200.40.45.82 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Uruguay

Internet Service Provider: Administracion Nacional de Telecomunicaciones

Hostname: unknown

Organization: Administracion Nacional de Telecomunicaciones

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Failed password for invalid user apple from 200.40.45.82 port 52356 ssh2	2020-08-20 02:44:33
attackspambots	2020-08-10T05:53:33.660028centos sshd[19525]: Failed password for root from 200.40.45.82 port 42224 ssh2 2020-08-10T05:55:42.335989centos sshd[19828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 user=root 2020-08-10T05:55:44.536029centos sshd[19828]: Failed password for root from 200.40.45.82 port 54562 ssh2 ...	2020-08-10 13:17:27
attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-08 06:37:25
attack	Jul 21 00:34:50 melroy-server sshd[16175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Jul 21 00:34:52 melroy-server sshd[16175]: Failed password for invalid user lij from 200.40.45.82 port 39790 ssh2 ...	2020-07-21 06:37:33
attack	557. On Jul 13 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 200.40.45.82.	2020-07-14 07:51:21
attackspam	Jul 13 07:11:16 buvik sshd[32362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Jul 13 07:11:18 buvik sshd[32362]: Failed password for invalid user postgres from 200.40.45.82 port 39998 ssh2 Jul 13 07:13:32 buvik sshd[32689]: Invalid user dts from 200.40.45.82 ...	2020-07-13 13:41:43
attack	Jul 12 13:58:32 vps639187 sshd\[18040\]: Invalid user ts3 from 200.40.45.82 port 56820 Jul 12 13:58:32 vps639187 sshd\[18040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Jul 12 13:58:34 vps639187 sshd\[18040\]: Failed password for invalid user ts3 from 200.40.45.82 port 56820 ssh2 ...	2020-07-12 22:47:57
attackbotsspam	SSH brute force	2020-07-10 08:06:53
attackbots	Failed password for invalid user leila from 200.40.45.82 port 43822 ssh2	2020-07-08 19:36:01
attackspam	Jun 26 12:24:56 rocket sshd[7706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Jun 26 12:24:58 rocket sshd[7706]: Failed password for invalid user tobias from 200.40.45.82 port 50020 ssh2 Jun 26 12:28:44 rocket sshd[8088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 ...	2020-06-26 21:58:54
attackspambots	2020-06-16T17:29:03.602005vps773228.ovh.net sshd[7239]: Failed password for root from 200.40.45.82 port 36950 ssh2 2020-06-16T17:34:39.196777vps773228.ovh.net sshd[7318]: Invalid user usuario from 200.40.45.82 port 49220 2020-06-16T17:34:39.212726vps773228.ovh.net sshd[7318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=r200-40-45-82.ae-static.anteldata.net.uy 2020-06-16T17:34:39.196777vps773228.ovh.net sshd[7318]: Invalid user usuario from 200.40.45.82 port 49220 2020-06-16T17:34:41.474769vps773228.ovh.net sshd[7318]: Failed password for invalid user usuario from 200.40.45.82 port 49220 ssh2 ...	2020-06-16 23:40:54
attackbots	Jun 7 01:15:46 ny01 sshd[10744]: Failed password for root from 200.40.45.82 port 53796 ssh2 Jun 7 01:19:58 ny01 sshd[11244]: Failed password for root from 200.40.45.82 port 57496 ssh2	2020-06-07 13:29:57
attackspam	Jun 2 19:14:08 MainVPS sshd[18498]: Invalid user \r from 200.40.45.82 port 36998 Jun 2 19:14:08 MainVPS sshd[18498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Jun 2 19:14:08 MainVPS sshd[18498]: Invalid user \r from 200.40.45.82 port 36998 Jun 2 19:14:10 MainVPS sshd[18498]: Failed password for invalid user \r from 200.40.45.82 port 36998 ssh2 Jun 2 19:15:10 MainVPS sshd[19429]: Invalid user 1qaz@!QAZ\r from 200.40.45.82 port 40600 ...	2020-06-03 01:40:05
