145.239.253.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
145.239.253.188	attack	Automatic report - Port Scan Attack	2020-08-19 05:02:01
145.239.253.29	attackbotsspam	145.239.253.29 - - [26/Nov/2019:15:39:29 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:30 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:30 +0100] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:30 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-27 04:25:58
145.239.253.73	attackspam	WEB Masscan Scanner Activity	2019-11-20 08:50:46
145.239.253.29	attackbotsspam	pfaffenroth-photographie.de 145.239.253.29 \[19/Nov/2019:07:26:59 +0100\] "POST /wp-login.php HTTP/1.1" 200 8452 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" pfaffenroth-photographie.de 145.239.253.29 \[19/Nov/2019:07:27:00 +0100\] "POST /wp-login.php HTTP/1.1" 200 8452 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" pfaffenroth-photographie.de 145.239.253.29 \[19/Nov/2019:07:27:01 +0100\] "POST /wp-login.php HTTP/1.1" 200 8452 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-19 16:20:50
145.239.253.73	attackbotsspam	145.239.253.73 was recorded 5 times by 2 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 5, 9, 48	2019-11-12 04:12:18
145.239.253.73	attackspam	WEB server attack.	2019-11-10 22:24:17
145.239.253.73	attackspambots	145.239.253.73 was recorded 5 times by 3 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 5, 18, 38	2019-11-09 04:04:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.253.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52496
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.239.253.3.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:18:06 CST 2022
;; MSG SIZE  rcvd: 106

Host info

3.253.239.145.in-addr.arpa domain name pointer uk20.fastdirectadminserver.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.253.239.145.in-addr.arpa	name = uk20.fastdirectadminserver.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.190.104	attack	Nov 7 21:32:13 ArkNodeAT sshd\[17818\]: Invalid user nms from 106.12.190.104 Nov 7 21:32:13 ArkNodeAT sshd\[17818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.190.104 Nov 7 21:32:16 ArkNodeAT sshd\[17818\]: Failed password for invalid user nms from 106.12.190.104 port 35950 ssh2	2019-11-08 04:49:32
91.134.248.211	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-08 04:36:22
185.175.93.12	attackspambots	RDP Bruteforce	2019-11-08 04:45:52
111.231.121.62	attack	Nov 7 03:21:23 server sshd\[11266\]: Failed password for invalid user tpimuser from 111.231.121.62 port 59108 ssh2 Nov 7 09:48:36 server sshd\[14850\]: Invalid user test from 111.231.121.62 Nov 7 09:48:36 server sshd\[14850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.121.62 Nov 7 09:48:38 server sshd\[14850\]: Failed password for invalid user test from 111.231.121.62 port 39452 ssh2 Nov 8 00:00:59 server sshd\[15614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.121.62 user=root ...	2019-11-08 05:07:22
147.50.3.30	attackbotsspam	$f2bV_matches	2019-11-08 04:54:23
173.254.202.34	attackbots	Nov 7 09:40:41 mail sshd\[11621\]: Invalid user dpiuser from 173.254.202.34 Nov 7 09:40:41 mail sshd\[11621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.254.202.34 ...	2019-11-08 05:16:27
43.225.117.230	attack	Nov 7 22:58:30 vibhu-HP-Z238-Microtower-Workstation sshd\[11144\]: Invalid user Parola1234 from 43.225.117.230 Nov 7 22:58:30 vibhu-HP-Z238-Microtower-Workstation sshd\[11144\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.117.230 Nov 7 22:58:32 vibhu-HP-Z238-Microtower-Workstation sshd\[11144\]: Failed password for invalid user Parola1234 from 43.225.117.230 port 45540 ssh2 Nov 7 23:02:36 vibhu-HP-Z238-Microtower-Workstation sshd\[11356\]: Invalid user admin\; from 43.225.117.230 Nov 7 23:02:36 vibhu-HP-Z238-Microtower-Workstation sshd\[11356\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.117.230 ...	2019-11-08 05:06:54
172.69.71.48	attackbots	Fake GoogleBot	2019-11-08 04:54:07
177.69.104.168	attack	SSH Bruteforce attempt	2019-11-08 05:10:49
54.36.182.244	attackspam	Nov 7 21:41:50 SilenceServices sshd[13100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.182.244 Nov 7 21:41:52 SilenceServices sshd[13100]: Failed password for invalid user 123321 from 54.36.182.244 port 59772 ssh2 Nov 7 21:45:27 SilenceServices sshd[15537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.182.244	2019-11-08 05:03:20
41.190.95.20	attackspambots	(From byatt.france@gmail.com) Hi As i promised you, i wanna give you 1 month free access to our Fashion members are, here you can find VIP coupons that are not visible to the public eye. http://bit.ly/fashionmember2 Please don't share the coupons on the internet greetings "Sent from my iPhone"	2019-11-08 04:53:41
78.32.97.249	attackbotsspam	$f2bV_matches	2019-11-08 04:36:49
111.254.37.72	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-11-08 04:44:29
218.71.92.250	attackspambots	FTP brute-force attack	2019-11-08 05:08:20
104.60.194.45	attackspambots	HTTP 403 XSS Attempt	2019-11-08 04:38:55

Recently Reported IPs

145.239.3.215	145.239.255.55	145.239.3.73	145.239.35.3
145.239.31.58	145.239.35.10	145.239.41.96	145.239.49.15
219.197.56.155	145.239.54.209	145.239.58.140	145.239.4.160
145.239.58.152	145.239.75.192	145.239.7.171	145.239.7.138
145.239.66.201	145.239.54.217	145.239.7.12	145.239.62.157