200.114.1.39 - IPInfo

Basic Info

City: Bucaramanga

Region: Departamento de Santander

Country: Colombia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
200.114.100.99	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 14-03-2020 03:55:10.	2020-03-14 13:16:45
200.114.11.217	attackbots	DATE:2020-03-05 15:01:28, IP:200.114.11.217, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-03-05 23:01:23
200.114.103.222	attackspambots	2019-06-21 19:43:27 1heNZN-0003wK-WB SMTP connection from \(\[200.114.103.222\]\) \[200.114.103.222\]:48133 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 19:43:36 1heNZX-0003wX-4u SMTP connection from \(\[200.114.103.222\]\) \[200.114.103.222\]:48219 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 19:43:42 1heNZc-0003wm-PE SMTP connection from \(\[200.114.103.222\]\) \[200.114.103.222\]:48272 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 00:53:36
200.114.104.9	attackbotsspam	2019-07-07 02:41:06 1hjvEn-0000Rt-Fr SMTP connection from \(jumba.cescom.net.ar\) \[200.114.104.9\]:10036 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 02:41:09 1hjvEq-0000Ru-5d SMTP connection from \(jumba.cescom.net.ar\) \[200.114.104.9\]:10054 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 02:41:11 1hjvEs-0000Rz-Q0 SMTP connection from \(jumba.cescom.net.ar\) \[200.114.104.9\]:10068 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 00:53:01
200.114.149.31	attackspam	Unauthorized connection attempt detected from IP address 200.114.149.31 to port 8081 [J]	2020-01-25 20:42:17
200.114.157.66	attackspam	unauthorized connection attempt	2020-01-09 17:05:44
200.114.118.54	attack	Unauthorized connection attempt detected from IP address 200.114.118.54 to port 23 [J]	2020-01-07 17:16:51
200.114.194.24	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-03 16:57:32
200.114.166.126	attackbots	Automatic report - Port Scan Attack	2019-12-10 15:08:46
200.114.11.217	attackspam	Honeypot attack, port: 81, PTR: ic-corporativo-200-114-11-217.intercable.net.co.	2019-11-05 05:44:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.114.1.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12547
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.114.1.39.			IN	A

;; AUTHORITY SECTION:
.			399	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 594 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 03:36:28 CST 2020
;; MSG SIZE  rcvd: 116

