202.39.70.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	5x Failed Password	2020-05-04 21:33:25
attackspambots	k+ssh-bruteforce	2020-05-02 19:08:12
attack	Apr 29 18:20:14 hpm sshd\[19832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202-39-70-5.hinet-ip.hinet.net user=root Apr 29 18:20:16 hpm sshd\[19832\]: Failed password for root from 202.39.70.5 port 36302 ssh2 Apr 29 18:23:34 hpm sshd\[20053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202-39-70-5.hinet-ip.hinet.net user=root Apr 29 18:23:35 hpm sshd\[20053\]: Failed password for root from 202.39.70.5 port 35180 ssh2 Apr 29 18:26:52 hpm sshd\[20243\]: Invalid user connect from 202.39.70.5	2020-04-30 12:52:46
attackbots	SSH Brute Force	2020-04-09 19:53:47
attackbotsspam	sshd jail - ssh hack attempt	2020-04-07 04:59:36
attackspam	Invalid user liaohaoran from 202.39.70.5 port 55512	2020-03-24 07:43:57
attack	detected by Fail2Ban	2020-03-19 18:59:38
attack	Mar 19 00:59:55 ArkNodeAT sshd\[12073\]: Invalid user rstudio-server from 202.39.70.5 Mar 19 00:59:55 ArkNodeAT sshd\[12073\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Mar 19 00:59:57 ArkNodeAT sshd\[12073\]: Failed password for invalid user rstudio-server from 202.39.70.5 port 56986 ssh2	2020-03-19 08:00:50
attackbotsspam	Mar 3 16:45:49 l02a sshd[31004]: Invalid user ubuntu from 202.39.70.5 Mar 3 16:45:50 l02a sshd[31004]: Failed password for invalid user ubuntu from 202.39.70.5 port 59526 ssh2 Mar 3 16:45:49 l02a sshd[31004]: Invalid user ubuntu from 202.39.70.5 Mar 3 16:45:50 l02a sshd[31004]: Failed password for invalid user ubuntu from 202.39.70.5 port 59526 ssh2	2020-03-04 02:52:15
attackbotsspam	Feb 20 06:57:23 h1745522 sshd[30544]: Invalid user XiaB from 202.39.70.5 port 40402 Feb 20 06:57:23 h1745522 sshd[30544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Feb 20 06:57:23 h1745522 sshd[30544]: Invalid user XiaB from 202.39.70.5 port 40402 Feb 20 06:57:25 h1745522 sshd[30544]: Failed password for invalid user XiaB from 202.39.70.5 port 40402 ssh2 Feb 20 07:00:07 h1745522 sshd[30627]: Invalid user robert from 202.39.70.5 port 35210 Feb 20 07:00:07 h1745522 sshd[30627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Feb 20 07:00:07 h1745522 sshd[30627]: Invalid user robert from 202.39.70.5 port 35210 Feb 20 07:00:09 h1745522 sshd[30627]: Failed password for invalid user robert from 202.39.70.5 port 35210 ssh2 Feb 20 07:02:53 h1745522 sshd[30696]: Invalid user david from 202.39.70.5 port 58280 ...	2020-02-20 14:23:09
attackbotsspam	$f2bV_matches	2020-02-11 02:59:57
attackspambots	2020-02-04T14:03:58.949471vps751288.ovh.net sshd\[14445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202-39-70-5.hinet-ip.hinet.net user=root 2020-02-04T14:04:01.077290vps751288.ovh.net sshd\[14445\]: Failed password for root from 202.39.70.5 port 59568 ssh2 2020-02-04T14:05:42.837093vps751288.ovh.net sshd\[14450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202-39-70-5.hinet-ip.hinet.net user=root 2020-02-04T14:05:44.243465vps751288.ovh.net sshd\[14450\]: Failed password for root from 202.39.70.5 port 45410 ssh2 2020-02-04T14:07:27.636619vps751288.ovh.net sshd\[14462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202-39-70-5.hinet-ip.hinet.net user=root	2020-02-04 21:07:36
attackbotsspam	Jan 31 13:57:05 pkdns2 sshd\[63628\]: Invalid user amrapali from 202.39.70.5Jan 31 13:57:07 pkdns2 sshd\[63628\]: Failed password for invalid user amrapali from 202.39.70.5 port 38848 ssh2Jan 31 13:59:47 pkdns2 sshd\[63756\]: Invalid user paritosh from 202.39.70.5Jan 31 13:59:49 pkdns2 sshd\[63756\]: Failed password for invalid user paritosh from 202.39.70.5 port 34390 ssh2Jan 31 14:02:37 pkdns2 sshd\[63933\]: Invalid user purandar from 202.39.70.5Jan 31 14:02:39 pkdns2 sshd\[63933\]: Failed password for invalid user purandar from 202.39.70.5 port 58144 ssh2 ...	2020-01-31 20:24:37
