Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. Satata Neka Tama

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:
Type Details Datetime
attackbotsspam
Automatic report - SSH Brute-Force Attack
2019-11-23 14:11:00
attack
Nov 14 07:52:41 localhost sshd\[31863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53  user=root
Nov 14 07:52:42 localhost sshd\[31863\]: Failed password for root from 202.149.70.53 port 39646 ssh2
Nov 14 07:57:11 localhost sshd\[32322\]: Invalid user kondor from 202.149.70.53 port 49106
2019-11-14 15:03:58
attack
Nov 13 06:28:11 ovpn sshd\[2752\]: Invalid user admin from 202.149.70.53
Nov 13 06:28:11 ovpn sshd\[2752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
Nov 13 06:28:14 ovpn sshd\[2752\]: Failed password for invalid user admin from 202.149.70.53 port 51602 ssh2
Nov 13 06:51:01 ovpn sshd\[7744\]: Invalid user guest from 202.149.70.53
Nov 13 06:51:01 ovpn sshd\[7744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
2019-11-13 14:26:32
attackbots
Nov 13 00:22:51 vps691689 sshd[6953]: Failed password for root from 202.149.70.53 port 58170 ssh2
Nov 13 00:27:13 vps691689 sshd[7032]: Failed password for root from 202.149.70.53 port 39074 ssh2
...
2019-11-13 07:27:30
attackbotsspam
Nov  8 21:16:37 areeb-Workstation sshd[9662]: Failed password for root from 202.149.70.53 port 54342 ssh2
...
2019-11-09 04:12:20
attackbots
Nov  3 06:32:28 ws19vmsma01 sshd[225895]: Failed password for root from 202.149.70.53 port 35826 ssh2
Nov  3 06:45:18 ws19vmsma01 sshd[6121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
...
2019-11-03 22:09:38
attackbotsspam
Oct 21 08:44:48 DAAP sshd[13321]: Invalid user fuwuqiXP from 202.149.70.53 port 37226
Oct 21 08:44:48 DAAP sshd[13321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
Oct 21 08:44:48 DAAP sshd[13321]: Invalid user fuwuqiXP from 202.149.70.53 port 37226
Oct 21 08:44:51 DAAP sshd[13321]: Failed password for invalid user fuwuqiXP from 202.149.70.53 port 37226 ssh2
...
2019-10-21 19:04:30
attack
Sep  8 20:51:39 hcbb sshd\[19005\]: Invalid user teste from 202.149.70.53
Sep  8 20:51:39 hcbb sshd\[19005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
Sep  8 20:51:41 hcbb sshd\[19005\]: Failed password for invalid user teste from 202.149.70.53 port 45592 ssh2
Sep  8 20:58:53 hcbb sshd\[19690\]: Invalid user steam from 202.149.70.53
Sep  8 20:58:53 hcbb sshd\[19690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
2019-09-09 15:17:05
attackbotsspam
2019-09-09T00:40:17.142497abusebot-3.cloudsearch.cf sshd\[9249\]: Invalid user test from 202.149.70.53 port 36280
2019-09-09 09:15:32
attack
Aug 15 11:59:40 webhost01 sshd[28712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
Aug 15 11:59:41 webhost01 sshd[28712]: Failed password for invalid user kaitlyn from 202.149.70.53 port 57980 ssh2
...
2019-08-15 13:04:38
attackbots
Aug  6 23:05:32 mail sshd\[9456\]: Invalid user nike from 202.149.70.53 port 47284
Aug  6 23:05:32 mail sshd\[9456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
...
2019-08-07 12:42:53
attackbots
Jul 12 04:24:40 * sshd[29463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
Jul 12 04:24:42 * sshd[29463]: Failed password for invalid user ding from 202.149.70.53 port 51964 ssh2
2019-07-12 11:05:51
attackspambots
Jul  1 23:07:53 work-partkepr sshd\[18997\]: Invalid user rstudio from 202.149.70.53 port 60988
Jul  1 23:07:53 work-partkepr sshd\[18997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.149.70.53
...
2019-07-02 08:44:52
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.149.70.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26832
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.149.70.53.			IN	A

