131.72.45.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Yupnet Telecomunicacoes Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-10-06 15:31:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.72.45.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.72.45.139.			IN	A

;; AUTHORITY SECTION:
.			186	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 306 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 15:31:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

139.45.72.131.in-addr.arpa domain name pointer 131.72.45.139.yupnet.psi.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.45.72.131.in-addr.arpa	name = 131.72.45.139.yupnet.psi.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.154.94.252	attack	Triggered by Fail2Ban at Vostok web server	2019-12-07 17:52:35
222.186.175.148	attackspam	2019-12-07T09:29:36.211605abusebot-3.cloudsearch.cf sshd\[9583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root	2019-12-07 17:34:38
52.143.153.32	attackspambots	Dec 7 09:29:28 * sshd[3951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.143.153.32 Dec 7 09:29:31 * sshd[3951]: Failed password for invalid user finkel from 52.143.153.32 port 44086 ssh2	2019-12-07 17:22:03
185.17.41.198	attack	Dec 6 23:14:35 hanapaa sshd\[11676\]: Invalid user ariffi from 185.17.41.198 Dec 6 23:14:35 hanapaa sshd\[11676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vi185-17-41-198.vibiznes.pl Dec 6 23:14:37 hanapaa sshd\[11676\]: Failed password for invalid user ariffi from 185.17.41.198 port 44408 ssh2 Dec 6 23:20:35 hanapaa sshd\[12203\]: Invalid user olli from 185.17.41.198 Dec 6 23:20:35 hanapaa sshd\[12203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vi185-17-41-198.vibiznes.pl	2019-12-07 17:46:54
91.215.244.12	attack	<6 unauthorized SSH connections	2019-12-07 17:47:46
221.194.137.28	attackspam	[Aegis] @ 2019-12-07 10:14:09 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-07 17:45:01
1.55.64.3	attackspam	Unauthorised access (Dec 7) SRC=1.55.64.3 LEN=52 TTL=109 ID=7610 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 7) SRC=1.55.64.3 LEN=52 TTL=109 ID=104 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-07 17:28:43
70.132.63.86	attackspambots	Automatic report generated by Wazuh	2019-12-07 17:24:56
128.199.137.252	attack	SSH bruteforce	2019-12-07 17:19:39
222.186.173.180	attack	Dec 7 06:20:08 firewall sshd[8879]: Failed password for root from 222.186.173.180 port 7648 ssh2 Dec 7 06:20:11 firewall sshd[8879]: Failed password for root from 222.186.173.180 port 7648 ssh2 Dec 7 06:20:15 firewall sshd[8879]: Failed password for root from 222.186.173.180 port 7648 ssh2 ...	2019-12-07 17:20:36
118.98.96.184	attack	Dec 7 03:51:42 TORMINT sshd\[19122\]: Invalid user mardesich from 118.98.96.184 Dec 7 03:51:42 TORMINT sshd\[19122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.98.96.184 Dec 7 03:51:44 TORMINT sshd\[19122\]: Failed password for invalid user mardesich from 118.98.96.184 port 60629 ssh2 ...	2019-12-07 17:24:02
222.186.180.17	attack	2019-12-07T09:34:54.866405abusebot.cloudsearch.cf sshd\[26338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root	2019-12-07 17:37:06
58.215.121.36	attackspam	Dec 6 22:59:15 kapalua sshd\[20334\]: Invalid user jillian1234 from 58.215.121.36 Dec 6 22:59:15 kapalua sshd\[20334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.215.121.36 Dec 6 22:59:17 kapalua sshd\[20334\]: Failed password for invalid user jillian1234 from 58.215.121.36 port 6709 ssh2 Dec 6 23:07:24 kapalua sshd\[21111\]: Invalid user pallansch from 58.215.121.36 Dec 6 23:07:24 kapalua sshd\[21111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.215.121.36	2019-12-07 17:28:08
106.12.74.123	attack	Dec 6 23:29:24 hpm sshd\[18510\]: Invalid user mans from 106.12.74.123 Dec 6 23:29:24 hpm sshd\[18510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.123 Dec 6 23:29:27 hpm sshd\[18510\]: Failed password for invalid user mans from 106.12.74.123 port 52024 ssh2 Dec 6 23:35:56 hpm sshd\[19109\]: Invalid user ipd from 106.12.74.123 Dec 6 23:35:56 hpm sshd\[19109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.123	2019-12-07 17:45:22
103.248.85.244	attackbots	Unauthorized connection attempt from IP address 103.248.85.244	2019-12-07 18:00:24

Recently Reported IPs

179.254.172.152	185.160.62.221	42.237.27.175	181.176.36.69
195.96.253.142	14.231.188.81	113.161.179.184	117.213.129.153
191.36.246.167	210.112.97.19	103.210.238.61	62.219.160.251
89.163.241.241	64.27.10.3	187.11.124.132	173.254.201.226
122.230.161.162	187.73.7.9	54.70.185.200	185.219.135.75