JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.245.63.81

157.245.63.81 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.245.63.81

Whois 157.245.63.81

IP Abuse Reports for 157.245.63.81:

This IP address has been reported a total of 40 times from 34 distinct sources. 157.245.63.81 was first reported on June 27th 2025, and the most recent report was 6 months ago.

Old Reports: The most recent abuse report for this IP address is from 6 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Rayulcifer	2025-12-08 03:16:11 (6 months ago)	157.245.63.81 - - [07/Dec/2025:22:14:31 -0500] "CONNECT huso.kpru.ac.th:443:443 HTTP/1.1" 400 492 "- ... show more 157.245.63.81 - - [07/Dec/2025:22:14:31 -0500] "CONNECT huso.kpru.ac.th:443:443 HTTP/1.1" 400 492 "-" "-" 157.245.63.81 - - [07/Dec/2025:22:16:10 -0500] "CONNECT mba.nida.ac.th:443:443 HTTP/1.1" 400 492 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Rayulcifer	2025-12-07 03:12:49 (6 months ago)	157.245.63.81 - - [06/Dec/2025:22:12:23 -0500] "CONNECT pnkids.com:443:443 HTTP/1.1" 400 492 "-" "-" ... show more 157.245.63.81 - - [06/Dec/2025:22:12:23 -0500] "CONNECT pnkids.com:443:443 HTTP/1.1" 400 492 "-" "-" 157.245.63.81 - - [06/Dec/2025:22:12:47 -0500] "CONNECT pnkids.com:443:443 HTTP/1.1" 400 492 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Rayulcifer	2025-12-06 03:12:10 (6 months ago)	157.245.63.81 - - [05/Dec/2025:22:11:32 -0500] "CONNECT amp1.ampwin.org:443:443 HTTP/1.1" 400 492 "- ... show more 157.245.63.81 - - [05/Dec/2025:22:11:32 -0500] "CONNECT amp1.ampwin.org:443:443 HTTP/1.1" 400 492 "-" "-" 157.245.63.81 - - [05/Dec/2025:22:12:09 -0500] "CONNECT amp1.ampwin.org:443:443 HTTP/1.1" 400 492 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
🇺🇸 Rayulcifer	2025-12-04 23:04:58 (6 months ago)	157.245.63.81 - - [04/Dec/2025:18:04:57 -0500] "CONNECT amp1.ampwin.org:443 HTTP/1.1" 502 586 "-" "- ... show more 157.245.63.81 - - [04/Dec/2025:18:04:57 -0500] "CONNECT amp1.ampwin.org:443 HTTP/1.1" 502 586 "-" "-" 157.245.63.81 - - [04/Dec/2025:18:04:57 -0500] "\x16\x03\x01" 400 491 "-" "-" ... show less	Open Proxy Port Scan Hacking Web App Attack SSH
Anonymous	2025-06-30 14:29:07 (11 months ago)	SystemBC.Botnet	DDoS Attack
🇨🇳 ThreatBook.io	2025-06-28 23:34:59 (11 months ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/157.245.63.81 2025-06- ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/157.245.63.81 2025-06-28 00:15:12 /1.php 2025-06-28 00:15:12 /password.php 2025-06-28 00:15:12 /upl.php 2025-06-28 00:15:12 /geoip/ 2025-06-28 00:15:13 /form.html 2025-06-28 00:15:12 /t4 2025-06-28 00:15:13 /favicon.ico 2025-06-28 00:15:13 /systembc/password.php show less	Web App Attack
🇧🇷 SOC-BR	2025-06-28 07:17:28 (11 months ago)	Attack detected by Fortinet - backdoor: SystemBC.Botnet - 2025-06-27 17:41:52 - Source Port 53236	Port Scan Hacking
🇩🇪 Ciaran	2025-06-27 21:01:03 (11 months ago)	Honeypot hit from 157.245.63.81 targeting a server in Germany. Unauthorized HTTP access attempt to p ... show more Honeypot hit from 157.245.63.81 targeting a server in Germany. Unauthorized HTTP access attempt to path "/geoip/", "/1.php", "/password.php", "/upl.php", "/t4" show less	Bad Web Bot Web App Attack
🇸🇬 anotherwatcher	2025-06-27 20:03:08 (11 months ago)	157.245.63.81 - - [27/Jun/2025:20:03:07 +0000] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xC5\x9B\xE4\x ... show more 157.245.63.81 - - [27/Jun/2025:20:03:07 +0000] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xC5\x9B\xE4\xA3\x92\xD7_2\x8C\xC3\xEF}@s\x12\x96&\x164f\xCFF\xEC\xE2U\x071H\xCCrfd\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 166 "-" "-" ... show less	Bad Web Bot
🇺🇸 WebRanger	2025-06-27 19:30:13 (11 months ago)	\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\x1C\xAA\xE3o 400 150 "- \x16\x03\x01\x00u\x01\x00\x00q\x03\x0 ... show more \x16\x03\x01\x00u\x01\x00\x00q\x03\x03\x1C\xAA\xE3o 400 150 "- \x16\x03\x01\x00u\x01\x00\x00q\x03\x03\x1C\xAA\xE3o" 400 150 "-" "-" "- show less	Bad Web Bot Web App Attack
🇫🇷 Vaction	2025-06-27 19:14:09 (11 months ago)	157.245.63.81 - - [27/Jun/2025:21:14:09 +0200] "GET /geoip/ HTTP/1.1" 404 341 "-" "Mozilla/5.0 (Wind ... show more 157.245.63.81 - - [27/Jun/2025:21:14:09 +0200] "GET /geoip/ HTTP/1.1" 404 341 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" show less	Hacking Bad Web Bot Web App Attack
🇺🇸 crooze.net	2025-06-27 19:13:04 (11 months ago)	157.245.63.81 - - [27/Jun/2025:15:13:04 -0400] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xC7\xC4\x94x\ ... show more 157.245.63.81 - - [27/Jun/2025:15:13:04 -0400] "\x16\x03\x01\x00u\x01\x00\x00q\x03\x03\xC7\xC4\x94x\xB3\x85\x95\x91\x07\xC8\xBE\xF2\xC8@\x14\xE1\x10G\x84\x00\x04\x10\xB0\xCA\xEE^?47u\x11:\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 150 "-" "-" ... show less	Hacking Web App Attack
🇬🇧 djboddington	2025-06-27 18:46:44 (11 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-backdoors-attempts	Hacking Exploited Host
🇫🇷 Kraften	2025-06-27 18:10:25 (11 months ago)	Tentative Web App attack ...	Web App Attack
🇩🇪 GAS	2025-06-27 17:53:54 (11 months ago)	157.245.63.81 - - [27/Jun/2025:19:53:53 +0200] "GET /geoip/ HTTP/1.1" 404 2179 "-" "Mozilla/5.0 (Win ... show more 157.245.63.81 - - [27/Jun/2025:19:53:53 +0200] "GET /geoip/ HTTP/1.1" 404 2179 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 157.245.63.81 - - [27/Jun/2025:19:53:53 +0200] "GET /1.php HTTP/1.1" 404 295 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" ... show less	Port Scan

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.83

🇺🇸 2600:1900:4120:e3fb:0:75::

🇬🇧 86.24.74.12

🇮🇹 82.48.30.129

🇹🇷 78.186.116.90

🇳🇱 45.148.10.147

🇺🇸 44.250.200.239

🇬🇧 2a06:4880:2000::37

🇨🇳 101.200.242.201

🇬🇧 64.227.41.39

🇺🇸 52.146.90.191

🇧🇿 45.227.254.156

🇰🇷 222.239.251.12

🇺🇸 192.169.152.102

🇦🇹 192.164.223.65

🇫🇷 91.231.89.14

🇧🇬 79.124.40.126

🇳🇱 45.148.10.183

🇺🇸 66.132.172.159

🇰🇷 221.156.126.1