200.105.194.242

Basic Info

City: unknown

Region: unknown

Country: Bolivia

Internet Service Provider: Axs Bolivia S. A.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Aug 26 04:50:41 django-0 sshd[20597]: Invalid user teamspeak from 200.105.194.242 ...	2020-08-26 14:14:40
attack	Aug 13 06:04:12 havingfunrightnow sshd[29849]: Failed password for root from 200.105.194.242 port 34693 ssh2 Aug 13 06:16:32 havingfunrightnow sshd[30251]: Failed password for root from 200.105.194.242 port 19297 ssh2 ...	2020-08-13 16:12:18
attack	Aug 3 04:57:53 game-panel sshd[10934]: Failed password for root from 200.105.194.242 port 21904 ssh2 Aug 3 05:02:42 game-panel sshd[11132]: Failed password for root from 200.105.194.242 port 1546 ssh2	2020-08-03 14:24:26
attack	$f2bV_matches	2020-08-02 15:15:24
attackbotsspam	Jul 30 05:29:56 ip-172-31-62-245 sshd\[18017\]: Invalid user ofisher from 200.105.194.242\ Jul 30 05:29:58 ip-172-31-62-245 sshd\[18017\]: Failed password for invalid user ofisher from 200.105.194.242 port 49329 ssh2\ Jul 30 05:34:20 ip-172-31-62-245 sshd\[18085\]: Invalid user doxjal from 200.105.194.242\ Jul 30 05:34:22 ip-172-31-62-245 sshd\[18085\]: Failed password for invalid user doxjal from 200.105.194.242 port 19554 ssh2\ Jul 30 05:38:42 ip-172-31-62-245 sshd\[18137\]: Invalid user fuyujie from 200.105.194.242\	2020-07-30 14:20:07
attackspam	2020-07-24T11:33:23.866362ionos.janbro.de sshd[38987]: Invalid user dalia from 200.105.194.242 port 4326 2020-07-24T11:33:26.434434ionos.janbro.de sshd[38987]: Failed password for invalid user dalia from 200.105.194.242 port 4326 ssh2 2020-07-24T11:33:49.364956ionos.janbro.de sshd[38989]: Invalid user milutinovic from 200.105.194.242 port 45698 2020-07-24T11:33:49.468049ionos.janbro.de sshd[38989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 2020-07-24T11:33:49.364956ionos.janbro.de sshd[38989]: Invalid user milutinovic from 200.105.194.242 port 45698 2020-07-24T11:33:51.163134ionos.janbro.de sshd[38989]: Failed password for invalid user milutinovic from 200.105.194.242 port 45698 ssh2 2020-07-24T11:34:14.154464ionos.janbro.de sshd[38991]: Invalid user x from 200.105.194.242 port 63285 2020-07-24T11:34:14.264446ionos.janbro.de sshd[38991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost= ...	2020-07-24 20:28:15
attack	Jul 16 18:36:40 lnxded63 sshd[32313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 Jul 16 18:36:42 lnxded63 sshd[32313]: Failed password for invalid user oracle from 200.105.194.242 port 8154 ssh2 Jul 16 18:40:57 lnxded63 sshd[339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242	2020-07-17 01:13:43
attackbots	Jul 11 20:04:01 h2865660 sshd[1469]: Invalid user xushan from 200.105.194.242 port 37740 Jul 11 20:04:01 h2865660 sshd[1469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 Jul 11 20:04:01 h2865660 sshd[1469]: Invalid user xushan from 200.105.194.242 port 37740 Jul 11 20:04:03 h2865660 sshd[1469]: Failed password for invalid user xushan from 200.105.194.242 port 37740 ssh2 Jul 11 20:15:29 h2865660 sshd[2066]: Invalid user leroy from 200.105.194.242 port 52034 ...	2020-07-12 03:33:56
attack	Jun 20 20:15:28 abendstille sshd\[32202\]: Invalid user m1 from 200.105.194.242 Jun 20 20:15:28 abendstille sshd\[32202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 Jun 20 20:15:30 abendstille sshd\[32202\]: Failed password for invalid user m1 from 200.105.194.242 port 32866 ssh2 Jun 20 20:19:02 abendstille sshd\[3467\]: Invalid user gts from 200.105.194.242 Jun 20 20:19:02 abendstille sshd\[3467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 ...	2020-06-21 02:31:39
attack	2020-06-14T00:10:00.749176rocketchat.forhosting.nl sshd[16911]: Invalid user oracle from 200.105.194.242 port 57036 2020-06-14T00:10:02.839707rocketchat.forhosting.nl sshd[16911]: Failed password for invalid user oracle from 200.105.194.242 port 57036 ssh2 2020-06-14T00:14:02.545815rocketchat.forhosting.nl sshd[16957]: Invalid user cent from 200.105.194.242 port 48810 ...	2020-06-14 07:54:21
attackbotsspam	2020-06-06T07:18:34.322761vps751288.ovh.net sshd\[3525\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 user=root 2020-06-06T07:18:35.770325vps751288.ovh.net sshd\[3525\]: Failed password for root from 200.105.194.242 port 11178 ssh2 2020-06-06T07:21:57.708668vps751288.ovh.net sshd\[3531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 user=root 2020-06-06T07:21:59.025600vps751288.ovh.net sshd\[3531\]: Failed password for root from 200.105.194.242 port 63323 ssh2 2020-06-06T07:25:17.065275vps751288.ovh.net sshd\[3557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 user=root	2020-06-06 14:33:50
attackbots	$f2bV_matches	2020-05-20 23:51:31
attackbotsspam	DATE:2020-05-14 17:48:12, IP:200.105.194.242, PORT:ssh SSH brute force auth (docker-dc)	2020-05-15 03:06:48
attackspam	$f2bV_matches	2020-05-10 18:37:43
attackbotsspam	detected by Fail2Ban	2020-05-09 22:49:56
attack	May 8 01:49:24 vpn01 sshd[29261]: Failed password for root from 200.105.194.242 port 47404 ssh2 May 8 02:01:25 vpn01 sshd[29592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.194.242 ...	2020-05-08 08:24:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.105.194.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9409
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.105.194.242.		IN	A

