85.245.170.28 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: PT Comunicacoes S.A.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	445/tcp [2019-07-08]1pkt	2019-07-09 04:23:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.245.170.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39635
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.245.170.28.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 09 04:23:09 CST 2019
;; MSG SIZE  rcvd: 117

Host info

28.170.245.85.in-addr.arpa domain name pointer bl12-170-28.dsl.telepac.pt.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
28.170.245.85.in-addr.arpa	name = bl12-170-28.dsl.telepac.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.72.34	attack	Jul 12 01:33:03 srv01 postfix/smtpd\[22349\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 01:33:41 srv01 postfix/smtpd\[29106\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 01:34:28 srv01 postfix/smtpd\[20066\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 01:35:10 srv01 postfix/smtpd\[26921\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 01:35:53 srv01 postfix/smtpd\[26921\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-12 07:39:45
222.186.15.115	attackbotsspam	2020-07-11T23:26:42.799384shield sshd\[13973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root 2020-07-11T23:26:44.686306shield sshd\[13973\]: Failed password for root from 222.186.15.115 port 26007 ssh2 2020-07-11T23:26:47.421796shield sshd\[13973\]: Failed password for root from 222.186.15.115 port 26007 ssh2 2020-07-11T23:26:49.227781shield sshd\[13973\]: Failed password for root from 222.186.15.115 port 26007 ssh2 2020-07-11T23:26:51.928244shield sshd\[14029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root	2020-07-12 07:33:03
192.99.135.113	attack	2020-07-12T09:25:02.623209luisaranguren sshd[748100]: Invalid user akshaj from 192.99.135.113 port 61089 2020-07-12T09:25:05.099297luisaranguren sshd[748100]: Failed password for invalid user akshaj from 192.99.135.113 port 61089 ssh2 ...	2020-07-12 07:42:30
54.37.154.248	attackbots	Jul 12 07:37:53 localhost sshd[3617840]: Invalid user zhangsan from 54.37.154.248 port 56512 ...	2020-07-12 07:38:51
201.210.237.99	attackspambots	(sshd) Failed SSH login from 201.210.237.99 (VE/Venezuela/201-210-237-99.genericrev.cantv.net): 5 in the last 3600 secs	2020-07-12 07:25:40
104.219.151.119	attackspambots	port scan and connect, tcp 23 (telnet)	2020-07-12 07:54:09
36.92.60.2	attackbotsspam	1594497879 - 07/11/2020 22:04:39 Host: 36.92.60.2/36.92.60.2 Port: 445 TCP Blocked	2020-07-12 07:41:00
183.88.176.254	attackspambots	Jul 11 13:46:25 lvps5-35-247-183 sshd[22821]: reveeclipse mapping checking getaddrinfo for mx-ll-183.88.176-254.dynamic.3bb.in.th [183.88.176.254] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 11 13:46:25 lvps5-35-247-183 sshd[22821]: Invalid user user from 183.88.176.254 Jul 11 13:46:25 lvps5-35-247-183 sshd[22821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.176.254 Jul 11 13:46:27 lvps5-35-247-183 sshd[22821]: Failed password for invalid user user from 183.88.176.254 port 50940 ssh2 Jul 11 13:46:27 lvps5-35-247-183 sshd[22821]: Received disconnect from 183.88.176.254: 11: Bye Bye [preauth] Jul 11 13:50:20 lvps5-35-247-183 sshd[22971]: Invalid user fw1 from 183.88.176.254 Jul 11 13:50:20 lvps5-35-247-183 sshd[22971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx-ll-183.88.176-254.dynamic.3bb.co.th Jul 11 13:50:22 lvps5-35-247-183 sshd[22971]: Failed password for invalid user fw........ -------------------------------	2020-07-12 07:29:06
123.59.195.245	attackbots	SSH Invalid Login	2020-07-12 07:57:09
128.106.1.6	attackspam	2020-07-12 01:09:28 auth_plain authenticator failed for (WIN-UI43U9B1EMD) [128.106.1.6]: 535 Incorrect authentication data (set_id=root) 2020-07-12 01:15:44 auth_plain authenticator failed for (WIN-UI43U9B1EMD) [128.106.1.6]: 535 Incorrect authentication data (set_id=root) ...	2020-07-12 07:52:49
168.194.80.73	attackspambots	Port probing on unauthorized port 23	2020-07-12 07:47:00
138.68.95.204	attack	TCP (SYN) 138.68.95.204:58539 -> port 23754, len 44	2020-07-12 08:01:44
213.32.78.219	attackspam	Jul 12 00:17:45 ajax sshd[3065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.78.219 Jul 12 00:17:47 ajax sshd[3065]: Failed password for invalid user yellowdog from 213.32.78.219 port 47820 ssh2	2020-07-12 07:45:36
212.70.149.51	attackspambots	Jul 11 16:56:49 pixelmemory postfix/smtpd[1848258]: warning: unknown[212.70.149.51]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 16:57:19 pixelmemory postfix/smtpd[1848258]: warning: unknown[212.70.149.51]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 16:57:49 pixelmemory postfix/smtpd[1848258]: warning: unknown[212.70.149.51]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 16:58:18 pixelmemory postfix/smtpd[1848258]: warning: unknown[212.70.149.51]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 16:58:48 pixelmemory postfix/smtpd[1848258]: warning: unknown[212.70.149.51]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-12 07:59:09
103.27.42.38	attackspambots	Jul 11 21:52:50 server770 sshd[18992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.42.38 user=r.r Jul 11 21:52:52 server770 sshd[18992]: Failed password for r.r from 103.27.42.38 port 48775 ssh2 Jul 11 21:52:52 server770 sshd[18992]: Connection closed by 103.27.42.38 port 48775 [preauth] Jul 11 21:52:54 server770 sshd[18994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.27.42.38 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.27.42.38	2020-07-12 08:02:56

Recently Reported IPs

76.94.177.2	3.85.5.83	151.235.153.210	22.33.16.41
24.209.169.138	24.145.198.166	168.195.180.54	153.22.100.194
11.97.51.228	200.72.249.126	0.191.46.155	146.115.199.198
49.68.179.145	52.185.164.233	215.31.154.54	95.55.153.205
186.0.181.145	93.192.94.131	36.229.9.88	23.225.121.231