157.230.38.149

Basic Info

City: Singapore

Region: Central Singapore Community Development Council

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.230.38.102	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-13 23:24:06
157.230.38.102	attackbotsspam	ET SCAN NMAP -sS window 1024	2020-10-13 14:41:09
157.230.38.102	attack	Multiport scan 40 ports : 515 638 1020 1162 2670 3085 4454 4534 5335 6455 6931 9565 10000 10576 11309 12391 14203 14477 14757 17593 17613 17838 18129 20032 21537 22143 22316 22771 23050 23595 23604 23917 24827 25572 28313 28367 28764 28878 31938 31997	2020-10-13 07:21:03
157.230.38.102	attack	(sshd) Failed SSH login from 157.230.38.102 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 09:27:38 optimus sshd[29410]: Invalid user master from 157.230.38.102 Oct 12 09:27:38 optimus sshd[29410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 Oct 12 09:27:40 optimus sshd[29410]: Failed password for invalid user master from 157.230.38.102 port 47814 ssh2 Oct 12 09:31:35 optimus sshd[31523]: Invalid user admin2 from 157.230.38.102 Oct 12 09:31:35 optimus sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102	2020-10-12 21:56:14
157.230.38.102	attack	Oct 11 19:11:48 web1 sshd\[11357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 user=root Oct 11 19:11:51 web1 sshd\[11357\]: Failed password for root from 157.230.38.102 port 51860 ssh2 Oct 11 19:15:48 web1 sshd\[11820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 user=root Oct 11 19:15:50 web1 sshd\[11820\]: Failed password for root from 157.230.38.102 port 57428 ssh2 Oct 11 19:19:55 web1 sshd\[12267\]: Invalid user jason from 157.230.38.102 Oct 11 19:19:55 web1 sshd\[12267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102	2020-10-12 13:24:25
157.230.38.102	attackbots	[f2b] sshd bruteforce, retries: 1	2020-10-08 04:54:46
157.230.38.102	attackbots	firewall-block, port(s): 1020/tcp	2020-10-07 21:17:37
157.230.38.102	attack	Port Scan ...	2020-10-07 13:04:04
157.230.38.102	attack	firewall-block, port(s): 25814/tcp	2020-09-30 10:01:49
157.230.38.102	attackbots	Sep 29 20:38:43 abendstille sshd\[29093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 user=root Sep 29 20:38:45 abendstille sshd\[29093\]: Failed password for root from 157.230.38.102 port 48462 ssh2 Sep 29 20:42:44 abendstille sshd\[32738\]: Invalid user temp from 157.230.38.102 Sep 29 20:42:44 abendstille sshd\[32738\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 Sep 29 20:42:46 abendstille sshd\[32738\]: Failed password for invalid user temp from 157.230.38.102 port 56160 ssh2 ...	2020-09-30 02:55:18
157.230.38.102	attackbotsspam	TCP (SYN) 157.230.38.102:49598 -> port 18652, len 44	2020-09-29 18:58:14
157.230.38.102	attackspam	scans 2 times in preceeding hours on the ports (in chronological order) 17838 22143	2020-09-20 21:53:02
157.230.38.102	attack	TCP (SYN) 157.230.38.102:53875 -> port 22143, len 44	2020-09-20 13:45:45
157.230.38.102	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-20 05:46:14
157.230.38.102	attackbotsspam	Sep 16 13:58:24 inter-technics sshd[32010]: Invalid user baba from 157.230.38.102 port 47150 Sep 16 13:58:24 inter-technics sshd[32010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 Sep 16 13:58:24 inter-technics sshd[32010]: Invalid user baba from 157.230.38.102 port 47150 Sep 16 13:58:26 inter-technics sshd[32010]: Failed password for invalid user baba from 157.230.38.102 port 47150 ssh2 Sep 16 14:03:01 inter-technics sshd[32342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 user=root Sep 16 14:03:03 inter-technics sshd[32342]: Failed password for root from 157.230.38.102 port 57006 ssh2 ...	2020-09-16 20:24:22

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.230.38.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34761
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.230.38.149.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 08:43:39 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 149.38.230.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 149.38.230.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.237.214	attack	Invalid user sandeep from 51.38.237.214 port 47108	2019-10-27 02:11:47
193.70.0.93	attack	$f2bV_matches	2019-10-27 02:41:12
51.254.131.137	attackspambots	Oct 26 19:43:03 icinga sshd[11742]: Failed password for root from 51.254.131.137 port 56554 ssh2 ...	2019-10-27 02:32:20
192.236.195.85	attackspam	2019-10-26T17:06:17.715055abusebot-5.cloudsearch.cf sshd\[20879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=hwsrv-629362.hostwindsdns.com user=root	2019-10-27 02:15:54
149.56.45.87	attack	SSH bruteforce (Triggered fail2ban)	2019-10-27 02:47:07
103.228.55.79	attackbots	Invalid user hamilton from 103.228.55.79 port 32846	2019-10-27 02:08:12
209.251.180.190	attack	$f2bV_matches	2019-10-27 02:38:38
86.105.52.90	attack	Oct 26 19:41:46 server sshd\[15921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.105.52.90 user=root Oct 26 19:41:48 server sshd\[15921\]: Failed password for root from 86.105.52.90 port 42706 ssh2 Oct 26 19:48:30 server sshd\[17560\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.105.52.90 user=root Oct 26 19:48:32 server sshd\[17560\]: Failed password for root from 86.105.52.90 port 41910 ssh2 Oct 26 19:56:00 server sshd\[19742\]: Invalid user brad from 86.105.52.90 Oct 26 19:56:00 server sshd\[19742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.105.52.90 ...	2019-10-27 02:09:00
148.70.11.143	attack	2019-10-26T15:54:10.780688abusebot-5.cloudsearch.cf sshd\[20171\]: Invalid user hp from 148.70.11.143 port 38670	2019-10-27 02:20:11
54.38.241.162	attackbotsspam	Oct 26 16:01:02 host sshd[33449]: Invalid user pradeep from 54.38.241.162 port 54396 ...	2019-10-27 02:31:28
192.241.246.50	attackbotsspam	Oct 26 21:29:59 sauna sshd[6923]: Failed password for root from 192.241.246.50 port 36520 ssh2 ...	2019-10-27 02:41:30
188.166.228.244	attackspam	Invalid user ts3bot from 188.166.228.244 port 47894	2019-10-27 02:41:50
139.59.41.170	attackbotsspam	Oct 26 16:32:42 server sshd\[28953\]: Invalid user kathe from 139.59.41.170 Oct 26 16:32:42 server sshd\[28953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.170 Oct 26 16:32:44 server sshd\[28953\]: Failed password for invalid user kathe from 139.59.41.170 port 37232 ssh2 Oct 26 16:40:44 server sshd\[31027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.170 user=root Oct 26 16:40:46 server sshd\[31027\]: Failed password for root from 139.59.41.170 port 37944 ssh2 ...	2019-10-27 02:47:29
40.73.101.100	attackbots	Invalid user zhanghua from 40.73.101.100 port 49314	2019-10-27 02:33:31
170.80.225.180	attackspambots	Invalid user admin from 170.80.225.180 port 52416	2019-10-27 02:18:25

Recently Reported IPs

162.243.146.235	162.243.142.154	107.6.169.251	94.5.82.126
112.112.18.146	164.52.24.162	102.165.53.158	85.223.142.100
75.162.82.105	139.0.20.26	185.180.248.22	183.82.63.212
71.6.233.137	120.197.66.44	185.234.218.74	121.238.50.203
171.223.92.189	188.166.31.205	84.101.180.89	194.1.157.121