202.149.70.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Satata Neka Tama

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-11-23 14:11:00
attack	Nov 14 07:52:41 localhost sshd\[31863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 user=root Nov 14 07:52:42 localhost sshd\[31863\]: Failed password for root from 202.149.70.53 port 39646 ssh2 Nov 14 07:57:11 localhost sshd\[32322\]: Invalid user kondor from 202.149.70.53 port 49106	2019-11-14 15:03:58
attack	Nov 13 06:28:11 ovpn sshd\[2752\]: Invalid user admin from 202.149.70.53 Nov 13 06:28:11 ovpn sshd\[2752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 Nov 13 06:28:14 ovpn sshd\[2752\]: Failed password for invalid user admin from 202.149.70.53 port 51602 ssh2 Nov 13 06:51:01 ovpn sshd\[7744\]: Invalid user guest from 202.149.70.53 Nov 13 06:51:01 ovpn sshd\[7744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53	2019-11-13 14:26:32
attackbots	Nov 13 00:22:51 vps691689 sshd[6953]: Failed password for root from 202.149.70.53 port 58170 ssh2 Nov 13 00:27:13 vps691689 sshd[7032]: Failed password for root from 202.149.70.53 port 39074 ssh2 ...	2019-11-13 07:27:30
attackbotsspam	Nov 8 21:16:37 areeb-Workstation sshd[9662]: Failed password for root from 202.149.70.53 port 54342 ssh2 ...	2019-11-09 04:12:20
attackbots	Nov 3 06:32:28 ws19vmsma01 sshd[225895]: Failed password for root from 202.149.70.53 port 35826 ssh2 Nov 3 06:45:18 ws19vmsma01 sshd[6121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 ...	2019-11-03 22:09:38
attackbotsspam	Oct 21 08:44:48 DAAP sshd[13321]: Invalid user fuwuqiXP from 202.149.70.53 port 37226 Oct 21 08:44:48 DAAP sshd[13321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 Oct 21 08:44:48 DAAP sshd[13321]: Invalid user fuwuqiXP from 202.149.70.53 port 37226 Oct 21 08:44:51 DAAP sshd[13321]: Failed password for invalid user fuwuqiXP from 202.149.70.53 port 37226 ssh2 ...	2019-10-21 19:04:30
attack	Sep 8 20:51:39 hcbb sshd\[19005\]: Invalid user teste from 202.149.70.53 Sep 8 20:51:39 hcbb sshd\[19005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 Sep 8 20:51:41 hcbb sshd\[19005\]: Failed password for invalid user teste from 202.149.70.53 port 45592 ssh2 Sep 8 20:58:53 hcbb sshd\[19690\]: Invalid user steam from 202.149.70.53 Sep 8 20:58:53 hcbb sshd\[19690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53	2019-09-09 15:17:05
attackbotsspam	2019-09-09T00:40:17.142497abusebot-3.cloudsearch.cf sshd\[9249\]: Invalid user test from 202.149.70.53 port 36280	2019-09-09 09:15:32
attack	Aug 15 11:59:40 webhost01 sshd[28712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 Aug 15 11:59:41 webhost01 sshd[28712]: Failed password for invalid user kaitlyn from 202.149.70.53 port 57980 ssh2 ...	2019-08-15 13:04:38
attackbots	Aug 6 23:05:32 mail sshd\[9456\]: Invalid user nike from 202.149.70.53 port 47284 Aug 6 23:05:32 mail sshd\[9456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 ...	2019-08-07 12:42:53
attackbots	Jul 12 04:24:40 * sshd[29463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 Jul 12 04:24:42 * sshd[29463]: Failed password for invalid user ding from 202.149.70.53 port 51964 ssh2	2019-07-12 11:05:51
attackspambots	Jul 1 23:07:53 work-partkepr sshd\[18997\]: Invalid user rstudio from 202.149.70.53 port 60988 Jul 1 23:07:53 work-partkepr sshd\[18997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53 ...	2019-07-02 08:44:52

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.149.70.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26832
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.149.70.53.			IN	A

