131.72.45.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Yupnet Telecomunicacoes Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-10-06 15:31:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.72.45.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.72.45.139.			IN	A

;; AUTHORITY SECTION:
.			186	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 306 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 15:31:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

139.45.72.131.in-addr.arpa domain name pointer 131.72.45.139.yupnet.psi.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.45.72.131.in-addr.arpa	name = 131.72.45.139.yupnet.psi.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.141.31.50	attackbotsspam	Port probing on unauthorized port 26	2020-03-05 05:57:41
37.187.12.126	attack	Mar 4 20:15:51 MK-Soft-VM4 sshd[25183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.12.126 Mar 4 20:15:53 MK-Soft-VM4 sshd[25183]: Failed password for invalid user sara from 37.187.12.126 port 46132 ssh2 ...	2020-03-05 05:48:47
91.206.15.191	attack	Excessive Port-Scanning	2020-03-05 06:06:01
66.220.155.149	attackspambots	Mar 4 22:54:46 grey postfix/smtpd\[6761\]: NOQUEUE: reject: RCPT from 66-220-155-149.mail-mail.facebook.com\[66.220.155.149\]: 554 5.7.1 Service unavailable\; Client host \[66.220.155.149\] blocked using ix.dnsbl.manitu.net\; Your e-mail service was detected by mail.ixlab.de $NiX Spam$ as spamming at Wed, 04 Mar 2020 15:10:28 +0100. Your admin should visit http://www.dnsbl.manitu.net/lookup.php\?value=66.220.155.149\; from=\ to=\ proto=ESMTP helo=\<66-220-155-149.mail-mail.facebook.com\> ...	2020-03-05 05:58:26
93.157.117.61	attack	Unauthorized connection attempt from IP address 93.157.117.61 on Port 445(SMB)	2020-03-05 05:40:00
218.60.3.198	attack	$f2bV_matches	2020-03-05 05:52:47
218.75.207.11	attack	$f2bV_matches	2020-03-05 05:42:12
58.250.79.7	attackbots	2020-03-04T22:54:32.555305vps751288.ovh.net sshd\[24064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.250.79.7 user=root 2020-03-04T22:54:34.840497vps751288.ovh.net sshd\[24064\]: Failed password for root from 58.250.79.7 port 2830 ssh2 2020-03-04T22:54:37.685406vps751288.ovh.net sshd\[24066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.250.79.7 user=root 2020-03-04T22:54:39.990666vps751288.ovh.net sshd\[24066\]: Failed password for root from 58.250.79.7 port 2831 ssh2 2020-03-04T22:54:42.503054vps751288.ovh.net sshd\[24068\]: Invalid user admin from 58.250.79.7 port 2832	2020-03-05 06:00:04
106.13.6.116	attack	Mar 4 22:54:40 lnxded63 sshd[15144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.116	2020-03-05 06:02:34
212.227.164.151	attackbotsspam	Mar 4 23:10:23 srv01 postfix/smtpd[27915]: warning: unknown[212.227.164.151]: SASL PLAIN authentication failed: authentication failure Mar 4 23:10:23 srv01 postfix/smtpd[27915]: warning: unknown[212.227.164.151]: SASL LOGIN authentication failed: authentication failure Mar 4 23:10:23 srv01 postfix/smtpd[27915]: warning: unknown[212.227.164.151]: SASL CRAM-MD5 authentication failed: authentication failure ...	2020-03-05 06:10:48
105.184.44.207	attack	Honeypot attack, port: 445, PTR: 105-184-44-207.north.dsl.telkomsa.net.	2020-03-05 05:44:21
218.62.122.35	attack	$f2bV_matches	2020-03-05 05:50:19
83.34.73.190	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 04-03-2020 15:10:25.	2020-03-05 05:45:59
41.230.2.183	attackspam	Unauthorized connection attempt from IP address 41.230.2.183 on Port 445(SMB)	2020-03-05 05:47:34
5.39.93.158	attackspambots	Mar 4 22:54:33 * sshd[30553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.93.158 Mar 4 22:54:34 * sshd[30553]: Failed password for invalid user ellen from 5.39.93.158 port 40452 ssh2	2020-03-05 06:06:48

Recently Reported IPs

179.254.172.152	185.160.62.221	42.237.27.175	181.176.36.69
195.96.253.142	14.231.188.81	113.161.179.184	117.213.129.153
191.36.246.167	210.112.97.19	103.210.238.61	62.219.160.251
89.163.241.241	64.27.10.3	187.11.124.132	173.254.201.226
122.230.161.162	187.73.7.9	54.70.185.200	185.219.135.75