45.239.192.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Eletronica BK 2009 Ltda - ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 45.239.192.12 on Port 445(SMB)	2020-07-24 00:29:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.239.192.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.239.192.12.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072300 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 24 00:29:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

12.192.239.45.in-addr.arpa domain name pointer 45-239-192-12.speedfiber.psi.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.192.239.45.in-addr.arpa	name = 45-239-192-12.speedfiber.psi.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.176.27.162	attackbots	08/12/2019-12:44:00.153569 185.176.27.162 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-13 00:58:49
92.118.160.25	attack	389/tcp 5353/udp 22/tcp... [2019-06-11/08-10]154pkt,70pt.(tcp),8pt.(udp),1tp.(icmp)	2019-08-13 01:10:04
185.220.101.7	attackbotsspam	Splunk® : Brute-Force login attempt on SSH: Aug 12 13:06:38 testbed sshd[22891]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.7 user=root	2019-08-13 01:10:36
71.6.233.57	attackbotsspam	firewall-block, port(s): 443/tcp	2019-08-13 01:13:25
14.198.116.47	attackspambots	Aug 12 17:43:03 work-partkepr sshd\[3812\]: Invalid user scaner from 14.198.116.47 port 48778 Aug 12 17:43:03 work-partkepr sshd\[3812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.198.116.47 ...	2019-08-13 01:45:45
108.63.27.100	attackspam	Automatic report - Banned IP Access	2019-08-13 01:16:12
185.175.93.57	attackbotsspam	1 attempts last 24 Hours	2019-08-13 01:31:51
165.227.154.44	attack	www.goldgier.de 165.227.154.44 \[12/Aug/2019:14:57:06 +0200\] "POST /wp-login.php HTTP/1.1" 200 8725 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.goldgier.de 165.227.154.44 \[12/Aug/2019:14:57:08 +0200\] "POST /wp-login.php HTTP/1.1" 200 8725 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-08-13 01:22:20
52.179.180.63	attackspambots	Aug 12 07:37:44 aat-srv002 sshd[8642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.179.180.63 Aug 12 07:37:46 aat-srv002 sshd[8642]: Failed password for invalid user admin3 from 52.179.180.63 port 56782 ssh2 Aug 12 07:42:14 aat-srv002 sshd[8758]: Failed password for root from 52.179.180.63 port 49122 ssh2 ...	2019-08-13 01:27:08
120.194.198.92	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-08-13 01:39:05
183.109.79.252	attackspambots	$f2bV_matches	2019-08-13 01:25:28
103.137.6.226	attackspam	[ES hit] Tried to deliver spam.	2019-08-13 01:28:15
185.153.196.81	attackbots	08/12/2019-09:05:46.672651 185.153.196.81 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-13 01:02:12
93.145.33.226	attackspam	Aug 12 18:03:14 herz-der-gamer sshd[27153]: Invalid user squid from 93.145.33.226 port 22021 Aug 12 18:03:14 herz-der-gamer sshd[27153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.145.33.226 Aug 12 18:03:14 herz-der-gamer sshd[27153]: Invalid user squid from 93.145.33.226 port 22021 Aug 12 18:03:16 herz-der-gamer sshd[27153]: Failed password for invalid user squid from 93.145.33.226 port 22021 ssh2 ...	2019-08-13 01:11:14
59.1.116.20	attack	Aug 12 18:57:25 vpn01 sshd\[12237\]: Invalid user zimbra from 59.1.116.20 Aug 12 18:57:25 vpn01 sshd\[12237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.1.116.20 Aug 12 18:57:27 vpn01 sshd\[12237\]: Failed password for invalid user zimbra from 59.1.116.20 port 44386 ssh2	2019-08-13 01:07:52

Recently Reported IPs

181.129.73.194	114.201.143.118	103.59.150.135	198.44.191.53
172.197.47.163	113.89.32.80	111.249.215.53	59.127.164.40
110.172.163.130	198.144.177.111	161.35.225.81	194.78.185.79
54.39.233.81	201.86.128.156	52.230.80.222	186.220.67.73
49.69.151.153	183.83.64.218	121.225.84.11	78.215.249.237