109.195.139.50

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: JSC ER-Telecom Holding

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	23/tcp [2020-08-30]1pkt	2020-08-31 05:20:26
attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-05-28 04:47:44

Comments on same subnet:

IP	Type	Details	Datetime
109.195.139.29	attackspambots	Port Scan	2020-02-21 05:51:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.195.139.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3775
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.195.139.50.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052701 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 04:47:41 CST 2020
;; MSG SIZE  rcvd: 118

Host info

50.139.195.109.in-addr.arpa domain name pointer 109x195x139x50.static.kurgan.ertelecom.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.139.195.109.in-addr.arpa	name = 109x195x139x50.static.kurgan.ertelecom.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.137.111.188	attack	Jul 16 13:51:36 zeus postfix/smtpd\[32339\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: authentication failure Jul 16 13:52:06 zeus postfix/smtpd\[32339\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: authentication failure Jul 16 13:52:36 zeus postfix/smtpd\[32339\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: authentication failure ...	2019-07-16 20:23:33
176.31.116.57	attack	Jul 16 14:15:17 bouncer sshd\[9513\]: Invalid user postgres from 176.31.116.57 port 59146 Jul 16 14:15:17 bouncer sshd\[9513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.116.57 Jul 16 14:15:19 bouncer sshd\[9513\]: Failed password for invalid user postgres from 176.31.116.57 port 59146 ssh2 ...	2019-07-16 20:18:58
111.90.159.118	attackspam	SMTP blocked logins 114. Dates: 15-7-2019 / 16-7-2019	2019-07-16 20:29:41
69.197.177.50	attackspambots	[TueJul1613:11:44.4198752019][:error][pid5937:tid47769718916864][client69.197.177.50:36548][client69.197.177.50]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"MJ12bot"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"369"][id"333515"][rev"4"][msg"Atomicorp.comWAFRules:MJ12Distributedbotdetected$Disablethisruleifyouwanttoallowthisbot$"][severity"WARNING"][tag"no_ar"][hostname"sportticino.ch"][uri"/robots.txt"][unique_id"XS2w8PIq@bRLu39nEDVXuwAAAEw"][TueJul1613:15:14.4521752019][:error][pid6203:tid47769725220608][client69.197.177.50:43768][client69.197.177.50]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"MJ12bot"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"369"][id"333515"][rev"4"][msg"Atomicorp.comWAFRules:MJ12Distributedbotdetected$Disablethisruleifyouwanttoallowthisbot$"][severity"WARNING"][tag"no_ar"][hostname"www.sportticino.ch"][uri"/rob	2019-07-16 19:55:58
77.40.3.89	attack	abuse-sasl	2019-07-16 20:26:47
119.233.134.116	attackbots	2019-07-16T12:05:45.101960 X postfix/smtpd[44973]: NOQUEUE: reject: RCPT from unknown[119.233.134.116]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=SMTP helo= 2019-07-16T12:59:41.315535 X postfix/smtpd[51361]: NOQUEUE: reject: RCPT from unknown[119.233.134.116]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=SMTP helo= 2019-07-16T13:14:47.225431 X postfix/smtpd[53664]: NOQUEUE: reject: RCPT from unknown[119.233.134.116]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=SMTP helo=	2019-07-16 20:19:45
185.23.64.234	attackbotsspam	[portscan] Port scan	2019-07-16 19:58:56
79.7.181.26	attackbots	abuse-sasl	2019-07-16 19:54:03
201.217.144.21	attackspambots	SMTP invalid logins 3 and blocked 27 Dates: 16-7-2019 till 16-7-2019	2019-07-16 20:29:22
78.108.69.2	attack	abuse-sasl	2019-07-16 20:05:13
189.232.36.65	attack	TCP port 22 (SSH) attempt blocked by firewall. [2019-07-16 13:24:24]	2019-07-16 20:08:09
14.168.66.223	attackbotsspam	Jul 16 14:14:41 srv-4 sshd\[2893\]: Invalid user admin from 14.168.66.223 Jul 16 14:14:41 srv-4 sshd\[2893\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.168.66.223 Jul 16 14:14:42 srv-4 sshd\[2893\]: Failed password for invalid user admin from 14.168.66.223 port 38279 ssh2 ...	2019-07-16 20:21:55
104.248.175.98	attackbotsspam	$f2bV_matches	2019-07-16 20:26:14
45.55.158.8	attackbotsspam	frenzy	2019-07-16 19:38:32
91.209.51.22	attackspam	This IP address was blacklisted for the following reason: / @ 2019-07-16T13:07:12+02:00.	2019-07-16 20:09:21

Recently Reported IPs

205.185.113.207	138.197.214.200	200.9.244.173	27.41.205.239
39.129.176.133	205.185.113.211	227.172.17.185	94.113.242.20
243.34.144.226	103.45.149.71	185.173.60.7	111.250.48.87
111.204.204.72	107.189.11.219	209.141.58.91	12.181.195.178
156.48.198.205	205.185.116.74	84.60.228.92	221.155.59.5