115.53.99.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.53.99.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38571
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;115.53.99.45.			IN	A

;; AUTHORITY SECTION:
.			236	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040201 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 03 11:07:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

45.99.53.115.in-addr.arpa domain name pointer hn.kd.ny.adsl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.99.53.115.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.57.4.238	attack	(smtpauth) Failed SMTP AUTH login from 58.57.4.238 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-09-12 13:18:19 dovecot_login authenticator failed for (hoteldelsolinn.net) [58.57.4.238]:55547: 535 Incorrect authentication data (set_id=nologin) 2020-09-12 13:19:03 dovecot_login authenticator failed for (hoteldelsolinn.net) [58.57.4.238]:58270: 535 Incorrect authentication data (set_id=service@hoteldelsolinn.net) 2020-09-12 13:19:26 dovecot_login authenticator failed for (hoteldelsolinn.net) [58.57.4.238]:59762: 535 Incorrect authentication data (set_id=service) 2020-09-12 13:46:13 dovecot_login authenticator failed for (adoptionsrosarito-tijuana.com) [58.57.4.238]:45462: 535 Incorrect authentication data (set_id=nologin) 2020-09-12 13:46:37 dovecot_login authenticator failed for (adoptionsrosarito-tijuana.com) [58.57.4.238]:47162: 535 Incorrect authentication data (set_id=service@adoptionsrosarito-tijuana.com)	2020-09-13 02:08:26
5.188.206.194	attackbots	Sep 12 18:30:25 ns308116 postfix/smtpd[20986]: warning: unknown[5.188.206.194]: SASL LOGIN authentication failed: authentication failure Sep 12 18:30:25 ns308116 postfix/smtpd[20986]: warning: unknown[5.188.206.194]: SASL LOGIN authentication failed: authentication failure Sep 12 18:30:32 ns308116 postfix/smtpd[20986]: warning: unknown[5.188.206.194]: SASL LOGIN authentication failed: authentication failure Sep 12 18:30:32 ns308116 postfix/smtpd[20986]: warning: unknown[5.188.206.194]: SASL LOGIN authentication failed: authentication failure Sep 12 18:35:07 ns308116 postfix/smtpd[22831]: warning: unknown[5.188.206.194]: SASL LOGIN authentication failed: authentication failure Sep 12 18:35:07 ns308116 postfix/smtpd[22831]: warning: unknown[5.188.206.194]: SASL LOGIN authentication failed: authentication failure ...	2020-09-13 01:40:15
112.85.42.74	attack	Sep 12 10:53:38 dignus sshd[27489]: Failed password for root from 112.85.42.74 port 25313 ssh2 Sep 12 10:53:39 dignus sshd[27489]: Failed password for root from 112.85.42.74 port 25313 ssh2 Sep 12 10:55:00 dignus sshd[27638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.74 user=root Sep 12 10:55:03 dignus sshd[27638]: Failed password for root from 112.85.42.74 port 61737 ssh2 Sep 12 10:55:05 dignus sshd[27638]: Failed password for root from 112.85.42.74 port 61737 ssh2 ...	2020-09-13 01:59:06
81.68.120.181	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-13 01:50:59
89.248.168.108	attack	Sep 12 18:58:27 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.108, lip=185.118.198.210, session= Sep 12 19:00:13 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.108, lip=185.118.198.210, session= Sep 12 19:01:18 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.108, lip=185.118.198.210, session= Sep 12 19:01:40 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=89.248.168.108, lip=185.118.198.210, session= Sep 12 19:02:22 web01.agentur-b-2.de dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, meth	2020-09-13 01:37:36
111.229.244.205	attackspam	(sshd) Failed SSH login from 111.229.244.205 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 12 12:14:54 optimus sshd[19298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.244.205 user=root Sep 12 12:14:56 optimus sshd[19298]: Failed password for root from 111.229.244.205 port 39328 ssh2 Sep 12 12:32:21 optimus sshd[26529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.244.205 user=lp Sep 12 12:32:23 optimus sshd[26529]: Failed password for lp from 111.229.244.205 port 54854 ssh2 Sep 12 12:35:35 optimus sshd[27364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.244.205 user=root	2020-09-13 02:02:46
111.67.202.119	attackbotsspam	Sep 12 06:32:57 localhost sshd\[24019\]: Invalid user info from 111.67.202.119 port 42782 Sep 12 06:32:57 localhost sshd\[24019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.202.119 Sep 12 06:32:59 localhost sshd\[24019\]: Failed password for invalid user info from 111.67.202.119 port 42782 ssh2 ...	2020-09-13 01:45:54
