157.245.136.35

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-29 19:22:48

Comments on same subnet:

IP	Type	Details	Datetime
157.245.136.221	botsattackproxy	SSH bot	2024-04-26 12:58:07
157.245.136.195	attackspambots	Unauthorized connection attempt detected from IP address 157.245.136.195 to port 2220 [J]	2020-01-26 21:15:44
157.245.136.253	attackspam	Oct 6 13:01:42 kmh-wsh-001-nbg03 sshd[32620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.136.253 user=r.r Oct 6 13:01:43 kmh-wsh-001-nbg03 sshd[32620]: Failed password for r.r from 157.245.136.253 port 44194 ssh2 Oct 6 13:01:43 kmh-wsh-001-nbg03 sshd[32620]: Received disconnect from 157.245.136.253 port 44194:11: Bye Bye [preauth] Oct 6 13:01:43 kmh-wsh-001-nbg03 sshd[32620]: Disconnected from 157.245.136.253 port 44194 [preauth] Oct 6 13:13:21 kmh-wsh-001-nbg03 sshd[635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.136.253 user=r.r Oct 6 13:13:23 kmh-wsh-001-nbg03 sshd[635]: Failed password for r.r from 157.245.136.253 port 44652 ssh2 Oct 6 13:13:23 kmh-wsh-001-nbg03 sshd[635]: Received disconnect from 157.245.136.253 port 44652:11: Bye Bye [preauth] Oct 6 13:13:23 kmh-wsh-001-nbg03 sshd[635]: Disconnected from 157.245.136.253 port 44652 [preauth] Oct 6 1........ -------------------------------	2019-10-08 02:46:46
157.245.136.253	attack	Oct 6 18:11:19 piServer sshd[9030]: Failed password for root from 157.245.136.253 port 33966 ssh2 Oct 6 18:15:43 piServer sshd[9269]: Failed password for root from 157.245.136.253 port 48172 ssh2 ...	2019-10-07 03:07:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.136.35
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9990
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.136.35.			IN	A

;; AUTHORITY SECTION:
.			556	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092900 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 19:22:44 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 35.136.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 35.136.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.88.243.147	attackbots	Dovecot Invalid User Login Attempt.	2020-05-16 14:59:56
36.152.38.149	attack	$f2bV_matches	2020-05-16 15:30:43
104.248.61.192	attackbotsspam	Auto Fail2Ban report, multiple SSH login attempts.	2020-05-16 15:03:22
140.246.184.210	attackbots	5x Failed Password	2020-05-16 15:37:27
92.118.188.136	attackspam	Invalid user ubuntu from 92.118.188.136 port 53680	2020-05-16 15:49:32
193.70.38.187	attack	May 16 04:52:38 ns381471 sshd[27690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.38.187 May 16 04:52:39 ns381471 sshd[27690]: Failed password for invalid user pixel from 193.70.38.187 port 60322 ssh2	2020-05-16 15:22:03
49.88.112.70	attackspam	5x Failed Password	2020-05-16 15:17:28
210.2.132.18	attackbots	Trying ports that it shouldn't be.	2020-05-16 15:06:56
89.248.172.85	attackspam	Port scan on 10 port(s): 2234 3029 4360 4527 9630 13145 22222 23000 23489 53214	2020-05-16 15:12:30
134.209.154.78	attackbotsspam	May 15 22:08:41 NPSTNNYC01T sshd[10024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.154.78 May 15 22:08:42 NPSTNNYC01T sshd[10024]: Failed password for invalid user postgres from 134.209.154.78 port 58124 ssh2 May 15 22:18:19 NPSTNNYC01T sshd[10711]: Failed password for root from 134.209.154.78 port 38218 ssh2 ...	2020-05-16 15:27:08
45.157.232.128	attackbots	May 16 02:12:02 buvik sshd[12447]: Invalid user radware from 45.157.232.128 May 16 02:12:02 buvik sshd[12447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.232.128 May 16 02:12:03 buvik sshd[12447]: Failed password for invalid user radware from 45.157.232.128 port 38430 ssh2 ...	2020-05-16 15:26:18
162.243.145.76	attack	" "	2020-05-16 15:26:44
78.26.185.152	attack	May 16 04:48:00 OPSO sshd\[3378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.26.185.152 user=admin May 16 04:48:02 OPSO sshd\[3378\]: Failed password for admin from 78.26.185.152 port 33910 ssh2 May 16 04:51:31 OPSO sshd\[4339\]: Invalid user jounetsu from 78.26.185.152 port 33806 May 16 04:51:31 OPSO sshd\[4339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.26.185.152 May 16 04:51:33 OPSO sshd\[4339\]: Failed password for invalid user jounetsu from 78.26.185.152 port 33806 ssh2	2020-05-16 15:21:41
106.13.123.29	attack	(sshd) Failed SSH login from 106.13.123.29 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 16 02:10:35 amsweb01 sshd[665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.123.29 user=root May 16 02:10:37 amsweb01 sshd[665]: Failed password for root from 106.13.123.29 port 36730 ssh2 May 16 02:20:24 amsweb01 sshd[1583]: Invalid user postgres from 106.13.123.29 port 52330 May 16 02:20:26 amsweb01 sshd[1583]: Failed password for invalid user postgres from 106.13.123.29 port 52330 ssh2 May 16 02:24:20 amsweb01 sshd[1987]: User operator from 106.13.123.29 not allowed because not listed in AllowUsers	2020-05-16 15:43:53
14.98.213.14	attackbots	May 15 21:18:31 srv01 sshd[27009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.98.213.14 user=root May 15 21:18:32 srv01 sshd[27009]: Failed password for root from 14.98.213.14 port 56640 ssh2 May 15 21:22:44 srv01 sshd[27228]: Invalid user admin from 14.98.213.14 port 34298 May 15 21:22:44 srv01 sshd[27228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.98.213.14 May 15 21:22:44 srv01 sshd[27228]: Invalid user admin from 14.98.213.14 port 34298 May 15 21:22:46 srv01 sshd[27228]: Failed password for invalid user admin from 14.98.213.14 port 34298 ssh2 ...	2020-05-16 15:48:46

Recently Reported IPs

5.145.180.181	217.254.225.182	57.64.105.109	192.156.209.35
172.105.76.78	192.230.168.136	121.131.164.174	207.69.218.171
4.141.251.90	129.152.48.185	100.4.10.197	70.7.75.201
151.206.207.243	186.2.63.197	222.134.133.130	134.209.213.218
84.21.191.158	41.33.146.1	192.148.8.227	171.236.151.82