45.157.2.159 - IPInfo

Basic Info

City: Santa Monica

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.157.232.128	attackbots	SSH Invalid Login	2020-05-17 05:55:21
45.157.232.128	attackbots	May 16 02:12:02 buvik sshd[12447]: Invalid user radware from 45.157.232.128 May 16 02:12:02 buvik sshd[12447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 May 16 02:12:03 buvik sshd[12447]: Failed password for invalid user radware from 45.157.232.128 port 38430 ssh2 ...	2020-05-16 15:26:18
45.157.232.128	attack	Invalid user tbd from 45.157.232.128 port 54918	2020-05-16 00:26:32
45.157.213.123	attackbotsspam	1588871909 - 05/07/2020 19:18:29 Host: 45.157.213.123/45.157.213.123 Port: 445 TCP Blocked	2020-05-08 05:24:11
45.157.232.128	attack	Apr 27 04:00:34 ip-172-31-61-156 sshd[16615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 Apr 27 04:00:34 ip-172-31-61-156 sshd[16615]: Invalid user tom1 from 45.157.232.128 Apr 27 04:00:36 ip-172-31-61-156 sshd[16615]: Failed password for invalid user tom1 from 45.157.232.128 port 57300 ssh2 Apr 27 04:06:50 ip-172-31-61-156 sshd[16894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 user=root Apr 27 04:06:52 ip-172-31-61-156 sshd[16894]: Failed password for root from 45.157.232.128 port 42596 ssh2 ...	2020-04-27 12:20:36
45.157.232.128	attackspam	Lines containing failures of 45.157.232.128 Apr 26 20:33:59 mailserver sshd[17087]: Invalid user soporte from 45.157.232.128 port 47948 Apr 26 20:33:59 mailserver sshd[17087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 Apr 26 20:34:01 mailserver sshd[17087]: Failed password for invalid user soporte from 45.157.232.128 port 47948 ssh2 Apr 26 20:34:01 mailserver sshd[17087]: Received disconnect from 45.157.232.128 port 47948:11: Bye Bye [preauth] Apr 26 20:34:01 mailserver sshd[17087]: Disconnected from invalid user soporte 45.157.232.128 port 47948 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.157.232.128	2020-04-27 03:24:31
45.157.217.108	attackspam	Date: Mon, 20 Apr 2020 19:08:46 -0000 From: "zantac-cancer Associate" Subject: Zantac Legal Action - - australianprofile.com resolves to 86.105.186.236	2020-04-22 04:27:46
45.157.212.135	attack	This IP hacked my private game server and attempted to destroy my game.	2020-01-03 06:32:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.157.2.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61825
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.157.2.159.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 02 00:19:39 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 159.2.157.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 159.2.157.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.202.5.175	attack	Oct 8 00:30:56 mail sshd[911907]: Failed password for root from 154.202.5.175 port 55394 ssh2 Oct 8 00:44:13 mail sshd[912856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.202.5.175 user=root Oct 8 00:44:16 mail sshd[912856]: Failed password for root from 154.202.5.175 port 55948 ssh2 ...	2020-10-08 08:36:56
157.97.80.205	attackbots	Oct 7 22:46:33 db sshd[21241]: User root from 157.97.80.205 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-08 08:42:38
195.201.117.103	attackspam	Forbidden directory scan :: 2020/10/07 20:47:30 [error] 47022#47022: *156658 access forbidden by rule, client: 195.201.117.103, server: [censored_1], request: "GET //wp-content/plugins/wp-file-manager/readme.txt HTTP/1.1", host: "[censored_1]"	2020-10-08 12:15:16
122.194.229.59	attackbotsspam	Oct 8 02:42:31 sshgateway sshd\[11117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.194.229.59 user=root Oct 8 02:42:33 sshgateway sshd\[11117\]: Failed password for root from 122.194.229.59 port 5684 ssh2 Oct 8 02:42:46 sshgateway sshd\[11117\]: error: maximum authentication attempts exceeded for root from 122.194.229.59 port 5684 ssh2 \[preauth\]	2020-10-08 08:43:31
