170.239.42.44 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: M. Dantas e Cia Ltda ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Brute force attempt	2019-06-29 05:22:41

Comments on same subnet:

IP	Type	Details	Datetime
170.239.42.246	attack	Jun 16 05:25:06 mail.srvfarm.net postfix/smtps/smtpd[954246]: lost connection after CONNECT from unknown[170.239.42.246] Jun 16 05:30:02 mail.srvfarm.net postfix/smtps/smtpd[938143]: warning: unknown[170.239.42.246]: SASL PLAIN authentication failed: Jun 16 05:30:02 mail.srvfarm.net postfix/smtps/smtpd[938143]: lost connection after AUTH from unknown[170.239.42.246] Jun 16 05:33:26 mail.srvfarm.net postfix/smtps/smtpd[956700]: warning: unknown[170.239.42.246]: SASL PLAIN authentication failed: Jun 16 05:33:26 mail.srvfarm.net postfix/smtps/smtpd[956700]: lost connection after AUTH from unknown[170.239.42.246]	2020-06-16 15:46:15
170.239.42.164	attackspambots	failed_logins	2019-07-31 10:56:16
170.239.42.163	attackbots	SMTP-sasl brute force ...	2019-07-06 12:27:31
170.239.42.178	attackspam	Try access to SMTP/POP/IMAP server.	2019-07-02 04:34:16
170.239.42.107	attackspam	failed_logins	2019-06-26 22:33:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 170.239.42.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47417
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;170.239.42.44.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 29 05:22:35 CST 2019
;; MSG SIZE  rcvd: 117

Host info

44.42.239.170.in-addr.arpa domain name pointer 170-239-42-44.teleflex.net.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
44.42.239.170.in-addr.arpa	name = 170-239-42-44.teleflex.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.191.245.94	attack	Unauthorized connection attempt from IP address 14.191.245.94 on Port 445(SMB)	2020-02-20 03:11:52
101.227.67.99	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 02:37:16
41.231.8.214	attackbots	Invalid user user from 41.231.8.214	2020-02-20 02:53:57
192.99.245.135	attackbotsspam	Feb 19 18:21:41 MK-Soft-VM5 sshd[24585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.245.135 Feb 19 18:21:43 MK-Soft-VM5 sshd[24585]: Failed password for invalid user user from 192.99.245.135 port 51834 ssh2 ...	2020-02-20 02:42:34
117.50.13.170	attackspam	Automatic report - Banned IP Access	2020-02-20 02:39:57
49.88.112.114	attackbotsspam	Feb 19 08:27:46 web1 sshd\[502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Feb 19 08:27:48 web1 sshd\[502\]: Failed password for root from 49.88.112.114 port 29974 ssh2 Feb 19 08:28:53 web1 sshd\[586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Feb 19 08:28:55 web1 sshd\[586\]: Failed password for root from 49.88.112.114 port 21956 ssh2 Feb 19 08:29:54 web1 sshd\[680\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2020-02-20 02:47:24
36.67.24.109	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 03:01:42
80.123.71.68	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 02:55:46
183.88.37.231	attackbotsspam	Honeypot attack, port: 445, PTR: mx-ll-183.88.37-231.dynamic.3bb.in.th.	2020-02-20 02:45:01
218.92.0.212	attack	Feb 19 19:22:49 Ubuntu-1404-trusty-64-minimal sshd\[17722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Feb 19 19:22:50 Ubuntu-1404-trusty-64-minimal sshd\[17722\]: Failed password for root from 218.92.0.212 port 39792 ssh2 Feb 19 19:23:20 Ubuntu-1404-trusty-64-minimal sshd\[17930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Feb 19 19:23:22 Ubuntu-1404-trusty-64-minimal sshd\[17930\]: Failed password for root from 218.92.0.212 port 22321 ssh2 Feb 19 19:23:48 Ubuntu-1404-trusty-64-minimal sshd\[18120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root	2020-02-20 02:39:41
191.101.170.77	attack	(From newpeople@tutanota.com) Hi, I thought you may be interested in our services. We can send thousands of interested people to your website daily. People will come from online publications to your website from the USA in YOUR EXACT NICHE. We are the only company we know of that does this. Most of our first time customers start with a 5,000 test order for $54.99. We also have larger packages. Thank you for your time and hope to see you on our site. Best, Alison D. https://traffic-stampede.com	2020-02-20 03:08:07
94.187.148.21	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-20 02:49:48
185.175.93.105	attackbotsspam	Feb 19 19:39:14 debian-2gb-nbg1-2 kernel: \[4396766.495589\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.105 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=65129 PROTO=TCP SPT=40424 DPT=9711 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-20 02:57:45
201.242.174.40	attackspam	SSH login attempts.	2020-02-20 03:09:11
51.158.113.27	attackbots	5x Failed Password	2020-02-20 02:58:57

Recently Reported IPs

119.118.126.35	193.169.252.142	86.196.206.201	201.243.64.118
18.8.64.201	68.169.254.246	54.36.148.37	176.10.118.193
5.244.13.169	35.233.14.248	18.202.40.232	186.184.242.91
238.196.166.62	138.0.189.239	37.242.220.169	125.154.251.6
31.163.134.51	177.137.96.2	179.131.234.151	64.104.158.71