45.70.125.19 - IPInfo

Basic Info

City: Araçatuba

Region: Sao Paulo

Country: Brazil

Internet Service Provider: Prismarede Telecomunicacoes Ltda - ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	1581860647 - 02/16/2020 14:44:07 Host: 45.70.125.19/45.70.125.19 Port: 445 TCP Blocked	2020-02-17 04:39:17

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.70.125.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.70.125.19.			IN	A

;; AUTHORITY SECTION:
.			263	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 04:39:13 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 19.125.70.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 19.125.70.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.52.43.105	attackspam	20/tcp 5984/tcp 139/tcp... [2019-09-03/11-02]34pkt,23pt.(tcp),4pt.(udp)	2019-11-03 15:07:09
208.100.26.241	attackspam	firewall-block, port(s): 1433/tcp	2019-11-03 15:27:45
159.203.197.18	attack	1364/tcp 2323/tcp 8047/tcp... [2019-09-16/11-02]49pkt,44pt.(tcp),2pt.(udp)	2019-11-03 15:28:05
165.22.91.192	attack	Automatic report - XMLRPC Attack	2019-11-03 15:07:54
185.153.197.116	attackspam	3389BruteforceFW21	2019-11-03 15:01:54
139.59.77.235	attackspam	Nov 3 08:24:14 dedicated sshd[21571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.77.235 user=root Nov 3 08:24:16 dedicated sshd[21571]: Failed password for root from 139.59.77.235 port 51232 ssh2	2019-11-03 15:26:11
104.40.140.114	attackbots	Nov 3 06:54:27 vps01 sshd[27630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.140.114 Nov 3 06:54:29 vps01 sshd[27630]: Failed password for invalid user gch587 from 104.40.140.114 port 52092 ssh2	2019-11-03 15:09:29
118.24.121.240	attackbotsspam	Nov 3 06:48:51 localhost sshd\[1081\]: Invalid user correo from 118.24.121.240 Nov 3 06:48:51 localhost sshd\[1081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.121.240 Nov 3 06:48:54 localhost sshd\[1081\]: Failed password for invalid user correo from 118.24.121.240 port 32281 ssh2 Nov 3 06:54:17 localhost sshd\[1390\]: Invalid user webb666 from 118.24.121.240 Nov 3 06:54:17 localhost sshd\[1390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.121.240 ...	2019-11-03 15:17:08
92.118.161.29	attackspambots	118/tcp 8530/tcp 990/tcp... [2019-09-02/11-02]55pkt,39pt.(tcp),6pt.(udp)	2019-11-03 15:23:31
159.203.201.42	attackspambots	5901/tcp 23669/tcp 55140/tcp... [2019-09-13/11-01]49pkt,43pt.(tcp),1pt.(udp)	2019-11-03 15:21:18
118.160.93.122	attackbots	Lines containing failures of 118.160.93.122 Nov 3 06:25:07 shared10 postfix/smtpd[9161]: connect from 118-160-93-122.dynamic-ip.hinet.net[118.160.93.122] Nov 3 06:25:08 shared10 policyd-spf[16056]: prepend Received-SPF: None (mailfrom) identhostnamey=mailfrom; client-ip=118.160.93.122; helo=118-160-93-122.dynamic-ip.hinet.net; envelope-from=x@x Nov x@x Nov 3 06:25:08 shared10 postfix/smtpd[9161]: lost connection after DATA from 118-160-93-122.dynamic-ip.hinet.net[118.160.93.122] Nov 3 06:25:08 shared10 postfix/smtpd[9161]: disconnect from 118-160-93-122.dynamic-ip.hinet.net[118.160.93.122] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.160.93.122	2019-11-03 14:57:07
202.144.134.179	attackbotsspam	Invalid user yuanwd from 202.144.134.179 port 22324	2019-11-03 15:17:36
173.239.37.139	attackbots	Nov 3 08:46:10 server sshd\[28464\]: Invalid user nr from 173.239.37.139 Nov 3 08:46:10 server sshd\[28464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.239.37.139 Nov 3 08:46:12 server sshd\[28464\]: Failed password for invalid user nr from 173.239.37.139 port 32976 ssh2 Nov 3 08:54:10 server sshd\[30441\]: Invalid user tcloud from 173.239.37.139 Nov 3 08:54:10 server sshd\[30441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.239.37.139 ...	2019-11-03 15:23:09
185.175.93.21	attackbots	11/03/2019-01:54:42.974565 185.175.93.21 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-03 15:04:44
185.37.27.120	attackbotsspam	Nov 3 06:37:40 mxgate1 postfix/postscreen[3401]: CONNECT from [185.37.27.120]:18508 to [176.31.12.44]:25 Nov 3 06:37:40 mxgate1 postfix/dnsblog[3405]: addr 185.37.27.120 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 3 06:37:40 mxgate1 postfix/dnsblog[3405]: addr 185.37.27.120 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 3 06:37:40 mxgate1 postfix/dnsblog[3406]: addr 185.37.27.120 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 3 06:37:40 mxgate1 postfix/dnsblog[3403]: addr 185.37.27.120 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 3 06:37:46 mxgate1 postfix/postscreen[3401]: DNSBL rank 4 for [185.37.27.120]:18508 Nov x@x Nov 3 06:37:47 mxgate1 postfix/postscreen[3401]: HANGUP after 0.33 from [185.37.27.120]:18508 in tests after SMTP handshake Nov 3 06:37:47 mxgate1 postfix/postscreen[3401]: DISCONNECT [185.37.27.120]:18508 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.37.27.120	2019-11-03 15:25:08

Recently Reported IPs

91.150.146.161	184.82.110.165	65.191.149.38	32.97.174.196
159.203.64.91	182.244.196.167	115.194.223.111	39.186.178.138
150.125.159.45	52.188.139.247	164.108.125.41	192.241.237.107
1.89.225.27	207.14.24.153	58.115.129.201	210.51.241.248
115.54.225.38	184.82.108.216	64.58.197.11	52.173.203.83