157.245.91.145

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.245.91.33	attackbots	157.245.91.33 - - [10/Oct/2020:18:33:24 +0100] "POST /wp-login.php HTTP/1.1" 200 2227 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.91.33 - - [10/Oct/2020:18:33:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2157 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.91.33 - - [10/Oct/2020:18:33:26 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 01:42:19
157.245.91.72	attackspam	Sep 1 03:12:39 server sshd[24819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 Sep 1 03:12:39 server sshd[24819]: Invalid user odoo from 157.245.91.72 port 42846 Sep 1 03:12:40 server sshd[24819]: Failed password for invalid user odoo from 157.245.91.72 port 42846 ssh2 Sep 1 03:19:45 server sshd[26100]: Invalid user raspberry from 157.245.91.72 port 59524 Sep 1 03:19:45 server sshd[26100]: Invalid user raspberry from 157.245.91.72 port 59524 ...	2020-09-01 08:27:23
157.245.91.72	attackbotsspam	2020-08-26T08:04:36.242317shield sshd\[9792\]: Invalid user aegis from 157.245.91.72 port 58142 2020-08-26T08:04:36.277129shield sshd\[9792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 2020-08-26T08:04:38.438814shield sshd\[9792\]: Failed password for invalid user aegis from 157.245.91.72 port 58142 ssh2 2020-08-26T08:09:04.890202shield sshd\[10506\]: Invalid user admin from 157.245.91.72 port 36652 2020-08-26T08:09:04.910995shield sshd\[10506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72	2020-08-26 16:49:37
157.245.91.72	attack	Aug 22 14:11:48 electroncash sshd[27088]: Invalid user oc from 157.245.91.72 port 46154 Aug 22 14:11:48 electroncash sshd[27088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 Aug 22 14:11:48 electroncash sshd[27088]: Invalid user oc from 157.245.91.72 port 46154 Aug 22 14:11:49 electroncash sshd[27088]: Failed password for invalid user oc from 157.245.91.72 port 46154 ssh2 Aug 22 14:16:17 electroncash sshd[28267]: Invalid user zv from 157.245.91.72 port 53706 ...	2020-08-22 20:24:25
157.245.91.72	attack	Aug 14 22:55:57 OPSO sshd\[2149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Aug 14 22:55:59 OPSO sshd\[2149\]: Failed password for root from 157.245.91.72 port 44546 ssh2 Aug 14 22:59:46 OPSO sshd\[3035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Aug 14 22:59:48 OPSO sshd\[3035\]: Failed password for root from 157.245.91.72 port 34798 ssh2 Aug 14 23:03:32 OPSO sshd\[3986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root	2020-08-15 05:10:27
157.245.91.72	attackspambots	$f2bV_matches	2020-07-17 04:04:57
157.245.91.72	attack	Invalid user cathy from 157.245.91.72 port 46816	2020-07-15 16:25:15
157.245.91.72	attackbotsspam	Jun 18 17:30:08 vmd26974 sshd[15066]: Failed password for root from 157.245.91.72 port 35688 ssh2 ...	2020-06-19 01:37:30
157.245.91.72	attackbotsspam	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-17 01:41:50
157.245.91.72	attackspam	Jun 16 13:27:47 meumeu sshd[663236]: Invalid user copie from 157.245.91.72 port 58112 Jun 16 13:27:47 meumeu sshd[663236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 Jun 16 13:27:47 meumeu sshd[663236]: Invalid user copie from 157.245.91.72 port 58112 Jun 16 13:27:48 meumeu sshd[663236]: Failed password for invalid user copie from 157.245.91.72 port 58112 ssh2 Jun 16 13:31:21 meumeu sshd[663455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Jun 16 13:31:23 meumeu sshd[663455]: Failed password for root from 157.245.91.72 port 51378 ssh2 Jun 16 13:34:30 meumeu sshd[663591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Jun 16 13:34:32 meumeu sshd[663591]: Failed password for root from 157.245.91.72 port 44646 ssh2 Jun 16 13:37:37 meumeu sshd[663712]: Invalid user app from 157.245.91.72 port 37916 ...	2020-06-16 19:50:18
157.245.91.72	attackbots	(sshd) Failed SSH login from 157.245.91.72 (US/United States/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 13 14:25:50 ubnt-55d23 sshd[5077]: Invalid user monitor from 157.245.91.72 port 52706 Jun 13 14:25:52 ubnt-55d23 sshd[5077]: Failed password for invalid user monitor from 157.245.91.72 port 52706 ssh2	2020-06-13 23:22:30
157.245.91.72	attackspam	Jun 7 08:52:13 jumpserver sshd[104961]: Failed password for root from 157.245.91.72 port 39212 ssh2 Jun 7 08:56:31 jumpserver sshd[104977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Jun 7 08:56:34 jumpserver sshd[104977]: Failed password for root from 157.245.91.72 port 43524 ssh2 ...	2020-06-07 17:23:40
157.245.91.72	attackbots	Jun 4 22:29:26 ncomp sshd[23724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Jun 4 22:29:27 ncomp sshd[23724]: Failed password for root from 157.245.91.72 port 43278 ssh2 Jun 4 22:37:00 ncomp sshd[23899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Jun 4 22:37:02 ncomp sshd[23899]: Failed password for root from 157.245.91.72 port 53102 ssh2	2020-06-05 06:51:24
157.245.91.72	attackspambots	2020-06-03T14:39:57.5227791495-001 sshd[12295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root 2020-06-03T14:39:59.2819641495-001 sshd[12295]: Failed password for root from 157.245.91.72 port 47320 ssh2 2020-06-03T14:43:03.1936811495-001 sshd[12380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root 2020-06-03T14:43:05.4901031495-001 sshd[12380]: Failed password for root from 157.245.91.72 port 60946 ssh2 2020-06-03T14:46:01.0774251495-001 sshd[12502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root 2020-06-03T14:46:03.1434291495-001 sshd[12502]: Failed password for root from 157.245.91.72 port 46338 ssh2 ...	2020-06-04 03:35:49
157.245.91.72	attack	May 29 07:56:18 : SSH login attempts with invalid user	2020-05-30 06:45:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.91.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27212
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.91.145.			IN	A

