157.245.67.138

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.245.67.249	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-05-13 20:04:19
157.245.67.249	attackbotsspam	May 10 14:54:27 server1 sshd\[14710\]: Failed password for root from 157.245.67.249 port 46120 ssh2 May 10 14:57:56 server1 sshd\[16043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.67.249 user=root May 10 14:57:57 server1 sshd\[16043\]: Failed password for root from 157.245.67.249 port 56704 ssh2 May 10 15:01:35 server1 sshd\[17420\]: Invalid user eirik from 157.245.67.249 May 10 15:01:35 server1 sshd\[17420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.67.249 ...	2020-05-11 05:12:39
157.245.67.214	attackspam	Invalid user ircd from 157.245.67.214 port 47726	2020-02-16 18:58:47
157.245.67.214	attack	Feb 15 15:32:02 gw1 sshd[3849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.67.214 Feb 15 15:32:05 gw1 sshd[3849]: Failed password for invalid user administrator from 157.245.67.214 port 60354 ssh2 ...	2020-02-15 20:30:08
157.245.67.214	attackspambots	2020-02-13T07:52:51.955253 sshd[13704]: Invalid user gnuworld from 157.245.67.214 port 45766 2020-02-13T07:52:51.969803 sshd[13704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.67.214 2020-02-13T07:52:51.955253 sshd[13704]: Invalid user gnuworld from 157.245.67.214 port 45766 2020-02-13T07:52:53.494613 sshd[13704]: Failed password for invalid user gnuworld from 157.245.67.214 port 45766 ssh2 2020-02-13T07:55:47.779810 sshd[13748]: Invalid user three from 157.245.67.214 port 46562 ...	2020-02-13 15:19:52
157.245.67.214	attackspambots	1581556765 - 02/13/2020 02:19:25 Host: 157.245.67.214/157.245.67.214 Port: 22 TCP Blocked	2020-02-13 10:22:22
157.245.67.84	attackbots	Unauthorized connection attempt detected from IP address 157.245.67.84 to port 23 [J]	2020-02-02 05:41:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.67.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.67.138.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:29:04 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 138.67.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.67.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.102.238.39	attack	Received: from server3.emailokay.com (server3.emailokay.com [103.102.238.39]) by [snipped] with SMTP; Mon, 22 Jul 2019 21:00:31 +0800 Reply-To: From: "Melinda Tan \| DOXA Solutions" To: [snipped] Subject: Professional Business Communication in English (New Modules)	2019-07-23 06:04:37
179.149.154.90	attack	Jul 22 12:52:07 proxmox sshd[12013]: Invalid user admin from 179.149.154.90 port 17857 Jul 22 12:52:07 proxmox sshd[12013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.149.154.90 Jul 22 12:52:09 proxmox sshd[12013]: Failed password for invalid user admin from 179.149.154.90 port 17857 ssh2 Jul 22 12:52:10 proxmox sshd[12013]: Connection closed by 179.149.154.90 port 17857 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.149.154.90	2019-07-23 05:28:58
111.207.253.225	attack	2019-07-22T23:33:36.388747 X postfix/smtpd[2559]: warning: unknown[111.207.253.225]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-22T23:33:44.181278 X postfix/smtpd[2559]: warning: unknown[111.207.253.225]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-22T23:33:55.487388 X postfix/smtpd[2559]: warning: unknown[111.207.253.225]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-23 05:46:29
92.50.186.82	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 15:39:50,202 INFO [shellcode_manager] (92.50.186.82) no match, writing hexdump (cdbdc8826e6bfb7c300145ba6ddb7d0f :2039040) - MS17010 (EternalBlue)	2019-07-23 05:54:32
75.103.156.55	attackspam	20 attempts against mh-ssh on star.magehost.pro	2019-07-23 05:33:51
89.91.163.15	attackspam	2019-07-22T19:57:35.911219abusebot.cloudsearch.cf sshd\[28812\]: Invalid user yash from 89.91.163.15 port 52450	2019-07-23 05:22:59
162.246.23.246	attack	Honeypot attack, port: 23, PTR: servicioshosting.com.	2019-07-23 06:02:54
103.114.248.66	attackbots	SMTP Auth Failure	2019-07-23 05:49:09
177.129.205.155	attackspambots	Brute force attempt	2019-07-23 05:40:13
5.196.75.178	attackbots	Invalid user admin from 5.196.75.178 port 36060	2019-07-23 06:05:40
143.208.249.5	attack	$f2bV_matches	2019-07-23 06:07:39
103.249.100.22	attackbots	<38>1 2019-07-22T14:00:03.051739-05:00 thebighonker.lerctr.org sshd 21002 - - Failed unknown for invalid user butter from 103.249.100.22 port 37396 ssh2 <38>1 2019-07-22T14:00:12.233888-05:00 thebighonker.lerctr.org sshd 21075 - - Failed unknown for invalid user butter from 103.249.100.22 port 41188 ssh2 <38>1 2019-07-22T14:00:17.458627-05:00 thebighonker.lerctr.org sshd 21087 - - Failed unknown for invalid user minecraft from 103.249.100.22 port 51406 ssh2 ...	2019-07-23 05:59:33
211.80.89.37	attack	Jul 22 14:59:47 mxgate1 postfix/postscreen[7227]: CONNECT from [211.80.89.37]:23842 to [176.31.12.44]:25 Jul 22 14:59:47 mxgate1 postfix/dnsblog[7952]: addr 211.80.89.37 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 22 14:59:47 mxgate1 postfix/dnsblog[7943]: addr 211.80.89.37 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 22 14:59:53 mxgate1 postfix/postscreen[7227]: DNSBL rank 3 for [211.80.89.37]:23842 Jul x@x Jul 22 14:59:54 mxgate1 postfix/postscreen[7227]: HANGUP after 1.6 from [211.80.89.37]:23842 in tests after SMTP handshake Jul 22 14:59:54 mxgate1 postfix/postscreen[7227]: DISCONNECT [211.80.89.37]:23842 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=211.80.89.37	2019-07-23 06:04:10
179.164.177.203	attackbotsspam	Jul 22 14:52:13 srv1 sshd[32099]: Address 179.164.177.203 maps to 179-164-177-203.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 22 14:52:14 srv1 sshd[32099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.164.177.203 user=r.r Jul 22 14:52:16 srv1 sshd[32099]: Failed password for r.r from 179.164.177.203 port 30528 ssh2 Jul 22 14:52:16 srv1 sshd[32100]: Received disconnect from 179.164.177.203: 11: Bye Bye Jul 22 14:52:19 srv1 sshd[32120]: Address 179.164.177.203 maps to 179-164-177-203.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jul 22 14:52:19 srv1 sshd[32120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.164.177.203 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=179.164.177.203	2019-07-23 05:35:51
207.154.192.152	attackspam	2019-07-22T13:42:05.097193abusebot-2.cloudsearch.cf sshd\[21549\]: Invalid user ramon from 207.154.192.152 port 33630	2019-07-23 05:48:54

Recently Reported IPs

157.245.69.5	157.245.69.102	157.245.67.254	157.245.71.65
157.245.75.132	157.245.73.151	157.245.80.188	157.245.74.21
157.245.81.190	157.245.78.98	157.245.76.238	157.245.78.21
157.245.80.197	157.245.81.231	157.245.81.217	157.245.81.203
157.245.82.22	157.245.84.102	157.245.88.143	157.245.83.103