City: unknown
Region: unknown
Country: Brazil
Internet Service Provider: Copel Telecomunicacoes S.A.
Hostname: unknown
Organization: unknown
Usage Type: Fixed Line ISP
| Type | Details | Datetime |
|---|---|---|
| attack | Lines containing failures of 138.204.27.200 Sep 4 08:37:47 penfold sshd[21276]: Invalid user returnbikegate from 138.204.27.200 port 43170 Sep 4 08:37:47 penfold sshd[21276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.27.200 Sep 4 08:37:49 penfold sshd[21276]: Failed password for invalid user returnbikegate from 138.204.27.200 port 43170 ssh2 Sep 4 08:37:52 penfold sshd[21276]: Received disconnect from 138.204.27.200 port 43170:11: Bye Bye [preauth] Sep 4 08:37:52 penfold sshd[21276]: Disconnected from invalid user returnbikegate 138.204.27.200 port 43170 [preauth] Sep 4 09:02:52 penfold sshd[23630]: Invalid user app from 138.204.27.200 port 48805 Sep 4 09:02:52 penfold sshd[23630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.27.200 Sep 4 09:02:54 penfold sshd[23630]: Failed password for invalid user app from 138.204.27.200 port 48805 ssh2 Sep 4 09:02:55 pe........ ------------------------------ |
2020-09-07 03:00:46 |
| attackspambots | Lines containing failures of 138.204.27.200 Sep 4 08:37:47 penfold sshd[21276]: Invalid user returnbikegate from 138.204.27.200 port 43170 Sep 4 08:37:47 penfold sshd[21276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.27.200 Sep 4 08:37:49 penfold sshd[21276]: Failed password for invalid user returnbikegate from 138.204.27.200 port 43170 ssh2 Sep 4 08:37:52 penfold sshd[21276]: Received disconnect from 138.204.27.200 port 43170:11: Bye Bye [preauth] Sep 4 08:37:52 penfold sshd[21276]: Disconnected from invalid user returnbikegate 138.204.27.200 port 43170 [preauth] Sep 4 09:02:52 penfold sshd[23630]: Invalid user app from 138.204.27.200 port 48805 Sep 4 09:02:52 penfold sshd[23630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.27.200 Sep 4 09:02:54 penfold sshd[23630]: Failed password for invalid user app from 138.204.27.200 port 48805 ssh2 Sep 4 09:02:55 pe........ ------------------------------ |
2020-09-06 18:26:06 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.204.27.214 | attackspam | SSH BruteForce Attack |
2020-07-09 15:29:43 |
| 138.204.27.192 | attackbots | Jun 22 15:06:20 mockhub sshd[28590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.27.192 Jun 22 15:06:23 mockhub sshd[28590]: Failed password for invalid user developer from 138.204.27.192 port 23265 ssh2 ... |
2020-06-23 07:29:53 |
| 138.204.27.192 | attackspambots | Jun 5 15:15:53 vmi345603 sshd[8295]: Failed password for root from 138.204.27.192 port 18517 ssh2 ... |
2020-06-05 22:07:37 |
| 138.204.27.114 | attackspambots | Bruteforce detected by fail2ban |
2020-04-13 19:47:46 |
| 138.204.27.114 | attackbots | Apr 12 05:24:34 game-panel sshd[19027]: Failed password for root from 138.204.27.114 port 59697 ssh2 Apr 12 05:29:33 game-panel sshd[19235]: Failed password for root from 138.204.27.114 port 34193 ssh2 |
2020-04-12 14:08:23 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.204.27.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4803
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.204.27.200. IN A
;; AUTHORITY SECTION:
. 581 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020090600 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 06 18:26:00 CST 2020
;; MSG SIZE rcvd: 118200.27.204.138.in-addr.arpa domain name pointer 200.27.204.138.rfc6598.dynamic.copelfibra.com.br.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
200.27.204.138.in-addr.arpa name = 200.27.204.138.rfc6598.dynamic.copelfibra.com.br.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 190.85.183.3 | attack | suspicious action Sat, 29 Feb 2020 11:26:47 -0300 |
2020-02-29 23:38:22 |
| 212.67.79.218 | attackspam | port scan and connect, tcp 443 (https) |
2020-02-29 23:15:08 |
| 89.46.235.200 | attackspam | suspicious action Sat, 29 Feb 2020 11:26:44 -0300 |
2020-02-29 23:41:57 |
| 31.171.224.46 | attack | 20/2/29@09:26:55: FAIL: Alarm-Telnet address from=31.171.224.46 ... |
2020-02-29 23:30:31 |
| 142.93.1.100 | attackspambots | frenzy |
2020-02-29 23:17:18 |
| 58.27.132.70 | attackspam | Unauthorized connection attempt detected from IP address 58.27.132.70 to port 445 |
2020-02-29 23:26:05 |
| 117.247.86.117 | attackbotsspam | Feb 24 20:36:46 vzhost sshd[5970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.86.117 user=r.r Feb 24 20:36:48 vzhost sshd[5970]: Failed password for r.r from 117.247.86.117 port 43668 ssh2 Feb 24 20:42:16 vzhost sshd[6979]: Invalid user testuser from 117.247.86.117 Feb 24 20:42:16 vzhost sshd[6979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.86.117 Feb 24 20:42:18 vzhost sshd[6979]: Failed password for invalid user testuser from 117.247.86.117 port 40798 ssh2 Feb 24 20:45:14 vzhost sshd[7563]: Invalid user patrycja from 117.247.86.117 Feb 24 20:45:14 vzhost sshd[7563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.86.117 Feb 24 20:45:16 vzhost sshd[7563]: Failed password for invalid user patrycja from 117.247.86.117 port 38436 ssh2 Feb 24 20:48:19 vzhost sshd[8022]: Invalid user chad from 117.247.86.117 Feb 24 20:........ ------------------------------- |
2020-02-29 23:46:31 |
| 106.12.27.107 | attackbotsspam | pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.107 Failed password for invalid user admin from 106.12.27.107 port 59980 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.107 |
2020-02-29 23:37:24 |
| 49.235.12.159 | attackspam | Unauthorized SSH login attempts |
2020-02-29 23:09:53 |
| 112.85.42.188 | attackspambots | 02/29/2020-10:18:37.374817 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan |
2020-02-29 23:22:12 |
| 36.71.232.189 | attackspam | $f2bV_matches |
2020-02-29 23:06:59 |
| 190.145.224.18 | attackbotsspam | Feb 29 16:29:27 localhost sshd\[2620\]: Invalid user oracle from 190.145.224.18 port 36078 Feb 29 16:29:27 localhost sshd\[2620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.224.18 Feb 29 16:29:28 localhost sshd\[2620\]: Failed password for invalid user oracle from 190.145.224.18 port 36078 ssh2 |
2020-02-29 23:32:26 |
| 194.143.250.250 | attack | suspicious action Sat, 29 Feb 2020 11:27:10 -0300 |
2020-02-29 23:22:27 |
| 122.116.58.35 | attackbotsspam | Unauthorized connection attempt detected from IP address 122.116.58.35 to port 23 [J] |
2020-02-29 23:49:05 |
| 163.47.214.26 | attack | port scan and connect, tcp 1433 (ms-sql-s) |
2020-02-29 23:24:20 |