119.45.30.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 1 22:56:02 mout sshd[22727]: Invalid user postgres from 119.45.30.53 port 45818	2020-10-02 05:08:52
attack	Invalid user user from 119.45.30.53 port 52422	2020-10-01 21:27:11
attackspambots	Invalid user user from 119.45.30.53 port 52422	2020-10-01 13:42:47
attack	(sshd) Failed SSH login from 119.45.30.53 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 27 17:15:53 server2 sshd[24074]: Invalid user oracle from 119.45.30.53 Sep 27 17:15:53 server2 sshd[24074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.30.53 Sep 27 17:15:55 server2 sshd[24074]: Failed password for invalid user oracle from 119.45.30.53 port 39552 ssh2 Sep 27 17:24:28 server2 sshd[2760]: Invalid user dmdba from 119.45.30.53 Sep 27 17:24:28 server2 sshd[2760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.30.53	2020-09-28 07:04:10
attackspambots	s2.hscode.pl - SSH Attack	2020-09-27 23:32:14
attackbots	Sep 26 20:30:19 firewall sshd[11947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.30.53 Sep 26 20:30:19 firewall sshd[11947]: Invalid user setup from 119.45.30.53 Sep 26 20:30:21 firewall sshd[11947]: Failed password for invalid user setup from 119.45.30.53 port 48670 ssh2 ...	2020-09-27 15:33:43
attackbots	SSH Brute-force	2020-09-26 22:28:18
attackspam	$f2bV_matches	2020-09-26 14:14:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.45.30.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9407
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.45.30.53.			IN	A