37.120.198.197	attack	2020-10-07 23:07:11 dovecot_login authenticator failed for \(WIN-25FFVSIPLS1\) \[37.120.198.197\]: 535 Incorrect authentication data \(set_id=infoeozo\) 2020-10-07 23:07:11 H=\(WIN-25FFVSIPLS1\) \[37.120.198.197\] sender verify fail for \: Unrouteable address 2020-10-07 23:07:11 H=\(WIN-25FFVSIPLS1\) \[37.120.198.197\] F=\ rejected RCPT \: Sender verify failed 2020-10-07 23:07:23 dovecot_login authenticator failed for \(WIN-25FFVSIPLS1\) \[37.120.198.197\]: 535 Incorrect authentication data \(set_id=info\) 2020-10-07 23:07:23 H=\(WIN-25FFVSIPLS1\) \[37.120.198.197\] F=\ rejected RCPT \: relay not permitted	2020-10-08 08:35:28
190.0.246.2	attack	Oct 8 01:24:37 vps639187 sshd\[30778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.0.246.2 user=root Oct 8 01:24:40 vps639187 sshd\[30778\]: Failed password for root from 190.0.246.2 port 32944 ssh2 Oct 8 01:28:44 vps639187 sshd\[30828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.0.246.2 user=root ...	2020-10-08 08:38:08
129.28.195.96	attackspam	Lines containing failures of 129.28.195.96 Oct 6 20:55:45 nemesis sshd[23953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.195.96 user=r.r Oct 6 20:55:47 nemesis sshd[23953]: Failed password for r.r from 129.28.195.96 port 48940 ssh2 Oct 6 20:55:47 nemesis sshd[23953]: Received disconnect from 129.28.195.96 port 48940:11: Bye Bye [preauth] Oct 6 20:55:47 nemesis sshd[23953]: Disconnected from authenticating user r.r 129.28.195.96 port 48940 [preauth] Oct 6 21:18:47 nemesis sshd[31412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.195.96 user=r.r Oct 6 21:18:50 nemesis sshd[31412]: Failed password for r.r from 129.28.195.96 port 39464 ssh2 Oct 6 21:18:52 nemesis sshd[31412]: Received disconnect from 129.28.195.96 port 39464:11: Bye Bye [preauth] Oct 6 21:18:52 nemesis sshd[31412]: Disconnected from authenticating user r.r 129.28.195.96 port 39464 [preauth] Oct 6........ ------------------------------	2020-10-08 12:03:07
123.120.24.69	attackspambots	Automatic report - Banned IP Access	2020-10-08 12:24:14
49.88.112.70	attackbots	Oct 8 06:21:01 dignus sshd[2365]: Failed password for root from 49.88.112.70 port 63884 ssh2 Oct 8 06:21:03 dignus sshd[2365]: Failed password for root from 49.88.112.70 port 63884 ssh2 Oct 8 06:23:36 dignus sshd[2394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root Oct 8 06:23:39 dignus sshd[2394]: Failed password for root from 49.88.112.70 port 37840 ssh2 Oct 8 06:23:41 dignus sshd[2394]: Failed password for root from 49.88.112.70 port 37840 ssh2 ...	2020-10-08 12:11:36
220.186.163.5	attackbotsspam	Oct 8 05:22:26 dev0-dcde-rnet sshd[5581]: Failed password for root from 220.186.163.5 port 42730 ssh2 Oct 8 05:35:57 dev0-dcde-rnet sshd[5704]: Failed password for root from 220.186.163.5 port 57960 ssh2	2020-10-08 12:05:40
210.112.232.6	attackbots	2020-10-08T00:58:57.863949ks3355764 sshd[21821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.112.232.6 user=root 2020-10-08T00:59:00.445154ks3355764 sshd[21821]: Failed password for root from 210.112.232.6 port 60103 ssh2 ...	2020-10-08 12:08:58
112.85.42.85	attackspambots	Oct 8 06:07:47 serwer sshd\[12352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.85 user=root Oct 8 06:07:48 serwer sshd\[12352\]: Failed password for root from 112.85.42.85 port 25534 ssh2 Oct 8 06:07:52 serwer sshd\[12352\]: Failed password for root from 112.85.42.85 port 25534 ssh2 ...	2020-10-08 12:15:42
188.246.224.126	attackspam	Port scan: Attack repeated for 24 hours	2020-10-08 12:02:16
116.255.161.148	attackbots	Oct 7 23:44:15 Server sshd[842871]: Failed password for root from 116.255.161.148 port 34358 ssh2 Oct 7 23:46:25 Server sshd[843057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.161.148 user=root Oct 7 23:46:27 Server sshd[843057]: Failed password for root from 116.255.161.148 port 40136 ssh2 Oct 7 23:48:42 Server sshd[843210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.255.161.148 user=root Oct 7 23:48:44 Server sshd[843210]: Failed password for root from 116.255.161.148 port 45912 ssh2 ...	2020-10-08 12:08:03
69.221.223.66	spambots	Stay off of my shit	2020-10-08 10:43:52

Recently Reported IPs

222.220.218.222	72.13.177.155	72.116.170.238	220.186.120.67
213.126.183.196	133.201.38.130	165.213.110.170	82.134.17.137
189.27.239.78	213.162.92.250	106.177.194.168	73.235.143.248
184.215.115.148	41.59.62.58	160.143.16.42	202.194.97.253
59.177.146.230	140.118.96.139	157.230.146.19	55.78.13.72