149.200.157.53

Basic Info

City: unknown

Region: unknown

Country: Jordan

Internet Service Provider: Jordan Data Communications Company LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 149.200.157.53 to port 23	2020-06-15 18:03:35

Comments on same subnet:

IP	Type	Details	Datetime
149.200.157.39	attack	unauthorized connection attempt	2020-01-12 13:46:12
149.200.157.77	attackbotsspam	Telnet Server BruteForce Attack	2019-07-22 19:38:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.200.157.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37649
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.200.157.53.			IN	A

;; AUTHORITY SECTION:
.			550	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061500 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 15 18:03:31 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 53.157.200.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.157.200.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.90.118.103	attack	10/14/2019-18:25:16.817347 185.90.118.103 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-15 06:28:32
83.171.99.217	attackspam	Oct 15 00:05:11 vmanager6029 sshd\[23301\]: Invalid user starcraft2 from 83.171.99.217 port 15191 Oct 15 00:05:11 vmanager6029 sshd\[23301\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.171.99.217 Oct 15 00:05:14 vmanager6029 sshd\[23301\]: Failed password for invalid user starcraft2 from 83.171.99.217 port 15191 ssh2	2019-10-15 06:52:53
36.67.206.187	attack	Automatic report - XMLRPC Attack	2019-10-15 06:34:04
129.28.181.209	attack	2019-10-14T22:40:51.562228abusebot-2.cloudsearch.cf sshd\[32764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.181.209 user=root	2019-10-15 06:49:39
36.76.81.73	attack	" "	2019-10-15 06:49:05
70.35.207.85	attack	WordPress login Brute force / Web App Attack on client site.	2019-10-15 06:34:48
120.92.153.47	attack	120.92.153.47 has been banned from MailServer for Abuse ...	2019-10-15 06:33:07
168.197.153.1	attackspambots	" "	2019-10-15 06:47:52
203.177.70.171	attack	Oct 14 22:47:03 meumeu sshd[4378]: Failed password for root from 203.177.70.171 port 42414 ssh2 Oct 14 22:51:24 meumeu sshd[5001]: Failed password for root from 203.177.70.171 port 54220 ssh2 ...	2019-10-15 06:25:08
185.21.41.142	attackbotsspam	DATE:2019-10-14 21:44:16, IP:185.21.41.142, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-15 06:34:21
47.110.238.176	attackspam	Exploid host for vulnerabilities on 14-10-2019 21:25:22.	2019-10-15 06:29:14
195.159.103.189	attackbots	Oct 14 18:32:50 ny01 sshd[14166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.159.103.189 Oct 14 18:32:52 ny01 sshd[14166]: Failed password for invalid user webmail from 195.159.103.189 port 45830 ssh2 Oct 14 18:38:51 ny01 sshd[14684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.159.103.189	2019-10-15 06:46:56
79.11.50.196	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 14-10-2019 20:55:23.	2019-10-15 06:37:26
176.31.253.55	attackbots	$f2bV_matches	2019-10-15 06:36:45
82.188.133.50	attack	Oct 14 21:51:16 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=82.188.133.50, lip=192.168.100.101, session=\\ Oct 14 21:52:12 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=82.188.133.50, lip=192.168.100.101, session=\\ Oct 14 21:52:19 imap-login: Info: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=82.188.133.50, lip=192.168.100.101, session=\\ Oct 14 21:52:28 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=82.188.133.50, lip=192.168.100.101, session=\\ Oct 14 21:52:29 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=82.188.133.50, lip=192.168.100.101, session=\\ Oct 14 21:52:32 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=82.188.133.50, lip=192.168.100.101, session=\\ Oct 14 21:52:32 imap-log	2019-10-15 06:35:34

Recently Reported IPs

122.51.34.64	117.5.149.113	93.141.132.3	77.40.2.26
27.111.46.173	185.199.8.92	120.131.9.167	198.74.98.76
170.244.64.198	159.65.104.52	6.18.99.148	27.66.188.144
104.168.202.90	218.92.0.223	94.249.8.207	36.78.245.16
235.118.223.147	14.192.208.67	122.52.174.102	104.215.151.21