45.7.200.71 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Amteck Informatica Ltda

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 45.7.200.71 on Port 445(SMB)	2020-07-29 04:02:59

Comments on same subnet:

IP	Type	Details	Datetime
45.7.200.32	attack	Email rejected due to spam filtering	2020-03-09 21:28:41
45.7.200.20	attack	Jul 3 19:52:45 h2421860 postfix/postscreen[26659]: CONNECT from [45.7.200.20]:39933 to [85.214.119.52]:25 Jul 3 19:52:45 h2421860 postfix/dnsblog[26664]: addr 45.7.200.20 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 3 19:52:45 h2421860 postfix/dnsblog[26668]: addr 45.7.200.20 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 3 19:52:45 h2421860 postfix/dnsblog[26667]: addr 45.7.200.20 listed by domain Unknown.trblspam.com as 185.53.179.7 Jul 3 19:52:45 h2421860 postfix/postscreen[26659]: PREGREET 22 after 0.51 from [45.7.200.20]:39933: EHLO 1015thehawk.com Jul 3 19:52:46 h2421860 postfix/postscreen[26659]: DNSBL rank 5 for [45.7.200.20]:39933 Jul x@x Jul 3 19:52:47 h2421860 postfix/postscreen[26659]: HANGUP after 1.2 from [45.7.200.20]:39933 in tests after SMTP handshake Jul 3 19:52:47 h2421860 postfix/postscreen[26659]: DISCONNECT [45.7.200.20]:39933 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.7.200.20	2019-07-06 16:43:25

Type

Details

Datetime

45.7.200.32

attack

Email rejected due to spam filtering

2020-03-09 21:28:41

45.7.200.20

attack

Jul  3 19:52:45 h2421860 postfix/postscreen[26659]: CONNECT from [45.7.200.20]:39933 to [85.214.119.52]:25
Jul  3 19:52:45 h2421860 postfix/dnsblog[26664]: addr 45.7.200.20 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Jul  3 19:52:45 h2421860 postfix/dnsblog[26668]: addr 45.7.200.20 listed by domain zen.spamhaus.org as 127.0.0.4
Jul  3 19:52:45 h2421860 postfix/dnsblog[26667]: addr 45.7.200.20 listed by domain Unknown.trblspam.com as 185.53.179.7
Jul  3 19:52:45 h2421860 postfix/postscreen[26659]: PREGREET 22 after 0.51 from [45.7.200.20]:39933: EHLO 1015thehawk.com

Jul  3 19:52:46 h2421860 postfix/postscreen[26659]: DNSBL rank 5 for [45.7.200.20]:39933
Jul x@x
Jul  3 19:52:47 h2421860 postfix/postscreen[26659]: HANGUP after 1.2 from [45.7.200.20]:39933 in tests after SMTP handshake
Jul  3 19:52:47 h2421860 postfix/postscreen[26659]: DISCONNECT [45.7.200.20]:39933


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=45.7.200.20

2019-07-06 16:43:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.7.200.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6953
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.7.200.71.			IN	A

;; AUTHORITY SECTION:
.			185	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072801 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 29 04:02:53 CST 2020
;; MSG SIZE  rcvd: 115

