152.53.238.145

Basic Info

City: unknown

Region: unknown

Country: Austria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.53.238.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10973
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.53.238.145.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400

;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 11:01:41 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 145.238.53.152.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.238.53.152.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.210.40.210	attackspambots	Jan 13 23:23:32 MK-Soft-VM7 sshd[2231]: Failed password for backup from 60.210.40.210 port 35059 ssh2 ...	2020-01-14 07:24:20
170.81.145.243	attack	Jan 13 21:11:50 pl3server sshd[8070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.81.145.243 user=r.r Jan 13 21:11:52 pl3server sshd[8070]: Failed password for r.r from 170.81.145.243 port 51820 ssh2 Jan 13 21:11:52 pl3server sshd[8070]: Received disconnect from 170.81.145.243: 11: Bye Bye [preauth] Jan 13 22:05:20 pl3server sshd[19488]: Invalid user classic from 170.81.145.243 Jan 13 22:05:20 pl3server sshd[19488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.81.145.243 Jan 13 22:05:22 pl3server sshd[19488]: Failed password for invalid user classic from 170.81.145.243 port 50556 ssh2 Jan 13 22:05:22 pl3server sshd[19488]: Received disconnect from 170.81.145.243: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=170.81.145.243	2020-01-14 07:25:19
36.230.66.148	attackspam	Jan 13 21:17:13 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.230.66.148 port 46120 ssh2 (target: 158.69.100.156:22, password: r.r) Jan 13 21:17:13 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.230.66.148 port 46120 ssh2 (target: 158.69.100.156:22, password: admin) Jan 13 21:17:13 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.230.66.148 port 46120 ssh2 (target: 158.69.100.156:22, password: 12345) Jan 13 21:17:13 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.230.66.148 port 46120 ssh2 (target: 158.69.100.156:22, password: guest) Jan 13 21:17:13 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.230.66.148 port 46120 ssh2 (target: 158.69.100.156:22, password: 123456) Jan 13 21:17:14 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.230.66.148 port 46120 ssh2 (target: 158.69.100.156:22, password: 1234) Jan 13 21:17:14 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 36.23........ ------------------------------	2020-01-14 07:40:26
113.173.166.15	attackspam	Jan 13 22:10:53 linuxrulz sshd[17545]: Invalid user admin from 113.173.166.15 port 48385 Jan 13 22:10:53 linuxrulz sshd[17545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.166.15 Jan 13 22:10:55 linuxrulz sshd[17545]: Failed password for invalid user admin from 113.173.166.15 port 48385 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.173.166.15	2020-01-14 07:33:52
200.11.150.238	attack	Jan 13 23:43:22 web8 sshd\[14248\]: Invalid user webmaster from 200.11.150.238 Jan 13 23:43:22 web8 sshd\[14248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.150.238 Jan 13 23:43:25 web8 sshd\[14248\]: Failed password for invalid user webmaster from 200.11.150.238 port 43043 ssh2 Jan 13 23:44:21 web8 sshd\[14707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.150.238 user=root Jan 13 23:44:23 web8 sshd\[14707\]: Failed password for root from 200.11.150.238 port 48735 ssh2	2020-01-14 07:47:19
77.148.22.194	attack	Jan 13 13:23:29 eddieflores sshd\[16216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.22.148.77.rev.sfr.net user=root Jan 13 13:23:31 eddieflores sshd\[16216\]: Failed password for root from 77.148.22.194 port 37220 ssh2 Jan 13 13:29:49 eddieflores sshd\[16690\]: Invalid user nathalie from 77.148.22.194 Jan 13 13:29:49 eddieflores sshd\[16690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.22.148.77.rev.sfr.net Jan 13 13:29:51 eddieflores sshd\[16690\]: Failed password for invalid user nathalie from 77.148.22.194 port 49424 ssh2	2020-01-14 07:46:19