attack	Jan 29 23:37:45 sso sshd[4953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Jan 29 23:37:46 sso sshd[4953]: Failed password for invalid user thenral from 202.39.70.5 port 44592 ssh2 ...	2020-01-30 07:51:45
attack	Jan 19 13:35:46 pi sshd[28486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 user=root Jan 19 13:35:47 pi sshd[28486]: Failed password for invalid user root from 202.39.70.5 port 37006 ssh2	2020-01-19 21:59:33
attackbotsspam	Jan 18 09:34:36 pornomens sshd\[1228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 user=root Jan 18 09:34:38 pornomens sshd\[1228\]: Failed password for root from 202.39.70.5 port 54662 ssh2 Jan 18 09:36:33 pornomens sshd\[1262\]: Invalid user backuppc from 202.39.70.5 port 36508 Jan 18 09:36:33 pornomens sshd\[1262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 ...	2020-01-18 17:07:54
attack	$f2bV_matches	2020-01-15 21:57:05
attack	$f2bV_matches	2020-01-14 21:19:38
attackspambots	Jan 13 23:25:14 albuquerque sshd\[3431\]: User root from 202.39.70.5 not allowed because not listed in AllowUsersJan 13 23:26:09 albuquerque sshd\[3449\]: Invalid user backuppc from 202.39.70.5Jan 13 23:27:06 albuquerque sshd\[3467\]: Invalid user oracle from 202.39.70.5 ...	2020-01-14 06:27:31
attackbotsspam	Invalid user courtlandt from 202.39.70.5 port 52536	2020-01-03 16:47:32
attackspam	Dec 29 07:26:14 srv-ubuntu-dev3 sshd[118710]: Invalid user yoyo from 202.39.70.5 Dec 29 07:26:14 srv-ubuntu-dev3 sshd[118710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Dec 29 07:26:14 srv-ubuntu-dev3 sshd[118710]: Invalid user yoyo from 202.39.70.5 Dec 29 07:26:16 srv-ubuntu-dev3 sshd[118710]: Failed password for invalid user yoyo from 202.39.70.5 port 51924 ssh2 Dec 29 07:28:28 srv-ubuntu-dev3 sshd[118895]: Invalid user qb from 202.39.70.5 Dec 29 07:28:28 srv-ubuntu-dev3 sshd[118895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Dec 29 07:28:28 srv-ubuntu-dev3 sshd[118895]: Invalid user qb from 202.39.70.5 Dec 29 07:28:30 srv-ubuntu-dev3 sshd[118895]: Failed password for invalid user qb from 202.39.70.5 port 44012 ssh2 Dec 29 07:30:35 srv-ubuntu-dev3 sshd[119074]: Invalid user diyagodage from 202.39.70.5 ...	2019-12-29 14:51:00
attackbots	$f2bV_matches	2019-12-10 00:18:34
attackspam	Nov 28 10:47:41 SilenceServices sshd[8003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Nov 28 10:47:43 SilenceServices sshd[8003]: Failed password for invalid user noshir from 202.39.70.5 port 33742 ssh2 Nov 28 10:54:44 SilenceServices sshd[10138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5	2019-11-28 18:08:31
attack	Nov 28 07:18:42 SilenceServices sshd[12201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Nov 28 07:18:44 SilenceServices sshd[12201]: Failed password for invalid user marleejo from 202.39.70.5 port 58128 ssh2 Nov 28 07:25:41 SilenceServices sshd[14105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5	2019-11-28 14:26:52
attackbotsspam	CyberHackers.eu > SSH Bruteforce attempt!	2019-11-26 16:47:58
attack	Nov 5 09:00:41 web9 sshd\[28586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 user=root Nov 5 09:00:43 web9 sshd\[28586\]: Failed password for root from 202.39.70.5 port 60140 ssh2 Nov 5 09:05:05 web9 sshd\[29200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 user=root Nov 5 09:05:07 web9 sshd\[29200\]: Failed password for root from 202.39.70.5 port 59088 ssh2 Nov 5 09:09:13 web9 sshd\[29704\]: Invalid user ubuntu from 202.39.70.5	2019-11-06 03:21:40
attackbotsspam	Nov 3 09:38:47 dedicated sshd[1062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 user=root Nov 3 09:38:49 dedicated sshd[1062]: Failed password for root from 202.39.70.5 port 53574 ssh2	2019-11-03 19:15:04
