45.232.243.124

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: D S Santos Comunicacoes Eireli ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-11-23 05:55:53 H=(239-242-232-45.grupowfnettelecom.net.br) [45.232.243.124] sender verify fail for : Unrouteable address 2019-11-23 05:55:53 H=(239-242-232-45.grupowfnettelecom.net.br) [45.232.243.124] F= rejected RCPT : Sender verify failed ...	2019-11-23 13:01:28

Type

Details

Datetime

attack

2019-11-23 05:55:53 H=(239-242-232-45.grupowfnettelecom.net.br) [45.232.243.124] sender verify fail for : Unrouteable address
2019-11-23 05:55:53 H=(239-242-232-45.grupowfnettelecom.net.br) [45.232.243.124] F= rejected RCPT : Sender verify failed
...

2019-11-23 13:01:28

Comments on same subnet:

IP	Type	Details	Datetime
45.232.243.125	attack	email spam	2019-12-19 21:14:06
45.232.243.125	attack	Oct 28 13:16:54 our-server-hostname postfix/smtpd[9540]: connect from unknown[45.232.243.125] Oct x@x Oct 28 13:16:56 our-server-hostname postfix/smtpd[9540]: lost connection after RCPT from unknown[45.232.243.125] Oct 28 13:16:56 our-server-hostname postfix/smtpd[9540]: disconnect from unknown[45.232.243.125] Oct 28 16:39:02 our-server-hostname postfix/smtpd[1897]: connect from unknown[45.232.243.125] Oct x@x Oct 28 16:39:07 our-server-hostname postfix/smtpd[1897]: lost connection after RCPT from unknown[45.232.243.125] Oct 28 16:39:07 our-server-hostname postfix/smtpd[1897]: disconnect from unknown[45.232.243.125] Oct 29 00:25:33 our-server-hostname postfix/smtpd[21929]: connect from unknown[45.232.243.125] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.232.243.125	2019-10-30 17:36:35

Type

Details

Datetime

45.232.243.125

attack

email spam

2019-12-19 21:14:06

45.232.243.125

attack

Oct 28 13:16:54 our-server-hostname postfix/smtpd[9540]: connect from unknown[45.232.243.125]
Oct x@x
Oct 28 13:16:56 our-server-hostname postfix/smtpd[9540]: lost connection after RCPT from unknown[45.232.243.125]
Oct 28 13:16:56 our-server-hostname postfix/smtpd[9540]: disconnect from unknown[45.232.243.125]
Oct 28 16:39:02 our-server-hostname postfix/smtpd[1897]: connect from unknown[45.232.243.125]
Oct x@x
Oct 28 16:39:07 our-server-hostname postfix/smtpd[1897]: lost connection after RCPT from unknown[45.232.243.125]
Oct 28 16:39:07 our-server-hostname postfix/smtpd[1897]: disconnect from unknown[45.232.243.125]
Oct 29 00:25:33 our-server-hostname postfix/smtpd[21929]: connect from unknown[45.232.243.125]
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=45.232.243.125

2019-10-30 17:36:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.232.243.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.232.243.124.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112201 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 23 13:01:25 CST 2019
;; MSG SIZE  rcvd: 118

Host info

124.243.232.45.in-addr.arpa domain name pointer 124-243-232-45.grupowfnettelecom.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
124.243.232.45.in-addr.arpa	name = 124-243-232-45.grupowfnettelecom.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.254.244.109	attack	2020-06-30T19:13:25.462287vps773228.ovh.net sshd[12117]: Invalid user kt from 182.254.244.109 port 41132 2020-06-30T19:13:25.480708vps773228.ovh.net sshd[12117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.244.109 2020-06-30T19:13:25.462287vps773228.ovh.net sshd[12117]: Invalid user kt from 182.254.244.109 port 41132 2020-06-30T19:13:27.281060vps773228.ovh.net sshd[12117]: Failed password for invalid user kt from 182.254.244.109 port 41132 ssh2 2020-06-30T19:14:22.607175vps773228.ovh.net sshd[12125]: Invalid user luciano from 182.254.244.109 port 49308 ...	2020-07-01 10:14:27
39.129.176.133	attackbots	Jun 30 17:00:03 melroy-server sshd[5793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.129.176.133 Jun 30 17:00:05 melroy-server sshd[5793]: Failed password for invalid user ec2-user from 39.129.176.133 port 47411 ssh2 ...	2020-07-01 10:16:22
185.136.52.158	attackbots	2020-06-30T15:01:28.900462afi-git.jinr.ru sshd[21967]: Invalid user teste from 185.136.52.158 port 50932 2020-06-30T15:01:28.903521afi-git.jinr.ru sshd[21967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.136.52.158 2020-06-30T15:01:28.900462afi-git.jinr.ru sshd[21967]: Invalid user teste from 185.136.52.158 port 50932 2020-06-30T15:01:30.851630afi-git.jinr.ru sshd[21967]: Failed password for invalid user teste from 185.136.52.158 port 50932 ssh2 2020-06-30T15:04:41.875677afi-git.jinr.ru sshd[22799]: Invalid user ftpuser from 185.136.52.158 port 51440 ...	2020-07-01 12:01:23
178.93.11.19	attackbots	Unauthorized connection attempt detected from IP address 178.93.11.19 to port 80	2020-07-01 10:43:37
103.123.8.75	attackspambots	Multiple SSH authentication failures from 103.123.8.75	2020-07-01 10:29:00
118.25.47.217	attackbotsspam	2020-06-30T14:12:14+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-01 10:15:51
103.139.45.129	attack	" "	2020-07-01 10:06:34
176.126.167.167	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-07-01 10:45:00
111.229.232.224	attackspambots	Jun 30 05:10:21 scw-tender-jepsen sshd[3435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.232.224 Jun 30 05:10:23 scw-tender-jepsen sshd[3435]: Failed password for invalid user zhicheng from 111.229.232.224 port 50890 ssh2	2020-07-01 10:45:46
192.241.226.155	attackspam	Automatic report - Banned IP Access	2020-07-01 10:06:08
132.232.248.82	attackbots	Invalid user sammy from 132.232.248.82 port 56760	2020-07-01 10:19:58
62.234.146.45	attack	Jun 30 09:26:55 Host-KLAX-C sshd[18070]: Invalid user sccs from 62.234.146.45 port 51584 ...	2020-07-01 10:09:27
185.39.10.31	attackspambots	ET DROP Spamhaus DROP Listed Traffic Inbound group 18 - port: 18050 proto: TCP cat: Misc Attack	2020-07-01 10:07:20
202.72.243.198	attackspam	Multiple SSH authentication failures from 202.72.243.198	2020-07-01 10:05:50
193.46.77.209	attack	Unauthorized connection attempt detected from IP address 193.46.77.209 to port 445 [T]	2020-07-01 12:03:31

Recently Reported IPs

89.186.124.191	43.252.231.165	218.76.28.247	5.229.201.237
85.234.30.66	77.54.236.229	95.178.216.184	183.56.160.22
198.27.67.87	71.94.177.206	3.133.154.245	1.55.141.56
212.64.102.110	70.118.65.126	86.126.68.195	176.127.128.167
101.20.101.96	199.18.10.237	20.29.10.162	86.151.32.240