131.72.45.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Yupnet Telecomunicacoes Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-10-06 15:31:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.72.45.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.72.45.139.			IN	A

;; AUTHORITY SECTION:
.			186	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 306 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 15:31:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

139.45.72.131.in-addr.arpa domain name pointer 131.72.45.139.yupnet.psi.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.45.72.131.in-addr.arpa	name = 131.72.45.139.yupnet.psi.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.59	attackspam	2019-09-23T05:28:36.609216abusebot.cloudsearch.cf sshd\[14721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.59 user=root	2019-09-23 15:16:49
128.199.177.224	attackspambots	Sep 23 06:42:12 venus sshd\[1541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.177.224 user=root Sep 23 06:42:14 venus sshd\[1541\]: Failed password for root from 128.199.177.224 port 60964 ssh2 Sep 23 06:47:02 venus sshd\[1614\]: Invalid user aivar from 128.199.177.224 port 45070 ...	2019-09-23 15:05:44
138.68.93.14	attackspambots	$f2bV_matches	2019-09-23 14:40:07
2607:5300:203:4c8::	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-09-23 15:02:35
122.254.1.68	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-23 15:14:53
150.254.123.96	attack	Sep 23 06:55:35 tuotantolaitos sshd[17287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.254.123.96 Sep 23 06:55:38 tuotantolaitos sshd[17287]: Failed password for invalid user user from 150.254.123.96 port 47808 ssh2 ...	2019-09-23 14:32:35
138.68.210.82	attack	firewall-block, port(s): 21/tcp	2019-09-23 15:03:49
117.2.161.11	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 23-09-2019 04:55:22.	2019-09-23 14:51:04
124.113.219.240	attack	Brute force SMTP login attempts.	2019-09-23 15:04:16
222.186.173.201	attack	Sep 23 09:04:08 OPSO sshd\[29784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Sep 23 09:04:10 OPSO sshd\[29784\]: Failed password for root from 222.186.173.201 port 23040 ssh2 Sep 23 09:04:15 OPSO sshd\[29784\]: Failed password for root from 222.186.173.201 port 23040 ssh2 Sep 23 09:04:19 OPSO sshd\[29784\]: Failed password for root from 222.186.173.201 port 23040 ssh2 Sep 23 09:04:23 OPSO sshd\[29784\]: Failed password for root from 222.186.173.201 port 23040 ssh2	2019-09-23 15:05:13
40.117.237.99	attack	Port Scan: TCP/443	2019-09-23 14:29:33
117.4.34.77	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 23-09-2019 04:55:22.	2019-09-23 14:50:41
106.12.88.32	attackspam	Sep 23 03:01:36 TORMINT sshd\[16615\]: Invalid user profile from 106.12.88.32 Sep 23 03:01:36 TORMINT sshd\[16615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.88.32 Sep 23 03:01:38 TORMINT sshd\[16615\]: Failed password for invalid user profile from 106.12.88.32 port 46804 ssh2 ...	2019-09-23 15:06:41
14.245.16.130	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 23-09-2019 04:55:24.	2019-09-23 14:47:19
58.69.194.65	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 23-09-2019 04:55:29.	2019-09-23 14:39:16

Recently Reported IPs

179.254.172.152	185.160.62.221	42.237.27.175	181.176.36.69
195.96.253.142	14.231.188.81	113.161.179.184	117.213.129.153
191.36.246.167	210.112.97.19	103.210.238.61	62.219.160.251
89.163.241.241	64.27.10.3	187.11.124.132	173.254.201.226
122.230.161.162	187.73.7.9	54.70.185.200	185.219.135.75