attackspam	Nov 1 11:59:30 game-panel sshd[18274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Nov 1 11:59:32 game-panel sshd[18274]: Failed password for invalid user Adminvps@1 from 202.39.70.5 port 52664 ssh2 Nov 1 12:03:52 game-panel sshd[18381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5	2019-11-02 01:43:40
attackspambots	Invalid user zxin10 from 202.39.70.5 port 58984	2019-10-29 07:05:16
attackspam	Sep 19 22:27:06 OPSO sshd\[12235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 user=root Sep 19 22:27:08 OPSO sshd\[12235\]: Failed password for root from 202.39.70.5 port 35640 ssh2 Sep 19 22:31:55 OPSO sshd\[13262\]: Invalid user odroid from 202.39.70.5 port 50922 Sep 19 22:31:55 OPSO sshd\[13262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.39.70.5 Sep 19 22:31:57 OPSO sshd\[13262\]: Failed password for invalid user odroid from 202.39.70.5 port 50922 ssh2	2019-09-20 04:34:50

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.39.70.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30725
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.39.70.5.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082501 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 08:27:37 CST 2019
;; MSG SIZE  rcvd: 115

Host info

5.70.39.202.in-addr.arpa domain name pointer 202-39-70-5.HINET-IP.hinet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
5.70.39.202.in-addr.arpa	name = 202-39-70-5.HINET-IP.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.254.49.107	attackbots	10/25/2019-05:47:48.081678 51.254.49.107 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2019-10-25 18:33:38
162.243.99.164	attackbots	2019-10-25T01:04:06.543081mizuno.rwx.ovh sshd[3655699]: Connection from 162.243.99.164 port 55638 on 78.46.61.178 port 22 rdomain "" 2019-10-25T01:04:07.057403mizuno.rwx.ovh sshd[3655699]: Invalid user dvr from 162.243.99.164 port 55638 2019-10-25T01:04:07.062541mizuno.rwx.ovh sshd[3655699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.99.164 2019-10-25T01:04:06.543081mizuno.rwx.ovh sshd[3655699]: Connection from 162.243.99.164 port 55638 on 78.46.61.178 port 22 rdomain "" 2019-10-25T01:04:07.057403mizuno.rwx.ovh sshd[3655699]: Invalid user dvr from 162.243.99.164 port 55638 2019-10-25T01:04:09.516647mizuno.rwx.ovh sshd[3655699]: Failed password for invalid user dvr from 162.243.99.164 port 55638 ssh2 ...	2019-10-25 18:10:56
186.139.21.29	attackspam	Oct 25 05:18:42 cps sshd[20920]: Invalid user georgete from 186.139.21.29 Oct 25 05:18:42 cps sshd[20920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.21.29 Oct 25 05:18:45 cps sshd[20920]: Failed password for invalid user georgete from 186.139.21.29 port 43418 ssh2 Oct 25 05:26:28 cps sshd[22364]: Invalid user samir from 186.139.21.29 Oct 25 05:26:28 cps sshd[22364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.21.29 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=186.139.21.29	2019-10-25 18:09:43
154.221.19.81	attack	Oct 25 12:46:11 site3 sshd\[232836\]: Invalid user !qazxsw2@ from 154.221.19.81 Oct 25 12:46:11 site3 sshd\[232836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.221.19.81 Oct 25 12:46:13 site3 sshd\[232836\]: Failed password for invalid user !qazxsw2@ from 154.221.19.81 port 45841 ssh2 Oct 25 12:50:48 site3 sshd\[232877\]: Invalid user zombie from 154.221.19.81 Oct 25 12:50:48 site3 sshd\[232877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.221.19.81 ...	2019-10-25 18:08:29