;; AUTHORITY SECTION:
.			327	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020121601 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 17 11:24:05 CST 2020
;; MSG SIZE  rcvd: 118

Host info

145.91.245.157.in-addr.arpa domain name pointer sentora.liquidsnake.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.91.245.157.in-addr.arpa	name = sentora.liquidsnake.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.54.160.243	attackspam	Jun 6 16:20:03 debian-2gb-nbg1-2 kernel: \[13711951.380101\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.160.243 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=44423 PROTO=TCP SPT=43556 DPT=55669 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-06 22:32:46
183.82.96.113	attackbots	Unauthorized connection attempt from IP address 183.82.96.113 on Port 445(SMB)	2020-06-06 22:52:50
221.15.41.126	attackbotsspam	POP3	2020-06-06 22:24:56
188.166.144.207	attackspam	Jun 6 03:57:55 web9 sshd\[31821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.144.207 user=root Jun 6 03:57:56 web9 sshd\[31821\]: Failed password for root from 188.166.144.207 port 55026 ssh2 Jun 6 04:01:33 web9 sshd\[32386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.144.207 user=root Jun 6 04:01:35 web9 sshd\[32386\]: Failed password for root from 188.166.144.207 port 58476 ssh2 Jun 6 04:05:13 web9 sshd\[507\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.144.207 user=root	2020-06-06 22:55:22
141.98.81.6	attackspam	Unauthorized SSH login attempts	2020-06-06 23:00:10
198.23.192.74	attackbotsspam	[2020-06-06 10:05:06] NOTICE[1288][C-00000d3c] chan_sip.c: Call from '' (198.23.192.74:52640) to extension '+46812111758' rejected because extension not found in context 'public'. [2020-06-06 10:05:06] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-06T10:05:06.782-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="+46812111758",SessionID="0x7f4d74371bc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.23.192.74/52640",ACLName="no_extension_match" [2020-06-06 10:05:31] NOTICE[1288][C-00000d3d] chan_sip.c: Call from '' (198.23.192.74:61698) to extension '90046812111758' rejected because extension not found in context 'public'. [2020-06-06 10:05:31] SECURITY[1303] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-06T10:05:31.018-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90046812111758",SessionID="0x7f4d74136238",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.23.1 ...	2020-06-06 22:24:32
93.40.11.165	attackspambots	"Remote Command Execution: Unix Command Injection - Matched Data: ;ls found within ARGS:username: admin';ls #"	2020-06-06 22:41:07
102.184.216.222	attack	Attempts against non-existent wp-login	2020-06-06 22:20:11
162.243.139.50	attackspam	TCP (SYN) 162.243.139.50:53202 -> port 8080, len 40	2020-06-06 22:57:14
49.204.188.250	attack	Unauthorized connection attempt from IP address 49.204.188.250 on Port 445(SMB)	2020-06-06 23:03:28
163.172.70.142	attack	Triggered by Fail2Ban at Ares web server	2020-06-06 22:27:08
41.32.63.19	attackspam	Unauthorized connection attempt from IP address 41.32.63.19 on Port 445(SMB)	2020-06-06 22:50:14
177.135.93.227	attackspam	Jun 6 15:35:48 jane sshd[7961]: Failed password for root from 177.135.93.227 port 37006 ssh2 ...	2020-06-06 22:56:12
34.82.254.168	attack	2020-06-06T15:33:25.922193sd-86998 sshd[19380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.254.82.34.bc.googleusercontent.com user=root 2020-06-06T15:33:27.762728sd-86998 sshd[19380]: Failed password for root from 34.82.254.168 port 55190 ssh2 2020-06-06T15:36:56.042677sd-86998 sshd[20447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.254.82.34.bc.googleusercontent.com user=root 2020-06-06T15:36:57.848226sd-86998 sshd[20447]: Failed password for root from 34.82.254.168 port 57634 ssh2 2020-06-06T15:40:15.846189sd-86998 sshd[21724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.254.82.34.bc.googleusercontent.com user=root 2020-06-06T15:40:17.636855sd-86998 sshd[21724]: Failed password for root from 34.82.254.168 port 60110 ssh2 ...	2020-06-06 22:30:07
79.124.62.118	attackspambots	TCP (SYN) 79.124.62.118:51906 -> port 50000, len 44	2020-06-06 22:28:31

Recently Reported IPs

181.137.81.5	187.106.83.10	187.106.83.110	178.34.163.236
180.127.89.41	116.24.82.137	115.205.234.105	191.240.67.203
180.235.151.11	138.197.196.255	172.96.191.166	121.142.146.205
82.7.143.101	156.107.107.156	172.96.191.243	187.190.192.75
24.33.144.67	139.99.237.124	51.140.183.218	187.109.104.222