200.131.242.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Associacao Rede Nacional de Ensino e Pesquisa

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user students from 200.131.242.2 port 61603	2019-10-20 01:54:03
attack	Oct 18 17:03:44 ip-172-31-62-245 sshd\[18122\]: Invalid user qmhuang from 200.131.242.2\ Oct 18 17:03:46 ip-172-31-62-245 sshd\[18122\]: Failed password for invalid user qmhuang from 200.131.242.2 port 5827 ssh2\ Oct 18 17:08:22 ip-172-31-62-245 sshd\[18177\]: Invalid user edx from 200.131.242.2\ Oct 18 17:08:24 ip-172-31-62-245 sshd\[18177\]: Failed password for invalid user edx from 200.131.242.2 port 24746 ssh2\ Oct 18 17:12:54 ip-172-31-62-245 sshd\[18310\]: Invalid user vrangsagen from 200.131.242.2\	2019-10-19 01:25:51
attackspambots	Oct 15 11:01:38 hcbbdb sshd\[28646\]: Invalid user ce from 200.131.242.2 Oct 15 11:01:38 hcbbdb sshd\[28646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Oct 15 11:01:40 hcbbdb sshd\[28646\]: Failed password for invalid user ce from 200.131.242.2 port 15833 ssh2 Oct 15 11:06:21 hcbbdb sshd\[29150\]: Invalid user eleve from 200.131.242.2 Oct 15 11:06:21 hcbbdb sshd\[29150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2	2019-10-15 19:06:56
attackbots	2019-10-12T14:46:23.276930abusebot-7.cloudsearch.cf sshd\[11519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 user=root	2019-10-13 01:27:01
attackbotsspam	Oct 10 12:54:31 wbs sshd\[29529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 user=root Oct 10 12:54:33 wbs sshd\[29529\]: Failed password for root from 200.131.242.2 port 11705 ssh2 Oct 10 12:59:09 wbs sshd\[29931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 user=root Oct 10 12:59:11 wbs sshd\[29931\]: Failed password for root from 200.131.242.2 port 22641 ssh2 Oct 10 13:03:40 wbs sshd\[30337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 user=root	2019-10-11 07:12:27
attackspam	2019-10-10T05:57:22.183249abusebot-2.cloudsearch.cf sshd\[11551\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 user=root	2019-10-10 14:18:39
attackspambots	Oct 5 06:00:08 webhost01 sshd[10127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Oct 5 06:00:10 webhost01 sshd[10127]: Failed password for invalid user 2wsx#EDC4rfv from 200.131.242.2 port 54400 ssh2 ...	2019-10-05 07:26:38
attackspam	Sep 30 12:31:20 meumeu sshd[6316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Sep 30 12:31:22 meumeu sshd[6316]: Failed password for invalid user kevin from 200.131.242.2 port 48992 ssh2 Sep 30 12:35:54 meumeu sshd[7004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 ...	2019-09-30 18:39:06
attack	Sep 23 21:58:34 web8 sshd\[15627\]: Invalid user inx from 200.131.242.2 Sep 23 21:58:34 web8 sshd\[15627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Sep 23 21:58:36 web8 sshd\[15627\]: Failed password for invalid user inx from 200.131.242.2 port 17409 ssh2 Sep 23 22:03:01 web8 sshd\[17852\]: Invalid user helpdesk from 200.131.242.2 Sep 23 22:03:01 web8 sshd\[17852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2	2019-09-24 06:17:51
attackspambots	Sep 23 15:44:01 [host] sshd[2223]: Invalid user zabbix from 200.131.242.2 Sep 23 15:44:01 [host] sshd[2223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Sep 23 15:44:03 [host] sshd[2223]: Failed password for invalid user zabbix from 200.131.242.2 port 2025 ssh2	2019-09-23 22:28:54
attackspambots	$f2bV_matches	2019-08-29 18:16:17
attackbotsspam	Port Scan detected from 200.131.242.2 (BR/Brazil/-). 4 hits in the last 171 seconds	2019-08-26 18:54:11
attackbotsspam	Lines containing failures of 200.131.242.2 (max 1000) Aug 25 06:48:02 localhost sshd[27112]: Invalid user pos2 from 200.131.242.2 port 14488 Aug 25 06:48:02 localhost sshd[27112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Aug 25 06:48:04 localhost sshd[27112]: Failed password for invalid user pos2 from 200.131.242.2 port 14488 ssh2 Aug 25 06:48:06 localhost sshd[27112]: Received disconnect from 200.131.242.2 port 14488:11: Bye Bye [preauth] Aug 25 06:48:06 localhost sshd[27112]: Disconnected from invalid user pos2 200.131.242.2 port 14488 [preauth] Aug 25 07:00:24 localhost sshd[29953]: Invalid user jk from 200.131.242.2 port 48358 Aug 25 07:00:24 localhost sshd[29953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.131.242.2 Aug 25 07:00:26 localhost sshd[29953]: Failed password for invalid user jk from 200.131.242.2 port 48358 ssh2 Aug 25 07:00:27 localhost sshd[2........ ------------------------------	2019-08-26 08:08:25

