200.234.222.116 Threat Intelligence and Host Information

Apr 09, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 200.234.222.116 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 32/100

Host and Network Information

  • Tags: as15169, as16417 cisco, as22843, as26211, as3356 level, as36646 oath, as36647 oath, asnone, telecom

  • View other sources: Spamhaus VirusTotal

  • Country: Brazil
  • Network:
  • Noticed: 1 times
  • Protocols Attacked: SSH
  • Countries Attacked: Aruba, Belgium, Brazil, Canada, China, Georgia, Germany, India, Ireland, Italy, Japan, Singapore, South Africa, Spain, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: www.graossaudebrasil.com.br graossaudebrasil.com.br maxtelecom.com.br mx.wassadadvogados.com.br mx.ultraturbo.com.br mx.haraszonadamata.com.br mx.misterautocenter.com.br mx.imobiliariaphd.com.br mx.cafeamorim.com.br www.drb.marketing mx.fantasyclub.com.br mx.ct2mengenharia.com.br pop3.maplemed.com.br imap.maplemed.com.br smtp.maplemed.com.br pop3.ibplenitude.org.br imap.ibplenitude.org.br mx.honu.life mercadotropical.net www.moriadm.com.br mx.accesshosting.biz mx.legalliberal.tk mx.mixnow.tk rastrowebshop.com.br mx.sigef.online storback.com.br mx.combatcovid19.com.br mx.hotelpousadadossonhos.com.br mx.bqnopolis.com.br mx.poliservices.com.br mx.intervoos.com.br mx.sharktrades.com.br maxximaambiental.com.br ns2.netempreendimentos.net mx.msbconsultoradeimoveis.com.br mx.poliseledecker.com.br geracertidao.com mx.welingtonimoveis.com.br mx.adcderma.com.br truecolors.com.br ead.corimg.org moriadm.com.br setramed.com.br mx.vellux.com.br mx.lessonidiomas.com.br mx.obituarioitaiopolis.com.br mx.nilopolisemmovimento.com.br mx.blanquesinox.com.br mx.goldenbrilhos.com.br mx.uaraciballotin.com.br mx.mrmalas.com.br mx.faytec.com.br mx.mangueirasmm.com.br mx.jonassa.co mx.fire.org.br mx.damicoscubatao.com.br mx.quasatservices.com.br mx.ecogardenbrasil.com.br mx.sex69.com.br mx.boxdigital.com.br mx.chapadeinox.com.br mx.astroengenhariaeprojetos.com.br mx.linuxops.com.br mx.versatilse.com.br mx.protegedoc.com.br mx.faculdadesimpactos.com.br mx.quintes.me mx.vendedoresdeveiculos.com mx.clin.me mx.oticasmayer.com.br mx.opticasantana.com.br mx.lyoncommerce.com.br mx.autoescolamundiall.com.br mx.rotaimperialdocafe.com.br mx.brpresets.com.br mx.igrejacaxias.com.br mx.fotopro.fot.br mx.divimplante.com.br mx.igrejaemcuritiba.org.br mx.angelicaquintinoproducoes.com.br mx.vertex.net.br mx.leos.com.br mx.ifi.com.br mx.giroinformativo.com.br mx.serralheriacolonial.com mx.technomidia.com mx.bsonline.net.br mx.sharkiando.com mx.iescolar.com.br mx.caldoecia.com.br mx.mttecidos.com.br mx.foco3.com.br mx.criandoseunegocio.com.br mx.shammah.openbrazil.org mx.plesk77.hospedagemdesites.ws mx.amfcontabil.com www.buffetwishes.com.br duarteweb.com mx.prodac.org.br mx.workforce.coop.br mx.jornalfolhadoestado.com.br mx.bynet.com.br buffetwishes.com.br mx.keko.com mx.b.com.br mx.theodoros.com.br facolchoes.com.br mx.viacaopenha.com.br mx.sorvepan.com.br expolabor.com.br mx.lorenzi.marketing mx.botecovilarica.com.br mx.kartpress.com.br mx.alcala.com.br mx.wells.com.br oiatende.net www.expolabor.com.br

Malware Detected on Host

Count: 5 312638b25218be72201475f475e8ff51e7ebfdfeef10b7262734724acaad04bf 00fe3c023d8644320dbf5960e859285bc07f90fd1d98eb9d18d649bf33c63f75 a81229ccf3c1404d4a97e2856bac0ce5e49b33979335b780da8f57860fd75d0b 905c75f99d3436e1970c1a5729dd2ae22a9d57ebd88e80f273668d50f9bc9f59 33333db7c4ac5d084f22639cb07d165efce3c07897001606c80f46e788a5be7c

Open Ports Detected

25

Map

Whois Information

  • inetnum: 200.234.208.0/20
  • aut-num: AS27715
  • abuse-c: HOSIT
  • owner: Locaweb Servi�os de Internet S/A
  • ownerid: 02.351.877/0001-52
  • responsible: Gilberto Mautner
  • country: BR
  • owner-c: GIM6
  • tech-c: INRLO
  • inetrev: 200.234.220.0/22
  • nserver: ns1.locaweb.com.br
  • nsstat: 20250408 AA
  • nslastaa: 20250408
  • nserver: ns2.locaweb.com.br
  • nsstat: 20250408 AA
  • nslastaa: 20250408
  • nserver: ns3.locaweb.com.br
  • nsstat: 20250408 AA
  • nslastaa: 20250408
  • created: 20041206
  • changed: 20220804
  • nic-hdl-br: GIM6
  • person: Locaweb Servi�os de Internet S/A
  • e-mail: hostmaster@locaweb.com.br
  • country: BR
  • created: 19980119
  • changed: 20240903
  • nic-hdl-br: HOSIT
  • person: Hospedagem de Sites
  • e-mail: abuse@locaweb.com.br
  • country: BR
  • created: 20070308
  • changed: 20171123
  • nic-hdl-br: INRLO
  • person: Infra Redes Locaweb
  • e-mail: infra-redes@locaweb.com.br
  • country: BR
  • created: 20211004
  • changed: 20211004

Links to attack logs

****** ****** ******

Share on: