Looking up IP
Check an IP Address, Domain Name, Subnet, or ASN
157.245.251.196 has a threat confidence score of 83%. This IP address from United States (AS14061, DigitalOcean, LLC) has been observed in 34 honeypot sessions targeting SSH, SMB, HTTP, HTTPS, DOCKER and 8 other protocols. First observed on April 8, 2026, most recently active April 9, 2026.
Automated SIP OPTIONS requests used to validate reachable VoIP endpoints and enumerate service capabilities without initiating a call session. The client sends standalone OPTIONS probes with high-entropy or unusually long Call-ID values, a pattern commonly associated with scripted scanning frameworks or VoIP reconnaissance tooling. Such activity is typically observed during infrastructure discovery phases where attackers identify responsive SIP servers, supported methods, and potential targets for toll fraud, brute-force registration attempts, or later exploitation campaigns.
HTTP request using GET method.
Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.
Identifies HTTPS requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration