城市(city): unknown
省份(region): unknown
国家(country): Indonesia
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 202.138.242.111 | attack | Telnetd brute force attack detected by fail2ban |
2020-06-01 07:18:38 |
| 202.138.242.37 | attack | 1588363984 - 05/01/2020 22:13:04 Host: 202.138.242.37/202.138.242.37 Port: 445 TCP Blocked |
2020-05-02 06:50:18 |
| 202.138.242.21 | attack | 2020-04-05T02:01:49.009163struts4.enskede.local sshd\[27803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.21 user=root 2020-04-05T02:01:51.378143struts4.enskede.local sshd\[27803\]: Failed password for root from 202.138.242.21 port 39604 ssh2 2020-04-05T02:04:48.606620struts4.enskede.local sshd\[27872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.21 user=root 2020-04-05T02:04:51.540384struts4.enskede.local sshd\[27872\]: Failed password for root from 202.138.242.21 port 51584 ssh2 2020-04-05T02:06:27.282474struts4.enskede.local sshd\[27914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.21 user=root ... |
2020-04-05 08:23:26 |
| 202.138.242.47 | attack | Unauthorized SSH connection attempt |
2019-11-08 21:20:11 |
| 202.138.242.22 | attackbots | IP: 202.138.242.22 ASN: AS9657 Melsa-i-net AS Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 12/10/2019 6:06:23 AM UTC |
2019-10-12 19:27:31 |
| 202.138.242.22 | attackspam | proto=tcp . spt=55919 . dpt=25 . (Found on Blocklist de Oct 03) (497) |
2019-10-05 02:03:34 |
| 202.138.242.101 | attack | postfix (unknown user, SPF fail or relay access denied) |
2019-10-02 07:18:29 |
| 202.138.242.6 | attackspambots | Mail sent to address hacked/leaked from atari.st |
2019-09-16 01:53:53 |
| 202.138.242.121 | attackbots | Aug 22 22:27:14 dedicated sshd[10267]: Invalid user rso from 202.138.242.121 port 44700 |
2019-08-23 09:45:45 |
| 202.138.242.121 | attack | Aug 18 14:14:56 XXX sshd[12187]: Invalid user testphp from 202.138.242.121 port 35348 |
2019-08-19 02:23:21 |
| 202.138.242.121 | attackspambots | Aug 15 02:09:59 web9 sshd\[26350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 user=mysql Aug 15 02:10:00 web9 sshd\[26350\]: Failed password for mysql from 202.138.242.121 port 43046 ssh2 Aug 15 02:15:44 web9 sshd\[27399\]: Invalid user omsagent from 202.138.242.121 Aug 15 02:15:44 web9 sshd\[27399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 Aug 15 02:15:46 web9 sshd\[27399\]: Failed password for invalid user omsagent from 202.138.242.121 port 36398 ssh2 |
2019-08-15 20:22:52 |
| 202.138.242.121 | attackspam | $f2bV_matches |
2019-08-14 18:07:42 |
| 202.138.242.6 | attack | Unauthorized connection attempt from IP address 202.138.242.6 on Port 25(SMTP) |
2019-08-12 10:43:30 |
| 202.138.242.121 | attackbots | 2019-07-15T08:23:28.942435lon01.zurich-datacenter.net sshd\[22264\]: Invalid user odbc from 202.138.242.121 port 46070 2019-07-15T08:23:28.946718lon01.zurich-datacenter.net sshd\[22264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 2019-07-15T08:23:30.935706lon01.zurich-datacenter.net sshd\[22264\]: Failed password for invalid user odbc from 202.138.242.121 port 46070 ssh2 2019-07-15T08:29:17.459106lon01.zurich-datacenter.net sshd\[22360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.138.242.121 user=root 2019-07-15T08:29:19.693844lon01.zurich-datacenter.net sshd\[22360\]: Failed password for root from 202.138.242.121 port 45104 ssh2 ... |
2019-07-15 15:06:34 |
| 202.138.242.121 | attackspam | 2019-07-13T16:49:51.179215abusebot-4.cloudsearch.cf sshd\[9858\]: Invalid user oracle from 202.138.242.121 port 44994 |
2019-07-14 01:06:26 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.138.242.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1333
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;202.138.242.41. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400
;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 02:09:39 CST 2025
;; MSG SIZE rcvd: 107
Host 41.242.138.202.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 41.242.138.202.in-addr.arpa: NXDOMAIN
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 180.250.108.130 | attackbotsspam | Invalid user christian from 180.250.108.130 port 1097 |
2020-10-01 15:57:47 |
| 194.180.224.130 | attack | Oct 1 09:32:05 prod4 sshd\[8803\]: Invalid user admin from 194.180.224.130 Oct 1 09:32:05 prod4 sshd\[8805\]: Invalid user admin from 194.180.224.130 Oct 1 09:32:10 prod4 sshd\[8803\]: Failed password for invalid user admin from 194.180.224.130 port 36580 ssh2 ... |
2020-10-01 15:34:51 |
| 171.226.6.154 | attack | Invalid user ftpuser from 171.226.6.154 port 32826 |
2020-10-01 15:13:34 |
| 106.37.223.54 | attack | Sep 30 20:09:49 tdfoods sshd\[25206\]: Invalid user haldaemon from 106.37.223.54 Sep 30 20:09:49 tdfoods sshd\[25206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.37.223.54 Sep 30 20:09:52 tdfoods sshd\[25206\]: Failed password for invalid user haldaemon from 106.37.223.54 port 33267 ssh2 Sep 30 20:15:08 tdfoods sshd\[25529\]: Invalid user francisco from 106.37.223.54 Sep 30 20:15:08 tdfoods sshd\[25529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.37.223.54 |
2020-10-01 15:16:22 |
| 172.112.226.49 | attack | Fail2Ban Ban Triggered HTTP SQL Injection Attempt |
2020-10-01 15:59:23 |
| 193.32.163.108 | attack | Port scanning [9 denied] |
2020-10-01 15:42:39 |
| 35.235.96.109 | attackbots | 35.235.96.109 - - [01/Oct/2020:09:39:23 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.235.96.109 - - [01/Oct/2020:09:39:25 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.235.96.109 - - [01/Oct/2020:09:39:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-10-01 16:01:57 |
| 186.4.136.153 | attackspambots | Invalid user oscar from 186.4.136.153 port 32778 |
2020-10-01 15:53:11 |
| 192.145.239.50 | attackbotsspam | Automatic report - Banned IP Access |
2020-10-01 16:00:13 |
| 92.62.131.106 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-10-01 15:50:50 |
| 77.50.75.162 | attack | Oct 1 06:42:55 game-panel sshd[18930]: Failed password for root from 77.50.75.162 port 49400 ssh2 Oct 1 06:46:46 game-panel sshd[19089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.50.75.162 Oct 1 06:46:48 game-panel sshd[19089]: Failed password for invalid user dk from 77.50.75.162 port 56674 ssh2 |
2020-10-01 15:41:45 |
| 138.197.179.94 | attackspambots | 2020/09/27 14:34:16 [error] 13560#13560: *51400 FastCGI sent in stderr: "Primary script unknown" while reading response header from upstream, client: 138.197.179.94, server: , request: "GET /wp-login.php HTTP/1.1", upstream: "fastcgi://unix:/run/php-fpm/php-fdf1d4a0-1ee6-4ddf-8a4a-bf7184d3fc60.sock:", host: "mail.rakkor.uk" |
2020-10-01 16:02:35 |
| 177.124.201.61 | attack | Brute-force attempt banned |
2020-10-01 15:12:13 |
| 177.207.251.18 | attackbotsspam | Oct 1 07:26:56 dignus sshd[7311]: Failed password for root from 177.207.251.18 port 64316 ssh2 Oct 1 07:30:24 dignus sshd[7680]: Invalid user admin from 177.207.251.18 port 16297 Oct 1 07:30:24 dignus sshd[7680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.207.251.18 Oct 1 07:30:26 dignus sshd[7680]: Failed password for invalid user admin from 177.207.251.18 port 16297 ssh2 Oct 1 07:33:45 dignus sshd[8034]: Invalid user mine from 177.207.251.18 port 27462 ... |
2020-10-01 15:23:53 |
| 152.136.165.226 | attack | Automatic report BANNED IP |
2020-10-01 15:45:46 |