This IP address has been reported a total of
317
times from
221 distinct
sources.
159.194.215.57 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
SSH brute-force attack detected via Cowrie SSH honeypot. Tried 1 credential combination(s) including ...
show moreSSH brute-force attack detected via Cowrie SSH honeypot. Tried 1 credential combination(s) including username="root". Automated report from Olympus SOC.
show less
(sshd) Failed SSH login from 159.194.215.57 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direct ...
show more(sshd) Failed SSH login from 159.194.215.57 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: Jul 2 00:05:59 15171 sshd[16286]: Invalid user deploy from 159.194.215.57 port 48082
Jul 2 00:06:01 15171 sshd[16286]: Failed password for invalid user deploy from 159.194.215.57 port 48082 ssh2
Jul 2 00:12:45 15171 sshd[20719]: Invalid user newuser1 from 159.194.215.57 port 45536
Jul 2 00:12:47 15171 sshd[20719]: Failed password for invalid user newuser1 from 159.194.215.57 port 45536 ssh2
Jul 2 00:14:53 15171 sshd[21990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57 user=mysql
show less
Jul 2 06:28:55 fw01 sshd[3235673]: Invalid user amir from 159.194.215.57 port 56378
Jul 2 06:50:46 ...
show moreJul 2 06:28:55 fw01 sshd[3235673]: Invalid user amir from 159.194.215.57 port 56378
Jul 2 06:50:46 fw01 sshd[3236446]: Invalid user testuser from 159.194.215.57 port 37686
Jul 2 06:52:20 fw01 sshd[3236466]: Invalid user admin from 159.194.215.57 port 46974
Jul 2 06:55:37 fw01 sshd[3236516]: Invalid user guest from 159.194.215.57 port 53400
...
show less
Brute-Force
SSH
Anonymous
2026-07-02T06:14:12.451514+02:00 mike-Z390 sshd-session[62829]: Failed password for root from 159.19 ...
show more2026-07-02T06:14:12.451514+02:00 mike-Z390 sshd-session[62829]: Failed password for root from 159.194.215.57 port 50606 ssh2
2026-07-02T06:16:18.341165+02:00 mike-Z390 sshd-session[68806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57 user=root
2026-07-02T06:16:20.329432+02:00 mike-Z390 sshd-session[68806]: Failed password for root from 159.194.215.57 port 43168 ssh2
2026-07-02T06:18:28.382874+02:00 mike-Z390 sshd-session[74935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57 user=root
2026-07-02T06:18:30.220545+02:00 mike-Z390 sshd-session[74935]: Failed password for root from 159.194.215.57 port 45216 ssh2
...
show less
Brute-Force
SSH
Anonymous
2026-07-02T05:55:16.146344+02:00 mike-Z390 sshd-session[8846]: Failed password for root from 159.194 ...
show more2026-07-02T05:55:16.146344+02:00 mike-Z390 sshd-session[8846]: Failed password for root from 159.194.215.57 port 38268 ssh2
2026-07-02T05:57:27.807477+02:00 mike-Z390 sshd-session[15356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57 user=root
2026-07-02T05:57:29.861530+02:00 mike-Z390 sshd-session[15356]: Failed password for root from 159.194.215.57 port 52020 ssh2
2026-07-02T05:59:36.369005+02:00 mike-Z390 sshd-session[21364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57 user=root
2026-07-02T05:59:38.468562+02:00 mike-Z390 sshd-session[21364]: Failed password for root from 159.194.215.57 port 44532 ssh2
...
show less
Jul 1 23:51:52 gen sshd[2148305]: Failed password for root from 159.194.215.57 port 32872 ssh2
Jul ...
show moreJul 1 23:51:52 gen sshd[2148305]: Failed password for root from 159.194.215.57 port 32872 ssh2
Jul 1 23:54:00 gen sshd[2148377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57 user=root
Jul 1 23:54:02 gen sshd[2148377]: Failed password for root from 159.194.215.57 port 49354 ssh2
...
show less
2026-07-02T05:07:18.061656+02:00 rt-cs-123456.rt.pbx-host.com sshd-session[2381458]: Disconnected fr ...
show more2026-07-02T05:07:18.061656+02:00 rt-cs-123456.rt.pbx-host.com sshd-session[2381458]: Disconnected from authenticating user root 159.194.215.57 port 33764 [preauth]
2026-07-02T05:08:58.291932+02:00 rt-cs-123456.rt.pbx-host.com sshd-session[2381805]: Disconnected from authenticating user root 159.194.215.57 port 40138 [preauth]
2026-07-02T05:10:39.139111+02:00 rt-cs-123456.rt.pbx-host.com sshd-session[2382272]: Disconnected from authenticating user root 159.194.215.57 port 48392 [preauth]
2026-07-02T05:12:23.512319+02:00 rt-cs-123456.rt.pbx-host.com sshd-session[2382694]: Disconnected from authenticating user root 159.194.215.57 port 53462 [preauth]
2026-07-02T05:14:04.327290+02:00 rt-cs-123456.rt.pbx-host.com sshd-session[2383143]: Disconnected from authenticating user root 159.194.215.57 port 34146 [preauth]
show less
2026-07-02T02:12:50.922300+00:00 mailtommygod sshd[912748]: Failed password for invalid user shoptes ...
show more2026-07-02T02:12:50.922300+00:00 mailtommygod sshd[912748]: Failed password for invalid user shoptest from 159.194.215.57 port 50138 ssh2
2026-07-02T02:14:53.723658+00:00 mailtommygod sshd[913136]: Invalid user dnsadmin from 159.194.215.57 port 59014
2026-07-02T02:14:53.729646+00:00 mailtommygod sshd[913136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57
2026-07-02T02:14:55.950950+00:00 mailtommygod sshd[913136]: Failed password for invalid user dnsadmin from 159.194.215.57 port 59014 ssh2
2026-07-02T02:17:00.442606+00:00 mailtommygod sshd[913591]: Invalid user amc from 159.194.215.57 port 59148
show less
2026-07-02T04:11:53.289228+02:00 router01.ib-heddier.de sshd[845247]: Invalid user hair from 159.194 ...
show more2026-07-02T04:11:53.289228+02:00 router01.ib-heddier.de sshd[845247]: Invalid user hair from 159.194.215.57 port 36314
2026-07-02T04:11:53.356175+02:00 router01.ib-heddier.de sshd[845247]: Disconnected from invalid user hair 159.194.215.57 port 36314 [preauth]
2026-07-02T04:14:22.961294+02:00 router01.ib-heddier.de sshd[845629]: Invalid user shoptest from 159.194.215.57 port 51404
2026-07-02T04:14:23.021921+02:00 router01.ib-heddier.de sshd[845629]: Disconnected from invalid user shoptest 159.194.215.57 port 51404 [preauth]
2026-07-02T04:16:27.064607+02:00 router01.ib-heddier.de sshd[845952]: Invalid user dnsadmin from 159.194.215.57 port 54372
show less
2026-07-02T02:02:06.399924+00:00 ubuntu sshd[447285]: pam_unix(sshd:auth): authentication failure; l ...
show more2026-07-02T02:02:06.399924+00:00 ubuntu sshd[447285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57
2026-07-02T02:02:08.991845+00:00 ubuntu sshd[447285]: Failed password for invalid user hair from 159.194.215.57 port 39696 ssh2
2026-07-02T02:13:00.551361+00:00 ubuntu sshd[447302]: Invalid user shoptest from 159.194.215.57 port 46018
...
show less
2026-07-02T01:37:06.397756+00:00 flying.play2go.cloud sshd[480351]: Invalid user ubuntu from 159.194 ...
show more2026-07-02T01:37:06.397756+00:00 flying.play2go.cloud sshd[480351]: Invalid user ubuntu from 159.194.215.57 port 55112
2026-07-02T01:37:06.401087+00:00 flying.play2go.cloud sshd[480351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.194.215.57
2026-07-02T01:37:08.401266+00:00 flying.play2go.cloud sshd[480351]: Failed password for invalid user ubuntu from 159.194.215.57 port 55112 ssh2
...
show less
Brute-Force
SSH
Showing 1 to
15
of 317 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