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.131.242.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44022
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.131.242.2.			IN	A

;; AUTHORITY SECTION:
.			1251	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 08:08:20 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 2.242.131.200.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 2.242.131.200.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.156.113	attackspam	2020-06-07T05:34:30.881739ns386461 sshd\[22236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.156.113 user=root 2020-06-07T05:34:32.685358ns386461 sshd\[22236\]: Failed password for root from 122.51.156.113 port 38726 ssh2 2020-06-07T05:48:57.719444ns386461 sshd\[3372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.156.113 user=root 2020-06-07T05:49:00.214612ns386461 sshd\[3372\]: Failed password for root from 122.51.156.113 port 46478 ssh2 2020-06-07T05:57:43.682851ns386461 sshd\[11157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.156.113 user=root ...	2020-06-07 13:15:22
112.85.42.181	attackspambots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-07 13:42:05
2.177.143.97	attackbotsspam	DATE:2020-06-07 05:57:41, IP:2.177.143.97, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-06-07 13:14:51
106.12.89.173	attack	Jun 7 05:52:58 amit sshd\[12965\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root Jun 7 05:52:59 amit sshd\[12965\]: Failed password for root from 106.12.89.173 port 39998 ssh2 Jun 7 05:57:48 amit sshd\[13030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root ...	2020-06-07 13:08:45
222.186.42.137	attack	Unauthorized connection attempt detected from IP address 222.186.42.137 to port 22	2020-06-07 13:20:25
122.117.157.111	attack	port scan and connect, tcp 80 (http)	2020-06-07 13:18:01
71.246.210.34	attack	Jun 7 04:54:21 ajax sshd[20218]: Failed password for root from 71.246.210.34 port 57946 ssh2	2020-06-07 13:22:38
111.93.235.74	attack	Jun 7 05:54:44 * sshd[3685]: Failed password for root from 111.93.235.74 port 1633 ssh2	2020-06-07 13:26:30
115.159.114.87	attackspambots	bruteforce detected	2020-06-07 13:11:09
51.77.147.5	attackspam	(sshd) Failed SSH login from 51.77.147.5 (FR/France/5.ip-51-77-147.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 7 06:07:25 amsweb01 sshd[28774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.5 user=root Jun 7 06:07:27 amsweb01 sshd[28774]: Failed password for root from 51.77.147.5 port 40248 ssh2 Jun 7 06:20:57 amsweb01 sshd[30882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.5 user=root Jun 7 06:20:59 amsweb01 sshd[30882]: Failed password for root from 51.77.147.5 port 35818 ssh2 Jun 7 06:25:38 amsweb01 sshd[31625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.147.5 user=root	2020-06-07 13:22:58
67.227.152.142	attackspambots	Jun 7 07:21:59 debian-2gb-nbg1-2 kernel: \[13766065.170247\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=67.227.152.142 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=38312 PROTO=TCP SPT=32767 DPT=8545 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-07 13:43:13
54.175.71.46	attackbotsspam	PHISHING SPAM !	2020-06-07 13:47:33
128.232.21.75	attackbotsspam	06/06/2020-23:57:46.907283 128.232.21.75 Protocol: 17 GPL RPC portmap listing UDP 111	2020-06-07 13:14:20
23.129.64.208	attack	Jun 7 05:57:03 [Censored Hostname] sshd[4958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.208 Jun 7 05:57:05 [Censored Hostname] sshd[4958]: Failed password for invalid user about from 23.129.64.208 port 51386 ssh2[...]	2020-06-07 13:40:31
139.59.58.169	attackbots	DATE:2020-06-07 06:55:36, IP:139.59.58.169, PORT:ssh SSH brute force auth (docker-dc)	2020-06-07 13:08:02

Recently Reported IPs

110.246.106.195	109.251.248.90	202.39.70.5	14.118.205.171
102.250.181.1	41.35.228.39	116.8.114.164	235.72.157.189
35.221.30.62	71.82.75.16	224.64.177.208	8.187.85.51
148.147.153.149	150.103.229.113	95.252.239.88	201.140.166.238
43.21.251.253	147.13.1.93	142.102.186.15	46.35.246.117