157.245.2.122 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 157.245.2.122 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 14/100

Host and Network Information

• Tags: nmap, port-scan

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 2 times
• Protocols Attacked: SSH
• Countries Attacked: Australia
• Passive DNS Results: crescentswap.exchange painel.sandbox2.syncvio.com e2e-dbaas-mongodb-bmz57-ece423ac.mongo.ondigitalocean.com canary-1677328148-mongodb-e82910c5.mongo.ondigitalocean.com

Open Ports Detected

1000 10000 10001 10004 10006 10012 10015 10016 10017 10019 1002 10023 10024 10025 10032 10035 10042 101 10101 10123 1013 10134 102 10200 10209 1023 1024 10243 104 10443 106 10909 10911 10933 10936 110 11000 111 1110 11112 1119 11210 11211 113 11300 11434 11443 11602 11920 1200 121 122 1234 1235 1311 1337 1343 135 1400 1414 143 1433 1443 1500 1515 1521 1604 1723 1741 1800 1801 1820 1911 1925 1926 1935 2000 2002 2003 2008 2021 2103 2107 2108 2121 2130 22 2201 221 2210 2220 2222 2233 23 2323 2332 2345 2404 243 2443 2444 25 2506 26 2626 2628 3001 3003 3006 3013 3017 3019 3042 3101 3103 3105 3107 3108 3109 311 3111 3112 3113 3116 3118 3121 3124 3125 3127 3128 3129 3130 3131 314 3145 3200 3221 3301 3310 3333 3342 3401 3402 3404 3405 3500 3521 3522 3523 3524 3531 3541 3542 3842 3910 3922 4000 4002 4021 4022 4040 4042 4100 4101 4104 4117 4120 4200 4242 4243 427 4321 440 4400 443 4430 4431 4433 4434 4435 4436 4439 444 4443 4444 4445 445 45001 45006 4502 4505 4506 4510 4543 4840 4911 5000 5001 5005 5006 5007 5009 5010 5011 502 5022 5025 503 5105 513 5140 515 5201 5222 5224 5226 5228 5230 5231 5234 5235 5238 5239 5240 5242 5243 5244 5321 541 5432 5433 5435 5523 5542 5544 5601 5603 5604 5605 5701 5721 5800 5801 5900 5901 5903 5904 5905 5911 5912 5919 5938 6000 6001 6002 6011 6020 631 632 6331 636 6443 6513 6543 66 6605 6622 6633 6700 7001 7011 7013 7105 7218 7331 7415 7434 7441 7443 7500 7601 7634 7801 79 80 8000 8001 8002 8003 8006 8007 8008 8009 8010 8011 8016 8018 8019 8020 8025 8026 8027 8029 8030 8032 8036 8037 8041 8042 8044 8045 808 8080 809 8105 8108 8109 8111 8112 8123 8124 8126 8129 8130 8132 8136 8137 8138 8139 8140 8141 8143 8144 8145 8200 8222 8237 8238 830 8316 8318 833 8333 8334 8340 8343 8403 8404 8407 8412 8413 8414 8418 8420 8421 8423 8426 8428 8431 8432 8442 8444 8445 8502 8506 8510 8513 8526 8529 8536 8544 8545 8607 8621 8622 8637 8640 8641 8703 8705 8724 8731 8733 88 8800 8802 8803 8804 8813 8814 8815 8816 8818 8819 8822 8823 8826 8830 8834 8835 8836 8843 8845 8901 8902 8905 8907 8910 8913 8916 9000 9002 9005 9007 9009 9010 9013 9017 9018 9019 902 9023 9028 9035 9039 9042 9100 9102 9103 9107 9108 9110 9113 9114 9119 9120 9123 9125 9128 9129 9130 9131 9132 9136 9141 9142 9143 9200 9203 9204 9205 9211 9212 9217 9218 9226 9236 9245 9301 9303 9304 9306 9307 9311 9312 9313 9333 9418 943 9433 9441 9443 9505 9513 9530 9532 9600 9633 9704 9711 9800 9802 9804 9810 9811 9901 9926 9928 9930 9944

Map

Whois Information

• NetRange: 157.245.0.0 - 157.245.255.255
• CIDR: 157.245.0.0/16
• NetName: DIGITALOCEAN-157-245-0-0
• NetHandle: NET-157-245-0-0-1
• Parent: NET157 (NET-157-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS14061
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 2019-05-09
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/157.245.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 105 Edgeview Drive, Suite 425
• City: Broomfield
• StateProv: CO
• PostalCode: 80021
• Country: US
• RegDate: 2012-05-14
• Updated: 2025-04-11
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-646-827-4366
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: DIGIT19-ARIN
• OrgAbuseName: DigitalOcean Abuse
• OrgAbusePhone: +1-646-827-4366
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-646-827-4366
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN

Links to attack logs

****** nmap-scanning-list-2023-06-04 ****** ******