城市(city): unknown
省份(region): unknown
国家(country): Indonesia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.138.242.111 | attack | Telnetd brute force attack detected by fail2ban |
2020-06-01 07:18:38 |
| 202.138.242.37 | attack | 1588363984 - 05/01/2020 22:13:04 Host: 202.138.242.37/202.138.242.37 Port: 445 TCP Blocked |
2020-05-02 06:50:18 |
| 202.138.242.21 | attack | 2020-04-05T02:01:49.009163struts4.enskede.local sshd\[27803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.21 user=root 2020-04-05T02:01:51.378143struts4.enskede.local sshd\[27803\]: Failed password for root from 202.138.242.21 port 39604 ssh2 2020-04-05T02:04:48.606620struts4.enskede.local sshd\[27872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.21 user=root 2020-04-05T02:04:51.540384struts4.enskede.local sshd\[27872\]: Failed password for root from 202.138.242.21 port 51584 ssh2 2020-04-05T02:06:27.282474struts4.enskede.local sshd\[27914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.21 user=root ... |
2020-04-05 08:23:26 |
| 202.138.242.47 | attack | Unauthorized SSH connection attempt |
2019-11-08 21:20:11 |
| 202.138.242.22 | attackbots | IP: 202.138.242.22 ASN: AS9657 Melsa-i-net AS Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 12/10/2019 6:06:23 AM UTC |
2019-10-12 19:27:31 |
| 202.138.242.22 | attackspam | proto=tcp . spt=55919 . dpt=25 . (Found on Blocklist de Oct 03) (497) |
2019-10-05 02:03:34 |
| 202.138.242.101 | attack | postfix (unknown user, SPF fail or relay access denied) |
2019-10-02 07:18:29 |
| 202.138.242.6 | attackspambots | Mail sent to address hacked/leaked from atari.st |
2019-09-16 01:53:53 |
| 202.138.242.121 | attackbots | Aug 22 22:27:14 dedicated sshd[10267]: Invalid user rso from 202.138.242.121 port 44700 |
2019-08-23 09:45:45 |
| 202.138.242.121 | attack | Aug 18 14:14:56 XXX sshd[12187]: Invalid user testphp from 202.138.242.121 port 35348 |
2019-08-19 02:23:21 |
| 202.138.242.121 | attackspambots | Aug 15 02:09:59 web9 sshd\[26350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 user=mysql Aug 15 02:10:00 web9 sshd\[26350\]: Failed password for mysql from 202.138.242.121 port 43046 ssh2 Aug 15 02:15:44 web9 sshd\[27399\]: Invalid user omsagent from 202.138.242.121 Aug 15 02:15:44 web9 sshd\[27399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 Aug 15 02:15:46 web9 sshd\[27399\]: Failed password for invalid user omsagent from 202.138.242.121 port 36398 ssh2 |
2019-08-15 20:22:52 |
| 202.138.242.121 | attackspam | $f2bV_matches |
2019-08-14 18:07:42 |
| 202.138.242.6 | attack | Unauthorized connection attempt from IP address 202.138.242.6 on Port 25(SMTP) |
2019-08-12 10:43:30 |
| 202.138.242.121 | attackbots | 2019-07-15T08:23:28.942435lon01.zurich-datacenter.net sshd\[22264\]: Invalid user odbc from 202.138.242.121 port 46070 2019-07-15T08:23:28.946718lon01.zurich-datacenter.net sshd\[22264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 2019-07-15T08:23:30.935706lon01.zurich-datacenter.net sshd\[22264\]: Failed password for invalid user odbc from 202.138.242.121 port 46070 ssh2 2019-07-15T08:29:17.459106lon01.zurich-datacenter.net sshd\[22360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 user=root 2019-07-15T08:29:19.693844lon01.zurich-datacenter.net sshd\[22360\]: Failed password for root from 202.138.242.121 port 45104 ssh2 ... |
2019-07-15 15:06:34 |
| 202.138.242.121 | attackspam | 2019-07-13T16:49:51.179215abusebot-4.cloudsearch.cf sshd\[9858\]: Invalid user oracle from 202.138.242.121 port 44994 |
2019-07-14 01:06:26 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.138.242.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1333
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;202.138.242.41. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 02:09:39 CST 2025
;; MSG SIZE rcvd: 107Host 41.242.138.202.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 41.242.138.202.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 84.2.226.70 | attack | Mar 17 18:50:48 web8 sshd\[3020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 user=root Mar 17 18:50:50 web8 sshd\[3020\]: Failed password for root from 84.2.226.70 port 49662 ssh2 Mar 17 18:55:02 web8 sshd\[5244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 user=root Mar 17 18:55:04 web8 sshd\[5244\]: Failed password for root from 84.2.226.70 port 43028 ssh2 Mar 17 18:59:13 web8 sshd\[7384\]: Invalid user like from 84.2.226.70 |
2020-03-18 03:51:39 |
| 49.235.143.244 | attackbotsspam | Mar 17 19:48:06 host01 sshd[6570]: Failed password for root from 49.235.143.244 port 33902 ssh2 Mar 17 19:51:06 host01 sshd[7061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.143.244 Mar 17 19:51:08 host01 sshd[7061]: Failed password for invalid user factory from 49.235.143.244 port 54904 ssh2 ... |
2020-03-18 03:57:04 |
| 92.112.43.230 | attack | Mar 17 19:20:59 debian-2gb-nbg1-2 kernel: \[6728373.836429\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.112.43.230 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=58366 DF PROTO=TCP SPT=57235 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0 |
2020-03-18 03:49:55 |
| 138.68.55.199 | attackspam | Mar 17 08:35:54 php1 sshd\[8604\]: Invalid user xautomation from 138.68.55.199 Mar 17 08:35:54 php1 sshd\[8604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.55.199 Mar 17 08:35:56 php1 sshd\[8604\]: Failed password for invalid user xautomation from 138.68.55.199 port 35208 ssh2 Mar 17 08:40:41 php1 sshd\[9275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.55.199 user=root Mar 17 08:40:43 php1 sshd\[9275\]: Failed password for root from 138.68.55.199 port 59432 ssh2 |
2020-03-18 04:02:56 |
| 178.62.33.138 | attack | Mar 17 19:48:39 santamaria sshd\[29494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 user=root Mar 17 19:48:41 santamaria sshd\[29494\]: Failed password for root from 178.62.33.138 port 43074 ssh2 Mar 17 19:52:36 santamaria sshd\[29568\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 user=root ... |
2020-03-18 04:10:07 |
| 109.184.172.197 | attack | 0,37-01/24 [bc02/m11] PostRequest-Spammer scoring: paris |
2020-03-18 04:21:59 |
| 118.254.109.58 | attackbots | CN_APNIC-HM_<177>1584469227 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: |
2020-03-18 04:27:58 |
| 104.248.237.238 | attackspambots | Failed password for invalid user confluence from 104.248.237.238 port 35946 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 user=root Failed password for root from 104.248.237.238 port 60956 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.237.238 user=root Failed password for root from 104.248.237.238 port 57734 ssh2 |
2020-03-18 04:02:27 |
| 46.123.243.114 | attack | $f2bV_matches |
2020-03-18 04:09:27 |
| 139.59.135.84 | attackspambots | Mar 17 19:20:49 hosting180 sshd[7787]: Invalid user support from 139.59.135.84 port 38870 ... |
2020-03-18 04:01:12 |
| 35.189.45.69 | attack | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-03-18 03:48:33 |
| 116.49.181.251 | attack | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-03-18 04:16:53 |
| 113.179.37.113 | attackbotsspam | 2020-03-17 19:08:12 plain_virtual_exim authenticator failed for ([127.0.0.1]) [113.179.37.113]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.179.37.113 |
2020-03-18 03:48:09 |
| 87.21.245.125 | attack | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-03-18 03:52:36 |
| 182.61.49.107 | attackspam | $f2bV_matches |
2020-03-18 04:25:02 |