213.157.48.139

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: Astel JSC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 213.157.48.139 on Port 445(SMB)	2020-02-15 05:27:35
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-08 17:25:51

Comments on same subnet:

IP	Type	Details	Datetime
213.157.48.133	attackspam	Dec 16 10:29:42 web8 sshd\[29238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 16 10:29:45 web8 sshd\[29238\]: Failed password for root from 213.157.48.133 port 46170 ssh2 Dec 16 10:35:11 web8 sshd\[31742\]: Invalid user jeraci from 213.157.48.133 Dec 16 10:35:11 web8 sshd\[31742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 16 10:35:13 web8 sshd\[31742\]: Failed password for invalid user jeraci from 213.157.48.133 port 49554 ssh2	2019-12-16 20:01:31
213.157.48.133	attackspambots	Dec 15 13:01:29 wbs sshd\[25519\]: Invalid user icclaw from 213.157.48.133 Dec 15 13:01:29 wbs sshd\[25519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 15 13:01:31 wbs sshd\[25519\]: Failed password for invalid user icclaw from 213.157.48.133 port 35476 ssh2 Dec 15 13:07:31 wbs sshd\[26178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 15 13:07:33 wbs sshd\[26178\]: Failed password for root from 213.157.48.133 port 43410 ssh2	2019-12-16 07:13:38
213.157.48.133	attack	Dec 15 17:53:05 web8 sshd\[23720\]: Invalid user clementia from 213.157.48.133 Dec 15 17:53:05 web8 sshd\[23720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 15 17:53:07 web8 sshd\[23720\]: Failed password for invalid user clementia from 213.157.48.133 port 50762 ssh2 Dec 15 17:59:14 web8 sshd\[26549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 15 17:59:16 web8 sshd\[26549\]: Failed password for root from 213.157.48.133 port 58460 ssh2	2019-12-16 02:02:51
213.157.48.133	attackspambots	Dec 10 20:19:46 game-panel sshd[28670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 10 20:19:48 game-panel sshd[28670]: Failed password for invalid user bruce from 213.157.48.133 port 33600 ssh2 Dec 10 20:25:58 game-panel sshd[28927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133	2019-12-11 08:38:42
213.157.48.133	attackspam	Dec 1 23:20:56 webhost01 sshd[17430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 1 23:20:58 webhost01 sshd[17430]: Failed password for invalid user lawlaw from 213.157.48.133 port 40300 ssh2 ...	2019-12-02 01:37:26
213.157.48.133	attackbots	Nov 29 07:27:57 vpn01 sshd[27411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Nov 29 07:27:59 vpn01 sshd[27411]: Failed password for invalid user ellermann from 213.157.48.133 port 59470 ssh2 ...	2019-11-29 16:16:56
213.157.48.133	attack	Nov 20 08:32:12 vmanager6029 sshd\[21906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Nov 20 08:32:14 vmanager6029 sshd\[21906\]: Failed password for root from 213.157.48.133 port 38870 ssh2 Nov 20 08:36:29 vmanager6029 sshd\[21987\]: Invalid user aimax from 213.157.48.133 port 47692	2019-11-20 15:46:25
213.157.48.133	attackbots	$f2bV_matches	2019-11-12 20:37:42
213.157.48.133	attackbots	Oct 18 05:58:43 game-panel sshd[23606]: Failed password for root from 213.157.48.133 port 59400 ssh2 Oct 18 06:03:29 game-panel sshd[23787]: Failed password for root from 213.157.48.133 port 42880 ssh2	2019-10-18 15:09:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.157.48.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56649
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.157.48.139.			IN	A

