113.53.152.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.53.152.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16984
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;113.53.152.48.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 15:06:24 CST 2022
;; MSG SIZE  rcvd: 106

Host info

48.152.53.113.in-addr.arpa domain name pointer node-4s0.pool-113-53.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.152.53.113.in-addr.arpa	name = node-4s0.pool-113-53.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.89.158.46	attack	Brute force blocker - service: proftpd1 - aantal: 32 - Mon Aug 27 21:05:17 2018	2020-09-25 17:26:47
52.156.64.31	attackspambots	$f2bV_matches	2020-09-25 17:22:45
218.60.41.136	attackspam	Sep 25 10:19:39 ns41 sshd[21273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.136	2020-09-25 17:14:36
162.144.141.141	attack	162.144.141.141 - - \[25/Sep/2020:07:53:19 +0200\] "POST /wp-login.php HTTP/1.0" 200 3535 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 162.144.141.141 - - \[25/Sep/2020:07:53:23 +0200\] "POST /wp-login.php HTTP/1.0" 200 3530 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 162.144.141.141 - - \[25/Sep/2020:07:53:30 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 778 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-09-25 17:30:33
65.52.233.250	attack	sshd: Failed password for invalid user .... from 65.52.233.250 port 29704 ssh2	2020-09-25 17:22:12
119.45.207.191	attackspambots	Sep 25 03:33:49 s158375 sshd[9467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.207.191	2020-09-25 17:30:52
162.245.218.73	attackbotsspam	web-1 [ssh] SSH Attack	2020-09-25 17:12:52
161.35.163.8	attackbots	(mod_security) mod_security (id:210492) triggered by 161.35.163.8 (GB/United Kingdom/sub-55566111111.example.com): 5 in the last 3600 secs	2020-09-25 17:09:59
75.130.124.90	attackbotsspam	Sep 25 08:40:03 plex-server sshd[1768575]: Invalid user ubuntu from 75.130.124.90 port 11684 Sep 25 08:40:03 plex-server sshd[1768575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.130.124.90 Sep 25 08:40:03 plex-server sshd[1768575]: Invalid user ubuntu from 75.130.124.90 port 11684 Sep 25 08:40:04 plex-server sshd[1768575]: Failed password for invalid user ubuntu from 75.130.124.90 port 11684 ssh2 Sep 25 08:44:21 plex-server sshd[1770411]: Invalid user conta from 75.130.124.90 port 20517 ...	2020-09-25 17:21:46
52.183.115.25	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-09-25 16:53:38
161.35.91.28	attack	srvr2: (mod_security) mod_security (id:920350) triggered by 161.35.91.28 (NL/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/24 22:37:37 [error] 439286#0: 449706 [client 161.35.91.28] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160097985762.292721"] [ref "o0,15v21,15"], client: 161.35.91.28, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-25 17:06:56
139.60.162.131	attack	Brute force blocker - service: exim2 - aantal: 25 - Tue Aug 28 23:45:17 2018	2020-09-25 17:04:13
196.61.32.43	attackbots	TCP (SYN) 196.61.32.43:52637 -> port 1297, len 44	2020-09-25 17:17:43
206.253.167.10	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-25T08:04:47Z and 2020-09-25T08:12:29Z	2020-09-25 16:54:12
41.191.227.170	attackspambots	Honeypot attack, port: 445, PTR: tms2.tms-cgroup.com.	2020-09-25 17:07:51

Recently Reported IPs

246.37.101.101	113.53.152.50	114.226.163.244	114.226.163.236
114.226.163.249	114.226.163.235	114.226.163.254	114.226.163.231
114.226.163.26	114.226.163.243	114.226.163.23	114.226.163.234
114.226.163.250	114.226.163.227	113.53.152.52	114.226.163.28
114.226.163.31	114.226.163.34	114.226.163.38	114.226.163.40