attackspam	Jun 1 14:21:35 ns382633 sshd\[5653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 user=root Jun 1 14:21:36 ns382633 sshd\[5653\]: Failed password for root from 200.40.45.82 port 47530 ssh2 Jun 1 14:34:26 ns382633 sshd\[9436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 user=root Jun 1 14:34:28 ns382633 sshd\[9436\]: Failed password for root from 200.40.45.82 port 51620 ssh2 Jun 1 14:37:51 ns382633 sshd\[10296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 user=root	2020-06-02 02:11:40
attackspam	Invalid user nwr from 200.40.45.82 port 39764	2020-05-22 13:46:03
attackspambots	May 14 06:06:07 OPSO sshd\[32340\]: Invalid user serverpilot from 200.40.45.82 port 54954 May 14 06:06:07 OPSO sshd\[32340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 May 14 06:06:09 OPSO sshd\[32340\]: Failed password for invalid user serverpilot from 200.40.45.82 port 54954 ssh2 May 14 06:10:04 OPSO sshd\[529\]: Invalid user redis from 200.40.45.82 port 56498 May 14 06:10:04 OPSO sshd\[529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82	2020-05-14 12:27:42
attack	May 5 04:41:49 vps639187 sshd\[5245\]: Invalid user bernard from 200.40.45.82 port 52900 May 5 04:41:49 vps639187 sshd\[5245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 May 5 04:41:52 vps639187 sshd\[5245\]: Failed password for invalid user bernard from 200.40.45.82 port 52900 ssh2 ...	2020-05-05 12:42:49
attack	Apr 22 07:43:55 scw-6657dc sshd[31547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Apr 22 07:43:55 scw-6657dc sshd[31547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Apr 22 07:43:57 scw-6657dc sshd[31547]: Failed password for invalid user admin from 200.40.45.82 port 53222 ssh2 ...	2020-04-22 16:01:26
attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2020-04-16 19:51:55
attackbotsspam	Mar 31 01:35:52 sso sshd[7570]: Failed password for root from 200.40.45.82 port 56390 ssh2 ...	2020-03-31 08:28:14
attackbots	Invalid user dedicated from 200.40.45.82 port 58360	2020-03-26 07:20:09
attackbotsspam	SSH Brute-Forcing (server2)	2020-03-24 12:05:51
attackbots	Mar 22 10:14:23 firewall sshd[29620]: Invalid user pumpkin from 200.40.45.82 Mar 22 10:14:25 firewall sshd[29620]: Failed password for invalid user pumpkin from 200.40.45.82 port 55940 ssh2 Mar 22 10:19:29 firewall sshd[29787]: Invalid user ircd from 200.40.45.82 ...	2020-03-22 21:52:12
attackspam	Mar 16 16:14:41 jane sshd[7066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Mar 16 16:14:42 jane sshd[7066]: Failed password for invalid user kouki from 200.40.45.82 port 44758 ssh2 ...	2020-03-17 04:03:36
attackspam	detected by Fail2Ban	2020-03-16 17:10:13
attack	IP blocked	2020-03-13 17:42:38
attackspambots	Invalid user 123 from 200.40.45.82 port 46672	2019-10-13 03:35:06
attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-10-11 00:36:30
attackbots	Oct 10 03:51:02 localhost sshd\[112286\]: Invalid user Shadow@2017 from 200.40.45.82 port 59028 Oct 10 03:51:02 localhost sshd\[112286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 Oct 10 03:51:04 localhost sshd\[112286\]: Failed password for invalid user Shadow@2017 from 200.40.45.82 port 59028 ssh2 Oct 10 03:55:39 localhost sshd\[112399\]: Invalid user 123Bingo from 200.40.45.82 port 42308 Oct 10 03:55:39 localhost sshd\[112399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.40.45.82 ...	2019-10-10 12:22:00
attack	2019-10-07T04:40:40.396879abusebot-4.cloudsearch.cf sshd\[15775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r200-40-45-82.ae-static.anteldata.net.uy user=root	2019-10-07 12:45:37

