JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 218.92.61.42

218.92.61.42 was found in our database!

This IP was reported 921 times. Confidence of Abuse is 0%: ?

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 218.92.61.42

Whois 218.92.61.42

IP Abuse Reports for 218.92.61.42:

This IP address has been reported a total of 921 times from 209 distinct sources. 218.92.61.42 was first reported on July 18th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇪🇸 didevi	2024-08-28 23:20:06 (1 year ago)	2024-08-29T01:20:05.931516+02:00 mail01 postfix/smtpd[3273047]: warning: unknown[218.92.61.42]: SASL ... show more 2024-08-29T01:20:05.931516+02:00 mail01 postfix/smtpd[3273047]: warning: unknown[218.92.61.42]: SASL LOGIN authentication failed: authentication failure, sasl_username=fran show less	Brute-Force
🇹🇷 rtbh.com.tr	2024-08-28 20:55:11 (1 year ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇫🇷 Sipherion	2024-08-28 04:16:42 (1 year ago)	Fail2Ban - \(SSHD\) Brute-force SSH server from this IP ...	Brute-Force SSH
Anonymous	2024-08-26 12:12:55 (1 year ago)	postfix-sasl	Brute-Force Web App Attack
🇷🇸 Scan	2024-08-26 11:25:23 (1 year ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇹🇭 thaizone.com	2024-08-25 01:25:34 (1 year ago)	Mail credential brute-force attack (SM3) #1	Email Spam Brute-Force
🇩🇪 GAS	2024-08-24 22:07:40 (1 year ago)		Port Scan Hacking
Anonymous	2024-08-24 13:01:56 (1 year ago)	RdpGuard detected brute-force attempt on IMAP	Brute-Force
🇩🇪 GAS	2024-08-24 08:24:14 (1 year ago)	I0824 10:24:08.656272 1 client.go:99] CLOSE host=218.92.61.42 port=35166 time=22.725749659 byt ... show more I0824 10:24:08.656272 1 client.go:99] CLOSE host=218.92.61.42 port=35166 time=22.725749659 bytes=40 ... show less	Brute-Force SSH
🇷🇸 Scan	2024-08-24 05:10:24 (1 year ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
Anonymous	2024-08-23 10:43:18 (1 year ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇩🇪 jomu	2024-08-23 08:44:00 (1 year ago)	2024-08-23T08:43:58.102457+00:00 jomu postfix/smtpd[3263743]: warning: unknown[218.92.61.42]: SASL P ... show more 2024-08-23T08:43:58.102457+00:00 jomu postfix/smtpd[3263743]: warning: unknown[218.92.61.42]: SASL PLAIN authentication failed: (reason unavailable), sasl_username=joern 2024-08-23T08:43:59.781923+00:00 jomu postfix/smtpd[3263743]: lost connection after AUTH from unknown[218.92.61.42] ... show less	Brute-Force
Anonymous	2024-08-21 16:30:09 (1 year ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇨🇦 hostseries	2024-08-21 12:35:14 (1 year ago)	Trigger: LF_DISTATTACK	Brute-Force
Anonymous	2024-08-19 00:09:08 (1 year ago)	SMTP brute force - auth failed	Brute-Force Exploited Host

Showing 1 to 15 of 921 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 195.230.103.242

🇺🇸 57.141.0.17

🇰🇷 221.162.218.85

🇰🇷 211.232.210.235

🇺🇸 191.96.227.199

🇳🇱 176.65.139.222

🇵🇰 124.109.45.40

🇨🇳 117.177.102.79

🇮🇳 115.241.1.85

🇧🇬 78.128.114.22

🇫🇮 77.42.86.68

🇺🇸 45.194.67.2

🇺🇸 34.197.70.90

🇩🇪 8.209.127.2

🇧🇷 191.232.53.194

🇺🇸 174.106.84.9

🇺🇸 162.216.150.47

🇷🇴 80.94.92.234

🇮🇹 2a00:1450:4025:1803::128

🇩🇪 217.250.179.244