157.245.142.180

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	port 23 attempt blocked	2019-10-22 07:31:08

Comments on same subnet:

IP	Type	Details	Datetime
157.245.142.218	attack	Aug 15 22:43:05 ns381471 sshd[7565]: Failed password for root from 157.245.142.218 port 37624 ssh2	2020-08-16 05:18:20
157.245.142.218	attack	Port scan denied	2020-08-15 15:08:21
157.245.142.218	attackbots	Aug 10 23:06:14 abendstille sshd\[24717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 10 23:06:15 abendstille sshd\[24717\]: Failed password for root from 157.245.142.218 port 34218 ssh2 Aug 10 23:10:33 abendstille sshd\[29164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 10 23:10:35 abendstille sshd\[29164\]: Failed password for root from 157.245.142.218 port 43558 ssh2 Aug 10 23:15:00 abendstille sshd\[1642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root ...	2020-08-11 05:35:05
157.245.142.218	attackbots	Bruteforce detected by fail2ban	2020-08-05 05:31:23
157.245.142.218	attackspambots	Aug 2 12:56:48 vps-51d81928 sshd[394133]: Failed password for root from 157.245.142.218 port 36314 ssh2 Aug 2 12:58:04 vps-51d81928 sshd[394156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 2 12:58:06 vps-51d81928 sshd[394156]: Failed password for root from 157.245.142.218 port 54280 ssh2 Aug 2 12:59:22 vps-51d81928 sshd[394174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.142.218 user=root Aug 2 12:59:24 vps-51d81928 sshd[394174]: Failed password for root from 157.245.142.218 port 44014 ssh2 ...	2020-08-02 22:55:46
157.245.142.218	attackspambots	TCP (SYN) 157.245.142.218:49998 -> port 18905, len 44	2020-07-23 15:54:40
157.245.142.218	attackspambots	TCP (SYN) 157.245.142.218:58825 -> port 25226, len 44	2020-07-14 02:06:50
157.245.142.218	attackbotsspam	Jul 12 13:59:49 debian-2gb-nbg1-2 kernel: \[16813768.259166\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=157.245.142.218 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=8646 PROTO=TCP SPT=47129 DPT=14331 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-12 20:14:34
157.245.142.218	attackbots	k+ssh-bruteforce	2020-07-01 22:06:00
157.245.142.218	attackbotsspam	SSH Brute-Force Attack	2020-06-22 03:46:00
157.245.142.218	attackbots	Invalid user administrator from 157.245.142.218 port 58666	2020-06-20 20:12:49
157.245.142.218	attack	Jun 1 22:48:04 eventyay sshd[15531]: Failed password for root from 157.245.142.218 port 53294 ssh2 Jun 1 22:51:34 eventyay sshd[15610]: Failed password for root from 157.245.142.218 port 58242 ssh2 ...	2020-06-02 05:06:00
157.245.142.78	attackbots	8291/tcp 5094/tcp 515/tcp... [2020-04-09/05-03]19pkt,14pt.(tcp),1pt.(udp)	2020-05-04 08:30:30
157.245.142.212	attackspam	Unauthorized connection attempt detected from IP address 157.245.142.212 to port 6379	2020-05-04 01:15:34
157.245.142.78	attackspambots	[Wed Apr 22 08:11:28 2020] - DDoS Attack From IP: 157.245.142.78 Port: 32909	2020-04-28 08:00:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.142.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 794
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.142.180.		IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102101 1800 900 604800 86400

;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 22 07:31:05 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 180.142.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 180.142.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.68.73.202	attackspambots	unauthorized connection attempt	2020-02-27 18:39:43
103.227.68.167	attackbots	Unauthorized connection attempt from IP address 103.227.68.167 on Port 445(SMB)	2020-02-27 18:13:14
222.186.173.238	attack	Feb 27 10:27:02 h2177944 sshd\[3118\]: Failed password for root from 222.186.173.238 port 41984 ssh2 Feb 27 11:27:12 h2177944 sshd\[5600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Feb 27 11:27:14 h2177944 sshd\[5600\]: Failed password for root from 222.186.173.238 port 41154 ssh2 Feb 27 11:27:18 h2177944 sshd\[5600\]: Failed password for root from 222.186.173.238 port 41154 ssh2 ...	2020-02-27 18:28:50
51.254.205.6	attackspam	Feb 27 10:02:33 hcbbdb sshd\[17276\]: Invalid user julie from 51.254.205.6 Feb 27 10:02:33 hcbbdb sshd\[17276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=6.ip-51-254-205.eu Feb 27 10:02:36 hcbbdb sshd\[17276\]: Failed password for invalid user julie from 51.254.205.6 port 59608 ssh2 Feb 27 10:07:07 hcbbdb sshd\[17799\]: Invalid user airflow from 51.254.205.6 Feb 27 10:07:07 hcbbdb sshd\[17799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=6.ip-51-254-205.eu	2020-02-27 18:15:09
46.50.135.34	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-27 18:31:05
165.169.241.28	attack	2020-02-27T05:44:54.055831homeassistant sshd[4341]: Invalid user yaoyiming from 165.169.241.28 port 35608 2020-02-27T05:44:54.065790homeassistant sshd[4341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.169.241.28 ...	2020-02-27 18:31:36
14.241.182.139	attackspambots	Unauthorized connection attempt from IP address 14.241.182.139 on Port 445(SMB)	2020-02-27 18:05:30
112.197.108.6	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-27 18:35:48
36.91.223.130	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-27 18:03:28
37.18.105.90	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-27 18:29:36
103.16.133.226	attackspam	Unauthorized connection attempt from IP address 103.16.133.226 on Port 445(SMB)	2020-02-27 18:05:08
45.62.212.147	attackspambots	Feb 23 23:38:56 lic-srv-syscp-01 sshd[23067]: Invalid user admin from 45.62.212.147 Feb 23 23:38:56 lic-srv-syscp-01 sshd[23067]: Received disconnect from 45.62.212.147: 11: Bye Bye [preauth] Feb 24 11:16:16 lic-srv-syscp-01 sshd[2653]: Invalid user work from 45.62.212.147 Feb 24 11:16:16 lic-srv-syscp-01 sshd[2653]: Received disconnect from 45.62.212.147: 11: Bye Bye [preauth] Feb 24 12:10:11 lic-srv-syscp-01 sshd[10804]: Invalid user upload from 45.62.212.147 Feb 24 12:10:12 lic-srv-syscp-01 sshd[10804]: Received disconnect from 45.62.212.147: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.62.212.147	2020-02-27 18:17:46
110.139.2.146	attack	Unauthorized connection attempt from IP address 110.139.2.146 on Port 445(SMB)	2020-02-27 18:21:50
118.99.102.31	attack	Unauthorized connection attempt from IP address 118.99.102.31 on Port 445(SMB)	2020-02-27 18:41:59
2.62.12.233	attackspam	1582782315 - 02/27/2020 06:45:15 Host: 2.62.12.233/2.62.12.233 Port: 445 TCP Blocked	2020-02-27 18:03:52

Recently Reported IPs

201.219.236.100	146.0.75.203	151.42.246.138	87.241.195.10
5.182.39.95	103.117.197.212	136.250.230.18	25.154.112.99
224.200.44.221	216.253.34.126	166.12.83.250	134.227.93.122
111.59.93.76	245.79.182.195	17.215.161.162	85.140.2.106
222.252.30.63	5.182.39.91	30.5.236.183	114.92.117.248