157.245.140.49

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.245.140.205	attack	Drupal Core 8 PHP object injection RCE attempt.	2020-04-23 00:58:40
157.245.140.255	attack	firewall-block, port(s): 53413/udp	2019-09-24 06:34:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.140.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39919
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.245.140.49.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 14:03:09 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 49.140.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.140.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.13.130.222	attackbotsspam	Automatic report - Port Scan Attack	2019-07-23 01:30:51
59.18.197.162	attackspambots	Jul 22 18:36:39 * sshd[8218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.18.197.162 Jul 22 18:36:41 * sshd[8218]: Failed password for invalid user po7dev from 59.18.197.162 port 37156 ssh2	2019-07-23 00:55:38
27.254.137.144	attack	Jul 22 13:32:16 vps200512 sshd\[29920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 user=root Jul 22 13:32:17 vps200512 sshd\[29920\]: Failed password for root from 27.254.137.144 port 47346 ssh2 Jul 22 13:37:59 vps200512 sshd\[30030\]: Invalid user fabricio from 27.254.137.144 Jul 22 13:37:59 vps200512 sshd\[30030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 Jul 22 13:38:01 vps200512 sshd\[30030\]: Failed password for invalid user fabricio from 27.254.137.144 port 40170 ssh2	2019-07-23 01:38:32
112.175.238.149	attack	2019-07-22T14:25:25.621176abusebot-8.cloudsearch.cf sshd\[29789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.175.238.149 user=root	2019-07-23 00:26:18
103.27.237.45	attack	Jul 22 16:39:21 localhost sshd\[92883\]: Invalid user valter from 103.27.237.45 port 58498 Jul 22 16:39:21 localhost sshd\[92883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.237.45 Jul 22 16:39:23 localhost sshd\[92883\]: Failed password for invalid user valter from 103.27.237.45 port 58498 ssh2 Jul 22 16:45:50 localhost sshd\[93098\]: Invalid user webler from 103.27.237.45 port 53620 Jul 22 16:45:50 localhost sshd\[93098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.237.45 ...	2019-07-23 00:57:35
206.189.188.223	attackspam	Jul 22 17:56:34 mail sshd\[11083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.188.223 Jul 22 17:56:36 mail sshd\[11083\]: Failed password for invalid user terraria from 206.189.188.223 port 40344 ssh2 Jul 22 18:00:52 mail sshd\[12134\]: Invalid user jenny from 206.189.188.223 port 35190 Jul 22 18:00:52 mail sshd\[12134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.188.223 Jul 22 18:00:54 mail sshd\[12134\]: Failed password for invalid user jenny from 206.189.188.223 port 35190 ssh2	2019-07-23 00:07:21
119.28.105.127	attackspambots	Jul 22 16:14:16 XXX sshd[12267]: Invalid user dev from 119.28.105.127 port 55194	2019-07-23 01:17:49
125.99.39.138	attackspambots	Lines containing failures of 125.99.39.138 auth.log:Jul 22 15:09:50 omfg sshd[32389]: Connection from 125.99.39.138 port 62347 on 78.46.60.16 port 22 auth.log:Jul 22 15:09:50 omfg sshd[32389]: Did not receive identification string from 125.99.39.138 auth.log:Jul 22 15:09:51 omfg sshd[32390]: Connection from 125.99.39.138 port 57415 on 78.46.60.50 port 22 auth.log:Jul 22 15:09:51 omfg sshd[32390]: Did not receive identification string from 125.99.39.138 auth.log:Jul 22 15:09:52 omfg sshd[32391]: Connection from 125.99.39.138 port 61655 on 78.46.60.42 port 22 auth.log:Jul 22 15:09:52 omfg sshd[32392]: Connection from 125.99.39.138 port 61157 on 78.46.60.41 port 22 auth.log:Jul 22 15:09:53 omfg sshd[32393]: Connection from 125.99.39.138 port 61851 on 78.46.60.53 port 22 auth.log:Jul 22 15:09:53 omfg sshd[32394]: Connection from 125.99.39.138 port 61750 on 78.46.60.40 port 22 auth.log:Jul 22 15:09:53 omfg sshd[32393]: Did not receive identification string from 125.99.39.138 ........ ------------------------------	2019-07-23 00:09:30
13.71.1.224	attack	Jul 22 10:58:37 plusreed sshd[28252]: Invalid user admin1 from 13.71.1.224 ...	2019-07-23 00:42:24
185.222.211.244	attackspam	Jul 22 18:19:19 relay postfix/smtpd\[3688\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ Jul 22 18:19:19 relay postfix/smtpd\[3688\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ Jul 22 18:19:19 relay postfix/smtpd\[3688\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.244\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ Jul 22 18:19:19 relay postfix/smtpd\[3688\]: NOQUEUE: reject: RCPT from ...	2019-07-23 00:40:25
118.89.30.76	attackbotsspam	2019-07-22T18:52:25.325061lon01.zurich-datacenter.net sshd\[15896\]: Invalid user ferdinand from 118.89.30.76 port 22922 2019-07-22T18:52:25.333348lon01.zurich-datacenter.net sshd\[15896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.30.76 2019-07-22T18:52:27.464032lon01.zurich-datacenter.net sshd\[15896\]: Failed password for invalid user ferdinand from 118.89.30.76 port 22922 ssh2 2019-07-22T18:57:10.290780lon01.zurich-datacenter.net sshd\[16010\]: Invalid user testftp from 118.89.30.76 port 41151 2019-07-22T18:57:10.295582lon01.zurich-datacenter.net sshd\[16010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.30.76 ...	2019-07-23 01:19:10
110.232.76.190	attackbotsspam	Unauthorised access (Jul 22) SRC=110.232.76.190 LEN=40 TTL=51 ID=300 TCP DPT=8080 WINDOW=61929 SYN	2019-07-23 01:22:01
77.247.181.162	attack	GET posting.php	2019-07-23 00:23:11
106.13.43.242	attackbots	Jul 22 15:19:20 srv206 sshd[6281]: Invalid user webmaster from 106.13.43.242 Jul 22 15:19:20 srv206 sshd[6281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.43.242 Jul 22 15:19:20 srv206 sshd[6281]: Invalid user webmaster from 106.13.43.242 Jul 22 15:19:21 srv206 sshd[6281]: Failed password for invalid user webmaster from 106.13.43.242 port 40910 ssh2 ...	2019-07-23 00:53:19
185.159.32.4	attackbots	2019-07-22T16:42:32.190667abusebot-7.cloudsearch.cf sshd\[10633\]: Invalid user sp from 185.159.32.4 port 43776	2019-07-23 01:13:56

Recently Reported IPs

222.77.96.144	222.205.10.80	14.241.225.167	14.255.121.199
95.106.108.107	90.125.42.11	147.78.141.95	193.202.81.50
116.74.32.206	81.161.125.218	62.171.159.65	177.234.143.227
59.99.45.218	117.10.198.49	82.10.133.10	119.41.205.72
114.190.123.143	217.42.169.143	37.46.121.225	222.124.34.196