157.245.50.145

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 4 14:50:56 mail sshd[13382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.50.145 Dec 4 14:50:59 mail sshd[13382]: Failed password for invalid user lab from 157.245.50.145 port 45630 ssh2 Dec 4 14:57:20 mail sshd[16448]: Failed password for mysql from 157.245.50.145 port 54474 ssh2	2019-12-04 22:02:29

Type

Details

Datetime

attack

Dec  4 14:50:56 mail sshd[13382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.50.145 
Dec  4 14:50:59 mail sshd[13382]: Failed password for invalid user lab from 157.245.50.145 port 45630 ssh2
Dec  4 14:57:20 mail sshd[16448]: Failed password for mysql from 157.245.50.145 port 54474 ssh2

2019-12-04 22:02:29

Comments on same subnet:

IP	Type	Details	Datetime
157.245.50.125	attack	Invalid user admin from 157.245.50.125 port 51325	2020-01-22 01:28:19
157.245.50.125	attackspam	Invalid user support from 157.245.50.125 port 62604	2020-01-15 04:36:52
157.245.50.91	attack	" "	2019-12-22 02:51:14
157.245.50.29	attackbotsspam	blocked by firewall for XSS: Cross Site Scripting in POST body: img=data%3Aimage%2Fphp%3Bbase64%2CPD9waHAgaGVhZGVyKCJYLVhTUy1Qcm90ZWN0aW9uOiAwIik7Cm9iX3N0YXJ0KCk7CnNldF	2019-12-04 16:12:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.50.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3645
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.50.145.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120401 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 04 22:02:24 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 145.50.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.50.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
43.243.168.63	attack	" "	2020-04-22 06:47:04
220.176.204.91	attackbots	Invalid user test from 220.176.204.91 port 34748	2020-04-22 06:47:17
114.4.227.194	attack	Invalid user test from 114.4.227.194 port 56024	2020-04-22 06:41:54
155.230.28.207	attackbotsspam	SSH Brute-Forcing (server2)	2020-04-22 07:14:07
140.86.12.31	attackbotsspam	SSH Invalid Login	2020-04-22 06:44:50
217.61.1.129	attackbotsspam	Apr 22 00:23:21 srv01 sshd[28714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.1.129 user=root Apr 22 00:23:23 srv01 sshd[28714]: Failed password for root from 217.61.1.129 port 35208 ssh2 Apr 22 00:28:29 srv01 sshd[29143]: Invalid user yh from 217.61.1.129 port 48942 Apr 22 00:28:29 srv01 sshd[29143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.1.129 Apr 22 00:28:29 srv01 sshd[29143]: Invalid user yh from 217.61.1.129 port 48942 Apr 22 00:28:32 srv01 sshd[29143]: Failed password for invalid user yh from 217.61.1.129 port 48942 ssh2 ...	2020-04-22 06:53:45
91.93.227.53	attackbotsspam	fail2ban - Attack against WordPress	2020-04-22 07:09:06
194.31.244.22	attackbotsspam	srv03 Mass scanning activity detected Target: 37913 ..	2020-04-22 07:01:31
77.29.123.134	attackbotsspam	Automatic report - Port Scan Attack	2020-04-22 07:08:21
213.32.122.82	attack	...	2020-04-22 06:48:48
88.250.85.219	attackbots	Automatic report - Port Scan Attack	2020-04-22 06:48:17
165.22.191.129	attack	165.22.191.129 - - \[22/Apr/2020:00:49:58 +0200\] "POST /wp-login.php HTTP/1.0" 200 6702 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 165.22.191.129 - - \[22/Apr/2020:00:50:01 +0200\] "POST /wp-login.php HTTP/1.0" 200 6532 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 165.22.191.129 - - \[22/Apr/2020:00:50:04 +0200\] "POST /wp-login.php HTTP/1.0" 200 6526 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-04-22 06:56:21
209.85.218.69	attackbots	Fw: Doctor: Reverse Joint Pain in 5 Days or Less Without Drugs. More Info Here	2020-04-22 06:55:47
107.170.99.119	attack	$f2bV_matches	2020-04-22 06:57:32
118.169.80.97	attack	" "	2020-04-22 06:57:13

Recently Reported IPs

230.135.133.219	1.1.225.174	222.220.162.172	186.236.29.181
167.172.114.49	78.130.180.164	76.94.8.15	117.4.218.7
216.62.22.129	51.81.24.130	73.252.54.19	243.82.203.0
83.147.166.28	187.211.129.70	16.197.160.21	46.76.33.36
129.155.214.159	245.108.109.28	151.136.48.139	41.117.45.120