157.100.53.106

Basic Info

City: unknown

Region: unknown

Country: Ecuador

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
157.100.53.94	attack	May 23 18:58:12 xeon sshd[52024]: Failed password for invalid user ora from 157.100.53.94 port 47930 ssh2	2020-05-24 02:17:37
157.100.53.94	attackbotsspam	May 13 15:36:40 meumeu sshd[29601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.53.94 May 13 15:36:43 meumeu sshd[29601]: Failed password for invalid user mu from 157.100.53.94 port 54640 ssh2 May 13 15:39:43 meumeu sshd[30147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.53.94 ...	2020-05-13 21:48:15
157.100.53.94	attackbots	May 8 23:04:29 host sshd[3295]: Invalid user photo from 157.100.53.94 port 33258 ...	2020-05-09 06:22:24
157.100.53.94	attack	May 5 23:55:03 eventyay sshd[1665]: Failed password for root from 157.100.53.94 port 59242 ssh2 May 5 23:59:30 eventyay sshd[1844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.53.94 May 5 23:59:32 eventyay sshd[1844]: Failed password for invalid user nico from 157.100.53.94 port 42080 ssh2 ...	2020-05-06 06:29:48
157.100.53.94	attackbotsspam	Invalid user roundcube from 157.100.53.94 port 51816	2020-05-02 13:56:54
157.100.53.94	attack	Apr 30 09:26:35 sso sshd[28974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.53.94 Apr 30 09:26:37 sso sshd[28974]: Failed password for invalid user wpy from 157.100.53.94 port 59512 ssh2 ...	2020-04-30 18:28:24
157.100.53.94	attackspam	Invalid user contable from 157.100.53.94 port 49164	2020-04-28 01:16:12
157.100.53.94	attack	$f2bV_matches	2020-04-20 02:49:03
157.100.53.94	attackbots	fail2ban -- 157.100.53.94 ...	2020-04-17 02:15:24
157.100.53.94	attack	web-1 [ssh] SSH Attack	2020-04-14 02:49:19
157.100.53.94	attack	Apr 11 14:13:28 sso sshd[22126]: Failed password for root from 157.100.53.94 port 43142 ssh2 ...	2020-04-11 23:50:33
157.100.53.94	attackbots	Apr 3 23:57:45 Tower sshd[20338]: Connection from 157.100.53.94 port 46276 on 192.168.10.220 port 22 rdomain "" Apr 3 23:57:49 Tower sshd[20338]: Failed password for root from 157.100.53.94 port 46276 ssh2 Apr 3 23:57:49 Tower sshd[20338]: Received disconnect from 157.100.53.94 port 46276:11: Bye Bye [preauth] Apr 3 23:57:49 Tower sshd[20338]: Disconnected from authenticating user root 157.100.53.94 port 46276 [preauth]	2020-04-04 13:15:01
157.100.53.94	attack	Scanned 3 times in the last 24 hours on port 22	2020-04-04 09:39:48
157.100.53.94	attackspambots	Mar 28 22:34:48 markkoudstaal sshd[11121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.53.94 Mar 28 22:34:50 markkoudstaal sshd[11121]: Failed password for invalid user guang from 157.100.53.94 port 49744 ssh2 Mar 28 22:36:27 markkoudstaal sshd[11347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.53.94	2020-03-29 06:31:46
157.100.53.94	attackbots	Invalid user ts3bot from 157.100.53.94 port 42860	2020-03-27 08:28:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.100.53.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44154
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.100.53.106.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:52:28 CST 2022
;; MSG SIZE  rcvd: 107