;; AUTHORITY SECTION:
.			327	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050502 1800 900 604800 86400

;; Query time: 165 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 06 09:52:16 CST 2020
;; MSG SIZE  rcvd: 119

Host info

242.194.105.200.in-addr.arpa domain name pointer mail.sonilum.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.194.105.200.in-addr.arpa	name = mail.sonilum.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.145	attack	$f2bV_matches	2020-01-24 23:24:48
120.132.22.92	attackspambots	Unauthorized connection attempt detected from IP address 120.132.22.92 to port 2220 [J]	2020-01-25 00:04:12
64.31.255.73	attackspambots	1579869380 - 01/24/2020 13:36:20 Host: 64.31.255.73/64.31.255.73 Port: 445 TCP Blocked	2020-01-24 23:46:15
122.51.41.57	attackspambots	Jan 24 05:47:46 eddieflores sshd\[23678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.41.57 user=root Jan 24 05:47:48 eddieflores sshd\[23678\]: Failed password for root from 122.51.41.57 port 34966 ssh2 Jan 24 05:53:36 eddieflores sshd\[24581\]: Invalid user user2 from 122.51.41.57 Jan 24 05:53:36 eddieflores sshd\[24581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.41.57 Jan 24 05:53:38 eddieflores sshd\[24581\]: Failed password for invalid user user2 from 122.51.41.57 port 34166 ssh2	2020-01-24 23:57:20
222.186.173.226	attackspambots	SSH Brute Force, server-1 sshd[20071]: Failed password for root from 222.186.173.226 port 14874 ssh2	2020-01-24 23:36:06
187.19.186.164	attack	DATE:2020-01-24 13:36:29, IP:187.19.186.164, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-01-24 23:50:40
42.188.163.140	attackspambots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-01-24 23:28:29
128.199.177.16	attack	Unauthorized connection attempt detected from IP address 128.199.177.16 to port 2220 [J]	2020-01-24 23:56:37
121.122.64.101	attack	Unauthorized connection attempt from IP address 121.122.64.101 on Port 445(SMB)	2020-01-24 23:40:56
106.12.31.173	attackspambots	Unauthorized connection attempt detected from IP address 106.12.31.173 to port 22 [T]	2020-01-24 23:52:07
154.221.18.90	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2020-01-24 23:43:49
138.97.147.4	attackbots	Unauthorized connection attempt detected from IP address 138.97.147.4 to port 80 [J]	2020-01-24 23:40:23
169.255.127.152	attackspam	1433/tcp [2020-01-24]1pkt	2020-01-25 00:02:46
51.77.161.86	attack	$f2bV_matches	2020-01-24 23:54:46
45.140.207.197	attackspam	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-01-24 23:23:14

Recently Reported IPs

3.17.14.64	183.66.66.214	195.68.173.29	27.72.57.149
164.163.23.19	5.157.177.53	167.172.232.41	152.115.121.134
103.229.84.226	41.190.232.36	125.72.209.78	131.108.164.113
242.216.74.132	170.106.50.166	175.221.7.193	185.129.50.184
207.179.208.223	40.219.55.205	153.107.48.189	50.243.216.235