191.37.19.122 Threat Intelligence and Host Information

Apr 06, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 191.37.19.122 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: bruteforce, cyber security, digital ocean, ioc, malicious, Nextray, phishing, telnet

  • View other sources: Spamhaus VirusTotal

  • Country: Brazil
  • Network:
  • Noticed: 30 times
  • Protocols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Open Ports Detected

8090

Map

Whois Information

  • inetnum: 191.37.16.0/21
  • aut-num: AS263349
  • abuse-c: RALTD19
  • owner: RapeedoISP LTDA
  • ownerid: 10.403.034/0001-80
  • responsible: JOSE GOMES COSTA JUNIOR
  • country: BR
  • owner-c: RALTD19
  • tech-c: RALTD19
  • inetrev: 191.37.16.0/21
  • nserver: ns1.rapeedo.net.br
  • nsstat: 20250401 AA
  • nslastaa: 20250401
  • nserver: ns2.rapeedo.net.br
  • nsstat: 20250401 AA
  • nslastaa: 20250401
  • dsinetrev: 191.37.16.0/24
  • dsrecord: 2171 ECDSA-SHA-256 19D07B0123316B456A4F6820B551490FC4FE31B7106FDAC2BE352F6B2F032740
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.17.0/24
  • dsrecord: 8336 ECDSA-SHA-256 CD48E1E6D9C8BC88D10FE57CA54BB71057521BE0335D4290D2DA4B0D65908FBD
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.18.0/24
  • dsrecord: 53067 ECDSA-SHA-256 FFE7C2BED24BFF3678A6517B777734BCBED641A343BCD68D89CCEBDE5D8B0ECD
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.19.0/24
  • dsrecord: 18659 ECDSA-SHA-256 AD67513C8C85FB3962F84A81A1853A686FAFCAAFD2A95D082563C846D2719438
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.20.0/24
  • dsrecord: 35918 ECDSA-SHA-256 A53F7C99F40A16CEF89F740B12A52AE267D0EC82B0886320DD7BD412B07B0CD7
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.21.0/24
  • dsrecord: 33842 ECDSA-SHA-256 D674D7680FC1A58EA254C023917217E4E82813BBFB68BC12E30404A117DFEDA7
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.22.0/24
  • dsrecord: 26501 ECDSA-SHA-256 8B33A4ABDC09A479F25D4D2D115B67AECD56DDD8BD36AB0B33F39F6D7089BBC0
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • dsinetrev: 191.37.23.0/24
  • dsrecord: 63922 ECDSA-SHA-256 B0DCC8B5DA439BFE25B359BCB3B31A617ABB8B965D997E0D2C70BFC710CA705A
  • dsstatus: 20250401 OK
  • dslastok: 20250401
  • created: 20140317
  • changed: 20140317
  • nic-hdl-br: RALTD19
  • person: RAPEEDO LTDA
  • e-mail: jhonne@rapeedo.com.br
  • country: BR
  • created: 20131028
  • changed: 20250404

Links to attack logs

****** ****** dotoronto-telnet-bruteforce-ip-list-2023-04-29 ******

Share on: