157.245.185.139

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	05/03/2020-23:54:22.754261 157.245.185.139 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-04 16:02:06
attackbots	89/tcp 89/tcp 89/tcp [2020-02-23/24]3pkt	2020-02-26 03:41:19

Comments on same subnet:

IP	Type	Details	Datetime
157.245.185.130	attack	Apr 8 14:40:21 debian-2gb-nbg1-2 kernel: \[8608638.343724\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=157.245.185.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=60176 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-09 00:36:32
157.245.185.106	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-04 22:25:10
157.245.185.98	attackbotsspam	xmlrpc attack	2019-11-03 03:33:52

Type

Details

Datetime

157.245.185.130

attack

Apr  8 14:40:21 debian-2gb-nbg1-2 kernel: \[8608638.343724\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=157.245.185.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=60176 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0

2020-04-09 00:36:32

157.245.185.106

attack

MultiHost/MultiPort Probe, Scan, Hack -

2019-12-04 22:25:10

157.245.185.98

attackbotsspam

xmlrpc attack

2019-11-03 03:33:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.245.185.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17942
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.245.185.139.		IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022501 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 03:41:16 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 139.185.245.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.185.245.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
128.199.224.215	attackbots	Invalid user savage from 128.199.224.215 port 60104 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.224.215 Failed password for invalid user savage from 128.199.224.215 port 60104 ssh2 Invalid user jamelah from 128.199.224.215 port 39780 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.224.215	2019-12-09 13:48:15
159.203.201.144	attackspambots	Unauthorized connection attempt detected from IP address 159.203.201.144 to port 8088	2019-12-09 14:03:51
61.177.172.128	attackspam	SSH Bruteforce attack	2019-12-09 13:43:33
185.176.27.54	attack	12/09/2019-00:47:24.374184 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-09 14:14:08
118.143.198.3	attack	Dec 9 06:29:02 srv206 sshd[26423]: Invalid user ching from 118.143.198.3 Dec 9 06:29:02 srv206 sshd[26423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.143.198.3 Dec 9 06:29:02 srv206 sshd[26423]: Invalid user ching from 118.143.198.3 Dec 9 06:29:04 srv206 sshd[26423]: Failed password for invalid user ching from 118.143.198.3 port 41832 ssh2 ...	2019-12-09 13:56:13
222.186.175.212	attackbots	Dec 9 09:09:04 server sshd\[2011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Dec 9 09:09:06 server sshd\[2011\]: Failed password for root from 222.186.175.212 port 4306 ssh2 Dec 9 09:09:09 server sshd\[2011\]: Failed password for root from 222.186.175.212 port 4306 ssh2 Dec 9 09:09:12 server sshd\[2011\]: Failed password for root from 222.186.175.212 port 4306 ssh2 Dec 9 09:09:15 server sshd\[2011\]: Failed password for root from 222.186.175.212 port 4306 ssh2 ...	2019-12-09 14:12:15
139.199.80.67	attackbotsspam	Dec 9 06:39:48 MK-Soft-VM6 sshd[20975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Dec 9 06:39:51 MK-Soft-VM6 sshd[20975]: Failed password for invalid user testftp from 139.199.80.67 port 41810 ssh2 ...	2019-12-09 14:01:41
119.163.255.24	attack	port scan and connect, tcp 22 (ssh)	2019-12-09 13:58:48
218.92.0.179	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.179 user=root Failed password for root from 218.92.0.179 port 25897 ssh2 Failed password for root from 218.92.0.179 port 25897 ssh2 Failed password for root from 218.92.0.179 port 25897 ssh2 Failed password for root from 218.92.0.179 port 25897 ssh2	2019-12-09 13:45:55
221.4.154.196	attackspambots	Fail2Ban Ban Triggered	2019-12-09 13:49:42
123.207.216.40	attack	2019-12-09T07:00:52.738675 sshd[31786]: Invalid user backup from 123.207.216.40 port 56866 2019-12-09T07:00:52.752244 sshd[31786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.216.40 2019-12-09T07:00:52.738675 sshd[31786]: Invalid user backup from 123.207.216.40 port 56866 2019-12-09T07:00:54.554988 sshd[31786]: Failed password for invalid user backup from 123.207.216.40 port 56866 ssh2 2019-12-09T07:07:34.645558 sshd[31884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.216.40 user=root 2019-12-09T07:07:36.302668 sshd[31884]: Failed password for root from 123.207.216.40 port 60424 ssh2 ...	2019-12-09 14:08:04
118.97.77.114	attack	Dec 8 19:11:10 auw2 sshd\[28963\]: Invalid user zarnecki from 118.97.77.114 Dec 8 19:11:10 auw2 sshd\[28963\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.77.114 Dec 8 19:11:12 auw2 sshd\[28963\]: Failed password for invalid user zarnecki from 118.97.77.114 port 44658 ssh2 Dec 8 19:18:23 auw2 sshd\[29783\]: Invalid user ts from 118.97.77.114 Dec 8 19:18:23 auw2 sshd\[29783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.77.114	2019-12-09 13:38:49
66.214.230.240	attackspam	Scanning for backup files	2019-12-09 13:42:33
138.68.165.102	attackspam	Dec 9 05:56:13 vpn01 sshd[27513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.165.102 Dec 9 05:56:15 vpn01 sshd[27513]: Failed password for invalid user 123456 from 138.68.165.102 port 48194 ssh2 ...	2019-12-09 13:51:36
186.30.52.62	attack	Dec 9 00:21:28 ny01 sshd[30547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.30.52.62 Dec 9 00:21:30 ny01 sshd[30547]: Failed password for invalid user arlet from 186.30.52.62 port 51601 ssh2 Dec 9 00:27:47 ny01 sshd[31596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.30.52.62	2019-12-09 13:38:05

Recently Reported IPs

185.43.209.14	79.20.33.30	1.165.64.52	181.65.124.38
43.251.214.54	36.71.232.34	200.185.234.229	205.176.127.3
27.77.227.115	8.180.40.135	115.143.157.150	27.2.101.98
111.254.20.20	135.104.90.41	145.15.105.38	98.103.143.135
97.36.32.246	106.243.62.131	251.87.96.239	208.23.108.8