36.70.125.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
36.70.125.178	attackspam	1585831250 - 04/02/2020 14:40:50 Host: 36.70.125.178/36.70.125.178 Port: 445 TCP Blocked	2020-04-03 04:16:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.70.125.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28581
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;36.70.125.138.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012901 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 03:22:29 CST 2025
;; MSG SIZE  rcvd: 106

Host info

b'Host 138.125.70.36.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 138.125.70.36.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.245.51.51	attack	Brute force attempt	2019-10-19 20:23:04
106.36.4.74	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/106.36.4.74/ CN - 1H : (420) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 106.36.4.74 CIDR : 106.36.0.0/16 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 10 3H - 22 6H - 44 12H - 84 24H - 149 DateTime : 2019-10-19 14:05:02 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-19 20:42:50
116.11.184.46	attackbotsspam	Fail2Ban - FTP Abuse Attempt	2019-10-19 20:06:02
177.220.135.10	attackbotsspam	Oct 19 02:00:41 sachi sshd\[16230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.135.10 user=root Oct 19 02:00:42 sachi sshd\[16230\]: Failed password for root from 177.220.135.10 port 33793 ssh2 Oct 19 02:05:51 sachi sshd\[16663\]: Invalid user celery from 177.220.135.10 Oct 19 02:05:51 sachi sshd\[16663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.135.10 Oct 19 02:05:52 sachi sshd\[16663\]: Failed password for invalid user celery from 177.220.135.10 port 46913 ssh2	2019-10-19 20:10:36
92.63.204.48	attack	[portscan] Port scan	2019-10-19 20:20:09
46.38.144.202	attackbotsspam	Oct 19 14:09:26 vmanager6029 postfix/smtpd\[24844\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 19 14:11:25 vmanager6029 postfix/smtpd\[24844\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-19 20:16:19
89.248.174.3	attack	10/19/2019-08:06:01.363077 89.248.174.3 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-19 20:07:30
103.69.44.212	attack	Oct 16 23:47:51 mailserver sshd[18813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.69.44.212 user=r.r Oct 16 23:47:53 mailserver sshd[18813]: Failed password for r.r from 103.69.44.212 port 49204 ssh2 Oct 16 23:47:53 mailserver sshd[18813]: Received disconnect from 103.69.44.212 port 49204:11: Bye Bye [preauth] Oct 16 23:47:53 mailserver sshd[18813]: Disconnected from 103.69.44.212 port 49204 [preauth] Oct 16 23:56:37 mailserver sshd[19276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.69.44.212 user=r.r Oct 16 23:56:39 mailserver sshd[19276]: Failed password for r.r from 103.69.44.212 port 38238 ssh2 Oct 16 23:56:40 mailserver sshd[19276]: Received disconnect from 103.69.44.212 port 38238:11: Bye Bye [preauth] Oct 16 23:56:40 mailserver sshd[19276]: Disconnected from 103.69.44.212 port 38238 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.69.44.21	2019-10-19 20:10:20
182.68.71.23	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-10-2019 13:05:23.	2019-10-19 20:26:33
188.40.177.83	attackbotsspam	Oct 17 09:48:30 xxx sshd[20482]: Failed password for r.r from 188.40.177.83 port 46004 ssh2 Oct 17 10:05:39 xxx sshd[22382]: Failed password for r.r from 188.40.177.83 port 38122 ssh2 Oct 17 10:16:17 xxx sshd[23287]: Failed password for r.r from 188.40.177.83 port 50506 ssh2 Oct 17 10:26:26 xxx sshd[23871]: Invalid user rocky from 188.40.177.83 Oct 17 10:26:29 xxx sshd[23871]: Failed password for invalid user rocky from 188.40.177.83 port 34638 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=188.40.177.83	2019-10-19 20:32:29
51.38.49.140	attackspambots	Oct 19 14:01:35 cvbnet sshd[6639]: Failed password for mail from 51.38.49.140 port 37694 ssh2 ...	2019-10-19 20:23:52
200.137.160.142	attack	Oct 16 23:23:56 h2065291 sshd[25413]: Invalid user mysql from 200.137.160.142 Oct 16 23:23:56 h2065291 sshd[25413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.137.160.142 Oct 16 23:23:59 h2065291 sshd[25413]: Failed password for invalid user mysql from 200.137.160.142 port 58900 ssh2 Oct 16 23:23:59 h2065291 sshd[25413]: Received disconnect from 200.137.160.142: 11: Bye Bye [preauth] Oct 16 23:42:44 h2065291 sshd[25641]: Invalid user ubnt from 200.137.160.142 Oct 16 23:42:44 h2065291 sshd[25641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.137.160.142 Oct 16 23:42:46 h2065291 sshd[25641]: Failed password for invalid user ubnt from 200.137.160.142 port 60662 ssh2 Oct 16 23:42:46 h2065291 sshd[25641]: Received disconnect from 200.137.160.142: 11: Bye Bye [preauth] Oct 16 23:47:05 h2065291 sshd[25665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh........ -------------------------------	2019-10-19 20:08:28
35.228.188.244	attack	2019-10-19T12:16:11.512561shield sshd\[29340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.188.228.35.bc.googleusercontent.com user=root 2019-10-19T12:16:13.495019shield sshd\[29340\]: Failed password for root from 35.228.188.244 port 48776 ssh2 2019-10-19T12:19:59.488933shield sshd\[30107\]: Invalid user albano from 35.228.188.244 port 60484 2019-10-19T12:19:59.493075shield sshd\[30107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.188.228.35.bc.googleusercontent.com 2019-10-19T12:20:01.437582shield sshd\[30107\]: Failed password for invalid user albano from 35.228.188.244 port 60484 ssh2	2019-10-19 20:26:08
121.134.159.21	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/121.134.159.21/ KR - 1H : (65) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN4766 IP : 121.134.159.21 CIDR : 121.134.128.0/18 PREFIX COUNT : 8136 UNIQUE IP COUNT : 44725248 ATTACKS DETECTED ASN4766 : 1H - 3 3H - 5 6H - 8 12H - 19 24H - 45 DateTime : 2019-10-19 14:05:01 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-19 20:42:18
222.186.42.4	attackbotsspam	Oct 19 19:24:11 webhost01 sshd[30885]: Failed password for root from 222.186.42.4 port 17942 ssh2 Oct 19 19:24:30 webhost01 sshd[30885]: error: maximum authentication attempts exceeded for root from 222.186.42.4 port 17942 ssh2 [preauth] ...	2019-10-19 20:30:47

Recently Reported IPs

92.144.122.80	16.15.166.227	167.149.92.11	36.243.76.161
28.85.74.222	137.49.131.163	58.220.139.141	53.215.9.167
128.142.184.28	98.182.125.81	242.26.198.22	150.25.206.194
168.152.79.30	227.7.244.88	225.211.239.200	183.218.197.219
122.41.17.189	154.192.156.173	232.87.30.173	198.50.9.70