5.139.104.160 - IPInfo

Basic Info

City: Rostov-on-Don

Region: Rostov

Country: Russia

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	1590696420 - 05/28/2020 22:07:00 Host: 5.139.104.160/5.139.104.160 Port: 445 TCP Blocked	2020-05-29 07:36:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.139.104.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.139.104.160.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052802 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 29 07:36:20 CST 2020
;; MSG SIZE  rcvd: 117

Host info

160.104.139.5.in-addr.arpa domain name pointer 160.104.139.5.donpac.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
160.104.139.5.in-addr.arpa	name = 160.104.139.5.donpac.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.150.36	attackbotsspam	Jul 30 23:23:10 php1 sshd\[12486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.150.36 user=root Jul 30 23:23:11 php1 sshd\[12486\]: Failed password for root from 106.12.150.36 port 33482 ssh2 Jul 30 23:25:59 php1 sshd\[12693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.150.36 user=root Jul 30 23:26:02 php1 sshd\[12693\]: Failed password for root from 106.12.150.36 port 37464 ssh2 Jul 30 23:28:41 php1 sshd\[12870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.150.36 user=root	2020-07-31 17:28:45
101.89.147.85	attackbotsspam	2020-07-31T04:11:07.747069morrigan.ad5gb.com sshd[233000]: Failed password for root from 101.89.147.85 port 43035 ssh2 2020-07-31T04:11:09.159666morrigan.ad5gb.com sshd[233000]: Disconnected from authenticating user root 101.89.147.85 port 43035 [preauth]	2020-07-31 17:53:15
128.199.121.32	attackbots	Jul 31 05:09:58 NPSTNNYC01T sshd[14832]: Failed password for root from 128.199.121.32 port 40964 ssh2 Jul 31 05:14:37 NPSTNNYC01T sshd[15294]: Failed password for root from 128.199.121.32 port 54010 ssh2 ...	2020-07-31 17:47:27
81.170.239.2	attackbots	81.170.239.2 - - [31/Jul/2020:06:27:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2017 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 81.170.239.2 - - [31/Jul/2020:06:27:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 81.170.239.2 - - [31/Jul/2020:06:27:25 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-31 17:32:58
80.90.131.190	attackspam	Jul 31 05:21:46 mail.srvfarm.net postfix/smtpd[165497]: warning: 80-90-131-190.static.oxid.cz[80.90.131.190]: SASL PLAIN authentication failed: Jul 31 05:21:46 mail.srvfarm.net postfix/smtpd[165497]: lost connection after AUTH from 80-90-131-190.static.oxid.cz[80.90.131.190] Jul 31 05:23:19 mail.srvfarm.net postfix/smtps/smtpd[167794]: warning: 80-90-131-190.static.oxid.cz[80.90.131.190]: SASL PLAIN authentication failed: Jul 31 05:23:19 mail.srvfarm.net postfix/smtps/smtpd[167794]: lost connection after AUTH from 80-90-131-190.static.oxid.cz[80.90.131.190] Jul 31 05:24:15 mail.srvfarm.net postfix/smtps/smtpd[168051]: warning: 80-90-131-190.static.oxid.cz[80.90.131.190]: SASL PLAIN authentication failed:	2020-07-31 17:24:18
114.67.85.74	attackbotsspam	SSH Brute Force	2020-07-31 17:30:31
36.156.158.207	attackspam	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-07-31 17:33:17
218.28.238.162	attackbotsspam	Invalid user sangeeta from 218.28.238.162 port 58185	2020-07-31 17:45:02
83.2.189.11	attack	Jul 31 05:42:12 mail.srvfarm.net postfix/smtps/smtpd[168050]: warning: unknown[83.2.189.11]: SASL PLAIN authentication failed: Jul 31 05:42:12 mail.srvfarm.net postfix/smtps/smtpd[168050]: lost connection after AUTH from unknown[83.2.189.11] Jul 31 05:45:28 mail.srvfarm.net postfix/smtpd[170516]: warning: unknown[83.2.189.11]: SASL PLAIN authentication failed: Jul 31 05:45:28 mail.srvfarm.net postfix/smtpd[170516]: lost connection after AUTH from unknown[83.2.189.11] Jul 31 05:48:30 mail.srvfarm.net postfix/smtps/smtpd[167189]: warning: unknown[83.2.189.11]: SASL PLAIN authentication failed:	2020-07-31 17:23:52
196.52.43.115	attack	Unauthorized connection attempt detected from IP address 196.52.43.115 to port 2160	2020-07-31 17:37:19
212.28.237.138	attackbotsspam	Port Scan ...	2020-07-31 17:52:34
157.55.39.161	attackbotsspam	Automatic report - Banned IP Access	2020-07-31 17:50:05
1.32.40.181	attackbotsspam	firewall-block, port(s): 23/tcp	2020-07-31 17:38:58
193.35.48.18	attackbots	Jul 31 10:19:31 mail.srvfarm.net postfix/smtpd[276191]: warning: unknown[193.35.48.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 31 10:19:31 mail.srvfarm.net postfix/smtpd[261842]: warning: unknown[193.35.48.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 31 10:19:31 mail.srvfarm.net postfix/smtpd[276189]: warning: unknown[193.35.48.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 31 10:19:31 mail.srvfarm.net postfix/smtpd[261061]: warning: unknown[193.35.48.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 31 10:19:31 mail.srvfarm.net postfix/smtpd[262077]: warning: unknown[193.35.48.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 31 10:19:31 mail.srvfarm.net postfix/smtpd[261843]: warning: unknown[193.35.48.18]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-07-31 17:15:27
46.238.216.202	attackspambots	Jul 31 05:27:12 mail.srvfarm.net postfix/smtpd[165499]: warning: unknown[46.238.216.202]: SASL PLAIN authentication failed: Jul 31 05:27:12 mail.srvfarm.net postfix/smtpd[165499]: lost connection after AUTH from unknown[46.238.216.202] Jul 31 05:28:38 mail.srvfarm.net postfix/smtps/smtpd[167740]: warning: unknown[46.238.216.202]: SASL PLAIN authentication failed: Jul 31 05:28:38 mail.srvfarm.net postfix/smtps/smtpd[167740]: lost connection after AUTH from unknown[46.238.216.202] Jul 31 05:34:05 mail.srvfarm.net postfix/smtps/smtpd[167189]: warning: unknown[46.238.216.202]: SASL PLAIN authentication failed:	2020-07-31 17:25:22

Recently Reported IPs

2.47.170.148	128.193.244.212	219.77.27.60	108.232.212.28
78.207.76.94	122.138.251.119	123.5.189.81	72.78.2.208
181.49.246.20	145.1.165.197	82.35.164.117	125.0.12.133
61.214.169.23	88.92.34.161	72.183.6.157	71.15.188.121
12.16.177.246	42.109.182.144	88.255.60.221	126.254.170.78