157.245.54.200

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Sep 15 04:25:51 vps46666688 sshd[3410]: Failed password for root from 157.245.54.200 port 52448 ssh2 Sep 15 04:33:46 vps46666688 sshd[3515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ...	2020-09-15 16:01:07
attack	Sep 14 19:15:01 mout sshd[16839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 user=root Sep 14 19:15:03 mout sshd[16839]: Failed password for root from 157.245.54.200 port 60602 ssh2	2020-09-15 08:06:32
attackspam	Invalid user music from 157.245.54.200 port 44726	2020-09-13 01:15:15
attack	<6 unauthorized SSH connections	2020-09-12 17:13:46
attackspambots	Sep 10 10:25:30 root sshd[15315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ...	2020-09-10 21:07:38
attackspambots	"fail2ban match"	2020-09-10 12:52:43
attack	157.245.54.200 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 9 12:49:21 jbs1 sshd[17354]: Failed password for root from 157.245.54.200 port 46116 ssh2 Sep 9 12:57:44 jbs1 sshd[20671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.99.197 user=root Sep 9 12:52:29 jbs1 sshd[18281]: Failed password for root from 49.235.215.147 port 36210 ssh2 Sep 9 12:49:19 jbs1 sshd[17354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 user=root Sep 9 12:52:27 jbs1 sshd[18269]: Failed password for root from 95.163.195.60 port 40440 ssh2 Sep 9 12:52:27 jbs1 sshd[18281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.215.147 user=root IP Addresses Blocked:	2020-09-10 03:39:23
attackspambots	Multiple SSH authentication failures from 157.245.54.200	2020-09-02 20:25:43
attackbots	Sep 2 12:27:41 localhost sshd[3469176]: Invalid user john from 157.245.54.200 port 56192 ...	2020-09-02 12:20:43
attackbotsspam	2020-09-01T16:51:00.304497dmca.cloudsearch.cf sshd[30649]: Invalid user manuela from 157.245.54.200 port 49350 2020-09-01T16:51:00.309640dmca.cloudsearch.cf sshd[30649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 2020-09-01T16:51:00.304497dmca.cloudsearch.cf sshd[30649]: Invalid user manuela from 157.245.54.200 port 49350 2020-09-01T16:51:02.356174dmca.cloudsearch.cf sshd[30649]: Failed password for invalid user manuela from 157.245.54.200 port 49350 ssh2 2020-09-01T16:53:33.659510dmca.cloudsearch.cf sshd[30680]: Invalid user hadoop from 157.245.54.200 port 59100 2020-09-01T16:53:33.665325dmca.cloudsearch.cf sshd[30680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 2020-09-01T16:53:33.659510dmca.cloudsearch.cf sshd[30680]: Invalid user hadoop from 157.245.54.200 port 59100 2020-09-01T16:53:35.716743dmca.cloudsearch.cf sshd[30680]: Failed password for invalid user hadoop ...	2020-09-02 05:31:16
attackspambots	Aug 30 14:16:20 haigwepa sshd[22797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Aug 30 14:16:22 haigwepa sshd[22797]: Failed password for invalid user soft from 157.245.54.200 port 56822 ssh2 ...	2020-08-30 20:33:29
attackbotsspam	Aug 17 15:55:21 NPSTNNYC01T sshd[26055]: Failed password for root from 157.245.54.200 port 58412 ssh2 Aug 17 15:59:17 NPSTNNYC01T sshd[26311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Aug 17 15:59:19 NPSTNNYC01T sshd[26311]: Failed password for invalid user ksenia from 157.245.54.200 port 39708 ssh2 ...	2020-08-18 04:01:36
attackspam	Aug 7 23:50:44 NPSTNNYC01T sshd[9401]: Failed password for root from 157.245.54.200 port 56074 ssh2 Aug 7 23:54:59 NPSTNNYC01T sshd[9772]: Failed password for root from 157.245.54.200 port 35942 ssh2 ...	2020-08-08 12:16:16
