City: Salto do Lontra
Region: Parana
Country: Brazil
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.255.73.253 | attack | Unauthorized connection attempt detected from IP address 138.255.73.253 to port 88 [J] |
2020-03-02 13:34:57 |
| 138.255.7.189 | attackspam | Automatic report - Port Scan Attack |
2019-10-18 01:59:39 |
| 138.255.7.234 | attackbots | Portscan or hack attempt detected by psad/fwsnort |
2019-09-07 04:34:13 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.255.7.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38971
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.255.7.221. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019091100 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 00:59:51 CST 2019
;; MSG SIZE rcvd: 117221.7.255.138.in-addr.arpa domain name pointer 138-255-7-221.megaprovedor.net.br.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
221.7.255.138.in-addr.arpa name = 138-255-7-221.megaprovedor.net.br.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 51.75.52.118 | attackbots | SSH Brute-Forcing (server2) |
2020-09-10 02:08:17 |
| 13.85.152.27 | attackbotsspam | [ssh] SSH attack |
2020-09-10 02:29:23 |
| 156.211.175.80 | attackbotsspam | 1599583676 - 09/08/2020 18:47:56 Host: 156.211.175.80/156.211.175.80 Port: 445 TCP Blocked |
2020-09-10 02:21:44 |
| 45.143.223.11 | attack | [2020-09-09 14:41:54] NOTICE[1239][C-00000585] chan_sip.c: Call from '' (45.143.223.11:62604) to extension '9011441904911034' rejected because extension not found in context 'public'. [2020-09-09 14:41:54] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-09T14:41:54.648-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441904911034",SessionID="0x7f4d4804ac88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.223.11/62604",ACLName="no_extension_match" [2020-09-09 14:42:05] NOTICE[1239][C-00000586] chan_sip.c: Call from '' (45.143.223.11:51694) to extension '000441904911034' rejected because extension not found in context 'public'. [2020-09-09 14:42:05] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-09T14:42:05.604-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="000441904911034",SessionID="0x7f4d480d6c18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ... |
2020-09-10 02:45:35 |
| 182.61.144.110 | attack | ... |
2020-09-10 02:28:40 |
| 139.59.83.179 | attackbotsspam | Fail2Ban Ban Triggered |
2020-09-10 02:13:20 |
| 58.211.245.181 | attackbots | Sep 9 04:49:06 master sshd[30841]: Failed password for root from 58.211.245.181 port 33605 ssh2 |
2020-09-10 02:10:09 |
| 103.103.124.226 | attackspambots | Attempted Email Sync. Password Hacking/Probing. |
2020-09-10 02:40:40 |
| 189.140.55.175 | attack | 20/9/8@12:47:47: FAIL: Alarm-Intrusion address from=189.140.55.175 ... |
2020-09-10 02:28:04 |
| 136.49.210.126 | attackbots | Sep 9 11:43:44 propaganda sshd[6452]: Connection from 136.49.210.126 port 54404 on 10.0.0.161 port 22 rdomain "" Sep 9 11:43:44 propaganda sshd[6452]: Invalid user pi from 136.49.210.126 port 54404 |
2020-09-10 02:47:43 |
| 94.192.83.189 | attackspam | Sep 9 13:59:14 firewall sshd[27738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.192.83.189 Sep 9 13:59:14 firewall sshd[27738]: Invalid user pi from 94.192.83.189 Sep 9 13:59:16 firewall sshd[27738]: Failed password for invalid user pi from 94.192.83.189 port 57042 ssh2 ... |
2020-09-10 02:46:21 |
| 94.23.195.200 | attackbotsspam | Automatic report - XMLRPC Attack |
2020-09-10 02:18:11 |
| 182.61.164.198 | attackspambots | $f2bV_matches |
2020-09-10 02:47:24 |
| 175.24.61.126 | attackbots | ... |
2020-09-10 02:27:02 |
| 103.145.12.14 | attackspambots | ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 457 |
2020-09-10 02:23:02 |