154.157.2.49 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kenya

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.157.2.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65368
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;154.157.2.49.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 10:30:44 CST 2025
;; MSG SIZE  rcvd: 105

Host info

49.2.157.154.in-addr.arpa domain name pointer 49-2-157-154.r.airtelkenya.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.2.157.154.in-addr.arpa	name = 49-2-157-154.r.airtelkenya.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.78.122.237	attackspam	nft/Honeypot/22/73e86	2020-05-10 07:09:02
63.82.52.124	attack	May 9 22:19:53 web01 postfix/smtpd[19658]: connect from quaint.durmakas.com[63.82.52.124] May 9 22:19:53 web01 policyd-spf[19761]: None; identhostnamey=helo; client-ip=63.82.52.124; helo=quaint.dilshantg.com; envelope-from=x@x May 9 22:19:53 web01 policyd-spf[19761]: Pass; identhostnamey=mailfrom; client-ip=63.82.52.124; helo=quaint.dilshantg.com; envelope-from=x@x May x@x May 9 22:19:53 web01 postfix/smtpd[19658]: disconnect from quaint.durmakas.com[63.82.52.124] May 9 22:22:26 web01 postfix/smtpd[19769]: connect from quaint.durmakas.com[63.82.52.124] May 9 22:22:27 web01 policyd-spf[19790]: None; identhostnamey=helo; client-ip=63.82.52.124; helo=quaint.dilshantg.com; envelope-from=x@x May 9 22:22:27 web01 policyd-spf[19790]: Pass; identhostnamey=mailfrom; client-ip=63.82.52.124; helo=quaint.dilshantg.com; envelope-from=x@x May x@x May 9 22:22:27 web01 postfix/smtpd[19769]: disconnect from quaint.durmakas.com[63.82.52.124] May 9 22:26:28 web01 postfix/smtpd[19........ -------------------------------	2020-05-10 06:56:49
165.22.51.37	attackspam	May 10 00:33:10 vpn01 sshd[21365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.51.37 May 10 00:33:12 vpn01 sshd[21365]: Failed password for invalid user usuario from 165.22.51.37 port 52612 ssh2 ...	2020-05-10 07:27:04
185.50.149.11	attackbotsspam	May 10 00:18:20 web01.agentur-b-2.de postfix/smtpd[448660]: warning: unknown[185.50.149.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:18:21 web01.agentur-b-2.de postfix/smtpd[448660]: lost connection after AUTH from unknown[185.50.149.11] May 10 00:18:29 web01.agentur-b-2.de postfix/smtpd[448103]: lost connection after AUTH from unknown[185.50.149.11] May 10 00:18:37 web01.agentur-b-2.de postfix/smtpd[448660]: lost connection after AUTH from unknown[185.50.149.11] May 10 00:18:46 web01.agentur-b-2.de postfix/smtpd[448103]: warning: unknown[185.50.149.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-10 06:53:34
5.39.77.117	attackbots	May 10 00:55:47 vps647732 sshd[26141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.77.117 May 10 00:55:49 vps647732 sshd[26141]: Failed password for invalid user lhj from 5.39.77.117 port 34027 ssh2 ...	2020-05-10 07:03:04
186.147.129.110	attack	May 10 00:44:55 vps639187 sshd\[7415\]: Invalid user admin from 186.147.129.110 port 50908 May 10 00:44:55 vps639187 sshd\[7415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.147.129.110 May 10 00:44:57 vps639187 sshd\[7415\]: Failed password for invalid user admin from 186.147.129.110 port 50908 ssh2 ...	2020-05-10 07:16:11
58.152.50.202	attackbotsspam	May 10 00:37:47 eventyay sshd[7544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.152.50.202 May 10 00:37:49 eventyay sshd[7544]: Failed password for invalid user jira from 58.152.50.202 port 49758 ssh2 May 10 00:43:18 eventyay sshd[7684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.152.50.202 ...	2020-05-10 07:05:25
37.49.230.128	attackspam	Brute-Force	2020-05-10 07:10:49
2002:b9ea:d8ce::b9ea:d8ce	attack	May 10 00:44:31 web01.agentur-b-2.de postfix/smtpd[452766]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:44:31 web01.agentur-b-2.de postfix/smtpd[452766]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] May 10 00:48:30 web01.agentur-b-2.de postfix/smtpd[448103]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:48:30 web01.agentur-b-2.de postfix/smtpd[448103]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] May 10 00:52:10 web01.agentur-b-2.de postfix/smtpd[465652]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-10 06:57:46
212.116.73.22	attack	rdp brute-force attack (aggressivity: medium)	2020-05-10 07:07:22
61.76.169.138	attackbots	SSH Invalid Login	2020-05-10 07:12:49
185.50.149.26	attack	May 9 23:15:48 karger postfix/smtpd[4698]: warning: unknown[185.50.149.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 9 23:16:00 karger postfix/smtpd[4698]: warning: unknown[185.50.149.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 10 00:49:10 karger postfix/smtpd[1069]: warning: unknown[185.50.149.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-10 06:52:28
139.59.84.29	attackspambots	web-1 [ssh] SSH Attack	2020-05-10 06:58:26
220.130.178.36	attackspam	2020-05-09T22:29:38.422191shield sshd\[10722\]: Invalid user poliana from 220.130.178.36 port 37580 2020-05-09T22:29:38.425760shield sshd\[10722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net 2020-05-09T22:29:40.701470shield sshd\[10722\]: Failed password for invalid user poliana from 220.130.178.36 port 37580 ssh2 2020-05-09T22:33:39.658189shield sshd\[11654\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-178-36.hinet-ip.hinet.net user=root 2020-05-09T22:33:42.017957shield sshd\[11654\]: Failed password for root from 220.130.178.36 port 46552 ssh2	2020-05-10 07:26:48
165.22.36.71	attack	DATE:2020-05-09 22:28:30, IP:165.22.36.71, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-05-10 07:08:32

Recently Reported IPs

216.219.61.12	159.4.251.32	27.73.228.184	241.178.2.145
73.217.173.71	220.224.24.126	29.198.68.88	26.223.209.188
32.14.226.152	45.54.162.134	66.44.166.29	124.206.119.151
169.137.138.236	182.204.6.68	244.44.163.190	127.226.136.132
233.70.142.241	98.83.100.180	44.78.48.28	104.210.18.151