attack	Aug 6 06:43:54 PorscheCustomer sshd[13650]: Failed password for root from 157.245.54.200 port 38806 ssh2 Aug 6 06:47:48 PorscheCustomer sshd[13857]: Failed password for root from 157.245.54.200 port 41512 ssh2 ...	2020-08-06 12:55:25
attack	2020-07-30T23:41:37.396359morrigan.ad5gb.com sshd[1589]: Failed password for root from 157.245.54.200 port 43180 ssh2 2020-07-30T23:41:38.222464morrigan.ad5gb.com sshd[1589]: Disconnected from authenticating user root 157.245.54.200 port 43180 [preauth]	2020-07-31 14:39:55
attack	Jul 14 12:19:31 server1 sshd\[17238\]: Failed password for invalid user csgoserver from 157.245.54.200 port 48478 ssh2 Jul 14 12:22:44 server1 sshd\[18183\]: Invalid user jiri from 157.245.54.200 Jul 14 12:22:44 server1 sshd\[18183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Jul 14 12:22:47 server1 sshd\[18183\]: Failed password for invalid user jiri from 157.245.54.200 port 44732 ssh2 Jul 14 12:26:04 server1 sshd\[19186\]: Invalid user newton from 157.245.54.200 ...	2020-07-15 06:21:31
attackbots	Jul 5 01:19:53 pve1 sshd[24793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Jul 5 01:19:55 pve1 sshd[24793]: Failed password for invalid user wlw from 157.245.54.200 port 58074 ssh2 ...	2020-07-05 07:42:22
attackspambots	Jun 30 05:43:13 onepixel sshd[2316605]: Invalid user alex from 157.245.54.200 port 48718 Jun 30 05:43:13 onepixel sshd[2316605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Jun 30 05:43:13 onepixel sshd[2316605]: Invalid user alex from 157.245.54.200 port 48718 Jun 30 05:43:14 onepixel sshd[2316605]: Failed password for invalid user alex from 157.245.54.200 port 48718 ssh2 Jun 30 05:47:05 onepixel sshd[2318589]: Invalid user wfx from 157.245.54.200 port 49268	2020-06-30 16:20:52
attackbots	Jun 22 22:38:21 zulu412 sshd\[10870\]: Invalid user user from 157.245.54.200 port 32984 Jun 22 22:38:21 zulu412 sshd\[10870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 Jun 22 22:38:23 zulu412 sshd\[10870\]: Failed password for invalid user user from 157.245.54.200 port 32984 ssh2 ...	2020-06-23 04:43:31
attack	Brute-force attempt banned	2020-06-02 12:28:44
attackspambots	Bruteforce detected by fail2ban	2020-05-28 17:44:16
attackbots	May 26 05:20:09 vpn01 sshd[25412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 May 26 05:20:11 vpn01 sshd[25412]: Failed password for invalid user ya from 157.245.54.200 port 58876 ssh2 ...	2020-05-26 13:45:50
attackspambots	ssh brute force	2020-05-22 12:19:23
attackspambots	May 20 08:35:07 h1745522 sshd[12991]: Invalid user xe from 157.245.54.200 port 45378 May 20 08:35:07 h1745522 sshd[12991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 May 20 08:35:07 h1745522 sshd[12991]: Invalid user xe from 157.245.54.200 port 45378 May 20 08:35:09 h1745522 sshd[12991]: Failed password for invalid user xe from 157.245.54.200 port 45378 ssh2 May 20 08:38:56 h1745522 sshd[13199]: Invalid user zju from 157.245.54.200 port 51646 May 20 08:38:56 h1745522 sshd[13199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 May 20 08:38:56 h1745522 sshd[13199]: Invalid user zju from 157.245.54.200 port 51646 May 20 08:38:59 h1745522 sshd[13199]: Failed password for invalid user zju from 157.245.54.200 port 51646 ssh2 May 20 08:42:49 h1745522 sshd[13563]: Invalid user xb from 157.245.54.200 port 57914 ...	2020-05-20 15:04:28
attackbots	May 14 00:44:35 PorscheCustomer sshd[5504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 May 14 00:44:36 PorscheCustomer sshd[5504]: Failed password for invalid user php from 157.245.54.200 port 42786 ssh2 May 14 00:48:44 PorscheCustomer sshd[5679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ...	2020-05-14 07:07:17
attackbots	Apr 28 12:16:26 srv206 sshd[24625]: Invalid user hzy from 157.245.54.200 ...	2020-04-28 18:44:33

Comments on same subnet:

IP	Type	Details	Datetime
157.245.54.15	attackspam	Brute-force attempt banned	2020-09-23 23:45:56
157.245.54.15	attackbotsspam	Auto Fail2Ban report, multiple SSH login attempts.	2020-09-23 15:57:06
157.245.54.15	attackbots	2020-09-22T17:34:29.683889mail.thespaminator.com sshd[5868]: Invalid user guest from 157.245.54.15 port 42656 2020-09-22T17:34:31.976898mail.thespaminator.com sshd[5868]: Failed password for invalid user guest from 157.245.54.15 port 42656 ssh2 ...	2020-09-23 07:52:21
157.245.54.18	attackspambots	Lines containing failures of 157.245.54.18 Nov 23 08:19:04 shared12 sshd[21915]: Invalid user webadmin from 157.245.54.18 port 51324 Nov 23 08:19:04 shared12 sshd[21915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.18 Nov 23 08:19:06 shared12 sshd[21915]: Failed password for invalid user webadmin from 157.245.54.18 port 51324 ssh2 Nov 23 08:19:07 shared12 sshd[21915]: Received disconnect from 157.245.54.18 port 51324:11: Bye Bye [preauth] Nov 23 08:19:07 shared12 sshd[21915]: Disconnected from invalid user webadmin 157.245.54.18 port 51324 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=157.245.54.18	2019-11-23 16:02:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.54.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37776
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.54.200.			IN	A

;; AUTHORITY SECTION:
.			496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 18:44:29 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 200.54.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 200.54.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.155.81.145	attackbotsspam	Automatic report - Port Scan Attack	2019-10-05 18:20:58
80.27.171.110	attackspam	Oct 4 18:35:33 auw2 sshd\[11099\]: Invalid user Press@123 from 80.27.171.110 Oct 4 18:35:33 auw2 sshd\[11099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.red-80-27-171.dynamicip.rima-tde.net Oct 4 18:35:35 auw2 sshd\[11099\]: Failed password for invalid user Press@123 from 80.27.171.110 port 47518 ssh2 Oct 4 18:40:13 auw2 sshd\[11641\]: Invalid user Kim@123 from 80.27.171.110 Oct 4 18:40:13 auw2 sshd\[11641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.red-80-27-171.dynamicip.rima-tde.net	2019-10-05 18:46:08
187.167.67.187	attack	Automatic report - Port Scan Attack	2019-10-05 18:26:07
180.179.174.247	attackspambots	Oct 5 07:03:21 www sshd\[242277\]: Invalid user Australia@123 from 180.179.174.247 Oct 5 07:03:21 www sshd\[242277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.179.174.247 Oct 5 07:03:23 www sshd\[242277\]: Failed password for invalid user Australia@123 from 180.179.174.247 port 54249 ssh2 ...	2019-10-05 18:18:02
