104.144.157.185

Basic Info

City: Buffalo

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.144.157.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12592
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.144.157.185.		IN	A

;; AUTHORITY SECTION:
.			278	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041201 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 13 10:32:41 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 185.157.144.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 185.157.144.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.231.137.83	attackspambots	2020-09-09T16:50:33.518741vps-d63064a2 sshd[35468]: Invalid user guest from 111.231.137.83 port 46004 2020-09-09T16:50:34.922362vps-d63064a2 sshd[35468]: Failed password for invalid user guest from 111.231.137.83 port 46004 ssh2 2020-09-09T16:54:19.440415vps-d63064a2 sshd[35852]: User root from 111.231.137.83 not allowed because not listed in AllowUsers 2020-09-09T16:54:19.462026vps-d63064a2 sshd[35852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.137.83 user=root 2020-09-09T16:54:19.440415vps-d63064a2 sshd[35852]: User root from 111.231.137.83 not allowed because not listed in AllowUsers 2020-09-09T16:54:21.550195vps-d63064a2 sshd[35852]: Failed password for invalid user root from 111.231.137.83 port 43906 ssh2 ...	2020-09-10 23:34:25
54.37.156.188	attackbotsspam	Sep 10 14:02:56 ns308116 sshd[25151]: Invalid user seek321 from 54.37.156.188 port 33957 Sep 10 14:02:56 ns308116 sshd[25151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.188 Sep 10 14:02:59 ns308116 sshd[25151]: Failed password for invalid user seek321 from 54.37.156.188 port 33957 ssh2 Sep 10 14:06:52 ns308116 sshd[29284]: Invalid user ns2c from 54.37.156.188 port 36019 Sep 10 14:06:52 ns308116 sshd[29284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.188 ...	2020-09-11 00:06:29
117.89.12.197	attack	$f2bV_matches	2020-09-11 00:11:14
138.197.146.132	attackbotsspam	138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:21 +0200] "POST /wp-login.php HTTP/1.1" 200 2672 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:26 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:26 +0200] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-09-10 23:58:21
51.178.50.20	attackbotsspam	(sshd) Failed SSH login from 51.178.50.20 (FR/France/20.ip-51-178-50.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 10 13:34:48 srv sshd[9175]: Invalid user echo from 51.178.50.20 port 59074 Sep 10 13:34:50 srv sshd[9175]: Failed password for invalid user echo from 51.178.50.20 port 59074 ssh2 Sep 10 13:46:47 srv sshd[9382]: Invalid user matty from 51.178.50.20 port 59674 Sep 10 13:46:48 srv sshd[9382]: Failed password for invalid user matty from 51.178.50.20 port 59674 ssh2 Sep 10 13:50:11 srv sshd[9428]: Invalid user Administrator from 51.178.50.20 port 38040	2020-09-10 23:43:34
113.22.75.174	attack	445	2020-09-10 23:30:25
74.208.160.87	attackspambots	Invalid user istrnd from 74.208.160.87 port 49938	2020-09-10 23:36:26
167.172.231.211	attackspambots	scans once in preceeding hours on the ports (in chronological order) 22259 resulting in total of 5 scans from 167.172.0.0/16 block.	2020-09-10 23:43:02
131.100.81.219	attack	Brute force attempt	2020-09-11 00:08:18
181.50.251.25	attackspambots	Sep 10 14:19:30 vlre-nyc-1 sshd\[18869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.50.251.25 user=root Sep 10 14:19:32 vlre-nyc-1 sshd\[18869\]: Failed password for root from 181.50.251.25 port 23597 ssh2 Sep 10 14:23:34 vlre-nyc-1 sshd\[18907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.50.251.25 user=root Sep 10 14:23:36 vlre-nyc-1 sshd\[18907\]: Failed password for root from 181.50.251.25 port 53230 ssh2 Sep 10 14:27:44 vlre-nyc-1 sshd\[18955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.50.251.25 user=root ...	2020-09-10 23:57:29
3.235.63.186	attack	port scan and connect, tcp 443 (https)	2020-09-10 23:42:41
5.253.27.243	attack	prod6 ...	2020-09-10 23:45:55
165.22.122.246	attackbotsspam	Sep 10 18:36:24 journals sshd\[29000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.122.246 user=root Sep 10 18:36:26 journals sshd\[29000\]: Failed password for root from 165.22.122.246 port 37070 ssh2 Sep 10 18:40:02 journals sshd\[29470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.122.246 user=root Sep 10 18:40:04 journals sshd\[29470\]: Failed password for root from 165.22.122.246 port 42090 ssh2 Sep 10 18:43:42 journals sshd\[29833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.122.246 user=root ...	2020-09-10 23:45:10
194.180.224.115	attackspam	SSH Brute Force	2020-09-11 00:03:41
118.27.39.94	attack	Sep 10 16:34:43 Ubuntu-1404-trusty-64-minimal sshd\[14523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.39.94 user=root Sep 10 16:34:45 Ubuntu-1404-trusty-64-minimal sshd\[14523\]: Failed password for root from 118.27.39.94 port 47514 ssh2 Sep 10 16:40:28 Ubuntu-1404-trusty-64-minimal sshd\[30815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.39.94 user=root Sep 10 16:40:30 Ubuntu-1404-trusty-64-minimal sshd\[30815\]: Failed password for root from 118.27.39.94 port 38588 ssh2 Sep 10 16:44:24 Ubuntu-1404-trusty-64-minimal sshd\[11876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.39.94 user=root	2020-09-10 23:50:07

Recently Reported IPs

104.144.157.174	104.144.159.125	104.144.17.228	104.144.175.194
104.144.180.184	104.144.181.240	104.144.184.71	104.144.185.246
158.227.106.213	104.144.186.1	104.144.186.17	104.144.187.52
104.144.191.239	104.144.203.84	104.144.208.150	104.144.21.217
104.144.21.246	104.144.21.55	104.144.215.139	104.16.28.138