2.139.4.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.139.48.197	attack	2019-10-21 x@x 2019-10-21 12:52:27 unexpected disconnection while reading SMTP command from 197.red-2-139-48.dynamicip.rima-tde.net [2.139.48.197]:25889 I=[10.100.18.22]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=2.139.48.197	2019-10-21 22:02:34

Type

Details

Datetime

2.139.48.197

attack

2019-10-21 x@x
2019-10-21 12:52:27 unexpected disconnection while reading SMTP command from 197.red-2-139-48.dynamicip.rima-tde.net [2.139.48.197]:25889 I=[10.100.18.22]:25 (error: Connection reset by peer)
2019-10-21 x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=2.139.48.197

2019-10-21 22:02:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.139.4.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36731
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.139.4.54.			IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:33:36 CST 2022
;; MSG SIZE  rcvd: 103

Host info

54.4.139.2.in-addr.arpa domain name pointer 54.red-2-139-4.dynamicip.rima-tde.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.4.139.2.in-addr.arpa	name = 54.red-2-139-4.dynamicip.rima-tde.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.200.207.131	attackbots	Apr 30 11:28:16 srv01 sshd[22765]: Invalid user brenda from 192.200.207.131 port 59612 Apr 30 11:28:16 srv01 sshd[22765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.200.207.131 Apr 30 11:28:16 srv01 sshd[22765]: Invalid user brenda from 192.200.207.131 port 59612 Apr 30 11:28:18 srv01 sshd[22765]: Failed password for invalid user brenda from 192.200.207.131 port 59612 ssh2 Apr 30 11:29:43 srv01 sshd[22785]: Invalid user jun from 192.200.207.131 port 48848 ...	2020-04-30 19:12:48
193.93.194.58	attackspambots	Registration form abuse	2020-04-30 19:08:11
184.170.38.2	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 184.170.38.2 (digijmres-2-38-170-184.digicelbroadband.com): 5 in the last 3600 secs - Sat Jun 2 13:28:41 2018	2020-04-30 18:58:35
68.183.169.251	attack	$f2bV_matches	2020-04-30 19:22:42
46.26.118.12	attack	2020-04-30T10:45:30.600573v220200467592115444 sshd[15845]: Invalid user lester from 46.26.118.12 port 45804 2020-04-30T10:45:30.607112v220200467592115444 sshd[15845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.26.118.12 2020-04-30T10:45:30.600573v220200467592115444 sshd[15845]: Invalid user lester from 46.26.118.12 port 45804 2020-04-30T10:45:32.595142v220200467592115444 sshd[15845]: Failed password for invalid user lester from 46.26.118.12 port 45804 ssh2 2020-04-30T10:59:51.827914v220200467592115444 sshd[16428]: Invalid user webmaster from 46.26.118.12 port 59514 ...	2020-04-30 19:37:55
209.97.168.205	attack	Apr 30 10:49:31 scw-6657dc sshd[22816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.168.205 Apr 30 10:49:31 scw-6657dc sshd[22816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.168.205 Apr 30 10:49:32 scw-6657dc sshd[22816]: Failed password for invalid user pcp from 209.97.168.205 port 35034 ssh2 ...	2020-04-30 19:25:59
193.56.170.117	attackbotsspam	Apr 30 06:28:37 sshgateway sshd\[24424\]: Invalid user ts3 from 193.56.170.117 Apr 30 06:28:37 sshgateway sshd\[24424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.56.170.117 Apr 30 06:28:38 sshgateway sshd\[24424\]: Failed password for invalid user ts3 from 193.56.170.117 port 48124 ssh2	2020-04-30 19:21:53
192.3.198.20	attack	lfd: (smtpauth) Failed SMTP AUTH login from 192.3.198.20 (192-3-198-20-host.colocrossing.com): 5 in the last 3600 secs - Sat Jun 2 10:35:24 2018	2020-04-30 19:10:58
185.189.112.246	attack	lfd: (smtpauth) Failed SMTP AUTH login from 185.189.112.246 (-): 5 in the last 3600 secs - Fri Jun 1 10:34:20 2018	2020-04-30 19:37:16
103.16.228.63	attackspam	RDP Brute-Force (honeypot 3)	2020-04-30 19:37:34
184.170.17.21	attack	lfd: (smtpauth) Failed SMTP AUTH login from 184.170.17.21 (digijmres-21-17-170-184.digicelbroadband.com): 5 in the last 3600 secs - Sat Jun 2 13:32:16 2018	2020-04-30 18:57:58
190.44.187.174	attack	k+ssh-bruteforce	2020-04-30 19:33:59
182.61.26.165	attack	(sshd) Failed SSH login from 182.61.26.165 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 30 06:03:22 elude sshd[14545]: Invalid user ips from 182.61.26.165 port 33692 Apr 30 06:03:24 elude sshd[14545]: Failed password for invalid user ips from 182.61.26.165 port 33692 ssh2 Apr 30 06:17:50 elude sshd[23706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.165 user=root Apr 30 06:17:52 elude sshd[23706]: Failed password for root from 182.61.26.165 port 44646 ssh2 Apr 30 06:22:52 elude sshd[24524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.165 user=root	2020-04-30 19:16:10
111.61.66.5	attackspambots	Brute force blocker - service: proftpd1 - aantal: 155 - Sat Jun 2 19:25:13 2018	2020-04-30 19:05:22
73.67.179.188	attackspam	2020-04-30T09:35:31.330947shield sshd\[21202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-67-179-188.hsd1.wa.comcast.net user=root 2020-04-30T09:35:33.311742shield sshd\[21202\]: Failed password for root from 73.67.179.188 port 48106 ssh2 2020-04-30T09:39:42.315367shield sshd\[22146\]: Invalid user zeng from 73.67.179.188 port 59692 2020-04-30T09:39:42.324492shield sshd\[22146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-67-179-188.hsd1.wa.comcast.net 2020-04-30T09:39:43.762256shield sshd\[22146\]: Failed password for invalid user zeng from 73.67.179.188 port 59692 ssh2	2020-04-30 19:06:43

Recently Reported IPs

201.46.101.197	27.73.210.227	81.223.175.202	202.9.121.5
43.129.35.244	178.141.123.202	177.249.169.94	183.13.22.242
115.56.108.32	171.234.11.31	177.93.149.180	179.185.73.194
200.109.8.125	42.245.196.178	187.178.89.58	121.13.252.58
177.249.169.194	36.66.124.193	101.80.16.208	81.200.243.220