113.172.202.139

Basic Info

City: Hanoi

Region: Hanoi

Country: Vietnam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: VNPT Corp

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Jul 27 18:01:43 andromeda sshd\[3068\]: Invalid user admin from 113.172.202.139 port 49248 Jul 27 18:01:44 andromeda sshd\[3068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.202.139 Jul 27 18:01:46 andromeda sshd\[3068\]: Failed password for invalid user admin from 113.172.202.139 port 49248 ssh2	2019-07-28 02:34:56

Type

Details

Datetime

attackbots

Jul 27 18:01:43 andromeda sshd\[3068\]: Invalid user admin from 113.172.202.139 port 49248
Jul 27 18:01:44 andromeda sshd\[3068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.202.139
Jul 27 18:01:46 andromeda sshd\[3068\]: Failed password for invalid user admin from 113.172.202.139 port 49248 ssh2

2019-07-28 02:34:56

Comments on same subnet:

IP	Type	Details	Datetime
113.172.202.237	attackspambots	SSH bruteforce	2019-07-19 07:46:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.172.202.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60262
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.172.202.139.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 28 02:34:48 CST 2019
;; MSG SIZE  rcvd: 119

Host info

139.202.172.113.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.202.172.113.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.31.226.188	attackbotsspam	Scanned 1 times in the last 24 hours on port 5060	2020-09-11 23:53:49
176.148.130.19	attack	Sep 10 22:01:06 ssh2 sshd[18387]: User root from rqp06-h01-176-148-130-19.dsl.sta.abo.bbox.fr not allowed because not listed in AllowUsers Sep 10 22:01:06 ssh2 sshd[18387]: Failed password for invalid user root from 176.148.130.19 port 47558 ssh2 Sep 10 22:01:07 ssh2 sshd[18387]: Connection closed by invalid user root 176.148.130.19 port 47558 [preauth] ...	2020-09-11 23:35:48
182.61.10.28	attackbots	Sep 11 16:05:13 h2427292 sshd\[3426\]: Invalid user prewitt from 182.61.10.28 Sep 11 16:05:13 h2427292 sshd\[3426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.10.28 Sep 11 16:05:15 h2427292 sshd\[3426\]: Failed password for invalid user prewitt from 182.61.10.28 port 35536 ssh2 ...	2020-09-11 23:23:03
210.5.155.142	attackspam	SSH break in attempt ...	2020-09-11 23:27:14
75.86.184.75	attackspam	Sep 11 18:03:33 root sshd[22318]: Invalid user user from 75.86.184.75 ...	2020-09-11 23:32:28
45.164.8.244	attackbotsspam	Sep 11 14:48:30 instance-2 sshd[13634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.164.8.244 Sep 11 14:48:32 instance-2 sshd[13634]: Failed password for invalid user oracle from 45.164.8.244 port 60022 ssh2 Sep 11 14:53:34 instance-2 sshd[13745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.164.8.244	2020-09-11 23:16:38
145.239.82.87	attackspambots	$f2bV_matches	2020-09-11 23:28:00
175.206.43.79	attack	Sep 10 18:55:45 db sshd[26783]: User root from 175.206.43.79 not allowed because none of user's groups are listed in AllowGroups ...	2020-09-11 23:17:18
200.89.154.99	attackbotsspam	fail2ban -- 200.89.154.99 ...	2020-09-11 23:13:20
111.71.36.30	attack	1599756914 - 09/10/2020 18:55:14 Host: 111.71.36.30/111.71.36.30 Port: 445 TCP Blocked	2020-09-11 23:44:22
36.111.182.49	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 14 - port: 24405 proto: tcp cat: Misc Attackbytes: 60	2020-09-11 23:53:25
211.35.140.194	attack	Scanned 3 times in the last 24 hours on port 22	2020-09-11 23:21:29
222.221.91.153	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-11 23:20:11
111.175.186.150	attackspam	Sep 11 13:42:54 plex-server sshd[859804]: Failed password for root from 111.175.186.150 port 3935 ssh2 Sep 11 13:44:15 plex-server sshd[860444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.175.186.150 user=root Sep 11 13:44:17 plex-server sshd[860444]: Failed password for root from 111.175.186.150 port 42274 ssh2 Sep 11 13:47:09 plex-server sshd[861673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.175.186.150 user=root Sep 11 13:47:12 plex-server sshd[861673]: Failed password for root from 111.175.186.150 port 55603 ssh2 ...	2020-09-11 23:55:09
58.226.79.146	attack	Invalid user netman from 58.226.79.146 port 34214	2020-09-11 23:40:33

Recently Reported IPs

40.99.255.247	66.135.208.135	135.183.114.208	208.149.87.150
81.179.85.75	184.45.48.231	203.123.136.199	80.142.50.228
108.171.215.102	36.237.119.195	74.90.98.142	68.183.95.238
164.115.143.22	134.44.105.124	138.224.27.113	52.254.152.100
141.141.221.36	193.151.137.33	35.159.75.70	6.161.123.88