163.172.157.139

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: Online S.A.S.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Apr 29 15:14:59 sd-126173 sshd[10431]: Invalid user rh from 163.172.157.139 port 46494 Apr 29 15:15:55 sd-126173 sshd[10446]: User root from 163.172.157.139 not allowed because not listed in AllowUsers	2020-04-30 02:03:31
attackbotsspam	prod3 ...	2020-04-27 02:39:08

Type

Details

Datetime

attack

Apr 29 15:14:59 sd-126173 sshd[10431]: Invalid user rh from 163.172.157.139 port 46494
Apr 29 15:15:55 sd-126173 sshd[10446]: User root from 163.172.157.139 not allowed because not listed in AllowUsers

2020-04-30 02:03:31

attackbotsspam

prod3
...

2020-04-27 02:39:08

Comments on same subnet:

IP	Type	Details	Datetime
163.172.157.193	attack	2020-09-18T07:40:54.859224mail.thespaminator.com sshd[24903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root 2020-09-18T07:40:56.618932mail.thespaminator.com sshd[24903]: Failed password for root from 163.172.157.193 port 52664 ssh2 ...	2020-09-19 03:12:50
163.172.157.193	attackspam	Sep 18 10:32:22 Ubuntu-1404-trusty-64-minimal sshd\[23543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root Sep 18 10:32:24 Ubuntu-1404-trusty-64-minimal sshd\[23543\]: Failed password for root from 163.172.157.193 port 58698 ssh2 Sep 18 10:35:43 Ubuntu-1404-trusty-64-minimal sshd\[25078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root Sep 18 10:35:45 Ubuntu-1404-trusty-64-minimal sshd\[25078\]: Failed password for root from 163.172.157.193 port 34706 ssh2 Sep 18 10:38:22 Ubuntu-1404-trusty-64-minimal sshd\[26391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root	2020-09-18 19:14:46
163.172.157.193	attack	Automatic report - Banned IP Access	2020-09-02 04:36:08
163.172.157.193	attackspambots	Aug 19 15:20:12 electroncash sshd[12177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 Aug 19 15:20:12 electroncash sshd[12177]: Invalid user student from 163.172.157.193 port 38040 Aug 19 15:20:14 electroncash sshd[12177]: Failed password for invalid user student from 163.172.157.193 port 38040 ssh2 Aug 19 15:24:03 electroncash sshd[13341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root Aug 19 15:24:05 electroncash sshd[13341]: Failed password for root from 163.172.157.193 port 45878 ssh2 ...	2020-08-19 21:32:21
163.172.157.193	attackspambots	Aug 17 20:14:06 pornomens sshd\[26982\]: Invalid user paul from 163.172.157.193 port 57032 Aug 17 20:14:06 pornomens sshd\[26982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 Aug 17 20:14:08 pornomens sshd\[26982\]: Failed password for invalid user paul from 163.172.157.193 port 57032 ssh2 ...	2020-08-18 02:43:48
163.172.157.193	attackbots	Aug 4 21:19:49 Ubuntu-1404-trusty-64-minimal sshd\[5818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root Aug 4 21:19:50 Ubuntu-1404-trusty-64-minimal sshd\[5818\]: Failed password for root from 163.172.157.193 port 52236 ssh2 Aug 4 22:00:15 Ubuntu-1404-trusty-64-minimal sshd\[11602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root Aug 4 22:00:17 Ubuntu-1404-trusty-64-minimal sshd\[11602\]: Failed password for root from 163.172.157.193 port 46232 ssh2 Aug 4 22:03:55 Ubuntu-1404-trusty-64-minimal sshd\[31128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root	2020-08-05 07:19:22
163.172.157.193	attackbotsspam	Port Scan detected from 163.172.157.193 (FR/France/Île-de-France/Paris/193-157-172-163.instances.scw.cloud). 4 hits in the last 210 seconds	2020-08-02 13:04:23
163.172.157.193	attackbots	Jul 31 02:16:56 hidden sshd[11513]: Failed password for hidden from 163.172.157.193 port 58366 ssh2 Jul 31 02:20:04 hidden sshd[11937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 user=root Jul 31 02:20:06 hidden sshd[11937]: Failed password for hidden from 163.172.157.193 port 56054 ssh2	2020-08-01 23:09:40
163.172.157.193	attackbots	Automatic report BANNED IP	2020-07-30 23:33:00
163.172.157.193	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-07-23 15:32:08
163.172.157.193	attackspambots	Invalid user daniel from 163.172.157.193 port 47092	2020-07-21 02:47:36
163.172.157.193	attackspam	Jul 20 01:37:06 vps647732 sshd[22638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 Jul 20 01:37:08 vps647732 sshd[22638]: Failed password for invalid user test from 163.172.157.193 port 38756 ssh2 ...	2020-07-20 08:05:49
163.172.157.193	attack	Jul 18 14:27:32 santamaria sshd\[30975\]: Invalid user valter from 163.172.157.193 Jul 18 14:27:32 santamaria sshd\[30975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 Jul 18 14:27:35 santamaria sshd\[30975\]: Failed password for invalid user valter from 163.172.157.193 port 34618 ssh2 ...	2020-07-18 21:14:58
163.172.157.193	attack	Jul 17 13:09:44 game-panel sshd[8637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 Jul 17 13:09:46 game-panel sshd[8637]: Failed password for invalid user nic from 163.172.157.193 port 41610 ssh2 Jul 17 13:13:39 game-panel sshd[8799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193	2020-07-17 21:21:41
163.172.157.193	attack	Jul 9 15:25:11 ns382633 sshd\[28272\]: Invalid user harris from 163.172.157.193 port 48064 Jul 9 15:25:11 ns382633 sshd\[28272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193 Jul 9 15:25:12 ns382633 sshd\[28272\]: Failed password for invalid user harris from 163.172.157.193 port 48064 ssh2 Jul 9 15:36:09 ns382633 sshd\[30031\]: Invalid user bianka from 163.172.157.193 port 42284 Jul 9 15:36:09 ns382633 sshd\[30031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.157.193	2020-07-10 01:28:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 163.172.157.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37825
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;163.172.157.139.		IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042601 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 02:39:03 CST 2020
;; MSG SIZE  rcvd: 119

Host info

139.157.172.163.in-addr.arpa domain name pointer hosting.deflandre.eu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.157.172.163.in-addr.arpa	name = hosting.deflandre.eu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.156.24.78	attackspam	2019-08-21T10:53:13.967793enmeeting.mahidol.ac.th sshd\[2979\]: User root from 36.156.24.78 not allowed because not listed in AllowUsers 2019-08-21T10:53:14.465684enmeeting.mahidol.ac.th sshd\[2979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.78 user=root 2019-08-21T10:53:16.621316enmeeting.mahidol.ac.th sshd\[2979\]: Failed password for invalid user root from 36.156.24.78 port 43482 ssh2 ...	2019-08-21 12:11:29
182.253.1.150	attack	Aug 21 03:33:07 ip-172-31-1-72 sshd\[30697\]: Invalid user docker from 182.253.1.150 Aug 21 03:33:07 ip-172-31-1-72 sshd\[30697\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.1.150 Aug 21 03:33:09 ip-172-31-1-72 sshd\[30697\]: Failed password for invalid user docker from 182.253.1.150 port 54609 ssh2 Aug 21 03:37:43 ip-172-31-1-72 sshd\[30782\]: Invalid user admin from 182.253.1.150 Aug 21 03:37:43 ip-172-31-1-72 sshd\[30782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.1.150	2019-08-21 11:46:44
106.75.30.135	attack	Aug 21 05:01:27 dedicated sshd[9791]: Invalid user www from 106.75.30.135 port 37104	2019-08-21 11:54:47
61.69.254.46	attackspambots	Aug 21 03:52:48 hb sshd\[7326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.69.254.46 user=mail Aug 21 03:52:50 hb sshd\[7326\]: Failed password for mail from 61.69.254.46 port 37798 ssh2 Aug 21 03:58:10 hb sshd\[7736\]: Invalid user viper from 61.69.254.46 Aug 21 03:58:11 hb sshd\[7736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.69.254.46 Aug 21 03:58:12 hb sshd\[7736\]: Failed password for invalid user viper from 61.69.254.46 port 57990 ssh2	2019-08-21 12:12:03
125.161.104.199	attack	Unauthorized connection attempt from IP address 125.161.104.199 on Port 445(SMB)	2019-08-21 11:28:05
103.111.57.67	attackbotsspam	Unauthorized connection attempt from IP address 103.111.57.67 on Port 445(SMB)	2019-08-21 12:01:33
218.92.0.155	attackspambots	2019-08-21T04:14:01.506557Z 7a9a10c6e5cb New connection: 218.92.0.155:38701 (172.17.0.2:2222) [session: 7a9a10c6e5cb] 2019-08-21T04:14:15.429063Z 6dd9c41591ef New connection: 218.92.0.155:53980 (172.17.0.2:2222) [session: 6dd9c41591ef]	2019-08-21 12:21:04
36.156.24.79	attack	Aug 21 09:01:16 areeb-Workstation sshd\[32437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.79 user=root Aug 21 09:01:18 areeb-Workstation sshd\[32437\]: Failed password for root from 36.156.24.79 port 32934 ssh2 Aug 21 09:01:25 areeb-Workstation sshd\[32456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.79 user=root ...	2019-08-21 12:22:13
