178.157.12.249

Basic Info

City: İzmit

Region: Kocaeli

Country: Turkey

Internet Service Provider: Aerotek Bilisim Sanayi ve Ticaret AS

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user test from 178.157.12.249 port 39234	2020-10-02 06:46:13
attack	Invalid user test from 178.157.12.249 port 39234	2020-10-01 23:17:22

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 178.157.12.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;178.157.12.249.			IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020093002 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 01 15:25:58 CST 2020
;; MSG SIZE  rcvd: 118

Host info

249.12.157.178.in-addr.arpa domain name pointer srv.dkmteknoloji.com.tr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
249.12.157.178.in-addr.arpa	name = srv.dkmteknoloji.com.tr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
155.94.156.84	attack	Jul 18 01:17:32 pkdns2 sshd\[3076\]: Address 155.94.156.84 maps to 155.94.156.84.static.quadranet.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Jul 18 01:17:32 pkdns2 sshd\[3076\]: Invalid user bill from 155.94.156.84Jul 18 01:17:34 pkdns2 sshd\[3076\]: Failed password for invalid user bill from 155.94.156.84 port 60682 ssh2Jul 18 01:22:12 pkdns2 sshd\[3311\]: Address 155.94.156.84 maps to 155.94.156.84.static.quadranet.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Jul 18 01:22:12 pkdns2 sshd\[3311\]: Invalid user lds from 155.94.156.84Jul 18 01:22:14 pkdns2 sshd\[3311\]: Failed password for invalid user lds from 155.94.156.84 port 57606 ssh2 ...	2020-07-18 06:27:29
209.97.138.167	attackbotsspam	Invalid user bb from 209.97.138.167 port 47746	2020-07-18 06:53:35
167.99.69.130	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-07-18 06:37:07
122.51.226.75	attackspambots	Jul 17 22:38:11 localhost sshd[77675]: Invalid user luan from 122.51.226.75 port 55338 Jul 17 22:38:11 localhost sshd[77675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.226.75 Jul 17 22:38:11 localhost sshd[77675]: Invalid user luan from 122.51.226.75 port 55338 Jul 17 22:38:13 localhost sshd[77675]: Failed password for invalid user luan from 122.51.226.75 port 55338 ssh2 Jul 17 22:44:07 localhost sshd[78577]: Invalid user hah from 122.51.226.75 port 35050 ...	2020-07-18 06:45:08
182.254.172.107	attack	Jul 17 23:55:48 web-main sshd[644718]: Invalid user postgres from 182.254.172.107 port 48292 Jul 17 23:55:51 web-main sshd[644718]: Failed password for invalid user postgres from 182.254.172.107 port 48292 ssh2 Jul 18 00:02:00 web-main sshd[644791]: Invalid user gitlab from 182.254.172.107 port 55104	2020-07-18 06:54:37
58.16.187.26	attack	Jul 17 23:44:35 abendstille sshd\[30532\]: Invalid user sword from 58.16.187.26 Jul 17 23:44:35 abendstille sshd\[30532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.16.187.26 Jul 17 23:44:37 abendstille sshd\[30532\]: Failed password for invalid user sword from 58.16.187.26 port 60396 ssh2 Jul 17 23:48:51 abendstille sshd\[2450\]: Invalid user guest from 58.16.187.26 Jul 17 23:48:51 abendstille sshd\[2450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.16.187.26 ...	2020-07-18 06:57:40
170.244.44.51	attackspam	Jul 18 00:28:53 abendstille sshd\[11006\]: Invalid user dir1 from 170.244.44.51 Jul 18 00:28:53 abendstille sshd\[11006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.244.44.51 Jul 18 00:28:55 abendstille sshd\[11006\]: Failed password for invalid user dir1 from 170.244.44.51 port 41952 ssh2 Jul 18 00:32:43 abendstille sshd\[14848\]: Invalid user agr from 170.244.44.51 Jul 18 00:32:43 abendstille sshd\[14848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.244.44.51 ...	2020-07-18 06:52:19
104.43.20.117	attackbotsspam	Brute-force attempt banned	2020-07-18 06:53:52
178.62.224.96	attackbots	Jul 17 23:37:08 vmd17057 sshd[19076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.224.96 Jul 17 23:37:10 vmd17057 sshd[19076]: Failed password for invalid user cortex from 178.62.224.96 port 50856 ssh2 ...	2020-07-18 06:42:52
49.233.183.155	attackbotsspam	Jul 18 01:15:26 journals sshd\[128816\]: Invalid user william from 49.233.183.155 Jul 18 01:15:26 journals sshd\[128816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.155 Jul 18 01:15:28 journals sshd\[128816\]: Failed password for invalid user william from 49.233.183.155 port 57914 ssh2 Jul 18 01:20:37 journals sshd\[129384\]: Invalid user suporte from 49.233.183.155 Jul 18 01:20:37 journals sshd\[129384\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.155 ...	2020-07-18 06:32:00
52.247.2.221	attackspam	SSH bruteforce	2020-07-18 06:36:35
13.68.252.36	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-18 06:37:54
40.119.165.147	attackbots	Jul 17 22:26:46 scw-6657dc sshd[4444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.119.165.147 Jul 17 22:26:46 scw-6657dc sshd[4444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.119.165.147 Jul 17 22:26:47 scw-6657dc sshd[4444]: Failed password for invalid user admin from 40.119.165.147 port 59701 ssh2 ...	2020-07-18 06:49:16
122.152.201.228	attackbots	Jul 18 00:02:18 home sshd[29919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.201.228 Jul 18 00:02:20 home sshd[29919]: Failed password for invalid user shuchang from 122.152.201.228 port 40652 ssh2 Jul 18 00:06:29 home sshd[30461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.201.228 ...	2020-07-18 06:40:03
216.244.66.240	attackspambots	[Fri Jul 17 22:29:55.150740 2020] [authz_core:error] [pid 28874] [client 216.244.66.240:35610] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/lac2018 [Fri Jul 17 22:33:02.101332 2020] [authz_core:error] [pid 28781] [client 216.244.66.240:51631] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/lac2011 [Fri Jul 17 22:33:32.453076 2020] [authz_core:error] [pid 29045] [client 216.244.66.240:53795] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/lac2013 ...	2020-07-18 06:43:34

Recently Reported IPs

150.56.182.117	63.38.158.99	106.131.252.88	17.29.135.212
17.149.108.102	35.233.208.240	42.8.174.131	45.142.120.38
176.99.163.138	89.22.254.176	192.35.169.59	59.56.71.215
189.172.87.134	188.93.231.68	5.56.200.234	47.218.194.163
187.72.252.233	47.51.178.146	2604:a880:400:d0::1b0c:e001	202.180.8.52