212.37.83.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Slovakia (SLOVAK Republic)

Internet Service Provider: ENERGOTEL a.s.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 212.37.83.139 to port 445	2019-12-28 18:09:15
attack	Unauthorized connection attempt detected from IP address 212.37.83.139 to port 445	2019-12-14 15:05:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.37.83.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62570
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.37.83.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061101 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 12 03:37:55 CST 2019
;; MSG SIZE  rcvd: 117

Host info

139.83.37.212.in-addr.arpa domain name pointer sospe.sk.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.83.37.212.in-addr.arpa	name = sospe.sk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.89.149.213	attack	Apr 1 03:02:51 [HOSTNAME] sshd[1860]: User removed from 51.89.149.213 not allowed because not listed in AllowUsers Apr 1 03:02:51 [HOSTNAME] sshd[1860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.149.213 user=removed Apr 1 03:02:53 [HOSTNAME] sshd[1860]: Failed password for invalid user removed from 51.89.149.213 port 35092 ssh2 ...	2020-04-01 09:26:44
142.93.42.177	attack	detected by Fail2Ban	2020-04-01 09:34:29
66.70.130.155	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-01 12:07:42
103.145.12.21	attackbots	ET SCAN Sipvicious User-Agent Detected (friendly-scanner) - port: 5060 proto: UDP cat: Attempted Information Leak	2020-04-01 09:36:15
101.255.81.91	attackspam	(sshd) Failed SSH login from 101.255.81.91 (ID/Indonesia/-): 5 in the last 3600 secs	2020-04-01 12:21:43
128.106.92.59	attackbotsspam	Apr 1 05:56:32 debian-2gb-nbg1-2 kernel: \[7972442.877535\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=128.106.92.59 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=22879 PROTO=TCP SPT=8353 DPT=23 WINDOW=20362 RES=0x00 SYN URGP=0	2020-04-01 12:17:20
37.187.113.144	attackbotsspam	Apr 1 02:25:26 ourumov-web sshd\[439\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.113.144 user=root Apr 1 02:25:28 ourumov-web sshd\[439\]: Failed password for root from 37.187.113.144 port 37488 ssh2 Apr 1 02:33:19 ourumov-web sshd\[1015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.113.144 user=root ...	2020-04-01 09:28:03
2607:5300:203:2be::	attackspam	xmlrpc attack	2020-04-01 09:27:33
222.186.180.130	attackspam	Apr 1 06:07:17 dcd-gentoo sshd[23805]: User root from 222.186.180.130 not allowed because none of user's groups are listed in AllowGroups Apr 1 06:07:20 dcd-gentoo sshd[23805]: error: PAM: Authentication failure for illegal user root from 222.186.180.130 Apr 1 06:07:17 dcd-gentoo sshd[23805]: User root from 222.186.180.130 not allowed because none of user's groups are listed in AllowGroups Apr 1 06:07:20 dcd-gentoo sshd[23805]: error: PAM: Authentication failure for illegal user root from 222.186.180.130 Apr 1 06:07:17 dcd-gentoo sshd[23805]: User root from 222.186.180.130 not allowed because none of user's groups are listed in AllowGroups Apr 1 06:07:20 dcd-gentoo sshd[23805]: error: PAM: Authentication failure for illegal user root from 222.186.180.130 Apr 1 06:07:20 dcd-gentoo sshd[23805]: Failed keyboard-interactive/pam for invalid user root from 222.186.180.130 port 34466 ssh2 ...	2020-04-01 12:10:30
14.115.71.118	attack	Port scan: Attack repeated for 24 hours	2020-04-01 09:33:28
122.51.186.12	attackbotsspam	Apr 1 05:49:10 meumeu sshd[5263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.12 Apr 1 05:49:12 meumeu sshd[5263]: Failed password for invalid user kirinuki from 122.51.186.12 port 33364 ssh2 Apr 1 05:54:42 meumeu sshd[6366]: Failed password for root from 122.51.186.12 port 36210 ssh2 ...	2020-04-01 12:25:51
46.38.145.4	attack	Apr 1 05:28:07 mail postfix/smtpd\[18812\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 1 05:58:17 mail postfix/smtpd\[19097\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 1 05:58:44 mail postfix/smtpd\[18812\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 1 05:59:14 mail postfix/smtpd\[18812\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-04-01 12:09:41
51.68.84.36	attack	Automatic report - SSH Brute-Force Attack	2020-04-01 12:28:00
61.53.69.32	attack	20/3/31@17:28:24: FAIL: IoT-Telnet address from=61.53.69.32 ...	2020-04-01 09:32:01
179.222.96.70	attack	Apr 1 06:18:45 sshd\[9678\]: Invalid user hw from 179.222.96.70Apr 1 06:18:47 sshd\[9678\]: Failed password for invalid user hw from 179.222.96.70 port 48745 ssh2 ...	2020-04-01 12:29:36

Recently Reported IPs

127.137.48.254	123.19.234.20	104.133.215.6	180.125.0.201
12.111.48.233	127.5.185.233	139.59.13.132	20.76.192.144
121.148.155.75	67.179.188.179	212.15.208.64	22.99.220.154
107.216.214.67	104.206.128.18	121.42.13.194	188.227.164.182
180.76.15.144	170.247.0.30	84.113.129.49	40.77.167.81