200.149.232.242

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Telemar Norte Leste S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-03-17 10:32:36
attack	spam	2020-01-24 14:21:23
attack	spam	2020-01-22 15:46:24
attack	proto=tcp . spt=36777 . dpt=25 . (listed on Blocklist de Aug 29) (690)	2019-08-31 08:51:25

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.149.232.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28838
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.149.232.242.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 08:51:20 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 242.232.149.200.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 242.232.149.200.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.10.22.166	attack	xmlrpc attack	2020-01-03 08:38:42
46.151.210.60	attack	SSH Brute-Force reported by Fail2Ban	2020-01-03 08:07:35
92.119.160.31	attack	Jan 3 00:53:57 h2177944 kernel: \[1207849.951234\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.31 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=53092 PROTO=TCP SPT=54881 DPT=4444 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 3 00:53:57 h2177944 kernel: \[1207849.951248\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.31 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=53092 PROTO=TCP SPT=54881 DPT=4444 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 3 00:58:30 h2177944 kernel: \[1208123.495582\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.31 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34695 PROTO=TCP SPT=54881 DPT=33891 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 3 00:58:30 h2177944 kernel: \[1208123.495595\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.31 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=34695 PROTO=TCP SPT=54881 DPT=33891 WINDOW=1024 RES=0x00 SYN URGP=0 Jan 3 01:07:54 h2177944 kernel: \[1208687.158796\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.31 DST=85.214.117	2020-01-03 08:18:16
148.70.106.160	attack	Jan 1 11:39:58 kmh-wmh-002-nbg03 sshd[9484]: Invalid user vargant from 148.70.106.160 port 49106 Jan 1 11:39:58 kmh-wmh-002-nbg03 sshd[9484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.106.160 Jan 1 11:40:00 kmh-wmh-002-nbg03 sshd[9484]: Failed password for invalid user vargant from 148.70.106.160 port 49106 ssh2 Jan 1 11:40:01 kmh-wmh-002-nbg03 sshd[9484]: Received disconnect from 148.70.106.160 port 49106:11: Bye Bye [preauth] Jan 1 11:40:01 kmh-wmh-002-nbg03 sshd[9484]: Disconnected from 148.70.106.160 port 49106 [preauth] Jan 1 11:53:14 kmh-wmh-002-nbg03 sshd[10992]: Invalid user webmaster from 148.70.106.160 port 37108 Jan 1 11:53:14 kmh-wmh-002-nbg03 sshd[10992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.106.160 Jan 1 11:53:16 kmh-wmh-002-nbg03 sshd[10992]: Failed password for invalid user webmaster from 148.70.106.160 port 37108 ssh2 Jan 1 11:53:17 km........ -------------------------------	2020-01-03 08:32:53
113.161.37.172	attack	SASL PLAIN auth failed: ruser=...	2020-01-03 08:27:49
106.13.142.115	attack	$f2bV_matches	2020-01-03 08:37:54
154.8.232.221	attackbots	Jan 2 23:31:22 game-panel sshd[11931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.232.221 Jan 2 23:31:25 game-panel sshd[11931]: Failed password for invalid user kapaul from 154.8.232.221 port 51434 ssh2 Jan 2 23:33:49 game-panel sshd[12054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.232.221	2020-01-03 08:06:49
106.12.180.152	attack	Jan 2 18:31:40 onepro1 sshd[4268]: Failed password for invalid user jq from 106.12.180.152 port 37636 ssh2 Jan 2 18:41:26 onepro1 sshd[4272]: Failed password for invalid user tadeu from 106.12.180.152 port 36616 ssh2 Jan 2 18:51:29 onepro1 sshd[4327]: Failed password for invalid user web from 106.12.180.152 port 33352 ssh2	2020-01-03 08:28:31
106.13.64.150	attackbotsspam	Jan 3 00:06:22 MK-Soft-Root1 sshd[19889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.64.150 Jan 3 00:06:24 MK-Soft-Root1 sshd[19889]: Failed password for invalid user bfo from 106.13.64.150 port 60596 ssh2 ...	2020-01-03 08:07:22
116.96.156.132	attack	SASL PLAIN auth failed: ruser=...	2020-01-03 08:25:58
223.112.69.58	attack	Jan 3 00:57:28 srv-ubuntu-dev3 sshd[118118]: Invalid user vps from 223.112.69.58 Jan 3 00:57:28 srv-ubuntu-dev3 sshd[118118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.112.69.58 Jan 3 00:57:28 srv-ubuntu-dev3 sshd[118118]: Invalid user vps from 223.112.69.58 Jan 3 00:57:30 srv-ubuntu-dev3 sshd[118118]: Failed password for invalid user vps from 223.112.69.58 port 56860 ssh2 Jan 3 01:00:43 srv-ubuntu-dev3 sshd[118342]: Invalid user pokemon from 223.112.69.58 Jan 3 01:00:43 srv-ubuntu-dev3 sshd[118342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.112.69.58 Jan 3 01:00:43 srv-ubuntu-dev3 sshd[118342]: Invalid user pokemon from 223.112.69.58 Jan 3 01:00:45 srv-ubuntu-dev3 sshd[118342]: Failed password for invalid user pokemon from 223.112.69.58 port 53754 ssh2 Jan 3 01:04:02 srv-ubuntu-dev3 sshd[118598]: Invalid user db2inst from 223.112.69.58 ...	2020-01-03 08:21:34
177.86.186.254	attackspambots	Jan 3 00:46:48 [host] sshd[4422]: Invalid user sagemath from 177.86.186.254 Jan 3 00:46:48 [host] sshd[4422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.86.186.254 Jan 3 00:46:49 [host] sshd[4422]: Failed password for invalid user sagemath from 177.86.186.254 port 50292 ssh2	2020-01-03 08:05:08
218.92.0.203	attackbots	Jan 3 01:07:34 MK-Soft-Root1 sshd[734]: Failed password for root from 218.92.0.203 port 46144 ssh2 Jan 3 01:07:37 MK-Soft-Root1 sshd[734]: Failed password for root from 218.92.0.203 port 46144 ssh2 ...	2020-01-03 08:14:08
14.231.142.42	attackspambots	SASL PLAIN auth failed: ruser=...	2020-01-03 08:29:22
1.55.145.15	attackbotsspam	Jan 3 00:47:32 lnxded64 sshd[5548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.55.145.15	2020-01-03 08:05:56

Recently Reported IPs

213.150.76.74	94.243.27.120	109.183.231.228	35.185.104.197
86.124.84.83	188.211.227.111	116.12.254.242	45.175.179.229
114.127.196.31	115.114.177.166	103.95.164.51	173.236.72.146
138.68.216.55	83.248.57.171	49.68.145.27	5.94.1.229
217.182.206.166	165.22.227.11	5.23.52.172	7.105.205.115