190.57.253.149

Basic Info

City: Santa Fe

Region: Santa Fe

Country: Argentina

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 190.57.253.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12700
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;190.57.253.149.			IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019113002 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 04:13:19 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 149.253.57.190.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.253.57.190.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.84.190.213	attackbots	trying to access non-authorized port	2020-04-19 14:14:03
152.67.59.163	attackspam	Invalid user telnetd from 152.67.59.163 port 51101	2020-04-19 14:20:22
122.51.236.130	attack	Apr 18 20:10:31 web1 sshd\[13531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.236.130 user=root Apr 18 20:10:32 web1 sshd\[13531\]: Failed password for root from 122.51.236.130 port 45534 ssh2 Apr 18 20:16:41 web1 sshd\[14231\]: Invalid user ubuntu from 122.51.236.130 Apr 18 20:16:41 web1 sshd\[14231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.236.130 Apr 18 20:16:43 web1 sshd\[14231\]: Failed password for invalid user ubuntu from 122.51.236.130 port 59125 ssh2	2020-04-19 14:21:27
78.108.105.108	attackspam	W 31101,/var/log/nginx/access.log,-,-	2020-04-19 14:29:37
104.131.249.57	attackspambots	Apr 19 08:23:32 lukav-desktop sshd\[5184\]: Invalid user admin from 104.131.249.57 Apr 19 08:23:32 lukav-desktop sshd\[5184\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.249.57 Apr 19 08:23:34 lukav-desktop sshd\[5184\]: Failed password for invalid user admin from 104.131.249.57 port 46489 ssh2 Apr 19 08:31:03 lukav-desktop sshd\[5466\]: Invalid user la from 104.131.249.57 Apr 19 08:31:03 lukav-desktop sshd\[5466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.249.57	2020-04-19 14:28:49
188.128.39.113	attackspambots	Apr 19 08:21:28 Enigma sshd[24087]: Failed password for invalid user ftpuser2 from 188.128.39.113 port 55728 ssh2 Apr 19 08:25:26 Enigma sshd[24697]: Invalid user ubuntu from 188.128.39.113 port 42694 Apr 19 08:25:26 Enigma sshd[24697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.128.39.113 Apr 19 08:25:26 Enigma sshd[24697]: Invalid user ubuntu from 188.128.39.113 port 42694 Apr 19 08:25:29 Enigma sshd[24697]: Failed password for invalid user ubuntu from 188.128.39.113 port 42694 ssh2	2020-04-19 14:10:26
2.82.166.62	attack	SSH Brute-Force reported by Fail2Ban	2020-04-19 14:25:42
35.155.197.171	attackbotsspam	Apr 19 06:42:19 OPSO sshd\[13088\]: Invalid user zh from 35.155.197.171 port 57964 Apr 19 06:42:19 OPSO sshd\[13088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.155.197.171 Apr 19 06:42:20 OPSO sshd\[13088\]: Failed password for invalid user zh from 35.155.197.171 port 57964 ssh2 Apr 19 06:46:23 OPSO sshd\[13983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.155.197.171 user=root Apr 19 06:46:25 OPSO sshd\[13983\]: Failed password for root from 35.155.197.171 port 44454 ssh2	2020-04-19 14:32:23
101.78.229.4	attack	2020-04-19T04:26:05.136556dmca.cloudsearch.cf sshd[30648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.229.4 user=root 2020-04-19T04:26:06.952125dmca.cloudsearch.cf sshd[30648]: Failed password for root from 101.78.229.4 port 46584 ssh2 2020-04-19T04:28:18.904291dmca.cloudsearch.cf sshd[30796]: Invalid user zq from 101.78.229.4 port 35378 2020-04-19T04:28:18.911527dmca.cloudsearch.cf sshd[30796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.229.4 2020-04-19T04:28:18.904291dmca.cloudsearch.cf sshd[30796]: Invalid user zq from 101.78.229.4 port 35378 2020-04-19T04:28:21.319248dmca.cloudsearch.cf sshd[30796]: Failed password for invalid user zq from 101.78.229.4 port 35378 ssh2 2020-04-19T04:30:27.699285dmca.cloudsearch.cf sshd[30939]: Invalid user l from 101.78.229.4 port 52338 ...	2020-04-19 14:33:12
24.60.30.82	attack	Apr 18 19:19:03 php1 sshd\[24452\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-24-60-30-82.hsd1.ct.comcast.net user=root Apr 18 19:19:05 php1 sshd\[24452\]: Failed password for root from 24.60.30.82 port 58454 ssh2 Apr 18 19:25:33 php1 sshd\[25171\]: Invalid user ftpuser from 24.60.30.82 Apr 18 19:25:33 php1 sshd\[25171\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-24-60-30-82.hsd1.ct.comcast.net Apr 18 19:25:35 php1 sshd\[25171\]: Failed password for invalid user ftpuser from 24.60.30.82 port 46820 ssh2	2020-04-19 14:27:37
183.89.212.96	attack	Dovecot Invalid User Login Attempt.	2020-04-19 14:23:31
116.1.201.11	attackspam	Brute-force attempt banned	2020-04-19 14:19:45
218.66.247.122	attackbotsspam	Attempts against SMTP/SSMTP	2020-04-19 14:08:26
77.40.83.168	attackspambots	Brute force attempt	2020-04-19 14:25:01
45.71.230.11	attack	[Sun Apr 19 10:54:03.888780 2020] [:error] [pid 19214:tid 140176909137664] [client 45.71.230.11:56986] [client 45.71.230.11] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XpvLW4Re5UnEEqJRAW4F4gAAALQ"] ...	2020-04-19 14:36:31

Recently Reported IPs

24.53.56.7	188.212.173.9	190.186.158.127	14.108.117.211
173.118.73.44	97.150.203.133	52.222.154.196	14.160.87.92
76.4.135.206	177.35.40.97	68.120.194.79	3.56.64.59
185.220.15.186	86.242.44.41	140.182.187.124	65.191.212.36
112.197.225.74	101.111.95.9	69.201.134.174	81.155.200.106