202.150.142.38

Basic Info

City: Bandung

Region: West Java

Country: Indonesia

Internet Service Provider: PT. Comtronics Systems

Hostname: unknown

Organization: PT Comtronics Systems

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-06-28T17:25:53.833984abusebot-8.cloudsearch.cf sshd\[29457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host38.subnet142.comnet.net.id user=root	2019-06-29 02:06:11
attackspam	Jun 26 06:50:30 thevastnessof sshd[20852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.150.142.38 ...	2019-06-26 15:09:31
attackbots	Jun 25 09:48:42 plusreed sshd[22985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.150.142.38 user=root Jun 25 09:48:43 plusreed sshd[22985]: Failed password for root from 202.150.142.38 port 49735 ssh2 Jun 25 09:48:45 plusreed sshd[22985]: Failed password for root from 202.150.142.38 port 49735 ssh2 Jun 25 09:48:42 plusreed sshd[22985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.150.142.38 user=root Jun 25 09:48:43 plusreed sshd[22985]: Failed password for root from 202.150.142.38 port 49735 ssh2 Jun 25 09:48:45 plusreed sshd[22985]: Failed password for root from 202.150.142.38 port 49735 ssh2 Jun 25 09:48:42 plusreed sshd[22985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.150.142.38 user=root Jun 25 09:48:43 plusreed sshd[22985]: Failed password for root from 202.150.142.38 port 49735 ssh2 Jun 25 09:48:45 plusreed sshd[22985]: Failed password for root from 202.1	2019-06-25 22:58:17
attackspambots	SSH Brute Force, server-1 sshd[30264]: Failed password for root from 202.150.142.38 port 37253 ssh2	2019-06-24 04:51:00
attackspam	Jun 22 21:00:05 mail sshd\[5808\]: Invalid user admin from 202.150.142.38 Jun 22 21:00:05 mail sshd\[5808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.150.142.38 Jun 22 21:00:07 mail sshd\[5808\]: Failed password for invalid user admin from 202.150.142.38 port 41104 ssh2 ...	2019-06-23 05:38:10
attackbots	Jun 22 12:05:54 sshgateway sshd\[6207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.150.142.38 user=root Jun 22 12:05:55 sshgateway sshd\[6207\]: Failed password for root from 202.150.142.38 port 53680 ssh2 Jun 22 12:06:06 sshgateway sshd\[6207\]: error: maximum authentication attempts exceeded for root from 202.150.142.38 port 53680 ssh2 \[preauth\]	2019-06-22 21:06:53
attack	port scan and connect, tcp 22 (ssh)	2019-06-21 17:44:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.150.142.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43761
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.150.142.38.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040400 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 02:06:49 +08 2019
;; MSG SIZE  rcvd: 118

Host info

38.142.150.202.in-addr.arpa domain name pointer host38.subnet142.comnet.net.id.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
38.142.150.202.in-addr.arpa	name = host38.subnet142.comnet.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.20.231.162	attackbotsspam	Attempted connection to port 1433.	2020-03-11 20:00:45
185.202.1.240	attackspam	Mar 11 04:57:09 server1 sshd\[21748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.202.1.240 user=root Mar 11 04:57:11 server1 sshd\[21748\]: Failed password for root from 185.202.1.240 port 11594 ssh2 Mar 11 04:57:12 server1 sshd\[21788\]: Invalid user admin from 185.202.1.240 Mar 11 04:57:12 server1 sshd\[21788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.202.1.240 Mar 11 04:57:14 server1 sshd\[21788\]: Failed password for invalid user admin from 185.202.1.240 port 13053 ssh2 ...	2020-03-11 19:58:46
179.61.194.152	attack	SafeMask (unknown [179.61.194.152])	2020-03-11 19:32:09
112.175.232.155	attackbotsspam	Mar 11 REMOVED sshd\[7866\]: Invalid user REMOVED from 112.175.232.155 Mar 11 REMOVED sshd\[7886\]: Invalid user REMOVED from 112.175.232.155 Mar 11 REMOVED sshd\[7903\]: Invalid user REMOVED from 112.175.232.155	2020-03-11 19:42:56
197.44.186.28	attack	Unauthorized connection attempt from IP address 197.44.186.28 on Port 445(SMB)	2020-03-11 19:40:43
198.108.67.32	attackbotsspam	" "	2020-03-11 19:34:42
36.82.96.242	attackspambots	Attempted connection to port 445.	2020-03-11 20:05:53
91.205.163.21	attackbotsspam	Attempted connection to port 445.	2020-03-11 19:50:24
167.172.228.143	attack	SSH login attempts.	2020-03-11 19:32:45
213.210.66.158	attackbotsspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-03-11 20:06:36
158.46.186.35	attackspambots	Chat Spam	2020-03-11 19:56:30
72.28.127.117	attackspambots	SSH login attempts.	2020-03-11 19:36:02
68.183.49.254	attackspambots	Attempted connection to port 80.	2020-03-11 19:57:34
51.254.123.127	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.123.127 user=root Failed password for root from 51.254.123.127 port 54346 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.123.127 user=root Failed password for root from 51.254.123.127 port 58599 ssh2 Invalid user martin from 51.254.123.127 port 34628	2020-03-11 19:28:14
46.218.7.227	attack	Mar 11 12:31:51 vps691689 sshd[18805]: Failed password for root from 46.218.7.227 port 33162 ssh2 Mar 11 12:37:40 vps691689 sshd[18960]: Failed password for root from 46.218.7.227 port 41838 ssh2 ...	2020-03-11 19:44:00

Recently Reported IPs

154.8.139.43	197.57.186.179	177.100.58.53	159.89.199.216
40.92.72.78	211.172.246.64	189.192.104.20	171.43.191.98
24.50.242.37	113.119.110.241	74.82.47.20	14.98.4.82
192.155.90.65	89.248.172.175	46.101.59.109	193.112.242.26
59.45.222.24	54.39.20.14	199.122.127.224	119.29.9.228