28	attackspambots	Invalid user operator from 138.197.162.28 port 34746	2020-03-14 09:44:30
180.76.158.82	attack	k+ssh-bruteforce	2020-03-14 12:19:31

Recently Reported IPs

103.10.230.171	190.79.101.161	172.40.48.6	102.114.111.43
114.237.188.8	173.93.45.211	92.246.84.70	157.218.27.31
2.215.114.126	178.77.62.118	90.237.137.168	122.193.178.75
50.183.74.213	83.120.84.56	50.123.117.10	132.248.177.251
28.39.116.87	59.110.153.94	30.126.135.151	56.226.38.48