;; AUTHORITY SECTION:
.			149	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092600 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 26 14:13:56 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 53.30.45.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.30.45.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.154	attack	Mar 3 19:36:23 NPSTNNYC01T sshd[2998]: Failed password for root from 222.186.173.154 port 3092 ssh2 Mar 3 19:36:27 NPSTNNYC01T sshd[2998]: Failed password for root from 222.186.173.154 port 3092 ssh2 Mar 3 19:36:30 NPSTNNYC01T sshd[2998]: Failed password for root from 222.186.173.154 port 3092 ssh2 Mar 3 19:36:36 NPSTNNYC01T sshd[2998]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 3092 ssh2 [preauth] ...	2020-03-04 08:49:12
106.13.3.238	attackbotsspam	2020-03-04T00:20:07.729108vps773228.ovh.net sshd[8150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.3.238 2020-03-04T00:20:07.719147vps773228.ovh.net sshd[8150]: Invalid user www-data from 106.13.3.238 port 39350 2020-03-04T00:20:09.411729vps773228.ovh.net sshd[8150]: Failed password for invalid user www-data from 106.13.3.238 port 39350 ssh2 2020-03-04T01:22:43.755687vps773228.ovh.net sshd[10242]: Invalid user oradev from 106.13.3.238 port 59328 2020-03-04T01:22:43.767935vps773228.ovh.net sshd[10242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.3.238 2020-03-04T01:22:43.755687vps773228.ovh.net sshd[10242]: Invalid user oradev from 106.13.3.238 port 59328 2020-03-04T01:22:45.751233vps773228.ovh.net sshd[10242]: Failed password for invalid user oradev from 106.13.3.238 port 59328 ssh2 2020-03-04T01:27:35.069414vps773228.ovh.net sshd[10325]: Invalid user cpanel from 106.13.3.238 port 456 ...	2020-03-04 08:52:41
51.68.226.159	attackspam	Mar 3 14:45:22 hanapaa sshd\[20007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.ip-51-68-226.eu user=root Mar 3 14:45:24 hanapaa sshd\[20007\]: Failed password for root from 51.68.226.159 port 59868 ssh2 Mar 3 14:50:45 hanapaa sshd\[20759\]: Invalid user frappe from 51.68.226.159 Mar 3 14:50:45 hanapaa sshd\[20759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.ip-51-68-226.eu Mar 3 14:50:47 hanapaa sshd\[20759\]: Failed password for invalid user frappe from 51.68.226.159 port 49818 ssh2	2020-03-04 09:07:01
222.186.180.142	attackspam	Mar 4 01:36:34 vpn01 sshd[19046]: Failed password for root from 222.186.180.142 port 49810 ssh2 ...	2020-03-04 09:26:52
82.248.118.142	attack	Mar 4 00:55:00 mail sshd[19807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.248.118.142 Mar 4 00:55:02 mail sshd[19807]: Failed password for invalid user support from 82.248.118.142 port 47398 ssh2 ...	2020-03-04 09:02:53
36.35.161.78	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 09:03:18
198.13.38.228	attack	(sshd) Failed SSH login from 198.13.38.228 (JP/Japan/198.13.38.228.vultr.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 4 01:17:55 amsweb01 sshd[29570]: Invalid user test from 198.13.38.228 port 39640 Mar 4 01:17:57 amsweb01 sshd[29570]: Failed password for invalid user test from 198.13.38.228 port 39640 ssh2 Mar 4 01:21:44 amsweb01 sshd[30091]: Invalid user ubuntu from 198.13.38.228 port 37408 Mar 4 01:21:46 amsweb01 sshd[30091]: Failed password for invalid user ubuntu from 198.13.38.228 port 37408 ssh2 Mar 4 01:25:25 amsweb01 sshd[30433]: Invalid user user from 198.13.38.228 port 35178	2020-03-04 08:47:40
188.166.44.186	attackspam	Mar 4 01:23:26 tuxlinux sshd[39415]: Invalid user appltest from 188.166.44.186 port 56417 Mar 4 01:23:26 tuxlinux sshd[39415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.44.186 Mar 4 01:23:26 tuxlinux sshd[39415]: Invalid user appltest from 188.166.44.186 port 56417 Mar 4 01:23:26 tuxlinux sshd[39415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.44.186 Mar 4 01:23:26 tuxlinux sshd[39415]: Invalid user appltest from 188.166.44.186 port 56417 Mar 4 01:23:26 tuxlinux sshd[39415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.44.186 Mar 4 01:23:28 tuxlinux sshd[39415]: Failed password for invalid user appltest from 188.166.44.186 port 56417 ssh2 ...	2020-03-04 09:03:54
83.241.243.12	attackbotsspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-03-04 09:00:17
117.50.111.66	attackbots	2020-03-03T23:07:37.717258 X postfix/smtpd[44500]: NOQUEUE: reject: RCPT from mrmailtoolsbulk.top[117.50.111.66]: 554 5.7.1 Service unavailable; Client host [117.50.111.66] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-03-04 08:50:03
159.89.1.142	attack	Mar 3 14:47:19 tdfoods sshd\[24746\]: Invalid user ljh from 159.89.1.142 Mar 3 14:47:19 tdfoods sshd\[24746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.1.142 Mar 3 14:47:21 tdfoods sshd\[24746\]: Failed password for invalid user ljh from 159.89.1.142 port 42566 ssh2 Mar 3 14:53:40 tdfoods sshd\[25252\]: Invalid user takamatsu from 159.89.1.142 Mar 3 14:53:40 tdfoods sshd\[25252\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.1.142	2020-03-04 08:53:54
67.205.138.198	attackspambots	Mar 3 22:41:40 ovpn sshd\[16403\]: Invalid user joyoudata from 67.205.138.198 Mar 3 22:41:40 ovpn sshd\[16403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.138.198 Mar 3 22:41:43 ovpn sshd\[16403\]: Failed password for invalid user joyoudata from 67.205.138.198 port 48042 ssh2 Mar 3 23:07:05 ovpn sshd\[22858\]: Invalid user shiyang from 67.205.138.198 Mar 3 23:07:05 ovpn sshd\[22858\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.138.198	2020-03-04 09:12:14
51.38.48.127	attackspam	Mar 3 23:51:36 vps691689 sshd[4615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 Mar 3 23:51:37 vps691689 sshd[4615]: Failed password for invalid user bot from 51.38.48.127 port 56242 ssh2 ...	2020-03-04 09:25:16
185.143.223.161	attack	Mar 4 01:46:06 web01.agentur-b-2.de postfix/smtpd[34696]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 01:46:06 web01.agentur-b-2.de postfix/smtpd[34696]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 01:46:06 web01.agentur-b-2.de postfix/smtpd[34696]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 01:46:06 web01.agentur-b-2.de postfix/smtpd[34696]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 : Relay access denied; from= to=	2020-03-04 08:51:23
216.10.242.28	attackbotsspam	Mar 4 02:04:20 vps647732 sshd[16544]: Failed password for sys from 216.10.242.28 port 57652 ssh2 Mar 4 02:12:04 vps647732 sshd[17090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.10.242.28 ...	2020-03-04 09:19:32

Recently Reported IPs

179.7.243.83	103.141.234.34	41.39.105.69	190.237.93.172
120.192.31.142	79.49.104.39	167.71.227.75	106.75.169.106
51.195.180.209	113.89.99.52	182.235.231.149	115.50.65.193
114.88.62.176	125.204.7.187	182.151.204.23	156.207.45.68
148.237.64.54	120.53.223.186	87.121.98.38	42.154.51.173