200.122.241.42

Basic Info

City: unknown

Region: unknown

Country: Colombia

Internet Service Provider: EPM Telecomunicaciones S.A. E.S.P.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt from IP address 200.122.241.42 on Port 445(SMB)	2020-01-24 22:57:48
attackspambots	Unauthorised access (Nov 21) SRC=200.122.241.42 LEN=52 TTL=115 ID=27851 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 21) SRC=200.122.241.42 LEN=52 TTL=115 ID=11458 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-22 00:50:58

Type

Details

Datetime

attackspambots

Unauthorized connection attempt from IP address 200.122.241.42 on Port 445(SMB)

2020-01-24 22:57:48

attackspambots

Unauthorised access (Nov 21) SRC=200.122.241.42 LEN=52 TTL=115 ID=27851 DF TCP DPT=445 WINDOW=8192 SYN 
Unauthorised access (Nov 21) SRC=200.122.241.42 LEN=52 TTL=115 ID=11458 DF TCP DPT=445 WINDOW=8192 SYN

2019-11-22 00:50:58

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.122.241.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.122.241.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052700 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon May 27 16:53:01 CST 2019
;; MSG SIZE  rcvd: 118

Host info

42.241.122.200.in-addr.arpa domain name pointer clinicapalermo.com.co.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
42.241.122.200.in-addr.arpa	name = clinicapalermo.com.co.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.167.126.126	attackbots	Failed password for invalid user zhangx from 180.167.126.126 port 36816 ssh2	2020-07-16 05:38:24
83.40.191.193	attackbotsspam	Automatic report - Banned IP Access	2020-07-16 05:40:37
52.163.240.162	attackbotsspam	Jul 15 00:35:12 sip sshd[3151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.163.240.162 Jul 15 00:35:14 sip sshd[3151]: Failed password for invalid user admin from 52.163.240.162 port 62411 ssh2 Jul 15 22:25:06 sip sshd[8119]: Failed password for bin from 52.163.240.162 port 48978 ssh2	2020-07-16 05:18:59
81.183.222.181	attackbots	Jul 15 21:36:38 IngegnereFirenze sshd[15635]: Failed password for invalid user megan from 81.183.222.181 port 40172 ssh2 ...	2020-07-16 05:45:18
191.232.198.235	attackbotsspam	SSH Invalid Login	2020-07-16 05:50:06
116.108.176.228	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-16 05:18:07
104.211.203.197	attack	Jul 15 21:38:33 vm1 sshd[14500]: Failed password for root from 104.211.203.197 port 8466 ssh2 ...	2020-07-16 05:52:15
63.240.240.74	attack	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.240.240.74 Failed password for invalid user myang from 63.240.240.74 port 35905 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.240.240.74	2020-07-16 05:22:22
185.20.218.150	attack	Jul 15 23:17:57 mout sshd[7832]: Invalid user sybase from 185.20.218.150 port 36220 Jul 15 23:17:59 mout sshd[7832]: Failed password for invalid user sybase from 185.20.218.150 port 36220 ssh2 Jul 15 23:18:01 mout sshd[7832]: Disconnected from invalid user sybase 185.20.218.150 port 36220 [preauth]	2020-07-16 05:53:19
68.183.231.225	attackspam	Automatic report - XMLRPC Attack	2020-07-16 05:41:00
52.249.248.129	attack	Auto Detect Rule! proto TCP (SYN), 52.249.248.129:55729->gjan.info:22, len 40	2020-07-16 05:15:08
92.63.197.70	attackbotsspam	Jul 15 22:56:26 debian-2gb-nbg1-2 kernel: \[17105149.238690\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.63.197.70 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=6620 PROTO=TCP SPT=44665 DPT=1111 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-16 05:27:49
49.206.25.57	attack	Unauthorised access (Jul 15) SRC=49.206.25.57 LEN=52 TTL=114 ID=4242 DF TCP DPT=445 WINDOW=8192 SYN	2020-07-16 05:30:56
104.158.223.41	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2020-07-16 05:35:38
147.135.253.94	attackbots	[2020-07-15 17:23:37] NOTICE[1277] chan_sip.c: Registration from '' failed for '147.135.253.94:49950' - Wrong password [2020-07-15 17:23:37] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-15T17:23:37.483-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1504",SessionID="0x7f175404d338",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/147.135.253.94/49950",Challenge="36c1ee50",ReceivedChallenge="36c1ee50",ReceivedHash="d07ed6cda4558dd23e643ecf06af7fdd" [2020-07-15 17:24:43] NOTICE[1277] chan_sip.c: Registration from '' failed for '147.135.253.94:55562' - Wrong password [2020-07-15 17:24:43] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-15T17:24:43.083-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1505",SessionID="0x7f175404ea18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/147.135.25 ...	2020-07-16 05:47:09

Recently Reported IPs

68.183.22.86	118.42.125.170	157.21.182.32	125.212.219.42
82.133.0.50	117.50.63.9	226.193.16.215	45.55.167.217
184.105.139.115	195.154.61.206	128.106.131.145	185.165.123.165
183.88.135.85	208.96.137.66	199.195.251.37	186.249.231.74
175.184.248.229	173.177.190.90	171.25.175.17	72.45.101.200