197.45.68.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 197.45.68.53 to port 445	2019-12-11 13:58:24

Comments on same subnet:

IP	Type	Details	Datetime
197.45.68.167	attackspam	Unauthorized connection attempt from IP address 197.45.68.167 on Port 445(SMB)	2020-04-08 04:14:30
197.45.68.167	attackspambots	Unauthorized connection attempt from IP address 197.45.68.167 on Port 445(SMB)	2020-03-30 21:57:12
197.45.68.231	attackspam	Jun 5 17:30:35 ms-srv sshd[28702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.45.68.231 Jun 5 17:30:37 ms-srv sshd[28702]: Failed password for invalid user admin from 197.45.68.231 port 60168 ssh2	2020-03-10 08:05:16
197.45.68.180	attackbots	1579179617 - 01/16/2020 14:00:17 Host: 197.45.68.180/197.45.68.180 Port: 445 TCP Blocked	2020-01-17 01:38:33
197.45.68.231	attackspambots	Automatic report - Web App Attack	2019-07-05 10:36:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.45.68.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42513
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.45.68.53.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121100 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 13:58:21 CST 2019
;; MSG SIZE  rcvd: 116

Host info

53.68.45.197.in-addr.arpa domain name pointer host-197.45.68.53.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.68.45.197.in-addr.arpa	name = host-197.45.68.53.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.208.181	attackspambots	2020-04-03T21:02:14.595356ns386461 sshd\[7295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-51-75-208.eu user=root 2020-04-03T21:02:16.442543ns386461 sshd\[7295\]: Failed password for root from 51.75.208.181 port 39790 ssh2 2020-04-03T21:13:44.072919ns386461 sshd\[17592\]: Invalid user sshproxy from 51.75.208.181 port 36770 2020-04-03T21:13:44.077414ns386461 sshd\[17592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-51-75-208.eu 2020-04-03T21:13:46.318524ns386461 sshd\[17592\]: Failed password for invalid user sshproxy from 51.75.208.181 port 36770 ssh2 ...	2020-04-04 05:13:06
62.234.137.128	attackspam	Apr 3 22:35:27 tuxlinux sshd[48676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.137.128 user=root Apr 3 22:35:29 tuxlinux sshd[48676]: Failed password for root from 62.234.137.128 port 52454 ssh2 Apr 3 22:35:27 tuxlinux sshd[48676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.137.128 user=root Apr 3 22:35:29 tuxlinux sshd[48676]: Failed password for root from 62.234.137.128 port 52454 ssh2 Apr 3 22:44:58 tuxlinux sshd[48959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.137.128 user=root ...	2020-04-04 05:06:15
120.71.145.166	attackspambots	Apr 3 22:13:28 h2646465 sshd[1068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71.145.166 user=root Apr 3 22:13:30 h2646465 sshd[1068]: Failed password for root from 120.71.145.166 port 48383 ssh2 Apr 3 22:31:14 h2646465 sshd[3562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71.145.166 user=root Apr 3 22:31:17 h2646465 sshd[3562]: Failed password for root from 120.71.145.166 port 60809 ssh2 Apr 3 22:36:18 h2646465 sshd[4169]: Invalid user xe from 120.71.145.166 Apr 3 22:36:18 h2646465 sshd[4169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71.145.166 Apr 3 22:36:18 h2646465 sshd[4169]: Invalid user xe from 120.71.145.166 Apr 3 22:36:20 h2646465 sshd[4169]: Failed password for invalid user xe from 120.71.145.166 port 35396 ssh2 Apr 3 22:40:39 h2646465 sshd[4828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71	2020-04-04 04:43:48
113.125.119.250	attackbotsspam	...	2020-04-04 04:47:47
106.13.128.64	attack	5x Failed Password	2020-04-04 04:55:38
103.217.156.179	attackbotsspam	Invalid user user from 103.217.156.179 port 41724	2020-04-04 04:57:53
101.91.219.207	attackspambots	Invalid user hongli from 101.91.219.207 port 39396	2020-04-04 05:00:53
123.31.41.20	attackbots	Apr 3 19:09:34 sshgateway sshd\[8818\]: Invalid user steam from 123.31.41.20 Apr 3 19:09:34 sshgateway sshd\[8818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.41.20 Apr 3 19:09:37 sshgateway sshd\[8818\]: Failed password for invalid user steam from 123.31.41.20 port 9872 ssh2	2020-04-04 04:42:34
45.14.150.51	attack	(sshd) Failed SSH login from 45.14.150.51 (RO/Romania/-): 5 in the last 3600 secs	2020-04-04 05:16:23
58.56.33.221	attackspambots	Automatic report - Banned IP Access	2020-04-04 05:07:35
46.53.190.153	attackbotsspam	Apr 3 17:22:34 ovpn sshd\[24591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.53.190.153 user=root Apr 3 17:22:35 ovpn sshd\[24591\]: Failed password for root from 46.53.190.153 port 43343 ssh2 Apr 3 17:50:51 ovpn sshd\[30932\]: Invalid user lijie from 46.53.190.153 Apr 3 17:50:51 ovpn sshd\[30932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.53.190.153 Apr 3 17:50:54 ovpn sshd\[30932\]: Failed password for invalid user lijie from 46.53.190.153 port 49115 ssh2	2020-04-04 05:15:51
111.229.33.175	attackspam	2020-04-03T15:38:20.954045abusebot-8.cloudsearch.cf sshd[25072]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.33.175 user=root 2020-04-03T15:38:23.621368abusebot-8.cloudsearch.cf sshd[25072]: Failed password for root from 111.229.33.175 port 52722 ssh2 2020-04-03T15:42:30.446637abusebot-8.cloudsearch.cf sshd[25287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.33.175 user=root 2020-04-03T15:42:32.767806abusebot-8.cloudsearch.cf sshd[25287]: Failed password for root from 111.229.33.175 port 39310 ssh2 2020-04-03T15:46:26.802055abusebot-8.cloudsearch.cf sshd[25540]: Invalid user r from 111.229.33.175 port 54124 2020-04-03T15:46:26.811577abusebot-8.cloudsearch.cf sshd[25540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.33.175 2020-04-03T15:46:26.802055abusebot-8.cloudsearch.cf sshd[25540]: Invalid user r from 111.229.33.175 port 54124 ...	2020-04-04 04:49:18
91.237.25.28	attackbots	Invalid user jmw from 91.237.25.28 port 43228	2020-04-04 05:02:29
106.13.216.231	attack	Apr 3 22:11:45 meumeu sshd[29624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.216.231 Apr 3 22:11:47 meumeu sshd[29624]: Failed password for invalid user ed from 106.13.216.231 port 49310 ssh2 Apr 3 22:14:00 meumeu sshd[29947]: Failed password for root from 106.13.216.231 port 52626 ssh2 ...	2020-04-04 04:54:36
85.172.38.232	attackbots	SSH Brute Force	2020-04-04 05:03:33

Recently Reported IPs

6.115.142.126	212.237.53.42	124.253.223.22	222.47.60.43
123.16.59.154	103.106.154.178	221.0.16.63	59.144.124.247
36.72.215.194	14.175.204.20	200.196.35.138	171.106.200.94
125.70.118.202	115.73.99.80	92.222.224.108	43.77.56.67
221.133.0.1	169.196.54.247	203.189.253.243	188.19.190.208