Host info

39.1.114.200.in-addr.arpa domain name pointer ic-corporativo-200-114-1-39.intercable.net.co.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
39.1.114.200.in-addr.arpa	name = ic-corporativo-200-114-1-39.intercable.net.co.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.12.204	attackbotsspam	Nov 12 23:59:18 srv3 sshd\[29519\]: Invalid user maryse from 159.65.12.204 Nov 12 23:59:18 srv3 sshd\[29519\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.12.204 Nov 12 23:59:20 srv3 sshd\[29519\]: Failed password for invalid user maryse from 159.65.12.204 port 56722 ssh2 ...	2019-11-13 13:10:49
128.199.100.225	attackspambots	2019-11-13T05:35:43.767192abusebot-6.cloudsearch.cf sshd\[25681\]: Invalid user cristian from 128.199.100.225 port 50056	2019-11-13 13:50:32
61.74.118.139	attackspambots	Nov 12 18:55:00 auw2 sshd\[2630\]: Invalid user newyork from 61.74.118.139 Nov 12 18:55:00 auw2 sshd\[2630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139 Nov 12 18:55:02 auw2 sshd\[2630\]: Failed password for invalid user newyork from 61.74.118.139 port 46842 ssh2 Nov 12 18:59:12 auw2 sshd\[2981\]: Invalid user football from 61.74.118.139 Nov 12 18:59:12 auw2 sshd\[2981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139	2019-11-13 13:13:08
200.205.202.35	attackspam	Nov 13 10:06:45 gw1 sshd[4494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.205.202.35 Nov 13 10:06:47 gw1 sshd[4494]: Failed password for invalid user garaia from 200.205.202.35 port 54508 ssh2 ...	2019-11-13 13:26:20
111.230.19.43	attackbots	Nov 13 05:27:35 wh01 sshd[2755]: Invalid user berkly from 111.230.19.43 port 41054 Nov 13 05:27:35 wh01 sshd[2755]: Failed password for invalid user berkly from 111.230.19.43 port 41054 ssh2 Nov 13 05:27:35 wh01 sshd[2755]: Received disconnect from 111.230.19.43 port 41054:11: Bye Bye [preauth] Nov 13 05:27:35 wh01 sshd[2755]: Disconnected from 111.230.19.43 port 41054 [preauth] Nov 13 05:47:32 wh01 sshd[4280]: Invalid user guest from 111.230.19.43 port 59268 Nov 13 05:47:32 wh01 sshd[4280]: Failed password for invalid user guest from 111.230.19.43 port 59268 ssh2 Nov 13 06:12:01 wh01 sshd[6054]: Failed password for root from 111.230.19.43 port 36616 ssh2 Nov 13 06:12:01 wh01 sshd[6054]: Received disconnect from 111.230.19.43 port 36616:11: Bye Bye [preauth] Nov 13 06:12:01 wh01 sshd[6054]: Disconnected from 111.230.19.43 port 36616 [preauth] Nov 13 06:18:59 wh01 sshd[6514]: Invalid user adelinde from 111.230.19.43 port 43506 Nov 13 06:18:59 wh01 sshd[6514]: Failed password for invalid	2019-11-13 13:49:46
94.176.17.27	attackbotsspam	(Nov 13) LEN=60 TTL=116 ID=26149 DF TCP DPT=445 WINDOW=8192 SYN (Nov 13) LEN=60 TTL=114 ID=13322 DF TCP DPT=445 WINDOW=8192 SYN (Nov 13) LEN=60 TTL=114 ID=1622 DF TCP DPT=445 WINDOW=8192 SYN (Nov 12) LEN=60 TTL=114 ID=1232 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 12) LEN=60 TTL=116 ID=1555 DF TCP DPT=445 WINDOW=8192 SYN (Nov 12) LEN=60 TTL=116 ID=4515 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 12) LEN=60 TTL=114 ID=12754 DF TCP DPT=1433 WINDOW=8192 SYN (Nov 12) LEN=60 TTL=116 ID=16085 DF TCP DPT=445 WINDOW=8192 SYN (Nov 11) LEN=60 TTL=115 ID=25282 DF TCP DPT=445 WINDOW=8192 SYN (Nov 11) LEN=60 TTL=115 ID=20399 DF TCP DPT=445 WINDOW=8192 SYN (Nov 11) LEN=60 TTL=113 ID=24666 DF TCP DPT=1433 WINDOW=8192 SYN	2019-11-13 13:35:27
200.69.236.112	attack	Nov 13 05:59:06 tuxlinux sshd[48008]: Invalid user pisy from 200.69.236.112 port 43792 Nov 13 05:59:06 tuxlinux sshd[48008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.236.112 Nov 13 05:59:06 tuxlinux sshd[48008]: Invalid user pisy from 200.69.236.112 port 43792 Nov 13 05:59:06 tuxlinux sshd[48008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.236.112 ...	2019-11-13 13:16:14
115.49.122.213	attackbots	Telnet Server BruteForce Attack	2019-11-13 13:11:28
217.182.196.164	attackbots	11/13/2019-05:59:13.753121 217.182.196.164 Protocol: 17 ET SCAN Sipvicious Scan	2019-11-13 13:13:21
5.253.204.29	attack	(From rodgerhoorp@outlook.com) Buy very rare high ahrefs SEO metrics score backlinks. Manual backlinks placed on quality websites which have high UR and DR ahrefs score. Order today while we can offer this service, Limited time offer. more info: https://www.monkeydigital.co/product/high-ahrefs-backlinks/ thanks Monkey Digital Team 200 high aHrefs UR DR backlinks – Monkey Digital https://www.monkeydigital.co	2019-11-13 13:37:50
62.234.154.56	attackbotsspam	Nov 13 06:35:54 vps01 sshd[17423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.154.56 Nov 13 06:35:56 vps01 sshd[17423]: Failed password for invalid user web from 62.234.154.56 port 44256 ssh2	2019-11-13 13:39:35
14.56.180.103	attackbotsspam	Nov 12 18:54:26 web9 sshd\[2900\]: Invalid user exec from 14.56.180.103 Nov 12 18:54:26 web9 sshd\[2900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.56.180.103 Nov 12 18:54:27 web9 sshd\[2900\]: Failed password for invalid user exec from 14.56.180.103 port 48054 ssh2 Nov 12 18:59:04 web9 sshd\[3594\]: Invalid user lisa from 14.56.180.103 Nov 12 18:59:04 web9 sshd\[3594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.56.180.103	2019-11-13 13:16:45
51.77.194.241	attackspam	5x Failed Password	2019-11-13 13:38:11
190.1.203.180	attackbotsspam	Automatic report - Banned IP Access	2019-11-13 13:20:08
116.22.133.179	attackspam	Brute force SMTP login attempts.	2019-11-13 13:23:08

Recently Reported IPs

56.158.29.110	66.222.52.192	208.17.25.31	103.25.243.2
155.158.252.43	104.220.91.31	172.89.27.210	69.54.228.117
156.215.119.200	70.145.26.169	103.138.145.2	194.111.70.209
31.164.67.220	103.138.5.3	140.177.136.56	203.107.10.5
32.99.40.194	91.250.114.180	87.242.248.241	101.89.112.1