;; AUTHORITY SECTION:
.			1417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 08:44:47 CST 2019
;; MSG SIZE  rcvd: 117
Host info
Host 53.70.149.202.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 53.70.149.202.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
190.9.130.159 attackspam
2020-02-18 08:16:05,068 fail2ban.actions        [2870]: NOTICE  [sshd] Ban 190.9.130.159
2020-02-18 08:51:49,109 fail2ban.actions        [2870]: NOTICE  [sshd] Ban 190.9.130.159
2020-02-18 09:26:21,408 fail2ban.actions        [2870]: NOTICE  [sshd] Ban 190.9.130.159
2020-02-18 10:01:06,154 fail2ban.actions        [2870]: NOTICE  [sshd] Ban 190.9.130.159
2020-02-18 10:36:39,787 fail2ban.actions        [2870]: NOTICE  [sshd] Ban 190.9.130.159
...
2020-02-18 17:56:59
185.202.1.43 attackspam
RDP Brute-Force (honeypot 4)
2020-02-18 17:58:36
49.213.214.130 attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-18 17:30:41
201.132.83.110 attack
Brute forcing email accounts
2020-02-18 17:40:20
49.234.8.227 attackspambots
CN China - Hits: 11
2020-02-18 17:19:51
66.96.233.31 attackspambots
Feb 18 08:11:13 legacy sshd[25780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.233.31
Feb 18 08:11:15 legacy sshd[25780]: Failed password for invalid user bpoint from 66.96.233.31 port 42453 ssh2
Feb 18 08:15:16 legacy sshd[25993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.96.233.31
...
2020-02-18 17:22:33
175.5.11.111 attackbotsspam
Automatic report - Port Scan Attack
2020-02-18 18:00:39
212.112.97.194 attack
Feb 18 07:40:25 vps647732 sshd[1969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.97.194
Feb 18 07:40:27 vps647732 sshd[1969]: Failed password for invalid user gerald from 212.112.97.194 port 35490 ssh2
...
2020-02-18 17:26:45
106.51.84.18 attackbots
02/17/2020-23:53:04.116202 106.51.84.18 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433
2020-02-18 17:28:34
112.85.42.186 attackspambots
Feb 18 10:14:34 ns381471 sshd[26977]: Failed password for root from 112.85.42.186 port 39493 ssh2
2020-02-18 17:32:27
159.203.66.129 attack
Feb 18 11:17:27 pkdns2 sshd\[8031\]: Failed password for root from 159.203.66.129 port 55308 ssh2Feb 18 11:17:27 pkdns2 sshd\[8033\]: Invalid user admin from 159.203.66.129Feb 18 11:17:29 pkdns2 sshd\[8033\]: Failed password for invalid user admin from 159.203.66.129 port 58186 ssh2Feb 18 11:17:30 pkdns2 sshd\[8035\]: Invalid user ubnt from 159.203.66.129Feb 18 11:17:31 pkdns2 sshd\[8035\]: Failed password for invalid user ubnt from 159.203.66.129 port 32786 ssh2Feb 18 11:17:33 pkdns2 sshd\[8037\]: Failed password for root from 159.203.66.129 port 35176 ssh2Feb 18 11:17:34 pkdns2 sshd\[8039\]: Invalid user support from 159.203.66.129
...
2020-02-18 17:20:14
121.168.115.36 attackspambots
Feb 18 10:49:38 server sshd[19658]: Failed password for invalid user tiptop from 121.168.115.36 port 54862 ssh2
Feb 18 10:52:40 server sshd[21582]: Failed password for invalid user house from 121.168.115.36 port 54618 ssh2
Feb 18 10:55:42 server sshd[23200]: Failed password for invalid user P@ssw0rd from 121.168.115.36 port 54378 ssh2
2020-02-18 18:00:57
121.192.181.171 attackspam
Feb 18 07:28:09 plex sshd[31365]: Invalid user test2 from 121.192.181.171 port 25185
2020-02-18 17:17:32
171.226.153.133 attack
20/2/18@02:00:26: FAIL: Alarm-Network address from=171.226.153.133
20/2/18@02:00:26: FAIL: Alarm-Network address from=171.226.153.133
...
2020-02-18 17:31:14
51.158.25.170 attackbots
firewall-block, port(s): 25080/udp
2020-02-18 17:35:55

Recently Reported IPs

102.197.120.62 112.171.127.187 32.204.107.236 250.167.114.160
33.122.235.86 247.228.49.57 81.152.42.234 209.234.99.156
49.144.206.199 80.148.105.47 84.128.2.90 216.82.41.248
223.177.93.207 116.203.141.92 54.36.150.116 42.117.25.110
186.251.59.129 110.243.220.110 221.147.221.77 181.134.81.35