85.86.181.116	attackbots	Oct 25 06:42:07 site3 sshd\[227947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.86.181.116 user=root Oct 25 06:42:08 site3 sshd\[227947\]: Failed password for root from 85.86.181.116 port 50050 ssh2 Oct 25 06:47:33 site3 sshd\[228032\]: Invalid user nagios from 85.86.181.116 Oct 25 06:47:33 site3 sshd\[228032\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.86.181.116 Oct 25 06:47:35 site3 sshd\[228032\]: Failed password for invalid user nagios from 85.86.181.116 port 45044 ssh2 ...	2019-10-25 18:37:36
185.197.74.199	attackbots	Oct 25 10:25:49 legacy sshd[1608]: Failed password for root from 185.197.74.199 port 35742 ssh2 Oct 25 10:25:58 legacy sshd[1613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.197.74.199 Oct 25 10:26:00 legacy sshd[1613]: Failed password for invalid user support from 185.197.74.199 port 8920 ssh2 ...	2019-10-25 18:38:45
45.125.65.54	attack	\[2019-10-25 06:11:47\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:11:47.503-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="001054101148323235034",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.54/54437",ACLName="no_extension_match" \[2019-10-25 06:12:34\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:12:34.849-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01053901148413828003",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.54/63936",ACLName="no_extension_match" \[2019-10-25 06:13:49\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:13:49.450-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="001054201148323235034",SessionID="0x7fdf2c160cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.54/49610",A	2019-10-25 18:24:44
132.232.187.222	attackspambots	2019-10-25T10:42:54.652046abusebot-5.cloudsearch.cf sshd\[2151\]: Invalid user af from 132.232.187.222 port 48852	2019-10-25 18:44:02
81.0.34.218	attack	2019-10-21 x@x 2019-10-21 15:31:32 unexpected disconnection while reading SMTP command from (static.218.34.0.81.ibercom.com) [81.0.34.218]:6886 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=81.0.34.218	2019-10-25 18:42:09
177.52.26.8	attackbotsspam	Automatic report - Banned IP Access	2019-10-25 18:39:07
202.141.230.30	attackbots	$f2bV_matches	2019-10-25 18:23:36
163.172.207.104	attackspam	\[2019-10-25 05:54:53\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T05:54:53.357-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="991011972592277524",SessionID="0x7fdf2c5fc4c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/58867",ACLName="no_extension_match" \[2019-10-25 05:58:25\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T05:58:25.452-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="993011972592277524",SessionID="0x7fdf2c5fc4c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/64811",ACLName="no_extension_match" \[2019-10-25 06:01:53\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:01:53.218-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="998011972592277524",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/50906",	2019-10-25 18:14:45
118.89.33.81	attack	Oct 25 12:16:11 v22019058497090703 sshd[14464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.33.81 Oct 25 12:16:13 v22019058497090703 sshd[14464]: Failed password for invalid user vermeer from 118.89.33.81 port 55490 ssh2 Oct 25 12:20:41 v22019058497090703 sshd[14766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.33.81 ...	2019-10-25 18:22:03
86.35.166.239	attackspambots	Automatic report - Banned IP Access	2019-10-25 18:41:22
197.44.28.107	attackspam	23/tcp 23/tcp 23/tcp... [2019-09-11/10-25]5pkt,1pt.(tcp)	2019-10-25 18:49:55

Recently Reported IPs

27.28.112.38	247.208.76.195	178.21.54.203	161.110.85.161
91.27.14.202	2800:2161:2400:1e9:f0fd:7e0e:d771:64e	243.84.13.254	41.210.12.126
243.46.100.20	117.50.98.185	29.140.241.126	29.98.144.160
147.82.89.138	240.9.228.240	140.0.166.121	199.177.251.102
58.214.209.180	140.147.205.69	48.152.138.151	164.133.116.221