157.245.145.211

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Dec 15 23:48:55 kapalua sshd\[910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.145.211 user=backup Dec 15 23:48:57 kapalua sshd\[910\]: Failed password for backup from 157.245.145.211 port 39268 ssh2 Dec 15 23:55:24 kapalua sshd\[1750\]: Invalid user alfonzo from 157.245.145.211 Dec 15 23:55:24 kapalua sshd\[1750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.145.211 Dec 15 23:55:26 kapalua sshd\[1750\]: Failed password for invalid user alfonzo from 157.245.145.211 port 47290 ssh2	2019-12-16 20:29:00

Type

Details

Datetime

attackbotsspam

Dec 15 23:48:55 kapalua sshd\[910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.145.211  user=backup
Dec 15 23:48:57 kapalua sshd\[910\]: Failed password for backup from 157.245.145.211 port 39268 ssh2
Dec 15 23:55:24 kapalua sshd\[1750\]: Invalid user alfonzo from 157.245.145.211
Dec 15 23:55:24 kapalua sshd\[1750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.145.211
Dec 15 23:55:26 kapalua sshd\[1750\]: Failed password for invalid user alfonzo from 157.245.145.211 port 47290 ssh2

2019-12-16 20:29:00

Comments on same subnet:

IP	Type	Details	Datetime
157.245.145.40	attackspam	Unauthorized connection attempt detected from IP address 157.245.145.40 to port 2220 [J]	2020-01-24 20:16:43
157.245.145.243	attackbotsspam	Invalid user cloudtest from 157.245.145.243 port 56034	2019-10-31 01:38:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.145.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7410
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.145.211.		IN	A

;; AUTHORITY SECTION:
.			462	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121600 1800 900 604800 86400

;; Query time: 177 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 16 20:28:55 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 211.145.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 211.145.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.146.113.119	attack	Brute forcing email accounts	2020-09-06 03:41:10
197.61.58.13	attackspam	Attempted connection to port 23.	2020-09-06 03:37:04
51.15.126.127	attack	$f2bV_matches	2020-09-06 03:48:39
114.97.230.118	attackbots	TCP (SYN) 114.97.230.118:47490 -> port 1433, len 44	2020-09-06 03:43:16
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-06 03:35:06
64.227.88.245	attackbotsspam	Brute-Force,SSH	2020-09-06 03:47:58
190.74.19.167	attackbotsspam	Unauthorized connection attempt from IP address 190.74.19.167 on Port 445(SMB)	2020-09-06 03:24:04
200.93.65.233	attackspam	Unauthorized connection attempt from IP address 200.93.65.233 on Port 445(SMB)	2020-09-06 03:29:33
197.188.203.65	attack	Sep 4 18:45:23 mellenthin postfix/smtpd[32144]: NOQUEUE: reject: RCPT from unknown[197.188.203.65]: 554 5.7.1 Service unavailable; Client host [197.188.203.65] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.188.203.65; from= to= proto=ESMTP helo=<[197.188.203.65]>	2020-09-06 03:51:58
139.162.118.185	attackspam	Auto Detect Rule! proto TCP (SYN), 139.162.118.185:48116->gjan.info:22, len 40	2020-09-06 03:37:48
201.234.56.238	attackbotsspam	Unauthorized connection attempt from IP address 201.234.56.238 on Port 445(SMB)	2020-09-06 03:19:26
41.94.22.6	attack	TCP (SYN) 41.94.22.6:63578 -> port 1433, len 52	2020-09-06 03:33:53
95.84.240.62	attack	Sep 5 19:58:49 marvibiene sshd[11165]: Failed password for root from 95.84.240.62 port 39282 ssh2	2020-09-06 03:19:51
45.143.223.93	attackbots	Rude login attack (4 tries in 1d)	2020-09-06 03:49:07
118.24.149.248	attack	118.24.149.248 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 5 13:49:50 server2 sshd[23714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.129.108 user=root Sep 5 13:49:51 server2 sshd[23714]: Failed password for root from 106.225.129.108 port 42178 ssh2 Sep 5 13:51:51 server2 sshd[24761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.248 user=root Sep 5 13:51:53 server2 sshd[24761]: Failed password for root from 118.24.149.248 port 55754 ssh2 Sep 5 13:47:36 server2 sshd[22626]: Failed password for root from 190.0.8.134 port 29527 ssh2 Sep 5 13:52:47 server2 sshd[25256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.202.187.246 user=root IP Addresses Blocked: 106.225.129.108 (CN/China/-)	2020-09-06 03:42:48

Recently Reported IPs

49.67.144.154	40.92.9.46	71.161.201.53	73.19.194.3
43.195.95.90	112.195.198.104	13.230.96.121	211.224.179.37
36.78.215.30	100.72.121.250	81.232.136.51	103.127.67.194
92.41.229.118	120.244.238.188	84.48.9.252	123.16.133.181
110.138.149.79	95.78.171.17	157.33.16.244	203.173.114.184