200.6.245.11 - IPInfo

Basic Info

City: San Sebastian

Region: Departamento de Retalhuleu

Country: Guatemala

Internet Service Provider: Farmacias Galeno S.A.

Hostname: unknown

Organization: Telgua

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 200.6.245.11 on Port 445(SMB)	2020-03-18 09:47:58
attackbots	Honeypot attack, port: 445, PTR: 11.245.6.200.static.intelnet.net.gt.	2020-02-08 21:11:26
attackbotsspam	1 pkts, ports: TCP:445	2019-10-06 07:21:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.6.245.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10217
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.6.245.11.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 24 21:24:21 +08 2019
;; MSG SIZE  rcvd: 116

Host info

11.245.6.200.in-addr.arpa domain name pointer 11.245.6.200.static.intelnet.net.gt.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
11.245.6.200.in-addr.arpa	name = 11.245.6.200.static.intelnet.net.gt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
39.135.1.194	attackbots	Oracle WebLogic WLS Security Component Remote Code Execution Vulnerability 2017-10271, PTR: PTR record not found	2019-09-05 01:33:20
149.202.59.85	attackspam	Automatic report - Banned IP Access	2019-09-05 01:55:06
94.242.177.126	attack	445/tcp [2019-09-04]1pkt	2019-09-05 01:22:16
219.121.131.183	attackbots	Netgear DGN Device Remote Command Execution Vulnerability, PTR: d-219-121-131-183.ftth.katch.ne.jp.	2019-09-05 01:27:21
104.248.254.222	attack	Sep 4 18:48:22 ubuntu-2gb-nbg1-dc3-1 sshd[27419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.254.222 Sep 4 18:48:24 ubuntu-2gb-nbg1-dc3-1 sshd[27419]: Failed password for invalid user lilian from 104.248.254.222 port 45204 ssh2 ...	2019-09-05 01:43:20
84.7.93.169	attackbotsspam	Sep 4 15:08:53 [host] sshd[14976]: Invalid user karika from 84.7.93.169 Sep 4 15:08:53 [host] sshd[14976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.7.93.169 Sep 4 15:08:55 [host] sshd[14976]: Failed password for invalid user karika from 84.7.93.169 port 53296 ssh2	2019-09-05 01:50:42
106.111.166.209	attack	2019-09-04T13:09:24.620709abusebot-7.cloudsearch.cf sshd\[1687\]: Invalid user service from 106.111.166.209 port 46416	2019-09-05 01:07:19
1.20.179.52	attackspambots	445/tcp [2019-09-04]1pkt	2019-09-05 00:56:08
118.71.44.235	attackspambots	Automatic report - Port Scan Attack	2019-09-05 01:36:38
202.131.231.210	attackspambots	Sep 4 22:47:37 areeb-Workstation sshd[28023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.231.210 Sep 4 22:47:39 areeb-Workstation sshd[28023]: Failed password for invalid user informix from 202.131.231.210 port 38536 ssh2 ...	2019-09-05 01:32:35
164.132.207.231	attack	Sep 4 14:09:08 debian sshd\[9433\]: Invalid user sandeep from 164.132.207.231 port 42590 Sep 4 14:09:08 debian sshd\[9433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.207.231 ...	2019-09-05 01:29:18
23.129.64.207	attackbotsspam	Sep 5 00:14:51 webhost01 sshd[16823]: Failed password for root from 23.129.64.207 port 55449 ssh2 Sep 5 00:15:06 webhost01 sshd[16823]: error: maximum authentication attempts exceeded for root from 23.129.64.207 port 55449 ssh2 [preauth] ...	2019-09-05 01:49:34
94.177.173.75	attackspambots	2019-09-04T16:59:31.118764abusebot-8.cloudsearch.cf sshd\[20889\]: Invalid user suman from 94.177.173.75 port 40270	2019-09-05 01:11:00
190.195.13.138	attackbots	Sep 4 19:07:28 OPSO sshd\[11444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.195.13.138 user=root Sep 4 19:07:30 OPSO sshd\[11444\]: Failed password for root from 190.195.13.138 port 55388 ssh2 Sep 4 19:12:34 OPSO sshd\[12352\]: Invalid user test from 190.195.13.138 port 42002 Sep 4 19:12:34 OPSO sshd\[12352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.195.13.138 Sep 4 19:12:36 OPSO sshd\[12352\]: Failed password for invalid user test from 190.195.13.138 port 42002 ssh2	2019-09-05 01:25:13
51.68.136.36	attackbotsspam	2019-09-04T16:42:53.324146abusebot-3.cloudsearch.cf sshd\[14124\]: Invalid user ahti from 51.68.136.36 port 52764	2019-09-05 00:55:41

Recently Reported IPs

36.84.65.54	27.106.64.14	201.92.71.22	104.88.160.11
191.83.226.68	197.156.81.227	82.84.38.225	3.118.84.50
140.213.39.105	184.147.155.151	2.186.117.108	102.249.72.181
62.221.109.8	102.169.49.142	46.209.120.155	112.78.139.236
114.27.102.1	177.159.87.16	113.183.65.42	182.21.166.102