187.157.53.50 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Uninet S.A. de C.V.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 187.157.53.50 to port 445 [T]	2020-08-13 09:25:09
attackspam	Unauthorized connection attempt from IP address 187.157.53.50 on Port 445(SMB)	2019-12-25 03:49:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 187.157.53.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61459
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;187.157.53.50.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122401 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 25 03:49:54 CST 2019
;; MSG SIZE  rcvd: 117

Host info

50.53.157.187.in-addr.arpa domain name pointer customer-187-157-53-50-sta.uninet-ide.com.mx.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.53.157.187.in-addr.arpa	name = customer-187-157-53-50-sta.uninet-ide.com.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.231.119.141	attackbots	Jul 4 02:13:54 ns37 sshd[13233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.119.141	2020-07-04 12:32:16
193.112.85.35	attackbots	Jul 4 04:24:02 eventyay sshd[10812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.85.35 Jul 4 04:24:05 eventyay sshd[10812]: Failed password for invalid user miner from 193.112.85.35 port 52744 ssh2 Jul 4 04:26:02 eventyay sshd[10934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.85.35 ...	2020-07-04 11:51:59
222.186.175.150	attackbots	$f2bV_matches	2020-07-04 12:04:47
194.26.29.32	attackbotsspam	Port scan on 31 port(s): 3335 3371 3579 3990 4025 4095 4192 4423 4441 4448 4696 4749 4846 4891 4932 5050 5096 5193 5422 5542 5871 5918 6110 6196 6212 6338 6427 6438 6458 6495 6654	2020-07-04 12:05:17
185.234.219.117	attackbots	2020-07-04T03:15:30.802932beta postfix/smtpd[30420]: warning: unknown[185.234.219.117]: SASL LOGIN authentication failed: authentication failure 2020-07-04T03:29:27.911268beta postfix/smtpd[30575]: warning: unknown[185.234.219.117]: SASL LOGIN authentication failed: authentication failure 2020-07-04T03:43:19.226891beta postfix/smtpd[30777]: warning: unknown[185.234.219.117]: SASL LOGIN authentication failed: authentication failure ...	2020-07-04 12:31:55
31.47.43.139	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-04 12:10:35
36.90.179.187	attackspam	Lines containing failures of 36.90.179.187 Jul 1 05:39:33 shared01 sshd[3088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.90.179.187 user=r.r Jul 1 05:39:34 shared01 sshd[3088]: Failed password for r.r from 36.90.179.187 port 50976 ssh2 Jul 1 05:39:34 shared01 sshd[3088]: Received disconnect from 36.90.179.187 port 50976:11: Bye Bye [preauth] Jul 1 05:39:34 shared01 sshd[3088]: Disconnected from authenticating user r.r 36.90.179.187 port 50976 [preauth] Jul 1 05:43:39 shared01 sshd[4594]: Invalid user Redistoor from 36.90.179.187 port 41964 Jul 1 05:43:39 shared01 sshd[4594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.90.179.187 Jul 1 05:43:41 shared01 sshd[4594]: Failed password for invalid user Redistoor from 36.90.179.187 port 41964 ssh2 Jul 1 05:43:41 shared01 sshd[4594]: Received disconnect from 36.90.179.187 port 41964:11: Bye Bye [preauth] Jul 1 05:43:41 share........ ------------------------------	2020-07-04 11:59:58
119.252.143.6	attackbotsspam	Jul 4 03:28:59 PorscheCustomer sshd[13648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.252.143.6 Jul 4 03:29:00 PorscheCustomer sshd[13648]: Failed password for invalid user customer from 119.252.143.6 port 49377 ssh2 Jul 4 03:32:02 PorscheCustomer sshd[13692]: Failed password for root from 119.252.143.6 port 15921 ssh2 ...	2020-07-04 12:27:36
222.186.180.41	attack	Jul 4 06:05:43 vm1 sshd[22670]: Failed password for root from 222.186.180.41 port 15720 ssh2 Jul 4 06:05:57 vm1 sshd[22670]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 15720 ssh2 [preauth] ...	2020-07-04 12:07:17
51.255.171.172	attackbotsspam	2020-07-04T06:29:03.640976mail.standpoint.com.ua sshd[29310]: Failed password for ftp from 51.255.171.172 port 53676 ssh2 2020-07-04T06:31:55.724020mail.standpoint.com.ua sshd[29740]: Invalid user upload from 51.255.171.172 port 47620 2020-07-04T06:31:55.726679mail.standpoint.com.ua sshd[29740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.ip-51-255-171.eu 2020-07-04T06:31:55.724020mail.standpoint.com.ua sshd[29740]: Invalid user upload from 51.255.171.172 port 47620 2020-07-04T06:31:57.760830mail.standpoint.com.ua sshd[29740]: Failed password for invalid user upload from 51.255.171.172 port 47620 ssh2 ...	2020-07-04 12:12:46
140.143.146.148	attackspambots	Jul 4 06:05:20 server sshd[15901]: Failed password for invalid user server from 140.143.146.148 port 60882 ssh2 Jul 4 06:06:42 server sshd[17103]: User postgres from 140.143.146.148 not allowed because not listed in AllowUsers Jul 4 06:06:44 server sshd[17103]: Failed password for invalid user postgres from 140.143.146.148 port 50414 ssh2	2020-07-04 12:16:41
27.72.195.145	attackbots	SSH-BruteForce	2020-07-04 12:11:02
185.39.11.105	attackspambots	Port scan on 11 port(s): 17 26 53 81 123 389 3283 3702 5353 5555 8080	2020-07-04 12:05:55
124.156.103.155	attack	Jul 4 03:38:40 ip-172-31-62-245 sshd\[644\]: Failed password for root from 124.156.103.155 port 36598 ssh2\ Jul 4 03:40:40 ip-172-31-62-245 sshd\[728\]: Invalid user asw from 124.156.103.155\ Jul 4 03:40:42 ip-172-31-62-245 sshd\[728\]: Failed password for invalid user asw from 124.156.103.155 port 34192 ssh2\ Jul 4 03:42:41 ip-172-31-62-245 sshd\[754\]: Failed password for root from 124.156.103.155 port 60000 ssh2\ Jul 4 03:44:49 ip-172-31-62-245 sshd\[765\]: Failed password for root from 124.156.103.155 port 57600 ssh2\	2020-07-04 12:15:54
79.138.11.247	attackspam	Telnet Server BruteForce Attack	2020-07-04 12:18:54

Recently Reported IPs

60.53.118.219	86.19.47.120	63.32.217.9	66.3.208.128
1.156.200.56	156.217.225.237	121.163.185.103	39.176.4.123
182.167.136.101	36.6.200.118	146.196.39.235	93.56.128.20
208.180.244.170	76.225.92.80	113.221.95.144	137.229.74.93
162.228.101.6	84.201.159.211	67.36.217.2	100.162.221.83