;; AUTHORITY SECTION:
.			1417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 08:44:47 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 53.70.149.202.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 53.70.149.202.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.9.130.159	attackspam	2020-02-18 08:16:05,068 fail2ban.actions [2870]: NOTICE [sshd] Ban 190.9.130.159 2020-02-18 08:51:49,109 fail2ban.actions [2870]: NOTICE [sshd] Ban 190.9.130.159 2020-02-18 09:26:21,408 fail2ban.actions [2870]: NOTICE [sshd] Ban 190.9.130.159 2020-02-18 10:01:06,154 fail2ban.actions [2870]: NOTICE [sshd] Ban 190.9.130.159 2020-02-18 10:36:39,787 fail2ban.actions [2870]: NOTICE [sshd] Ban 190.9.130.159 ...	2020-02-18 17:56:59
185.202.1.43	attackspam	RDP Brute-Force (honeypot 4)	2020-02-18 17:58:36
49.213.214.130	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 17:30:41
201.132.83.110	attack	Brute forcing email accounts	2020-02-18 17:40:20
49.234.8.227	attackspambots	CN China - Hits: 11	2020-02-18 17:19:51
66.96.233.31	attackspambots	Feb 18 08:11:13 legacy sshd[25780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.233.31 Feb 18 08:11:15 legacy sshd[25780]: Failed password for invalid user bpoint from 66.96.233.31 port 42453 ssh2 Feb 18 08:15:16 legacy sshd[25993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.233.31 ...	2020-02-18 17:22:33
175.5.11.111	attackbotsspam	Automatic report - Port Scan Attack	2020-02-18 18:00:39
212.112.97.194	attack	Feb 18 07:40:25 vps647732 sshd[1969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.97.194 Feb 18 07:40:27 vps647732 sshd[1969]: Failed password for invalid user gerald from 212.112.97.194 port 35490 ssh2 ...	2020-02-18 17:26:45
106.51.84.18	attackbots	02/17/2020-23:53:04.116202 106.51.84.18 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-18 17:28:34
112.85.42.186	attackspambots	Feb 18 10:14:34 ns381471 sshd[26977]: Failed password for root from 112.85.42.186 port 39493 ssh2	2020-02-18 17:32:27
159.203.66.129	attack	Feb 18 11:17:27 pkdns2 sshd\[8031\]: Failed password for root from 159.203.66.129 port 55308 ssh2Feb 18 11:17:27 pkdns2 sshd\[8033\]: Invalid user admin from 159.203.66.129Feb 18 11:17:29 pkdns2 sshd\[8033\]: Failed password for invalid user admin from 159.203.66.129 port 58186 ssh2Feb 18 11:17:30 pkdns2 sshd\[8035\]: Invalid user ubnt from 159.203.66.129Feb 18 11:17:31 pkdns2 sshd\[8035\]: Failed password for invalid user ubnt from 159.203.66.129 port 32786 ssh2Feb 18 11:17:33 pkdns2 sshd\[8037\]: Failed password for root from 159.203.66.129 port 35176 ssh2Feb 18 11:17:34 pkdns2 sshd\[8039\]: Invalid user support from 159.203.66.129 ...	2020-02-18 17:20:14
121.168.115.36	attackspambots	Feb 18 10:49:38 server sshd[19658]: Failed password for invalid user tiptop from 121.168.115.36 port 54862 ssh2 Feb 18 10:52:40 server sshd[21582]: Failed password for invalid user house from 121.168.115.36 port 54618 ssh2 Feb 18 10:55:42 server sshd[23200]: Failed password for invalid user P@ssw0rd from 121.168.115.36 port 54378 ssh2	2020-02-18 18:00:57
121.192.181.171	attackspam	Feb 18 07:28:09 plex sshd[31365]: Invalid user test2 from 121.192.181.171 port 25185	2020-02-18 17:17:32
171.226.153.133	attack	20/2/18@02:00:26: FAIL: Alarm-Network address from=171.226.153.133 20/2/18@02:00:26: FAIL: Alarm-Network address from=171.226.153.133 ...	2020-02-18 17:31:14
51.158.25.170	attackbots	firewall-block, port(s): 25080/udp	2020-02-18 17:35:55

Recently Reported IPs

102.197.120.62	112.171.127.187	32.204.107.236	250.167.114.160
33.122.235.86	247.228.49.57	81.152.42.234	209.234.99.156
49.144.206.199	80.148.105.47	84.128.2.90	216.82.41.248
223.177.93.207	116.203.141.92	54.36.150.116	42.117.25.110
186.251.59.129	110.243.220.110	221.147.221.77	181.134.81.35