;; AUTHORITY SECTION:
.			504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 17:25:44 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 139.48.157.213.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.48.157.213.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
164.68.98.145	attack	Feb 28 07:18:12 zeus sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.98.145 Feb 28 07:18:13 zeus sshd[9068]: Failed password for invalid user web from 164.68.98.145 port 42414 ssh2 Feb 28 07:26:36 zeus sshd[9226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.98.145 Feb 28 07:26:38 zeus sshd[9226]: Failed password for invalid user ec2-user from 164.68.98.145 port 54158 ssh2	2020-02-28 16:08:54
171.220.243.192	attackbots	Feb 28 04:54:38 IngegnereFirenze sshd[1260]: Failed password for invalid user yangxg from 171.220.243.192 port 41682 ssh2 ...	2020-02-28 15:38:21
159.65.157.194	attackbotsspam	Feb 28 07:56:35 MK-Soft-VM7 sshd[25216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.157.194 Feb 28 07:56:37 MK-Soft-VM7 sshd[25216]: Failed password for invalid user musicbot from 159.65.157.194 port 48860 ssh2 ...	2020-02-28 15:34:45
41.208.131.13	attackspam	Feb 28 08:16:32 sso sshd[5139]: Failed password for root from 41.208.131.13 port 47466 ssh2 ...	2020-02-28 15:50:07
222.186.31.135	attackspambots	Feb 28 08:55:05 dcd-gentoo sshd[22191]: User root from 222.186.31.135 not allowed because none of user's groups are listed in AllowGroups Feb 28 08:55:09 dcd-gentoo sshd[22191]: error: PAM: Authentication failure for illegal user root from 222.186.31.135 Feb 28 08:55:05 dcd-gentoo sshd[22191]: User root from 222.186.31.135 not allowed because none of user's groups are listed in AllowGroups Feb 28 08:55:09 dcd-gentoo sshd[22191]: error: PAM: Authentication failure for illegal user root from 222.186.31.135 Feb 28 08:55:05 dcd-gentoo sshd[22191]: User root from 222.186.31.135 not allowed because none of user's groups are listed in AllowGroups Feb 28 08:55:09 dcd-gentoo sshd[22191]: error: PAM: Authentication failure for illegal user root from 222.186.31.135 Feb 28 08:55:09 dcd-gentoo sshd[22191]: Failed keyboard-interactive/pam for invalid user root from 222.186.31.135 port 59182 ssh2 ...	2020-02-28 15:59:08
112.233.87.198	attack	unauthorized connection attempt	2020-02-28 16:00:43
110.164.129.40	attackspambots	unauthorized connection attempt	2020-02-28 15:39:36
183.88.228.250	attack	Honeypot attack, port: 445, PTR: mx-ll-183.88.228-250.dynamic.3bb.co.th.	2020-02-28 15:48:47
36.82.101.38	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-28 15:53:25
68.183.124.53	attackspam	Feb 27 23:54:22 Tower sshd[2488]: Connection from 68.183.124.53 port 49222 on 192.168.10.220 port 22 rdomain "" Feb 27 23:54:22 Tower sshd[2488]: Invalid user odoo from 68.183.124.53 port 49222 Feb 27 23:54:22 Tower sshd[2488]: error: Could not get shadow information for NOUSER Feb 27 23:54:22 Tower sshd[2488]: Failed password for invalid user odoo from 68.183.124.53 port 49222 ssh2 Feb 27 23:54:22 Tower sshd[2488]: Received disconnect from 68.183.124.53 port 49222:11: Bye Bye [preauth] Feb 27 23:54:22 Tower sshd[2488]: Disconnected from invalid user odoo 68.183.124.53 port 49222 [preauth]	2020-02-28 15:45:25
129.211.62.194	attackspam	Feb 28 08:15:14 * sshd[719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.62.194 Feb 28 08:15:16 * sshd[719]: Failed password for invalid user maverick from 129.211.62.194 port 57196 ssh2	2020-02-28 15:43:32
42.112.137.110	attack	Email rejected due to spam filtering	2020-02-28 16:01:11
113.176.181.63	attackspambots	1582865660 - 02/28/2020 05:54:20 Host: 113.176.181.63/113.176.181.63 Port: 445 TCP Blocked	2020-02-28 15:55:38
115.178.119.110	attackspam	Port probing on unauthorized port 1433	2020-02-28 15:29:57
103.243.185.24	attackspambots	Honeypot attack, port: 445, PTR: qcpl-24-185.243.103.qcplnet.com.	2020-02-28 15:38:00

Recently Reported IPs

223.30.5.13	121.187.10.162	109.75.37.20	223.17.85.204
54.223.144.91	62.80.235.224	49.146.41.98	76.98.110.187
14.207.138.99	47.52.62.174	157.52.171.5	94.64.61.79
185.51.201.244	123.193.80.144	106.12.171.65	197.98.12.234
201.134.205.138	111.240.76.229	45.148.10.176	39.98.69.84