200.162.138.42

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Transit do Brasil S/A

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user user from 200.162.138.42 port 51537	2019-07-11 13:40:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.162.138.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25984
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.162.138.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071002 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 11 13:39:59 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 42.138.162.200.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 42.138.162.200.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.55.37.132	attackbots	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-10-13 18:40:26
4.17.231.207	attack	B: Abusive ssh attack	2020-10-13 18:32:30
198.245.49.18	attack	4 ongeldige inlogpogingen (1 buitensluiting(en)) vanaf IP: 198.245.49.18	2020-10-13 18:12:04
139.59.249.83	attackspambots	2020-10-12 UTC: (42x) - allan,amanda,anikei,buser,ek,ftpuser2,hadoop(2x),harrison,jean,klement,nagios,netfonts,postgres,prueba(2x),public,root(17x),tkomatsu,ubuntu,web,workstation,xpertin,yosinski,yvonne,zlin	2020-10-13 18:34:11
139.155.82.119	attackbotsspam	Oct 13 12:22:10 meumeu sshd[488126]: Invalid user philipp from 139.155.82.119 port 60342 Oct 13 12:22:10 meumeu sshd[488126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 12:22:10 meumeu sshd[488126]: Invalid user philipp from 139.155.82.119 port 60342 Oct 13 12:22:13 meumeu sshd[488126]: Failed password for invalid user philipp from 139.155.82.119 port 60342 ssh2 Oct 13 12:26:17 meumeu sshd[488460]: Invalid user elke from 139.155.82.119 port 57342 Oct 13 12:26:17 meumeu sshd[488460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.82.119 Oct 13 12:26:17 meumeu sshd[488460]: Invalid user elke from 139.155.82.119 port 57342 Oct 13 12:26:19 meumeu sshd[488460]: Failed password for invalid user elke from 139.155.82.119 port 57342 ssh2 Oct 13 12:31:41 meumeu sshd[488848]: Invalid user test4 from 139.155.82.119 port 54744 ...	2020-10-13 18:46:03
129.226.12.233	attack	2020-10-13T10:48:15.628146amanda2.illicoweb.com sshd\[17246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.12.233 user=root 2020-10-13T10:48:17.323535amanda2.illicoweb.com sshd\[17246\]: Failed password for root from 129.226.12.233 port 49196 ssh2 2020-10-13T10:54:29.617745amanda2.illicoweb.com sshd\[17672\]: Invalid user netfonts from 129.226.12.233 port 59406 2020-10-13T10:54:29.620050amanda2.illicoweb.com sshd\[17672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.12.233 2020-10-13T10:54:32.324270amanda2.illicoweb.com sshd\[17672\]: Failed password for invalid user netfonts from 129.226.12.233 port 59406 ssh2 ...	2020-10-13 18:13:17
144.34.203.73	attackspambots	2020-10-13T16:57:31.217190hostname sshd[81666]: Invalid user nicola from 144.34.203.73 port 37350 ...	2020-10-13 18:29:14
106.75.246.176	attackbots	Invalid user hq from 106.75.246.176 port 44754	2020-10-13 18:39:58
132.232.4.33	attackbots	Oct 13 00:15:53 web1 sshd\[22251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33 user=root Oct 13 00:15:55 web1 sshd\[22251\]: Failed password for root from 132.232.4.33 port 36372 ssh2 Oct 13 00:19:03 web1 sshd\[22524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33 user=root Oct 13 00:19:05 web1 sshd\[22524\]: Failed password for root from 132.232.4.33 port 42244 ssh2 Oct 13 00:22:10 web1 sshd\[22784\]: Invalid user rosenfeld from 132.232.4.33 Oct 13 00:22:10 web1 sshd\[22784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33	2020-10-13 18:36:36
51.159.28.62	attack	$f2bV_matches	2020-10-13 18:18:50
194.33.45.136	attack	Oct 13 11:47:04 mail.srvfarm.net postfix/smtps/smtpd[3472317]: warning: unknown[194.33.45.136]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 11:47:11 mail.srvfarm.net postfix/smtps/smtpd[3471543]: warning: unknown[194.33.45.136]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 11:47:12 mail.srvfarm.net postfix/smtps/smtpd[3469576]: warning: unknown[194.33.45.136]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 11:47:15 mail.srvfarm.net postfix/smtps/smtpd[3469578]: warning: unknown[194.33.45.136]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 11:47:15 mail.srvfarm.net postfix/smtps/smtpd[3468096]: warning: unknown[194.33.45.136]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-10-13 18:38:15
191.53.52.220	attack	Attempted Brute Force (dovecot)	2020-10-13 18:21:29
85.48.56.42	attackspambots	Oct 13 10:35:36 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:35:38 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:47:17 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 179 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:47:20 WHD8 dovecot: pop3-login: Disconnected: Inactivity $auth failed, 1 attempts in 180 secs$: user=\, method=PLAIN, rip=85.48.56.42, lip=10.64.89.208, session=\ Oct 13 10:57:06 WHD8 dovecot: pop3-login: Disconnected $auth failed, 1 attempts in 145 secs$: user=\	2020-10-13 18:15:49
103.45.116.121	attackbots	2020-10-13T11:59:18.057452news0 sshd[29556]: Invalid user gomez from 103.45.116.121 port 33242 2020-10-13T11:59:19.334662news0 sshd[29556]: Failed password for invalid user gomez from 103.45.116.121 port 33242 ssh2 2020-10-13T12:02:41.154862news0 sshd[29673]: Invalid user vicente from 103.45.116.121 port 10707 ...	2020-10-13 18:52:28
106.124.143.24	attackbotsspam	Oct 13 00:30:35 markkoudstaal sshd[29849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.143.24 Oct 13 00:30:38 markkoudstaal sshd[29849]: Failed password for invalid user Artur from 106.124.143.24 port 33799 ssh2 Oct 13 00:34:30 markkoudstaal sshd[30891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.143.24 ...	2020-10-13 18:44:43

Recently Reported IPs

90.99.247.136	119.235.208.160	216.243.83.85	234.75.58.55
162.209.66.169	160.31.76.235	87.139.140.200	124.119.173.39
124.68.237.64	85.204.5.150	103.7.247.210	210.100.216.98
200.5.102.209	186.251.211.54	5.68.225.9	185.232.67.121
177.44.25.145	3.90.220.143	46.99.180.47	159.192.196.233