92.222.204.120	attackspam	92.222.204.120 was recorded 13 times by 7 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 13, 27, 153	2020-01-14 07:22:11
222.186.15.10	attackspambots	Brute-force attempt banned	2020-01-14 07:41:17
222.186.30.12	attackbots	Jan 14 01:40:11 server2 sshd\[21442\]: User root from 222.186.30.12 not allowed because not listed in AllowUsers Jan 14 01:40:11 server2 sshd\[21440\]: User root from 222.186.30.12 not allowed because not listed in AllowUsers Jan 14 01:40:11 server2 sshd\[21444\]: User root from 222.186.30.12 not allowed because not listed in AllowUsers Jan 14 01:40:11 server2 sshd\[21447\]: User root from 222.186.30.12 not allowed because not listed in AllowUsers Jan 14 01:40:11 server2 sshd\[21446\]: User root from 222.186.30.12 not allowed because not listed in AllowUsers Jan 14 01:40:40 server2 sshd\[21463\]: User root from 222.186.30.12 not allowed because not listed in AllowUsers	2020-01-14 07:40:45
147.172.96.71	attackbots	Jan 13 22:06:18 pl3server sshd[20986]: Invalid user elisa from 147.172.96.71 Jan 13 22:06:18 pl3server sshd[20986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.172.96.71 Jan 13 22:06:20 pl3server sshd[20986]: Failed password for invalid user elisa from 147.172.96.71 port 59256 ssh2 Jan 13 22:06:21 pl3server sshd[20986]: Received disconnect from 147.172.96.71: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.172.96.71	2020-01-14 07:27:01
159.69.143.158	attackspam	Jan 13 23:04:56 dedicated sshd[18689]: Invalid user drcom from 159.69.143.158 port 45128	2020-01-14 07:33:32
192.83.166.81	attackspam	Jan 13 13:30:04 hanapaa sshd\[28545\]: Invalid user polycom from 192.83.166.81 Jan 13 13:30:04 hanapaa sshd\[28545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.83.166.81 Jan 13 13:30:07 hanapaa sshd\[28545\]: Failed password for invalid user polycom from 192.83.166.81 port 50039 ssh2 Jan 13 13:33:55 hanapaa sshd\[28828\]: Invalid user neo from 192.83.166.81 Jan 13 13:33:55 hanapaa sshd\[28828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.83.166.81	2020-01-14 07:36:33
119.42.175.200	attack	no	2020-01-14 07:14:51
117.2.158.129	attackbotsspam	Jan 12 23:52:18 h02 sshd[22908]: Did not receive identification string from 117.2.158.129 Jan 12 23:52:20 h02 sshd[22909]: Address 117.2.158.129 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 12 23:52:20 h02 sshd[22909]: Invalid user user from 117.2.158.129 Jan 12 23:52:21 h02 sshd[22909]: Connection closed by 117.2.158.129 [preauth] Jan 12 23:52:22 h02 sshd[22911]: Address 117.2.158.129 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 12 23:52:22 h02 sshd[22911]: Invalid user user from 117.2.158.129 Jan 12 23:52:23 h02 sshd[22911]: Connection closed by 117.2.158.129 [preauth] Jan 12 23:52:24 h02 sshd[22913]: Address 117.2.158.129 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 12 23:52:24 h02 sshd[22913]: Invalid user user from 117.2.158.129 Jan 12 23:52:25 h02 sshd[22913]: Connection closed by 117.2.158.129 [preauth] Jan 13 22:16:30........ -------------------------------	2020-01-14 07:37:46
81.67.105.140	attackbotsspam	[munged]::443 81.67.105.140 - - [13/Jan/2020:22:19:32 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:19:47 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:20:03 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:20:19 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:20:35 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:20:51 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:21:07 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:21:23 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:21:39 +0100] "POST /[munged]: HTTP/1.1" 200 6578 "-" "-" [munged]::443 81.67.105.140 - - [13/Jan/2020:22:21:55 +0100] "POST /[munged]: H	2020-01-14 07:50:13

Recently Reported IPs

239.120.112.210	162.126.215.17	52.83.134.45	107.210.218.64
130.91.108.68	100.32.43.141	240.135.209.199	205.126.114.5
162.47.239.134	169.11.214.123	20.77.76.102	108.141.59.172
107.220.239.247	30.115.231.0	249.235.210.229	62.182.114.111
9.147.167.140	240.225.239.106	221.169.37.51	252.118.103.83