JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 27.79.2.162

27.79.2.162 was found in our database!

This IP was reported 364 times. Confidence of Abuse is 100%: ?

100%

ISP	Viettel Group
Usage Type	Fixed Line ISP
ASN	AS7552
Hostname(s)	localhost
Domain Name	viettel.com.vn
Country	🇻🇳 Viet Nam
City	Buon Ma Thuot, Dak Lak

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 27.79.2.162

Whois 27.79.2.162

IP Abuse Reports for 27.79.2.162:

This IP address has been reported a total of 364 times from 290 distinct sources. 27.79.2.162 was first reported on May 28th 2026, and the most recent report was 11 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 helix	2026-06-04 03:55:23 (11 hours ago)	Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login atte ... show more Automated report: SSH brute force detected. This IP exceeded the allowed number of failed login attempts (3 attempts). show less	Brute-Force SSH
🇫🇷 bellovacorp	2026-06-04 02:08:29 (13 hours ago)	Customer Telecom - Router Mikrotik perimeter blacklist	Port Scan Hacking
🇫🇷 bellovacorp	2026-06-03 02:04:55 (1 day ago)	Customer Telecom - Router Mikrotik perimeter blacklist	Port Scan Hacking
🇫🇷 Fasetech	2026-06-01 21:37:53 (2 days ago)	SecLedge detected suspicious activity. Score: 65.52. Sensor: T-Pot.	Brute-Force Web App Attack
🇩🇪 EnthecSolutions	2026-05-28 14:00:43 (1 week ago)	Detected by Enthec Solutions. \| Attempts: 127 in 24h \| Target port: 22	Brute-Force SSH
🇷🇺 cloud.git-corp.ru	2026-05-28 14:00:06 (1 week ago)	2026-05-28 16:16:48 UTC 03:00: login failure for user root from 27.79.2.162 via ssh	Brute-Force SSH
🇫🇷 tecnicorioja	2026-05-28 14:00:05 (1 week ago)	Failed password for root May 28 12:11:25 port 39290	Brute-Force SSH
🇳🇱 knock	2026-05-28 13:41:08 (1 week ago)	Knock-Knock honeypot brute-force: SSH (25 total hits)	Brute-Force SSH
🇷🇺 kipfel★	2026-05-28 13:22:04 (1 week ago)	2026-05-28T20:19:37.558301+07:00 justhost-vm-arcturus-1c2g-ovb sshd-session[1766056]: Invalid user i ... show more 2026-05-28T20:19:37.558301+07:00 justhost-vm-arcturus-1c2g-ovb sshd-session[1766056]: Invalid user installer from 27.79.2.162 port 47412 2026-05-28T20:21:56.121178+07:00 justhost-vm-arcturus-1c2g-ovb sshd-session[1766075]: Invalid user support from 27.79.2.162 port 48188 2026-05-28T20:22:02.675420+07:00 justhost-vm-arcturus-1c2g-ovb sshd-session[1766078]: Invalid user admin from 27.79.2.162 port 35302 ... show less	Brute-Force SSH
🇷🇺 whynothacked	2026-05-28 13:21:56 (1 week ago)	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2026-05-28T13:17:16Z and 2026-05-2 ... show more Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2026-05-28T13:17:16Z and 2026-05-28T13:21:56Z show less	Brute-Force SSH