Host info

106.53.100.157.in-addr.arpa domain name pointer host-157-100-53-106.nedetel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.53.100.157.in-addr.arpa	name = host-157-100-53-106.nedetel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.85.172.145	attackbots	Sep 3 20:54:08 instance-2 sshd[16100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.85.172.145 Sep 3 20:54:10 instance-2 sshd[16100]: Failed password for invalid user ubuntu from 177.85.172.145 port 57802 ssh2 Sep 3 21:00:41 instance-2 sshd[16189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.85.172.145	2020-09-04 05:02:01
217.218.222.34	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-04 04:27:12
80.82.70.178	attack	80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET /muieblackcat HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-3.0.0.0-all-languages/scripts/setup.php HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-2.10.0.0/scripts/setup.php HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-2.11.11/scripts/setup.php HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-2.11.11.3/scripts/setup.php HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-2.11.11.3/scripts/setup.ph HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-2.11.11.3-all-languages/scripts/setup.php HTTP/1.1" 404 457 "-" "-" 80.82.70.178 - - [03/Sep/2020:22:13:34 0200] "GET //phpMyAdmin-2/scripts/setup.php HTTP/1.1" 404 457 "-" "-"[...]	2020-09-04 04:50:30
59.127.251.94	attackbots	port scan and connect, tcp 23 (telnet)	2020-09-04 04:47:20
157.44.221.0	attackbots	TCP (SYN) 157.44.221.0:50574 -> port 445, len 52	2020-09-04 04:28:21
128.199.92.187	attackbotsspam	Invalid user sdi from 128.199.92.187 port 33094	2020-09-04 05:04:26
191.242.217.110	attackbots	(sshd) Failed SSH login from 191.242.217.110 (BR/Brazil/EspÃrito Santo/Linhares (Palmital)/191.242.217.110-static.host.megalink.net.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 12:59:17 atlas sshd[20281]: Invalid user usuario from 191.242.217.110 port 28374 Sep 3 12:59:18 atlas sshd[20281]: Failed password for invalid user usuario from 191.242.217.110 port 28374 ssh2 Sep 3 13:13:00 atlas sshd[23347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.242.217.110 user=mysql Sep 3 13:13:02 atlas sshd[23347]: Failed password for mysql from 191.242.217.110 port 25419 ssh2 Sep 3 13:17:50 atlas sshd[24535]: Invalid user wzc from 191.242.217.110 port 5871	2020-09-04 04:34:22
2.58.12.26	attackbotsspam	9/2/2020 5:03am Session activity: Incorrect password entered	2020-09-04 04:37:11
112.85.42.172	attackbots	Sep 3 20:31:40 ip-172-31-61-156 sshd[14022]: Failed password for root from 112.85.42.172 port 62677 ssh2 Sep 3 20:31:43 ip-172-31-61-156 sshd[14022]: Failed password for root from 112.85.42.172 port 62677 ssh2 Sep 3 20:31:38 ip-172-31-61-156 sshd[14022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root Sep 3 20:31:40 ip-172-31-61-156 sshd[14022]: Failed password for root from 112.85.42.172 port 62677 ssh2 Sep 3 20:31:43 ip-172-31-61-156 sshd[14022]: Failed password for root from 112.85.42.172 port 62677 ssh2 ...	2020-09-04 04:38:43
167.172.195.99	attackbots	SSH Brute Force	2020-09-04 04:39:25
191.36.227.26	attack	Icarus honeypot on github	2020-09-04 04:27:28
94.199.198.137	attack	2020-09-03T21:51:45.679037lavrinenko.info sshd[30888]: Failed password for root from 94.199.198.137 port 40640 ssh2 2020-09-03T21:54:40.937817lavrinenko.info sshd[31122]: Invalid user jason from 94.199.198.137 port 41206 2020-09-03T21:54:40.947910lavrinenko.info sshd[31122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.199.198.137 2020-09-03T21:54:40.937817lavrinenko.info sshd[31122]: Invalid user jason from 94.199.198.137 port 41206 2020-09-03T21:54:42.395313lavrinenko.info sshd[31122]: Failed password for invalid user jason from 94.199.198.137 port 41206 ssh2 ...	2020-09-04 05:03:05
61.221.64.4	attack	Multiple SSH authentication failures from 61.221.64.4	2020-09-04 04:56:54
222.186.180.8	attackbots	Sep 3 22:51:17 vps1 sshd[6732]: Failed none for invalid user root from 222.186.180.8 port 43630 ssh2 Sep 3 22:51:17 vps1 sshd[6732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Sep 3 22:51:19 vps1 sshd[6732]: Failed password for invalid user root from 222.186.180.8 port 43630 ssh2 Sep 3 22:51:22 vps1 sshd[6732]: Failed password for invalid user root from 222.186.180.8 port 43630 ssh2 Sep 3 22:51:26 vps1 sshd[6732]: Failed password for invalid user root from 222.186.180.8 port 43630 ssh2 Sep 3 22:51:31 vps1 sshd[6732]: Failed password for invalid user root from 222.186.180.8 port 43630 ssh2 Sep 3 22:51:34 vps1 sshd[6732]: Failed password for invalid user root from 222.186.180.8 port 43630 ssh2 Sep 3 22:51:35 vps1 sshd[6732]: error: maximum authentication attempts exceeded for invalid user root from 222.186.180.8 port 43630 ssh2 [preauth] ...	2020-09-04 04:54:52
125.160.17.32	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-04 04:45:00

Recently Reported IPs

39.32.7.185	201.196.211.57	103.16.145.25	45.85.208.28
103.156.93.238	183.48.244.7	191.84.204.69	89.44.179.52
180.149.126.85	192.210.159.140	201.143.59.190	42.114.39.17
151.243.235.95	124.248.191.178	101.205.148.57	197.210.85.35
23.108.43.74	129.205.183.60	178.216.123.228	187.76.243.70