City: unknown
Region: unknown
Country: Argentina
Internet Service Provider: AMX Argentina S.A.
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attack | Jul 17 23:11:31 MK-Soft-VM7 sshd\[26538\]: Invalid user fps from 138.99.7.2 port 47272 Jul 17 23:11:31 MK-Soft-VM7 sshd\[26538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.2 Jul 17 23:11:33 MK-Soft-VM7 sshd\[26538\]: Failed password for invalid user fps from 138.99.7.2 port 47272 ssh2 ... |
2019-07-18 08:17:06 |
| attack | Automatic report - Web App Attack |
2019-07-08 11:39:17 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 138.99.79.192 | attackspam | DATE:2020-09-30 22:38:59, IP:138.99.79.192, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-10-02 04:31:18 |
| 138.99.79.192 | attackspambots | DATE:2020-09-30 22:38:59, IP:138.99.79.192, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-10-01 20:47:39 |
| 138.99.79.192 | attackspambots | DATE:2020-09-30 22:38:59, IP:138.99.79.192, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq) |
2020-10-01 12:59:50 |
| 138.99.7.29 | attack | Sep 21 14:28:02 localhost sshd\[4429\]: Invalid user testmail1 from 138.99.7.29 Sep 21 14:28:02 localhost sshd\[4429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 Sep 21 14:28:04 localhost sshd\[4429\]: Failed password for invalid user testmail1 from 138.99.7.29 port 56880 ssh2 Sep 21 14:37:33 localhost sshd\[5102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 user=root Sep 21 14:37:36 localhost sshd\[5102\]: Failed password for root from 138.99.7.29 port 39850 ssh2 ... |
2020-09-22 01:46:54 |
| 138.99.7.29 | attack | 2020-09-21 03:31:28,046 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 04:13:22,125 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 05:01:54,220 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 05:42:45,401 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 10:30:53,148 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 ... |
2020-09-21 17:30:54 |
| 138.99.7.29 | attack | Automatic report - Banned IP Access |
2020-08-24 04:40:45 |
| 138.99.7.29 | attack | 2020-08-11T15:59:35.098926ks3355764 sshd[23602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 user=root 2020-08-11T15:59:37.675376ks3355764 sshd[23602]: Failed password for root from 138.99.7.29 port 58834 ssh2 ... |
2020-08-11 23:21:48 |
| 138.99.7.29 | attackbots | *Port Scan* detected from 138.99.7.29 (AR/Argentina/Buenos Aires F.D./Buenos Aires/host29.138-99-7.telmex.net.ar). 4 hits in the last 255 seconds |
2020-08-07 06:27:04 |
| 138.99.7.29 | attack | Jul 23 06:01:23 h2427292 sshd\[14200\]: Invalid user administrador from 138.99.7.29 Jul 23 06:01:23 h2427292 sshd\[14200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 Jul 23 06:01:25 h2427292 sshd\[14200\]: Failed password for invalid user administrador from 138.99.7.29 port 36738 ssh2 ... |
2020-07-23 12:05:03 |
| 138.99.76.14 | attackspambots | Automatic report - Port Scan Attack |
2020-05-08 20:55:22 |
| 138.99.7.54 | attackspambots | Apr 9 15:38:06 santamaria sshd\[12892\]: Invalid user data from 138.99.7.54 Apr 9 15:38:06 santamaria sshd\[12892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 Apr 9 15:38:08 santamaria sshd\[12892\]: Failed password for invalid user data from 138.99.7.54 port 55902 ssh2 ... |
2020-04-10 03:15:04 |
| 138.99.7.54 | attackspam | Apr 7 19:32:31 cloud sshd[1753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 Apr 7 19:32:32 cloud sshd[1753]: Failed password for invalid user ubuntu from 138.99.7.54 port 54398 ssh2 |
2020-04-08 04:43:54 |
| 138.99.7.54 | attackbots | Apr 2 07:05:32 server1 sshd\[27542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 user=root Apr 2 07:05:34 server1 sshd\[27542\]: Failed password for root from 138.99.7.54 port 46016 ssh2 Apr 2 07:07:41 server1 sshd\[28230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 user=root Apr 2 07:07:43 server1 sshd\[28230\]: Failed password for root from 138.99.7.54 port 45624 ssh2 Apr 2 07:09:53 server1 sshd\[28906\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 user=root ... |
2020-04-02 23:29:47 |
| 138.99.7.137 | attack | Feb 23 11:39:56 *** sshd[19994]: Invalid user debian-spamd from 138.99.7.137 |
2020-02-23 20:55:06 |
| 138.99.79.231 | attackspam | Automatic report - Port Scan Attack |
2020-02-18 03:17:45 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.7.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13151
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.99.7.2. IN A
;; AUTHORITY SECTION:
. 566 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019070701 1800 900 604800 86400
;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 11:39:08 CST 2019
;; MSG SIZE rcvd: 1142.7.99.138.in-addr.arpa domain name pointer host2.138-99-7.telmex.net.ar.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
2.7.99.138.in-addr.arpa name = host2.138-99-7.telmex.net.ar.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 202.88.234.107 | attack | Dec 12 21:37:54 sso sshd[23318]: Failed password for root from 202.88.234.107 port 55665 ssh2 Dec 12 21:43:51 sso sshd[24032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.88.234.107 ... |
2019-12-13 05:45:48 |
| 46.29.255.104 | attack | Autoban 46.29.255.104 AUTH/CONNECT |
2019-12-13 05:43:24 |
| 45.93.20.170 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-13 05:38:13 |
| 5.133.66.104 | attackspambots | Autoban 5.133.66.104 AUTH/CONNECT |
2019-12-13 05:27:10 |
| 79.137.2.105 | attack | Dec 12 15:37:01 amit sshd\[17498\]: Invalid user oneal from 79.137.2.105 Dec 12 15:37:01 amit sshd\[17498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.2.105 Dec 12 15:37:03 amit sshd\[17498\]: Failed password for invalid user oneal from 79.137.2.105 port 33946 ssh2 ... |
2019-12-13 05:28:26 |
| 49.196.171.45 | attack | Autoban 49.196.171.45 AUTH/CONNECT |
2019-12-13 05:36:08 |
| 46.29.79.57 | attackbots | Autoban 46.29.79.57 AUTH/CONNECT |
2019-12-13 05:43:39 |
| 46.246.138.180 | attackbots | Autoban 46.246.138.180 AUTH/CONNECT |
2019-12-13 05:47:03 |
| 87.196.73.39 | attackbotsspam | [Aegis] @ 2019-12-12 14:37:00 0000 -> Dovecot brute force attack (multiple auth failures). |
2019-12-13 05:43:12 |
| 5.133.66.113 | attackspambots | Autoban 5.133.66.113 AUTH/CONNECT |
2019-12-13 05:23:13 |
| 5.133.66.121 | attackbotsspam | Autoban 5.133.66.121 AUTH/CONNECT |
2019-12-13 05:20:25 |
| 5.133.66.12 | attack | Autoban 5.133.66.12 AUTH/CONNECT |
2019-12-13 05:21:30 |
| 49.248.154.210 | attack | Autoban 49.248.154.210 AUTH/CONNECT |
2019-12-13 05:32:52 |
| 110.164.189.53 | attackbots | $f2bV_matches |
2019-12-13 05:44:31 |
| 5.133.66.127 | attack | Autoban 5.133.66.127 AUTH/CONNECT |
2019-12-13 05:16:06 |