This IP address has been reported a total of
117
times from
85 distinct
sources.
152.42.238.64 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
2026-07-02T04:31:07.560758-07:00 RoblOracle sshd-session[169046]: Invalid user ftpuser from 152.42.2 ...
show more2026-07-02T04:31:07.560758-07:00 RoblOracle sshd-session[169046]: Invalid user ftpuser from 152.42.238.64 port 40672
2026-07-02T04:34:39.231534-07:00 RoblOracle sshd-session[169410]: Invalid user testuser from 152.42.238.64 port 34210
2026-07-02T04:38:03.922985-07:00 RoblOracle sshd-session[169757]: Invalid user jenkins from 152.42.238.64 port 56066
2026-07-02T04:41:29.070285-07:00 RoblOracle sshd-session[172572]: Invalid user test from 152.42.238.64 port 45754
2026-07-02T04:45:10.069509-07:00 RoblOracle sshd-session[172958]: Invalid user admin from 152.42.238.64 port 46826
...
show less
Jul 2 04:30:17 koppa sshd[137707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ...
show moreJul 2 04:30:17 koppa sshd[137707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.238.64
Jul 2 04:30:20 koppa sshd[137707]: Failed password for invalid user hadoop from 152.42.238.64 port 35690 ssh2
Jul 2 04:43:39 koppa sshd[137879]: User root from 152.42.238.64 not allowed because none of user's groups are listed in AllowGroups
...
show less
2026-07-02T09:54:04.452210+02:00 eclipse sshd-session[442766]: Disconnected from invalid user testft ...
show more2026-07-02T09:54:04.452210+02:00 eclipse sshd-session[442766]: Disconnected from invalid user testftp 152.42.238.64 port 60920 [preauth]
2026-07-02T09:56:21.168131+02:00 eclipse sshd-session[444174]: Disconnected from authenticating user root 152.42.238.64 port 39006 [preauth]
2026-07-02T09:58:36.272463+02:00 eclipse sshd-session[445495]: Disconnected from authenticating user root 152.42.238.64 port 56608 [preauth]
2026-07-02T10:00:46.945445+02:00 eclipse sshd-session[446835]: Invalid user user from 152.42.238.64 port 60340
2026-07-02T10:00:47.237019+02:00 eclipse sshd-session[446835]: Disconnected from invalid user user 152.42.238.64 port 60340 [preauth]
...
show less
2026-07-02T09:14:08.900181+02:00 ryzen-vm-big sshd[2172817]: pam_unix(sshd:auth): authentication fai ...
show more2026-07-02T09:14:08.900181+02:00 ryzen-vm-big sshd[2172817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.42.238.64
2026-07-02T09:14:11.364197+02:00 ryzen-vm-big sshd[2172817]: Failed password for invalid user centos from 152.42.238.64 port 55544 ssh2
...
show less
2026-07-02T09:00:43.504076+02:00 telekom-de-01.api.my-carrier-services.com sshd[57374]: Invalid user ...
show more2026-07-02T09:00:43.504076+02:00 telekom-de-01.api.my-carrier-services.com sshd[57374]: Invalid user ansible from 152.42.238.64 port 43464
2026-07-02T09:00:43.694385+02:00 telekom-de-01.api.my-carrier-services.com sshd[57374]: Disconnected from invalid user ansible 152.42.238.64 port 43464 [preauth]
2026-07-02T09:03:31.839134+02:00 telekom-de-01.api.my-carrier-services.com sshd[57443]: Disconnected from authenticating user root 152.42.238.64 port 34046 [preauth]
2026-07-02T09:05:27.076369+02:00 telekom-de-01.api.my-carrier-services.com sshd[57505]: Disconnected from authenticating user root 152.42.238.64 port 52410 [preauth]
2026-07-02T09:07:25.510734+02:00 telekom-de-01.api.my-carrier-services.com sshd[57549]: Disconnected from authenticating user root 152.42.238.64 port 58592 [preauth]
show less
Brute-Force
Showing 1 to
15
of 117 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