Another one from the daily Botnet Statistics, http://toolbar.netcraft.com/site_report?url=http://125.16.12.146
Problem: The remote name could not be resolved: ‘125.16.12.146’
It is on an exploits blocklist.
Complaint: Email Spam
This IP address has been detected in email spam. Site owners must clean their email list to avoid being blacklisted by ISP. MailBoxValidator.com offers paid services that will clean, validate and verify email address database.
Reported on 07 Aug, 2015 03:04:00 AM Listed here: http://pastebin.com/a2AhgM0Q → OpenSSH 5.3 (protocol 2.0)
| ssh-hostkey:
polonus
Another one on a exploits block list with a web risk status of 9 red out of 10: http://toolbar.netcraft.com/site_report?url=http://41.137.56.4
Flagged red twice by WOT: https://www.mywot.com/en/scorecard/41.137.56.4?utm_source=addon&utm_content=rw-viewsc
Issues, viruses, spam, empty response received
An empty response was received from the URL you entered. Are you sure the site is up and requests from ASafaWeb are not being blocked by an intrusion protection system? I have vearious block lists incorporated in my uBlock Origin add-on.
With the rendered hostname for that IP a scan is more secure: http://toolbar.netcraft.com/site_report?url=dynamic.rabatp1-4-56-137-41.wanamaroc.com → http://whois.domaintools.com/wanamaroc.com
DNS delegation problems. https://www.robtex.net/#!dns=dynamic.rabatp1-4-56-137-41.wanamaroc.com
Name server -loukos2.wanacorp.com
Name server -ns1.wanamaroc.com
Name server -ns3.wanadoo.ma
Name server -ns3.wanamaroc.com
For spam abuse listed, see: http://www.dnsqueries.com/en/check_banned_ip.php
Exploitable Server See: http://www.sorbs.net/lookup.shtml?41.137.56.4
Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml?41.137.56.4
Blocked - see http://www.spamcop.net/bl.shtml?41.137.56.4
Listed in PSBL, see http://psbl.org/listing?ip=41.137.56.4
together with various Spamhaus Listings where the IP appears!
polonus