45.157.2.159 - IPInfo

Basic Info

City: Santa Monica

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.157.232.128	attackbots	SSH Invalid Login	2020-05-17 05:55:21
45.157.232.128	attackbots	May 16 02:12:02 buvik sshd[12447]: Invalid user radware from 45.157.232.128 May 16 02:12:02 buvik sshd[12447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 May 16 02:12:03 buvik sshd[12447]: Failed password for invalid user radware from 45.157.232.128 port 38430 ssh2 ...	2020-05-16 15:26:18
45.157.232.128	attack	Invalid user tbd from 45.157.232.128 port 54918	2020-05-16 00:26:32
45.157.213.123	attackbotsspam	1588871909 - 05/07/2020 19:18:29 Host: 45.157.213.123/45.157.213.123 Port: 445 TCP Blocked	2020-05-08 05:24:11
45.157.232.128	attack	Apr 27 04:00:34 ip-172-31-61-156 sshd[16615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 Apr 27 04:00:34 ip-172-31-61-156 sshd[16615]: Invalid user tom1 from 45.157.232.128 Apr 27 04:00:36 ip-172-31-61-156 sshd[16615]: Failed password for invalid user tom1 from 45.157.232.128 port 57300 ssh2 Apr 27 04:06:50 ip-172-31-61-156 sshd[16894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 user=root Apr 27 04:06:52 ip-172-31-61-156 sshd[16894]: Failed password for root from 45.157.232.128 port 42596 ssh2 ...	2020-04-27 12:20:36
45.157.232.128	attackspam	Lines containing failures of 45.157.232.128 Apr 26 20:33:59 mailserver sshd[17087]: Invalid user soporte from 45.157.232.128 port 47948 Apr 26 20:33:59 mailserver sshd[17087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 Apr 26 20:34:01 mailserver sshd[17087]: Failed password for invalid user soporte from 45.157.232.128 port 47948 ssh2 Apr 26 20:34:01 mailserver sshd[17087]: Received disconnect from 45.157.232.128 port 47948:11: Bye Bye [preauth] Apr 26 20:34:01 mailserver sshd[17087]: Disconnected from invalid user soporte 45.157.232.128 port 47948 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.157.232.128	2020-04-27 03:24:31
45.157.217.108	attackspam	Date: Mon, 20 Apr 2020 19:08:46 -0000 From: "zantac-cancer Associate" Subject: Zantac Legal Action - - australianprofile.com resolves to 86.105.186.236	2020-04-22 04:27:46
45.157.212.135	attack	This IP hacked my private game server and attempted to destroy my game.	2020-01-03 06:32:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.157.2.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61825
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.157.2.159.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 02 00:19:39 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 159.2.157.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 159.2.157.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.229.168.131	attackbotsspam	Automatic report - Web App Attack	2019-06-23 11:52:57
2604:a880:800:10::3775:c001	attack	[munged]::443 2604:a880:800:10::3775:c001 - - [23/Jun/2019:04:37:58 +0200] "POST /[munged]: HTTP/1.1" 200 6986 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:800:10::3775:c001 - - [23/Jun/2019:04:38:04 +0200] "POST /[munged]: HTTP/1.1" 200 6846 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:800:10::3775:c001 - - [23/Jun/2019:04:38:04 +0200] "POST /[munged]: HTTP/1.1" 200 6846 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:800:10::3775:c001 - - [23/Jun/2019:04:38:08 +0200] "POST /[munged]: HTTP/1.1" 200 6845 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:800:10::3775:c001 - - [23/Jun/2019:04:38:08 +0200] "POST /[munged]: HTTP/1.1" 200 6845 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2604:a880:800:10::3775:c001 - - [23/Jun/	2019-06-23 11:56:19
189.112.228.153	attack	2019-06-23T03:04:24.179881abusebot-5.cloudsearch.cf sshd\[8239\]: Invalid user ian from 189.112.228.153 port 38465	2019-06-23 12:10:03
194.58.70.215	attack	445/tcp 445/tcp 445/tcp [2019-04-26/06-22]3pkt	2019-06-23 12:33:06
178.173.49.30	attack	445/tcp 445/tcp [2019-05-23/06-22]2pkt	2019-06-23 11:58:49
46.229.173.67	attackspambots	Fail2Ban Ban Triggered	2019-06-23 12:20:36
122.227.52.114	attack	445/tcp 445/tcp 445/tcp... [2019-04-27/06-22]10pkt,1pt.(tcp)	2019-06-23 12:18:36
162.144.110.32	attackbots	fail2ban honeypot	2019-06-23 12:17:30
60.251.111.30	attackspambots	445/tcp 445/tcp 445/tcp... [2019-04-27/06-22]14pkt,1pt.(tcp)	2019-06-23 12:11:18
170.0.128.10	attackbots	Jun 22 19:28:13 server1 sshd\[26811\]: Invalid user pegas from 170.0.128.10 Jun 22 19:28:13 server1 sshd\[26811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.0.128.10 Jun 22 19:28:15 server1 sshd\[26811\]: Failed password for invalid user pegas from 170.0.128.10 port 52628 ssh2 Jun 22 19:29:44 server1 sshd\[27162\]: Invalid user gk from 170.0.128.10 Jun 22 19:29:44 server1 sshd\[27162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.0.128.10 ...	2019-06-23 12:32:36
103.108.244.4	attackspam	ports scanning	2019-06-23 12:10:39
170.82.7.250	attack	23/tcp 8080/tcp... [2019-05-03/06-22]5pkt,2pt.(tcp)	2019-06-23 12:42:25
87.98.253.31	attackbots	445/tcp 445/tcp 445/tcp... [2019-06-01/22]6pkt,1pt.(tcp)	2019-06-23 12:20:17
148.81.194.153	attackspam	NAME : NASK-ACADEMIC CIDR : 148.81.192.0/22 \| STATUS : 200 ROBOT {Looking for resource vulnerabilities} DDoS Attack Poland - block certain countries :) IP: 148.81.194.153 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-06-23 12:42:53
157.230.252.92	attack	ports scanning	2019-06-23 12:33:41

Recently Reported IPs

222.220.218.222	72.13.177.155	72.116.170.238	220.186.120.67
213.126.183.196	133.201.38.130	165.213.110.170	82.134.17.137
189.27.239.78	213.162.92.250	106.177.194.168	73.235.143.248
184.215.115.148	41.59.62.58	160.143.16.42	202.194.97.253
59.177.146.230	140.118.96.139	157.230.146.19	55.78.13.72