45.64.53.39 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Sun Network (Hong Kong) Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SMB Server BruteForce Attack	2019-07-30 05:33:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.64.53.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30478
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.64.53.39.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072901 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 30 05:33:13 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 39.53.64.45.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 39.53.64.45.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.66.107.43	attackspambots	$f2bV_matches	2020-04-12 16:34:14
189.209.135.214	attack	Scanning an empty webserver with deny all robots.txt	2020-04-12 16:52:48
180.180.193.209	attackspambots	20/4/11@23:52:10: FAIL: Alarm-Network address from=180.180.193.209 20/4/11@23:52:10: FAIL: Alarm-Network address from=180.180.193.209 ...	2020-04-12 16:54:58
110.43.34.195	attackbots	Apr 12 08:07:48 vserver sshd\[4532\]: Failed password for root from 110.43.34.195 port 12658 ssh2Apr 12 08:09:13 vserver sshd\[4614\]: Invalid user test from 110.43.34.195Apr 12 08:09:16 vserver sshd\[4614\]: Failed password for invalid user test from 110.43.34.195 port 28770 ssh2Apr 12 08:10:32 vserver sshd\[4641\]: Invalid user admin from 110.43.34.195 ...	2020-04-12 16:43:19
222.222.31.70	attack	2020-04-12T08:58:18.279552amanda2.illicoweb.com sshd\[5731\]: Invalid user longueville from 222.222.31.70 port 39616 2020-04-12T08:58:18.283300amanda2.illicoweb.com sshd\[5731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.31.70 2020-04-12T08:58:20.061336amanda2.illicoweb.com sshd\[5731\]: Failed password for invalid user longueville from 222.222.31.70 port 39616 ssh2 2020-04-12T09:01:15.932827amanda2.illicoweb.com sshd\[6091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.31.70 user=root 2020-04-12T09:01:17.675836amanda2.illicoweb.com sshd\[6091\]: Failed password for root from 222.222.31.70 port 41420 ssh2 ...	2020-04-12 17:10:54
150.223.17.95	attack	SSH bruteforce	2020-04-12 16:59:36
217.138.76.66	attackbots	Apr 12 09:21:17 xeon sshd[28244]: Failed password for root from 217.138.76.66 port 53843 ssh2	2020-04-12 17:11:06
193.142.146.21	attackbotsspam	Apr 12 11:41:02 server2 sshd\[7765\]: User root from 193.142.146.21 not allowed because not listed in AllowUsers Apr 12 11:41:02 server2 sshd\[7767\]: User root from 193.142.146.21 not allowed because not listed in AllowUsers Apr 12 11:41:02 server2 sshd\[7769\]: Invalid user administrator from 193.142.146.21 Apr 12 11:41:03 server2 sshd\[7771\]: Invalid user amx from 193.142.146.21 Apr 12 11:41:03 server2 sshd\[7773\]: Invalid user admin from 193.142.146.21 Apr 12 11:41:03 server2 sshd\[7775\]: Invalid user cisco from 193.142.146.21	2020-04-12 16:52:23
163.172.230.4	attackbotsspam	[2020-04-12 04:13:58] NOTICE[12114][C-00004c3a] chan_sip.c: Call from '' (163.172.230.4:59791) to extension '-011972592277524' rejected because extension not found in context 'public'. [2020-04-12 04:13:58] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-12T04:13:58.300-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="-011972592277524",SessionID="0x7f020c167898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/59791",ACLName="no_extension_match" [2020-04-12 04:18:08] NOTICE[12114][C-00004c40] chan_sip.c: Call from '' (163.172.230.4:51698) to extension '61011972592277524' rejected because extension not found in context 'public'. [2020-04-12 04:18:08] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-12T04:18:08.121-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="61011972592277524",SessionID="0x7f020c167898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress= ...	2020-04-12 16:28:20
141.98.80.58	attackspam	lee-12 : Block return, carriage return, ... characters=>/spectacle-pour-enfants/animations-enfants/spectacles-de-rue?site=3%2C.%27%28%22%27%22%22%2C%22(')	2020-04-12 16:48:05
27.155.87.180	attackspambots	Icarus honeypot on github	2020-04-12 16:46:47
142.4.214.151	attack	2020-04-12T04:03:29.188545shield sshd\[12651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns527892.ip-142-4-214.net user=root 2020-04-12T04:03:30.678369shield sshd\[12651\]: Failed password for root from 142.4.214.151 port 35186 ssh2 2020-04-12T04:07:06.555624shield sshd\[13159\]: Invalid user admin from 142.4.214.151 port 43262 2020-04-12T04:07:06.559210shield sshd\[13159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns527892.ip-142-4-214.net 2020-04-12T04:07:08.175336shield sshd\[13159\]: Failed password for invalid user admin from 142.4.214.151 port 43262 ssh2	2020-04-12 16:28:57
2.185.187.135	attackbots	1586673237 - 04/12/2020 08:33:57 Host: 2.185.187.135/2.185.187.135 Port: 445 TCP Blocked	2020-04-12 16:53:34
78.128.113.74	attackbots	Apr 12 10:55:22 vmanager6029 postfix/smtpd\[9564\]: warning: unknown\[78.128.113.74\]: SASL PLAIN authentication failed: Apr 12 10:55:41 vmanager6029 postfix/smtpd\[9593\]: warning: unknown\[78.128.113.74\]: SASL PLAIN authentication failed:	2020-04-12 17:10:39
75.109.199.102	attackbots	Apr 12 10:26:20 nextcloud sshd\[24096\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.109.199.102 user=root Apr 12 10:26:22 nextcloud sshd\[24096\]: Failed password for root from 75.109.199.102 port 58421 ssh2 Apr 12 10:39:39 nextcloud sshd\[10807\]: Invalid user apache from 75.109.199.102 Apr 12 10:39:39 nextcloud sshd\[10807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.109.199.102	2020-04-12 17:02:44

Recently Reported IPs

187.1.57.210	18.224.67.74	40.114.201.177	49.81.199.46
232.135.229.121	77.247.110.250	169.83.245.251	52.231.79.173
110.210.202.105	55.232.150.54	35.238.5.147	102.204.137.197
192.1.95.77	12.124.34.67	50.180.18.232	119.80.241.62
237.224.55.188	196.74.184.114	207.201.96.247	134.19.218.134