132.232.47.41	attackbots	Automatic report - Banned IP Access	2019-08-21 12:07:14
68.183.23.254	attackbotsspam	Aug 21 05:38:50 OPSO sshd\[31451\]: Invalid user kosherdk from 68.183.23.254 port 33198 Aug 21 05:38:50 OPSO sshd\[31451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.23.254 Aug 21 05:38:52 OPSO sshd\[31451\]: Failed password for invalid user kosherdk from 68.183.23.254 port 33198 ssh2 Aug 21 05:43:01 OPSO sshd\[32115\]: Invalid user zou from 68.183.23.254 port 50982 Aug 21 05:43:01 OPSO sshd\[32115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.23.254	2019-08-21 11:53:03
14.238.9.98	attack	Unauthorized connection attempt from IP address 14.238.9.98 on Port 445(SMB)	2019-08-21 11:30:07
152.136.141.227	attack	Aug 20 23:13:59 vtv3 sshd\[20908\]: Invalid user minecraft from 152.136.141.227 port 42742 Aug 20 23:13:59 vtv3 sshd\[20908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.141.227 Aug 20 23:14:02 vtv3 sshd\[20908\]: Failed password for invalid user minecraft from 152.136.141.227 port 42742 ssh2 Aug 20 23:18:35 vtv3 sshd\[23157\]: Invalid user psw from 152.136.141.227 port 53340 Aug 20 23:18:35 vtv3 sshd\[23157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.141.227 Aug 20 23:31:59 vtv3 sshd\[29883\]: Invalid user christmas from 152.136.141.227 port 33850 Aug 20 23:31:59 vtv3 sshd\[29883\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.141.227 Aug 20 23:32:00 vtv3 sshd\[29883\]: Failed password for invalid user christmas from 152.136.141.227 port 33850 ssh2 Aug 20 23:36:38 vtv3 sshd\[32352\]: Invalid user ca from 152.136.141.227 port 47632 Aug 20 23:36	2019-08-21 12:25:32
184.105.139.120	attack	Splunk® : port scan detected: Aug 20 21:32:48 testbed kernel: Firewall: UDP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=184.105.139.120 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=57 ID=52717 DF PROTO=UDP SPT=63645 DPT=123 LEN=20	2019-08-21 11:33:57
200.194.48.136	attackbots	Automatic report - Port Scan Attack	2019-08-21 11:35:34
180.76.100.178	attackspam	Aug 21 06:23:17 srv-4 sshd\[17728\]: Invalid user pb from 180.76.100.178 Aug 21 06:23:17 srv-4 sshd\[17728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.100.178 Aug 21 06:23:19 srv-4 sshd\[17728\]: Failed password for invalid user pb from 180.76.100.178 port 37882 ssh2 ...	2019-08-21 12:04:38

Recently Reported IPs

14.162.33.75	222.252.112.148	203.176.75.1	134.73.56.115
132.232.26.42	128.199.199.159	118.24.2.219	114.98.238.21
113.172.176.45	111.229.172.178	110.14.6.134	106.13.55.178
106.12.192.120	103.38.215.237	66.98.113.238	64.225.58.121
62.171.154.89	49.135.39.214	42.227.9.34	45.157.232.128