🇷🇺 zakorko7	2026-05-28 13:21:34 (1 week ago)	[Fail2ban] Host: vm3933278.firstbyte.club. Jail: sshd. IP 27.79.2.162 (Buôn Ma Thuột, VN, AS7552 Vie ... show more [Fail2ban] Host: vm3933278.firstbyte.club. Jail: sshd. IP 27.79.2.162 (Buôn Ma Thuột, VN, AS7552 Viettel Group) made 3 failed login attempts in 600s (max allowed: 3). Banned for 3600s. Raw log: May 28 13:18:51 vm3933278.firstbyte.club sshd[87894]: Invalid user admin from 27.79.2.162 port 49916 May 28 13:18:51 vm3933278.firstbyte.club sshd[87894]: Connection closed by invalid user admin 27.79.2.162 port 49916 [preauth] May 28 13:18:52 vm3933278.firstbyte.club sshd[87900]: Connection closed by authenticating user root 27.79.2.162 port 52902 [preauth] May 28 13:21:32 vm3933278.firstbyte.club sshd[87917]: Invalid user squid from 27.79.2.162 port 39460 May 28 13:21:33 vm3933278.firstbyte.club sshd[87917]: Connection closed by invalid user squid 27.79.2.162 port 39460 [preauth] show less	Brute-Force SSH
🇷🇺 lns.bz	2026-05-28 13:21:28 (1 week ago)	SSH bruteforce [RU.ZNT]	SSH
🇳🇱 GlobalArt, Inc	2026-05-28 13:20:16 (1 week ago)	2026-05-28T16:20:09.718773+03:00 proxy-msk1 sshd[872160]: Invalid user squid from 27.79.2.162 port 5 ... show more 2026-05-28T16:20:09.718773+03:00 proxy-msk1 sshd[872160]: Invalid user squid from 27.79.2.162 port 51994 2026-05-28T16:20:10.107487+03:00 proxy-msk1 sshd[872160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.79.2.162 2026-05-28T16:20:12.036935+03:00 proxy-msk1 sshd[872160]: Failed password for invalid user squid from 27.79.2.162 port 51994 ssh2 2026-05-28T16:20:13.941446+03:00 proxy-msk1 sshd[872133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.79.2.162 user=root 2026-05-28T16:20:16.283037+03:00 proxy-msk1 sshd[872133]: Failed password for root from 27.79.2.162 port 54122 ssh2 show less	Brute-Force SSH
🇷🇺 green_elephant	2026-05-28 13:19:33 (1 week ago)	2026-05-28T16:19:09.661959+03:00 gecoop sshd-session[799738]: Invalid user squid from 27.79.2.162 po ... show more 2026-05-28T16:19:09.661959+03:00 gecoop sshd-session[799738]: Invalid user squid from 27.79.2.162 port 52204 2026-05-28T16:19:15.420771+03:00 gecoop sshd-session[799736]: Invalid user ubnt from 27.79.2.162 port 51922 2026-05-28T16:19:32.089259+03:00 gecoop sshd-session[799740]: Invalid user user from 27.79.2.162 port 44918 show less	Brute-Force SSH
🇷🇺 punctualsuspension968	2026-05-28 13:19:24 (1 week ago)	2026-05-28T16:17:08.988765+03:00 raspberrypi sshd-session[549039]: Invalid user admin from 27.79.2.1 ... show more 2026-05-28T16:17:08.988765+03:00 raspberrypi sshd-session[549039]: Invalid user admin from 27.79.2.162 port 49314 2026-05-28T16:17:11.661148+03:00 raspberrypi sshd-session[549039]: Failed password for invalid user admin from 27.79.2.162 port 49314 ssh2 2026-05-28T16:19:23.639950+03:00 raspberrypi sshd-session[549145]: Invalid user installer from 27.79.2.162 port 59402 ... show less	Brute-Force SSH

Showing 1 to 15 of 364 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.231.20.121

🇸🇬 168.144.45.211

🇭🇰 152.32.169.155

🇨🇳 119.97.189.106

🇺🇸 72.253.251.3

🇺🇸 64.62.156.81

🇺🇸 18.117.173.255

🇺🇸 208.84.101.75

🇩🇪 167.94.146.58

🇩🇪 165.22.81.230

🇺🇸 162.241.24.125

🇫🇮 147.185.133.224

🇺🇿 94.158.62.233

🇫🇮 89.167.10.218

🇳🇱 45.148.10.141

🇺🇸 34.181.231.121

🇮🇪 2a05:d018:10df:d401:92a:42f1:9dea:e39a

🇨🇴 200.116.199.41

🇩🇪 167.94.146.33

🇦🇪 165.154.12.108