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.40.45.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10204
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.40.45.82.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061201 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 11:43:14 CST 2019
;; MSG SIZE  rcvd: 116

Host info

82.45.40.200.in-addr.arpa domain name pointer r200-40-45-82.ae-static.anteldata.net.uy.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
82.45.40.200.in-addr.arpa	name = r200-40-45-82.ae-static.anteldata.net.uy.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.248.170.45	attack	Aug 13 10:40:12 localhost sshd\[1082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.170.45 user=root Aug 13 10:40:14 localhost sshd\[1082\]: Failed password for root from 104.248.170.45 port 33354 ssh2 Aug 13 10:44:49 localhost sshd\[1229\]: Invalid user mike from 104.248.170.45 Aug 13 10:44:49 localhost sshd\[1229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.170.45 Aug 13 10:44:51 localhost sshd\[1229\]: Failed password for invalid user mike from 104.248.170.45 port 54366 ssh2 ...	2019-08-13 20:23:35
59.98.59.115	attack	Unauthorized connection attempt from IP address 59.98.59.115 on Port 445(SMB)	2019-08-13 20:12:42
31.14.142.109	attackbots	Splunk® : Brute-Force login attempt on SSH: Aug 13 08:05:15 testbed sshd[14522]: Disconnected from 31.14.142.109 port 50947 [preauth]	2019-08-13 20:07:52
14.186.241.32	attackbots	Unauthorised access (Aug 13) SRC=14.186.241.32 LEN=52 TTL=117 ID=13873 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-13 20:29:18
49.88.112.85	attack	Aug 13 13:31:19 legacy sshd[18357]: Failed password for root from 49.88.112.85 port 15091 ssh2 Aug 13 13:31:27 legacy sshd[18359]: Failed password for root from 49.88.112.85 port 17686 ssh2 ...	2019-08-13 19:46:19
124.6.177.250	attackspam	Unauthorized connection attempt from IP address 124.6.177.250 on Port 445(SMB)	2019-08-13 20:27:12
46.101.224.184	attackspam	Aug 13 13:56:44 eventyay sshd[31807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.224.184 Aug 13 13:56:46 eventyay sshd[31807]: Failed password for invalid user um from 46.101.224.184 port 45896 ssh2 Aug 13 14:02:39 eventyay sshd[604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.224.184 ...	2019-08-13 20:09:03
202.112.237.228	attackbots	$f2bV_matches	2019-08-13 19:57:18
95.139.93.158	attackspambots	Unauthorized connection attempt from IP address 95.139.93.158 on Port 445(SMB)	2019-08-13 20:01:23
157.230.16.197	attack	$f2bV_matches_ltvn	2019-08-13 19:48:16
62.56.255.164	attack	Invalid user nagios from 62.56.255.164 port 37570	2019-08-13 20:06:45
134.236.253.96	attackbotsspam	Unauthorized connection attempt from IP address 134.236.253.96 on Port 445(SMB)	2019-08-13 20:17:35
106.225.211.193	attackbots	Aug 13 09:31:28 [snip] sshd[4433]: Invalid user master from 106.225.211.193 port 34753 Aug 13 09:31:28 [snip] sshd[4433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.211.193 Aug 13 09:31:30 [snip] sshd[4433]: Failed password for invalid user master from 106.225.211.193 port 34753 ssh2[...]	2019-08-13 20:03:49
117.35.203.114	attack	Unauthorized connection attempt from IP address 117.35.203.114 on Port 445(SMB)	2019-08-13 19:45:47
51.75.26.106	attackbots	Tried sshing with brute force.	2019-08-13 19:49:07

Recently Reported IPs

17.105.86.130	83.240.25.173	112.131.56.212	162.40.18.168
194.166.117.50	139.59.20.39	165.53.180.166	78.169.50.182
149.161.41.50	75.40.175.19	113.182.67.7	77.143.144.234
103.60.62.210	14.106.202.87	61.142.21.13	147.220.137.231
184.124.172.219	213.133.17.73	83.80.174.163	81.106.240.116