112.45.11.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.45.114.76	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-09-30 06:42:50
112.45.114.75	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-09-30 06:10:37
112.45.114.75	attack	IP: 112.45.114.75 Ports affected Simple Mail Transfer (25) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS9808 Guangdong Mobile Communication Co.Ltd. China (CN) CIDR 112.44.0.0/14 Log Date: 29/09/2020 8:09:08 AM UTC	2020-09-29 22:23:25
112.45.114.76	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-09-29 15:16:45
112.45.114.75	attack	Automatic report after SMTP connect attempts	2020-09-29 14:40:39
112.45.114.76	attack	1 times SMTP brute-force	2020-09-16 01:31:25
112.45.114.76	attackbots	email spam	2020-09-15 17:23:30
112.45.114.76	attack	smtp probe/invalid login attempt	2020-08-15 22:05:40
112.45.114.75	attackspambots	1 times SMTP brute-force	2020-08-14 23:52:29
112.45.114.75	attackspam	"SMTP brute force auth login attempt."	2020-08-11 14:56:24
112.45.114.75	attackspam	SMTP AUTH break-in attempt.	2020-07-18 15:05:24
112.45.114.75	attack	SASL PLAIN auth failed: ruser=...	2020-07-16 09:10:49
112.45.114.76	attackspambots	SASL PLAIN auth failed: ruser=...	2020-07-16 09:10:21
112.45.114.75	attack	SMTP:25. 29 login attempts in 331.7 days.	2020-07-15 17:18:21
112.45.114.76	attackbotsspam	bruteforce detected	2020-06-12 12:46:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.45.11.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47642
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.45.11.53.			IN	A

;; AUTHORITY SECTION:
.			227	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:39:04 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 53.11.45.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.11.45.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.50.48.186	attackspam	Oct 6 08:24:18 sso sshd[16502]: Failed password for root from 27.50.48.186 port 59520 ssh2 Oct 6 08:24:24 sso sshd[16502]: Failed password for root from 27.50.48.186 port 59520 ssh2 ...	2020-10-06 21:48:48
221.237.189.26	attackbots	Oct 6 12:21:29 mail.srvfarm.net postfix/smtpd[2281739]: lost connection after CONNECT from unknown[221.237.189.26] Oct 6 12:21:33 mail.srvfarm.net postfix/smtpd[2269339]: warning: unknown[221.237.189.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 12:21:40 mail.srvfarm.net postfix/smtpd[2269527]: warning: unknown[221.237.189.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 12:21:51 mail.srvfarm.net postfix/smtpd[2281749]: warning: unknown[221.237.189.26]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 12:23:55 mail.srvfarm.net postfix/smtpd[2281753]: lost connection after CONNECT from unknown[221.237.189.26]	2020-10-06 22:03:03
157.230.245.91	attack	TCP port : 1517	2020-10-06 21:58:40
123.195.99.9	attackspam	2020-10-06T04:58:55.651504linuxbox-skyline sshd[16484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.195.99.9 user=root 2020-10-06T04:58:57.802108linuxbox-skyline sshd[16484]: Failed password for root from 123.195.99.9 port 51132 ssh2 ...	2020-10-06 21:39:11
168.195.187.41	attackbots	Attempted Brute Force (dovecot)	2020-10-06 21:54:59
212.70.149.68	attackspam	Oct 6 15:43:13 mx postfix/smtps/smtpd\[24388\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 15:43:18 mx postfix/smtps/smtpd\[24388\]: lost connection after AUTH from unknown\[212.70.149.68\] Oct 6 15:45:08 mx postfix/smtps/smtpd\[24388\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 15:45:13 mx postfix/smtps/smtpd\[24388\]: lost connection after AUTH from unknown\[212.70.149.68\] Oct 6 15:47:02 mx postfix/smtps/smtpd\[24388\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-06 21:59:42
77.222.108.207	attack	Port Scan ...	2020-10-06 21:35:32
64.227.45.215	attackbotsspam	64.227.45.215 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 6 11:20:45 server sshd[31979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.45.215 user=root Oct 6 11:20:19 server sshd[31913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.135.55 user=root Oct 6 11:22:19 server sshd[32206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.223.121 user=root Oct 6 11:20:39 server sshd[31959]: Failed password for root from 3.22.49.101 port 57444 ssh2 Oct 6 11:20:21 server sshd[31913]: Failed password for root from 49.247.135.55 port 46410 ssh2 Oct 6 11:20:47 server sshd[31979]: Failed password for root from 64.227.45.215 port 47568 ssh2 IP Addresses Blocked:	2020-10-06 21:47:05
79.44.15.157	attack	Oct 6 09:50:26 game-panel sshd[473]: Failed password for root from 79.44.15.157 port 38206 ssh2 Oct 6 09:54:37 game-panel sshd[616]: Failed password for root from 79.44.15.157 port 45888 ssh2	2020-10-06 22:02:04
103.45.102.170	attackbotsspam	SSH Honeypot -> SSH Bruteforce / Login	2020-10-06 21:45:18
112.85.42.119	attackspambots	Oct 6 15:23:24 server sshd[1287]: Failed none for root from 112.85.42.119 port 63440 ssh2 Oct 6 15:23:26 server sshd[1287]: Failed password for root from 112.85.42.119 port 63440 ssh2 Oct 6 15:23:30 server sshd[1287]: Failed password for root from 112.85.42.119 port 63440 ssh2	2020-10-06 21:28:39
222.107.156.227	attack	Oct 6 09:28:52 PorscheCustomer sshd[16186]: Failed password for root from 222.107.156.227 port 61003 ssh2 Oct 6 09:31:42 PorscheCustomer sshd[16225]: Failed password for root from 222.107.156.227 port 24271 ssh2 ...	2020-10-06 22:05:25
78.128.113.121	attackbotsspam	2020-09-22 14:30:55,068 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 01:39:50,049 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 04:58:18,143 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 06:49:19,792 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 2020-09-23 13:29:44,888 fail2ban.actions \[2657\]: NOTICE \[qpsmtpd\] Ban 78.128.113.121 ...	2020-10-06 21:29:13
101.32.42.126	attackspambots	Oct 6 11:38:18 Ubuntu-1404-trusty-64-minimal sshd\[11986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.32.42.126 user=root Oct 6 11:38:21 Ubuntu-1404-trusty-64-minimal sshd\[11986\]: Failed password for root from 101.32.42.126 port 49436 ssh2 Oct 6 11:49:11 Ubuntu-1404-trusty-64-minimal sshd\[18793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.32.42.126 user=root Oct 6 11:49:13 Ubuntu-1404-trusty-64-minimal sshd\[18793\]: Failed password for root from 101.32.42.126 port 43584 ssh2 Oct 6 11:53:07 Ubuntu-1404-trusty-64-minimal sshd\[21955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.32.42.126 user=root	2020-10-06 21:39:50
177.83.41.16	attackbots	Attempts against non-existent wp-login	2020-10-06 21:57:21

Recently Reported IPs

112.43.96.135	112.44.15.39	112.46.68.186	112.46.68.202
112.45.234.169	112.46.68.230	112.45.165.228	112.46.68.246
112.47.107.30	112.47.123.191	112.47.146.141	112.47.152.48
112.47.169.72	112.47.233.33	112.48.36.25	112.48.0.175
112.49.121.145	112.5.177.21	112.5.202.254	112.49.252.230