Host info

71.200.7.45.in-addr.arpa domain name pointer 45-7-200-71.amteck.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
71.200.7.45.in-addr.arpa	name = 45-7-200-71.amteck.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.85.16.96	attackspambots	Sending SPAM email	2019-07-02 10:11:15
211.141.155.131	attack	Jul 1 18:04:31 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=211.141.155.131, lip=[munged], TLS: Disconnected	2019-07-02 10:35:34
156.204.123.201	attackspambots	Unauthorized connection attempt from IP address 156.204.123.201 on Port 445(SMB)	2019-07-02 10:37:44
192.141.236.140	attack	Lines containing failures of 192.141.236.140 Jul 2 00:46:44 shared11 sshd[15895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.141.236.140 user=r.r Jul 2 00:46:45 shared11 sshd[15895]: Failed password for r.r from 192.141.236.140 port 2223 ssh2 Jul 2 00:46:48 shared11 sshd[15895]: Failed password for r.r from 192.141.236.140 port 2223 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=192.141.236.140	2019-07-02 10:18:53
168.228.150.145	attackbotsspam	libpam_shield report: forced login attempt	2019-07-02 10:23:53
218.48.51.216	attackbotsspam	Jul 2 01:04:18 rpi sshd[7935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.48.51.216 Jul 2 01:04:20 rpi sshd[7935]: Failed password for invalid user ssh from 218.48.51.216 port 42302 ssh2	2019-07-02 10:48:30
115.150.22.188	attackspam	Jul 1 18:45:27 eola postfix/smtpd[1026]: connect from unknown[115.150.22.188] Jul 1 18:45:28 eola postfix/smtpd[1026]: lost connection after AUTH from unknown[115.150.22.188] Jul 1 18:45:28 eola postfix/smtpd[1026]: disconnect from unknown[115.150.22.188] ehlo=1 auth=0/1 commands=1/2 Jul 1 18:45:28 eola postfix/smtpd[1026]: connect from unknown[115.150.22.188] Jul 1 18:45:29 eola postfix/smtpd[1026]: lost connection after AUTH from unknown[115.150.22.188] Jul 1 18:45:29 eola postfix/smtpd[1026]: disconnect from unknown[115.150.22.188] ehlo=1 auth=0/1 commands=1/2 Jul 1 18:45:29 eola postfix/smtpd[1026]: connect from unknown[115.150.22.188] Jul 1 18:45:30 eola postfix/smtpd[1026]: lost connection after AUTH from unknown[115.150.22.188] Jul 1 18:45:30 eola postfix/smtpd[1026]: disconnect from unknown[115.150.22.188] ehlo=1 auth=0/1 commands=1/2 Jul 1 18:45:30 eola postfix/smtpd[1026]: connect from unknown[115.150.22.188] Jul 1 18:45:30 eola postfix/smtpd[1026]:........ -------------------------------	2019-07-02 10:11:47
106.12.125.27	attackspambots	Jul 2 03:02:01 MainVPS sshd[3056]: Invalid user applmgr from 106.12.125.27 port 54430 Jul 2 03:02:01 MainVPS sshd[3056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.125.27 Jul 2 03:02:01 MainVPS sshd[3056]: Invalid user applmgr from 106.12.125.27 port 54430 Jul 2 03:02:03 MainVPS sshd[3056]: Failed password for invalid user applmgr from 106.12.125.27 port 54430 ssh2 Jul 2 03:08:28 MainVPS sshd[3492]: Invalid user zule from 106.12.125.27 port 45040 ...	2019-07-02 10:31:18
91.90.232.101	attackbots	Mail sent to address harvested from public web site	2019-07-02 10:54:11
61.50.130.146	attackbotsspam	failed_logins	2019-07-02 10:21:27
188.19.235.45	attackspam	Jul 2 00:46:44 pl3server sshd[1170562]: Invalid user admin from 188.19.235.45 Jul 2 00:46:44 pl3server sshd[1170562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.19.235.45 Jul 2 00:46:46 pl3server sshd[1170562]: Failed password for invalid user admin from 188.19.235.45 port 50539 ssh2 Jul 2 00:46:47 pl3server sshd[1170562]: Connection closed by 188.19.235.45 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=188.19.235.45	2019-07-02 10:22:13
144.121.14.152	attack	Unauthorized connection attempt from IP address 144.121.14.152 on Port 445(SMB)	2019-07-02 10:52:14
59.41.46.147	attackbotsspam	3389BruteforceFW23	2019-07-02 10:50:58
159.65.162.182	attack	Jul 1 16:04:42 cac1d2 sshd\[1988\]: Invalid user admin from 159.65.162.182 port 50468 Jul 1 16:04:42 cac1d2 sshd\[1988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.162.182 Jul 1 16:04:44 cac1d2 sshd\[1988\]: Failed password for invalid user admin from 159.65.162.182 port 50468 ssh2 ...	2019-07-02 10:25:09
189.89.216.181	attackspam	$f2bV_matches	2019-07-02 10:51:30

Recently Reported IPs

97.51.68.96	139.238.160.7	244.253.200.175	179.81.209.224
197.159.215.249	158.211.104.168	213.205.37.218	246.218.26.199
227.39.255.11	207.126.153.134	157.48.158.148	171.38.144.15
5.172.25.16	106.13.123.148	51.210.151.242	103.8.117.107
171.231.28.210	129.204.121.245	201.0.252.93	101.201.180.22