129.146.135.216	attack	2020-09-12T19:36:18.679682hostname sshd[27678]: Failed password for invalid user supervisor from 129.146.135.216 port 32788 ssh2 2020-09-12T19:45:55.880651hostname sshd[31269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.146.135.216 user=root 2020-09-12T19:45:57.897599hostname sshd[31269]: Failed password for root from 129.146.135.216 port 40604 ssh2 ...	2020-09-13 01:57:25
185.151.243.49	attack	" "	2020-09-13 01:30:42
187.94.84.242	attack	Sep 11 18:23:27 mail.srvfarm.net postfix/smtpd[3892287]: warning: 187-94-84-242.britistelecom.com.br[187.94.84.242]: SASL PLAIN authentication failed: Sep 11 18:23:28 mail.srvfarm.net postfix/smtpd[3892287]: lost connection after AUTH from 187-94-84-242.britistelecom.com.br[187.94.84.242] Sep 11 18:25:05 mail.srvfarm.net postfix/smtpd[3890266]: warning: 187-94-84-242.britistelecom.com.br[187.94.84.242]: SASL PLAIN authentication failed: Sep 11 18:25:05 mail.srvfarm.net postfix/smtpd[3890266]: lost connection after AUTH from 187-94-84-242.britistelecom.com.br[187.94.84.242] Sep 11 18:29:39 mail.srvfarm.net postfix/smtpd[3893296]: warning: 187-94-84-242.britistelecom.com.br[187.94.84.242]: SASL PLAIN authentication failed:	2020-09-13 01:34:15
52.156.169.35	attack	Sep 11 20:02:27 cho postfix/smtps/smtpd[2714467]: warning: unknown[52.156.169.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:04:28 cho postfix/smtps/smtpd[2714957]: warning: unknown[52.156.169.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:06:29 cho postfix/smtps/smtpd[2714957]: warning: unknown[52.156.169.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:08:29 cho postfix/smtps/smtpd[2714957]: warning: unknown[52.156.169.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:10:30 cho postfix/smtps/smtpd[2714957]: warning: unknown[52.156.169.35]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-13 01:37:55
140.143.1.162	attack	Sep 12 06:36:05 root sshd[2815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.1.162 ...	2020-09-13 01:32:09
46.231.75.34	attack	Sep 11 18:09:27 mail.srvfarm.net postfix/smtps/smtpd[3875238]: warning: unknown[46.231.75.34]: SASL PLAIN authentication failed: Sep 11 18:09:27 mail.srvfarm.net postfix/smtps/smtpd[3875238]: lost connection after AUTH from unknown[46.231.75.34] Sep 11 18:13:38 mail.srvfarm.net postfix/smtps/smtpd[3877305]: warning: unknown[46.231.75.34]: SASL PLAIN authentication failed: Sep 11 18:13:38 mail.srvfarm.net postfix/smtps/smtpd[3877305]: lost connection after AUTH from unknown[46.231.75.34] Sep 11 18:17:58 mail.srvfarm.net postfix/smtpd[3892287]: warning: unknown[46.231.75.34]: SASL PLAIN authentication failed:	2020-09-13 01:45:16
27.50.48.188	attackbotsspam	Sep 8 10:19:51 xxxxxxx9247313 sshd[8690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.50.48.188 user=r.r Sep 8 10:19:54 xxxxxxx9247313 sshd[8690]: Failed password for r.r from 27.50.48.188 port 41946 ssh2 Sep 8 10:19:56 xxxxxxx9247313 sshd[8690]: Failed password for r.r from 27.50.48.188 port 41946 ssh2 Sep 8 10:19:59 xxxxxxx9247313 sshd[8690]: Failed password for r.r from 27.50.48.188 port 41946 ssh2 Sep 8 10:20:00 xxxxxxx9247313 sshd[8690]: Failed password for r.r from 27.50.48.188 port 41946 ssh2 Sep 8 10:20:03 xxxxxxx9247313 sshd[8690]: Failed password for r.r from 27.50.48.188 port 41946 ssh2 Sep 8 10:20:06 xxxxxxx9247313 sshd[8690]: Failed password for r.r from 27.50.48.188 port 41946 ssh2 Sep 8 10:20:08 xxxxxxx9247313 sshd[8765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.50.48.188 user=r.r Sep 8 10:20:10 xxxxxxx9247313 sshd[8765]: Failed password for r.r from........ ------------------------------	2020-09-13 02:07:57
115.99.156.228	attack	srvr1: (mod_security) mod_security (id:920350) triggered by 115.99.156.228 (IN/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/11 18:51:09 [error] 12751#0: 115606 [client 115.99.156.228] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/GponForm/diag_Form"] [unique_id "159984306992.703600"] [ref "o0,12v48,12"], client: 115.99.156.228, [redacted] request: "POST /GponForm/diag_Form?images/ HTTP/1.1" [redacted]	2020-09-13 01:50:19

Recently Reported IPs

115.53.37.36	115.54.101.163	115.54.115.180	71.248.237.22
115.54.127.32	115.54.131.48	115.54.151.224	115.54.160.222
115.54.160.55	115.54.170.122	115.54.177.200	115.54.184.11
115.54.187.24	115.54.188.155	78.101.228.248	115.54.193.13
115.54.197.245	115.54.205.153	115.54.206.32	115.54.207.82