119.45.30.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 1 22:56:02 mout sshd[22727]: Invalid user postgres from 119.45.30.53 port 45818	2020-10-02 05:08:52
attack	Invalid user user from 119.45.30.53 port 52422	2020-10-01 21:27:11
attackspambots	Invalid user user from 119.45.30.53 port 52422	2020-10-01 13:42:47
attack	(sshd) Failed SSH login from 119.45.30.53 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 27 17:15:53 server2 sshd[24074]: Invalid user oracle from 119.45.30.53 Sep 27 17:15:53 server2 sshd[24074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.30.53 Sep 27 17:15:55 server2 sshd[24074]: Failed password for invalid user oracle from 119.45.30.53 port 39552 ssh2 Sep 27 17:24:28 server2 sshd[2760]: Invalid user dmdba from 119.45.30.53 Sep 27 17:24:28 server2 sshd[2760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.30.53	2020-09-28 07:04:10
attackspambots	s2.hscode.pl - SSH Attack	2020-09-27 23:32:14
attackbots	Sep 26 20:30:19 firewall sshd[11947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.30.53 Sep 26 20:30:19 firewall sshd[11947]: Invalid user setup from 119.45.30.53 Sep 26 20:30:21 firewall sshd[11947]: Failed password for invalid user setup from 119.45.30.53 port 48670 ssh2 ...	2020-09-27 15:33:43
attackbots	SSH Brute-force	2020-09-26 22:28:18
attackspam	$f2bV_matches	2020-09-26 14:14:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.45.30.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9407
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.45.30.53.			IN	A

;; AUTHORITY SECTION:
.			149	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092600 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 26 14:13:56 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 53.30.45.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.30.45.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.220	attack	2019-11-03T17:01:57.826853homeassistant sshd[17327]: Failed none for root from 222.186.175.220 port 19838 ssh2 2019-11-03T17:01:59.057747homeassistant sshd[17327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root ...	2019-11-04 01:04:53
198.228.145.150	attackspam	Nov 3 17:09:20 ns381471 sshd[22014]: Failed password for root from 198.228.145.150 port 56092 ssh2	2019-11-04 00:28:29
112.85.42.195	attack	Nov 3 11:49:11 xentho sshd[19045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root Nov 3 11:49:13 xentho sshd[19045]: Failed password for root from 112.85.42.195 port 36735 ssh2 Nov 3 11:49:15 xentho sshd[19045]: Failed password for root from 112.85.42.195 port 36735 ssh2 Nov 3 11:49:11 xentho sshd[19045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root Nov 3 11:49:13 xentho sshd[19045]: Failed password for root from 112.85.42.195 port 36735 ssh2 Nov 3 11:49:15 xentho sshd[19045]: Failed password for root from 112.85.42.195 port 36735 ssh2 Nov 3 11:49:11 xentho sshd[19045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root Nov 3 11:49:13 xentho sshd[19045]: Failed password for root from 112.85.42.195 port 36735 ssh2 Nov 3 11:49:15 xentho sshd[19045]: Failed password for root from 112.85. ...	2019-11-04 01:10:11
46.101.44.220	attackspambots	Nov 3 17:07:45 piServer sshd[20113]: Failed password for root from 46.101.44.220 port 45362 ssh2 Nov 3 17:12:12 piServer sshd[20479]: Failed password for root from 46.101.44.220 port 55524 ssh2 ...	2019-11-04 00:31:56
54.165.235.131	attack	From CCTV User Interface Log ...::ffff:54.165.235.131 - - [03/Nov/2019:09:35:56 +0000] "-" 400 179 ...	2019-11-04 00:32:28
201.6.99.139	attack	2019-11-03T16:47:43.644809abusebot-5.cloudsearch.cf sshd\[5088\]: Invalid user coduoserver from 201.6.99.139 port 34396	2019-11-04 00:59:06
46.166.151.47	attackbotsspam	\[2019-11-03 11:43:08\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T11:43:08.740-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="90046462607509",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/56370",ACLName="no_extension_match" \[2019-11-03 11:46:16\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T11:46:16.913-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="46462607509",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/54762",ACLName="no_extension_match" \[2019-11-03 11:49:33\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-03T11:49:33.265-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="81046462607509",SessionID="0x7fdf2cd1cd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/56580",ACLName="no_extension	2019-11-04 01:01:25
112.85.42.227	attackspam	Nov 3 10:59:30 TORMINT sshd\[3154\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root Nov 3 10:59:32 TORMINT sshd\[3154\]: Failed password for root from 112.85.42.227 port 30819 ssh2 Nov 3 11:00:10 TORMINT sshd\[3224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.227 user=root ...	2019-11-04 01:09:41
102.177.145.221	attack	Failed password for *** from 102.177.145.221 port 34248 ssh2	2019-11-04 00:31:16
43.248.186.221	attack	Nov 3 09:35:51 lanister sshd[21020]: Invalid user xh from 43.248.186.221 Nov 3 09:35:51 lanister sshd[21020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.248.186.221 Nov 3 09:35:51 lanister sshd[21020]: Invalid user xh from 43.248.186.221 Nov 3 09:35:53 lanister sshd[21020]: Failed password for invalid user xh from 43.248.186.221 port 60959 ssh2 ...	2019-11-04 00:36:43
92.119.160.106	attackspambots	Nov 3 16:57:11 mc1 kernel: \[4082940.806438\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=2955 PROTO=TCP SPT=56856 DPT=47205 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 3 17:04:43 mc1 kernel: \[4083392.495936\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=48951 PROTO=TCP SPT=56856 DPT=46877 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 3 17:06:58 mc1 kernel: \[4083526.924354\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.119.160.106 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=25816 PROTO=TCP SPT=56856 DPT=46601 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-04 00:29:15
64.235.208.19	attackspam	scan z	2019-11-04 00:45:14
41.208.150.114	attackbots	Nov 3 17:13:56 localhost sshd\[20755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.208.150.114 user=root Nov 3 17:13:58 localhost sshd\[20755\]: Failed password for root from 41.208.150.114 port 49489 ssh2 Nov 3 17:18:33 localhost sshd\[21206\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.208.150.114 user=root	2019-11-04 00:45:49
146.185.181.64	attack	Nov 3 15:01:32 ip-172-31-62-245 sshd\[22406\]: Invalid user 00 from 146.185.181.64\ Nov 3 15:01:34 ip-172-31-62-245 sshd\[22406\]: Failed password for invalid user 00 from 146.185.181.64 port 55665 ssh2\ Nov 3 15:06:03 ip-172-31-62-245 sshd\[22453\]: Failed password for root from 146.185.181.64 port 46608 ssh2\ Nov 3 15:09:34 ip-172-31-62-245 sshd\[22563\]: Invalid user Minecraft from 146.185.181.64\ Nov 3 15:09:36 ip-172-31-62-245 sshd\[22563\]: Failed password for invalid user Minecraft from 146.185.181.64 port 37546 ssh2\	2019-11-04 00:36:56
157.230.55.177	attack	157.230.55.177 - - \[03/Nov/2019:14:35:26 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.230.55.177 - - \[03/Nov/2019:14:35:31 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-04 00:55:50

Recently Reported IPs

179.7.243.83	103.141.234.34	41.39.105.69	190.237.93.172
120.192.31.142	79.49.104.39	167.71.227.75	106.75.169.106
51.195.180.209	113.89.99.52	182.235.231.149	115.50.65.193
114.88.62.176	125.204.7.187	182.151.204.23	156.207.45.68
148.237.64.54	120.53.223.186	87.121.98.38	42.154.51.173