200.252.29.130

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Claro S.A.

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Bruteforce detected by fail2ban	2020-10-07 07:06:45
attackbotsspam	Bruteforce detected by fail2ban	2020-10-06 23:26:51
attackspambots	Brute%20Force%20SSH	2020-10-06 15:16:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.252.29.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45026
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.252.29.130.			IN	A

;; AUTHORITY SECTION:
.			414	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100600 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 06 15:16:08 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 130.29.252.200.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.29.252.200.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.106.60.179	attack	Nov 29 17:04:38 ws26vmsma01 sshd[126354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.106.60.179 Nov 29 17:04:41 ws26vmsma01 sshd[126354]: Failed password for invalid user admin from 27.106.60.179 port 43188 ssh2 ...	2019-11-30 01:36:53
106.3.228.53	attackbotsspam	port scan/probe/communication attempt	2019-11-30 01:38:05
167.160.160.131	attack	blacklist	2019-11-30 01:14:11
61.58.101.227	attack	port scan and connect, tcp 23 (telnet)	2019-11-30 01:36:27
106.124.131.70	attackbots	fail2ban	2019-11-30 01:26:07
112.64.170.178	attack	Invalid user autumn from 112.64.170.178 port 15520	2019-11-30 01:25:35
190.18.176.107	attack	Nov 29 18:36:43 microserver sshd[64689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.18.176.107 user=backup Nov 29 18:36:45 microserver sshd[64689]: Failed password for backup from 190.18.176.107 port 39590 ssh2 Nov 29 18:36:55 microserver sshd[64702]: Invalid user test1 from 190.18.176.107 port 39968 Nov 29 18:36:55 microserver sshd[64702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.18.176.107 Nov 29 18:36:56 microserver sshd[64702]: Failed password for invalid user test1 from 190.18.176.107 port 39968 ssh2 Nov 29 18:49:29 microserver sshd[1363]: Invalid user www from 190.18.176.107 port 39660 Nov 29 18:49:29 microserver sshd[1363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.18.176.107 Nov 29 18:49:31 microserver sshd[1363]: Failed password for invalid user www from 190.18.176.107 port 39660 ssh2 Nov 29 18:49:40 microserver sshd[1389]: Invalid user administrator f	2019-11-30 01:04:47
194.5.95.227	attack	Exploit Attempt	2019-11-30 00:59:19
171.243.19.183	attackspambots	Spam Timestamp : 29-Nov-19 14:38 BlockList Provider combined abuse (553)	2019-11-30 01:33:32
112.85.195.161	attackbotsspam	Nov 29 15:52:05 mxgate1 postfix/postscreen[25060]: CONNECT from [112.85.195.161]:4691 to [176.31.12.44]:25 Nov 29 15:52:05 mxgate1 postfix/dnsblog[25079]: addr 112.85.195.161 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 29 15:52:05 mxgate1 postfix/dnsblog[25079]: addr 112.85.195.161 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 29 15:52:05 mxgate1 postfix/dnsblog[25079]: addr 112.85.195.161 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 29 15:52:05 mxgate1 postfix/dnsblog[25061]: addr 112.85.195.161 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 29 15:52:05 mxgate1 postfix/dnsblog[25064]: addr 112.85.195.161 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 29 15:52:11 mxgate1 postfix/postscreen[25060]: DNSBL rank 4 for [112.85.195.161]:4691 Nov x@x Nov 29 15:52:13 mxgate1 postfix/postscreen[25060]: DISCONNECT [112.85.195.161]:4691 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=112.85.195.161	2019-11-30 01:35:19
201.116.200.210	attackspambots	Unauthorised access (Nov 29) SRC=201.116.200.210 LEN=48 TTL=106 ID=30100 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-30 01:20:48
1.245.61.144	attackspambots	$f2bV_matches	2019-11-30 01:26:28
52.141.18.149	attack	Nov 28 23:04:21 km20725 sshd[10746]: Invalid user yoyo from 52.141.18.149 Nov 28 23:04:21 km20725 sshd[10746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.141.18.149 Nov 28 23:04:23 km20725 sshd[10746]: Failed password for invalid user yoyo from 52.141.18.149 port 58130 ssh2 Nov 28 23:04:23 km20725 sshd[10746]: Received disconnect from 52.141.18.149: 11: Bye Bye [preauth] Nov 28 23:10:43 km20725 sshd[11273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.141.18.149 user=r.r Nov 28 23:10:45 km20725 sshd[11273]: Failed password for r.r from 52.141.18.149 port 57288 ssh2 Nov 28 23:10:45 km20725 sshd[11273]: Received disconnect from 52.141.18.149: 11: Bye Bye [preauth] Nov 28 23:15:42 km20725 sshd[11508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.141.18.149 user=r.r Nov 28 23:15:44 km20725 sshd[11508]: Failed password for r.r from 52......... -------------------------------	2019-11-30 01:06:11
175.211.116.238	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-11-30 00:58:37
182.241.141.75	attackbotsspam	firewall-block, port(s): 23/tcp	2019-11-30 01:19:24

Recently Reported IPs

102.47.62.246	82.82.254.8	202.157.185.149	179.252.114.253
103.88.247.212	167.172.205.116	112.119.139.48	68.110.182.27
14.249.125.28	51.79.156.248	103.53.110.225	5.189.131.106
120.249.199.61	187.138.57.140	58.209.197.206	13.72.81.198
158.140.211.14	109.73.42.146	65.48.211.20	3.134.160.205