145.239.253.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
145.239.253.188	attack	Automatic report - Port Scan Attack	2020-08-19 05:02:01
145.239.253.29	attackbotsspam	145.239.253.29 - - [26/Nov/2019:15:39:29 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:30 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:30 +0100] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:30 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 145.239.253.29 - - [26/Nov/2019:15:39:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-27 04:25:58
145.239.253.73	attackspam	WEB Masscan Scanner Activity	2019-11-20 08:50:46
145.239.253.29	attackbotsspam	pfaffenroth-photographie.de 145.239.253.29 \[19/Nov/2019:07:26:59 +0100\] "POST /wp-login.php HTTP/1.1" 200 8452 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" pfaffenroth-photographie.de 145.239.253.29 \[19/Nov/2019:07:27:00 +0100\] "POST /wp-login.php HTTP/1.1" 200 8452 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" pfaffenroth-photographie.de 145.239.253.29 \[19/Nov/2019:07:27:01 +0100\] "POST /wp-login.php HTTP/1.1" 200 8452 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-19 16:20:50
145.239.253.73	attackbotsspam	145.239.253.73 was recorded 5 times by 2 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 5, 9, 48	2019-11-12 04:12:18
145.239.253.73	attackspam	WEB server attack.	2019-11-10 22:24:17
145.239.253.73	attackspambots	145.239.253.73 was recorded 5 times by 3 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 5, 18, 38	2019-11-09 04:04:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.239.253.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52496
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.239.253.3.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:18:06 CST 2022
;; MSG SIZE  rcvd: 106

Host info

3.253.239.145.in-addr.arpa domain name pointer uk20.fastdirectadminserver.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.253.239.145.in-addr.arpa	name = uk20.fastdirectadminserver.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.211.216.173	attack	2019-12-10T19:12:06.678068shield sshd\[8069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.216.173 user=root 2019-12-10T19:12:08.715111shield sshd\[8069\]: Failed password for root from 104.211.216.173 port 45520 ssh2 2019-12-10T19:20:19.245457shield sshd\[9681\]: Invalid user fanni from 104.211.216.173 port 57614 2019-12-10T19:20:19.250122shield sshd\[9681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.216.173 2019-12-10T19:20:21.301924shield sshd\[9681\]: Failed password for invalid user fanni from 104.211.216.173 port 57614 ssh2	2019-12-11 03:24:28
210.242.67.17	attackbotsspam	20 attempts against mh-ssh on echoip.magehost.pro	2019-12-11 03:52:56
212.227.192.98	attackspam	IDS	2019-12-11 03:25:13
45.179.144.6	attackbots	Unauthorized connection attempt from IP address 45.179.144.6 on Port 445(SMB)	2019-12-11 03:30:22
116.203.203.73	attackspam	Dec 10 08:27:09 eddieflores sshd\[26554\]: Invalid user chieh from 116.203.203.73 Dec 10 08:27:09 eddieflores sshd\[26554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.73.203.203.116.clients.your-server.de Dec 10 08:27:12 eddieflores sshd\[26554\]: Failed password for invalid user chieh from 116.203.203.73 port 42006 ssh2 Dec 10 08:32:26 eddieflores sshd\[27120\]: Invalid user paddock from 116.203.203.73 Dec 10 08:32:26 eddieflores sshd\[27120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.73.203.203.116.clients.your-server.de	2019-12-11 03:17:32
185.74.4.189	attackspam	$f2bV_matches	2019-12-11 03:36:28
125.212.207.205	attackbotsspam	2019-12-10T20:21:34.200949ns386461 sshd\[30341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 user=root 2019-12-10T20:21:35.880283ns386461 sshd\[30341\]: Failed password for root from 125.212.207.205 port 34000 ssh2 2019-12-10T20:30:02.367717ns386461 sshd\[5730\]: Invalid user annablume from 125.212.207.205 port 35888 2019-12-10T20:30:02.371988ns386461 sshd\[5730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 2019-12-10T20:30:04.458485ns386461 sshd\[5730\]: Failed password for invalid user annablume from 125.212.207.205 port 35888 ssh2 ...	2019-12-11 03:41:22
51.38.71.36	attack	Dec 10 18:14:16 v22018086721571380 sshd[23564]: Failed password for invalid user faraone from 51.38.71.36 port 37496 ssh2 Dec 10 19:16:43 v22018086721571380 sshd[28289]: Failed password for invalid user squid from 51.38.71.36 port 56524 ssh2	2019-12-11 03:21:10
27.72.103.118	attack	IDS	2019-12-11 03:54:49
66.42.109.139	attackbotsspam	IDS	2019-12-11 03:49:55
45.221.92.199	attackspam	IDS	2019-12-11 03:34:57
93.88.216.92	attackbots	Unauthorized connection attempt from IP address 93.88.216.92 on Port 445(SMB)	2019-12-11 03:56:07
177.11.165.159	attackbots	IDS	2019-12-11 03:26:08
54.70.223.234	attackspam	#DOMAINS ALWAYS BLOCKED: AmazonAWS.com Amazon.com (Good Riddance!)	2019-12-11 03:20:14
115.230.126.40	attackspam	Unauthorized connection attempt from IP address 115.230.126.40 on Port 445(SMB)	2019-12-11 03:48:17

Recently Reported IPs

145.239.3.215	145.239.255.55	145.239.3.73	145.239.35.3
145.239.31.58	145.239.35.10	145.239.41.96	145.239.49.15
219.197.56.155	145.239.54.209	145.239.58.140	145.239.4.160
145.239.58.152	145.239.75.192	145.239.7.171	145.239.7.138
145.239.66.201	145.239.54.217	145.239.7.12	145.239.62.157