145.239.12.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
145.239.128.24	attack	WordPress login Brute force / Web App Attack on client site.	2019-08-30 14:33:36
145.239.123.117	attackbotsspam	WordPress wp-login brute force :: 145.239.123.117 0.044 BYPASS [23/Jul/2019:09:28:48 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-23 07:48:34
145.239.128.24	attack	145.239.128.24 - - \[20/Jul/2019:10:37:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 2110 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.128.24 - - \[20/Jul/2019:10:37:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-07-20 18:18:14
145.239.120.171	attackbotsspam	Apr 18 13:43:08 server sshd\[151400\]: Invalid user jboss from 145.239.120.171 Apr 18 13:43:08 server sshd\[151400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.120.171 Apr 18 13:43:10 server sshd\[151400\]: Failed password for invalid user jboss from 145.239.120.171 port 58028 ssh2 ...	2019-07-12 04:11:45
145.239.120.171	attackspam	145.239.120.171:44520 - - [04/Jul/2019:08:29:37 +0200] "GET /wp-login.php HTTP/1.1" 404 298	2019-07-04 18:39:39
145.239.123.117	attackbotsspam	145.239.123.117 - - \[21/Jun/2019:19:06:45 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.123.117 - - \[21/Jun/2019:19:06:45 +0200\] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.123.117 - - \[21/Jun/2019:19:06:46 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.123.117 - - \[21/Jun/2019:19:06:46 +0200\] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.123.117 - - \[21/Jun/2019:19:06:46 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 145.239.123.117 - - \[21/Jun/2019:19:06:46 +0200\] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\	2019-06-22 01:34:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.12.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49304
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.239.12.53.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:27:50 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 53.12.239.145.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.12.239.145.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.241.19	attackbots	prod11 ...	2020-09-16 15:31:04
45.129.33.12	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 62879 proto: tcp cat: Misc Attackbytes: 60	2020-09-16 15:21:29
45.228.233.78	attackspam	Sep 15 16:26:26 XXX sshd[16903]: Invalid user admina from 45.228.233.78 port 49186	2020-09-16 15:20:13
61.7.240.185	attackspam	2020-09-15T23:30:02.6329721495-001 sshd[39106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.240.185 user=root 2020-09-15T23:30:04.3810001495-001 sshd[39106]: Failed password for root from 61.7.240.185 port 50512 ssh2 2020-09-15T23:33:53.4859571495-001 sshd[39311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.240.185 user=root 2020-09-15T23:33:55.2792161495-001 sshd[39311]: Failed password for root from 61.7.240.185 port 47730 ssh2 2020-09-15T23:37:53.5137071495-001 sshd[39482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.7.240.185 user=root 2020-09-15T23:37:55.2564791495-001 sshd[39482]: Failed password for root from 61.7.240.185 port 44948 ssh2 ...	2020-09-16 15:19:54
179.209.101.93	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-16 14:41:32
92.36.233.40	attack	Automatic report - Port Scan Attack	2020-09-16 15:33:35
178.62.230.153	attack	SSH Brute Force	2020-09-16 14:44:21
165.22.101.43	attackspam	(sshd) Failed SSH login from 165.22.101.43 (SG/Singapore/-): 5 in the last 3600 secs	2020-09-16 15:35:48
180.76.57.58	attack	Sep 16 09:19:28 sip sshd[3697]: Failed password for root from 180.76.57.58 port 47320 ssh2 Sep 16 09:27:11 sip sshd[5659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.57.58 Sep 16 09:27:13 sip sshd[5659]: Failed password for invalid user chakraborty from 180.76.57.58 port 53980 ssh2	2020-09-16 15:32:56
210.55.3.250	attack	Sep 16 04:03:00 pve1 sshd[16730]: Failed password for root from 210.55.3.250 port 56526 ssh2 ...	2020-09-16 15:35:25
184.170.212.94	attack	Sep 16 03:08:23 ns382633 sshd\[13265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.170.212.94 user=root Sep 16 03:08:24 ns382633 sshd\[13265\]: Failed password for root from 184.170.212.94 port 40668 ssh2 Sep 16 03:23:59 ns382633 sshd\[16166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.170.212.94 user=root Sep 16 03:24:01 ns382633 sshd\[16166\]: Failed password for root from 184.170.212.94 port 58608 ssh2 Sep 16 03:34:38 ns382633 sshd\[18317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.170.212.94 user=root	2020-09-16 15:41:04
125.178.227.57	attackbotsspam	$f2bV_matches	2020-09-16 15:11:18
94.25.182.114	attackbotsspam	1600189176 - 09/15/2020 18:59:36 Host: 94.25.182.114/94.25.182.114 Port: 445 TCP Blocked	2020-09-16 15:39:20
192.81.208.44	attackbotsspam	(sshd) Failed SSH login from 192.81.208.44 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 02:45:46 server sshd[13592]: Invalid user ts3srv from 192.81.208.44 port 57700 Sep 16 02:45:48 server sshd[13592]: Failed password for invalid user ts3srv from 192.81.208.44 port 57700 ssh2 Sep 16 02:54:00 server sshd[15890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.208.44 user=root Sep 16 02:54:02 server sshd[15890]: Failed password for root from 192.81.208.44 port 59165 ssh2 Sep 16 02:58:15 server sshd[17039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.208.44 user=root	2020-09-16 15:38:11
196.28.226.146	attackspambots	RDP Bruteforce	2020-09-16 14:49:06

Recently Reported IPs

145.239.12.239	145.239.12.93	145.239.120.62	145.239.121.108
145.239.121.48	145.239.122.18	145.239.122.35	145.239.124.205
145.239.124.32	145.239.125.102	145.239.125.117	145.239.125.72
145.239.125.82	145.239.126.152	145.239.126.153	145.239.13.38
145.239.131.12	145.239.131.15	145.239.136.177	145.239.138.152