167.114.55.84	attackspambots	Oct 5 00:10:52 hanapaa sshd\[427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip84.ip-167-114-55.net user=root Oct 5 00:10:54 hanapaa sshd\[427\]: Failed password for root from 167.114.55.84 port 48280 ssh2 Oct 5 00:14:56 hanapaa sshd\[789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip84.ip-167-114-55.net user=root Oct 5 00:14:58 hanapaa sshd\[789\]: Failed password for root from 167.114.55.84 port 60594 ssh2 Oct 5 00:19:03 hanapaa sshd\[1144\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip84.ip-167-114-55.net user=root	2019-10-05 18:41:37
212.85.128.39	attackbotsspam	xmlrpc attack	2019-10-05 18:38:56
106.12.134.58	attackspambots	Oct 4 18:34:41 auw2 sshd\[10997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root Oct 4 18:34:43 auw2 sshd\[10997\]: Failed password for root from 106.12.134.58 port 35156 ssh2 Oct 4 18:38:41 auw2 sshd\[11369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root Oct 4 18:38:43 auw2 sshd\[11369\]: Failed password for root from 106.12.134.58 port 39040 ssh2 Oct 4 18:42:51 auw2 sshd\[11889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.58 user=root	2019-10-05 18:49:25
27.105.103.3	attackbots	Oct 5 07:03:04 www sshd\[3012\]: Invalid user 123Sporting from 27.105.103.3 Oct 5 07:03:04 www sshd\[3012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.105.103.3 Oct 5 07:03:06 www sshd\[3012\]: Failed password for invalid user 123Sporting from 27.105.103.3 port 57580 ssh2 ...	2019-10-05 18:29:38
54.38.33.186	attackbotsspam	Invalid user ronjones from 54.38.33.186 port 44304	2019-10-05 18:14:40
112.30.43.17	attackbots	(Oct 5) LEN=40 TOS=0x04 TTL=48 ID=8199 TCP DPT=8080 WINDOW=32080 SYN (Oct 5) LEN=40 TOS=0x04 TTL=48 ID=26654 TCP DPT=8080 WINDOW=32080 SYN (Oct 4) LEN=40 TOS=0x04 TTL=48 ID=47244 TCP DPT=8080 WINDOW=7413 SYN (Oct 4) LEN=40 TOS=0x04 TTL=46 ID=345 TCP DPT=8080 WINDOW=22353 SYN (Oct 4) LEN=40 TOS=0x04 TTL=46 ID=27722 TCP DPT=8080 WINDOW=32080 SYN (Oct 4) LEN=40 TOS=0x04 TTL=46 ID=30584 TCP DPT=8080 WINDOW=37560 SYN (Oct 3) LEN=40 TOS=0x04 TTL=48 ID=17637 TCP DPT=8080 WINDOW=22353 SYN (Oct 2) LEN=40 TOS=0x04 TTL=48 ID=8393 TCP DPT=8080 WINDOW=32080 SYN (Oct 2) LEN=40 TOS=0x04 TTL=49 ID=21979 TCP DPT=8080 WINDOW=37560 SYN (Sep 30) LEN=40 TOS=0x04 TTL=46 ID=65279 TCP DPT=8080 WINDOW=32080 SYN (Sep 30) LEN=40 TOS=0x04 TTL=49 ID=59464 TCP DPT=8080 WINDOW=7413 SYN (Sep 30) LEN=40 TOS=0x04 TTL=47 ID=21571 TCP DPT=8080 WINDOW=32080 SYN	2019-10-05 18:36:34
116.7.237.134	attack	web-1 [ssh] SSH Attack	2019-10-05 18:19:16
187.162.137.19	attackbots	Oct 5 11:27:09 [host] sshd[15988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.162.137.19 user=root Oct 5 11:27:11 [host] sshd[15988]: Failed password for root from 187.162.137.19 port 48070 ssh2 Oct 5 11:31:08 [host] sshd[16184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.162.137.19 user=root	2019-10-05 18:47:36
81.22.45.73	attackspam	10/05/2019-10:27:56.283974 81.22.45.73 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-05 18:27:04
202.144.133.140	attack	xmlrpc attack	2019-10-05 18:11:28
198.199.122.234	attackspam	Automatic report - Banned IP Access	2019-10-05 18:15:08

Recently Reported IPs

45.175.10.53	30.246.82.114	157.113.40.133	14.241.100.97
162.252.87.157	92.118.206.113	182.53.62.151	87.15.66.18
189.204.230.74	201.18.169.186	26.73.228.165	36.67.77.41
125.166.160.186	117.2.59.176	172.104.211.59	190.199.112.50
182.110.82.142	62.234.127.234	171.211.94.202	82.165.151.223