157.245.21.202

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.245.211.180	attackspam	prod11 ...	2020-10-10 04:58:17
157.245.211.180	attackbots	2020-10-09T12:26:04.417407server.espacesoutien.com sshd[3896]: Invalid user oracle from 157.245.211.180 port 35424 2020-10-09T12:26:04.429395server.espacesoutien.com sshd[3896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.211.180 2020-10-09T12:26:04.417407server.espacesoutien.com sshd[3896]: Invalid user oracle from 157.245.211.180 port 35424 2020-10-09T12:26:06.075083server.espacesoutien.com sshd[3896]: Failed password for invalid user oracle from 157.245.211.180 port 35424 ssh2 ...	2020-10-09 20:58:26
157.245.211.180	attackspambots	[ssh] SSH attack	2020-10-09 12:44:42
157.245.211.180	attack	$f2bV_matches	2020-09-21 20:38:11
157.245.211.180	attack	Sep 21 03:52:19 xeon sshd[12726]: Failed password for root from 157.245.211.180 port 56454 ssh2	2020-09-21 12:29:32
157.245.211.180	attackbots	$f2bV_matches	2020-09-21 04:20:24
157.245.211.180	attack	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 157.245.211.180, Reason:[(sshd) Failed SSH login from 157.245.211.180 (US/United States/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-03 03:10:02
157.245.211.180	attack	Sep 2 11:18:41 marvibiene sshd[1814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.211.180 Sep 2 11:18:43 marvibiene sshd[1814]: Failed password for invalid user usuario from 157.245.211.180 port 54302 ssh2	2020-09-02 18:44:29
157.245.211.180	attackspam	invalid user	2020-08-31 04:27:05
157.245.211.180	attackbotsspam	Invalid user agustin from 157.245.211.180 port 48694	2020-08-30 19:54:39
157.245.211.180	attack	Invalid user gx from 157.245.211.180 port 43474	2020-08-30 00:37:19
157.245.211.180	attack	Aug 28 12:09:56 localhost sshd\[22066\]: Invalid user production from 157.245.211.180 port 54352 Aug 28 12:09:56 localhost sshd\[22066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.211.180 Aug 28 12:09:58 localhost sshd\[22066\]: Failed password for invalid user production from 157.245.211.180 port 54352 ssh2 ...	2020-08-28 20:20:24
157.245.211.180	attackbotsspam	Aug 25 19:35:47 v22019038103785759 sshd\[18590\]: Invalid user dtc from 157.245.211.180 port 60368 Aug 25 19:35:47 v22019038103785759 sshd\[18590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.211.180 Aug 25 19:35:49 v22019038103785759 sshd\[18590\]: Failed password for invalid user dtc from 157.245.211.180 port 60368 ssh2 Aug 25 19:39:27 v22019038103785759 sshd\[19022\]: Invalid user recovery from 157.245.211.180 port 42858 Aug 25 19:39:27 v22019038103785759 sshd\[19022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.211.180 ...	2020-08-26 03:09:33
157.245.211.180	attackbotsspam	frenzy	2020-08-24 15:01:41
157.245.211.180	attack	Aug 19 17:48:55 pkdns2 sshd\[31501\]: Invalid user hadoop from 157.245.211.180Aug 19 17:48:57 pkdns2 sshd\[31501\]: Failed password for invalid user hadoop from 157.245.211.180 port 43058 ssh2Aug 19 17:52:48 pkdns2 sshd\[31679\]: Invalid user account from 157.245.211.180Aug 19 17:52:50 pkdns2 sshd\[31679\]: Failed password for invalid user account from 157.245.211.180 port 51566 ssh2Aug 19 17:56:41 pkdns2 sshd\[31851\]: Invalid user market from 157.245.211.180Aug 19 17:56:43 pkdns2 sshd\[31851\]: Failed password for invalid user market from 157.245.211.180 port 59650 ssh2 ...	2020-08-20 00:25:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.21.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37241
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.21.202.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091401 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 03:19:13 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 202.21.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 202.21.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.255.17.126	attack	Telnetd brute force attack detected by fail2ban	2019-07-10 19:49:16
78.26.172.117	attackbotsspam	23/tcp 23/tcp 23/tcp... [2019-06-10/07-10]4pkt,1pt.(tcp)	2019-07-10 20:32:53
24.35.80.137	attackspam	Jul 10 01:04:56 xxxxxxx0 sshd[26915]: Invalid user 123 from 24.35.80.137 port 56810 Jul 10 01:04:56 xxxxxxx0 sshd[26915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.35.80.137 Jul 10 01:04:59 xxxxxxx0 sshd[26915]: Failed password for invalid user 123 from 24.35.80.137 port 56810 ssh2 Jul 10 01:08:02 xxxxxxx0 sshd[27654]: Invalid user homekhostname from 24.35.80.137 port 35196 Jul 10 01:08:02 xxxxxxx0 sshd[27654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.35.80.137 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=24.35.80.137	2019-07-10 19:52:49
117.254.186.178	attackspambots	445/tcp 445/tcp [2019-06-19/07-10]2pkt	2019-07-10 20:26:28
66.249.64.152	attackbotsspam	Automatic report - Web App Attack	2019-07-10 19:56:21
180.175.8.88	attackspam	Automatic report - SSH Brute-Force Attack	2019-07-10 20:16:06
27.71.232.169	attackspambots	3389/tcp 3389/tcp 3389/tcp... [2019-05-16/07-10]10pkt,1pt.(tcp)	2019-07-10 20:31:59
23.247.3.90	attackbots	445/tcp 445/tcp 445/tcp... [2019-05-11/07-10]6pkt,1pt.(tcp)	2019-07-10 20:24:10
103.11.119.52	attackspambots	Multiple unauthorised SSH connections attempts.	2019-07-10 20:37:06
36.37.91.98	attackspam	445/tcp 445/tcp 445/tcp... [2019-05-14/07-10]8pkt,1pt.(tcp)	2019-07-10 20:17:38
186.148.188.94	attack	Invalid user ubuntu from 186.148.188.94 port 34732	2019-07-10 20:04:50
114.95.169.208	attackspambots	445/tcp 445/tcp 445/tcp... [2019-06-04/07-10]6pkt,1pt.(tcp)	2019-07-10 20:38:06
139.199.192.159	attack	Invalid user andy from 139.199.192.159 port 45574 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.192.159 Failed password for invalid user andy from 139.199.192.159 port 45574 ssh2 Invalid user jira from 139.199.192.159 port 37438 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.192.159	2019-07-10 19:53:18
103.19.80.99	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-10 08:28:31,925 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.19.80.99)	2019-07-10 19:58:22
118.69.54.89	attackbots	445/tcp 445/tcp 445/tcp... [2019-06-19/07-10]4pkt,1pt.(tcp)	2019-07-10 20:30:03

Recently Reported IPs

203.150.128.146	171.125.215.152	68.183.96.127	189.216.169.122
122.252.194.178	42.200.116.6	217.103.41.53	124.220.164.209
115.51.2.135	40.75.92.48	207.148.124.154	119.185.112.129
62.133.142.80	61.6.137.56	147.91.111.45	45.66.211.165
151.38.80.47	20.203.40.116	95.181.149.200	199.101.171.173