5.139.122.193 - IPInfo

Basic Info

City: Azov

Region: Rostov

Country: Russia

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt from IP address 5.139.122.193 on Port 445(SMB)	2020-05-25 06:11:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.139.122.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35177
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.139.122.193.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052401 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 25 06:11:07 CST 2020
;; MSG SIZE  rcvd: 117

Host info

193.122.139.5.in-addr.arpa domain name pointer 193.122.139.5.donpac.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
193.122.139.5.in-addr.arpa	name = 193.122.139.5.donpac.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.170.202.131	attackspambots	5900/tcp 13563/tcp 4333/tcp... [2019-06-28/08-26]70pkt,55pt.(tcp),5pt.(udp)	2019-08-28 10:04:15
115.209.250.147	attack	Aug 20 09:40:55 localhost postfix/smtpd[14838]: lost connection after CONNECT from unknown[115.209.250.147] Aug 20 09:41:05 localhost postfix/smtpd[23390]: lost connection after AUTH from unknown[115.209.250.147] Aug 20 09:41:46 localhost postfix/smtpd[23390]: lost connection after AUTH from unknown[115.209.250.147] Aug 20 09:42:08 localhost postfix/smtpd[22299]: lost connection after AUTH from unknown[115.209.250.147] Aug 20 09:42:23 localhost postfix/smtpd[23390]: lost connection after AUTH from unknown[115.209.250.147] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.209.250.147	2019-08-28 10:28:37
51.68.230.54	attack	SSH scan ::	2019-08-28 10:38:11
45.6.162.106	attackbots	2019-08-26 11:32:04 H=([45.6.162.106]) [45.6.162.106]:35118 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=45.6.162.106) 2019-08-26 11:32:06 unexpected disconnection while reading SMTP command from ([45.6.162.106]) [45.6.162.106]:35118 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-08-26 12:24:24 H=([45.6.162.106]) [45.6.162.106]:44021 I=[10.100.18.21]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=45.6.162.106) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.6.162.106	2019-08-28 10:49:07
164.132.38.167	attackspambots	Invalid user kas from 164.132.38.167 port 33916	2019-08-28 10:37:19
51.79.141.132	attackspambots	Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.79.141.132	2019-08-28 10:47:08
185.94.111.1	attackspambots	27.08.2019 23:38:50 Connection to port 17 blocked by firewall	2019-08-28 10:24:11
37.248.253.188	attack	C1,WP GET /comic/wp-login.php	2019-08-28 10:29:43
178.62.60.233	attackspambots	Aug 28 02:23:00 lcl-usvr-02 sshd[9234]: Invalid user adminagora from 178.62.60.233 port 33466 Aug 28 02:23:00 lcl-usvr-02 sshd[9234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 Aug 28 02:23:00 lcl-usvr-02 sshd[9234]: Invalid user adminagora from 178.62.60.233 port 33466 Aug 28 02:23:02 lcl-usvr-02 sshd[9234]: Failed password for invalid user adminagora from 178.62.60.233 port 33466 ssh2 Aug 28 02:28:51 lcl-usvr-02 sshd[10576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.60.233 user=root Aug 28 02:28:53 lcl-usvr-02 sshd[10576]: Failed password for root from 178.62.60.233 port 41478 ssh2 ...	2019-08-28 10:08:25
196.234.145.245	attackbots	Attempted WordPress login: "GET /wp-login.php"	2019-08-28 10:27:34
51.79.140.142	attackbots	Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.79.140.142	2019-08-28 10:05:04
198.108.67.111	attack	08/27/2019-20:10:59.831109 198.108.67.111 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-28 10:45:55
209.17.96.18	attackbotsspam	8088/tcp 8888/tcp 5000/tcp... [2019-06-26/08-27]73pkt,12pt.(tcp),1pt.(udp)	2019-08-28 10:30:47
107.170.239.108	attack	8998/tcp 465/tcp 51085/tcp... [2019-07-01/08-27]66pkt,51pt.(tcp),3pt.(udp)	2019-08-28 10:12:58
184.105.247.202	attackbotsspam	Honeypot hit.	2019-08-28 10:19:11

Recently Reported IPs

188.115.103.198	182.74.179.66	82.135.253.46	83.134.110.101
188.101.215.147	146.60.164.253	208.125.239.223	149.24.23.164
182.114.120.67	207.155.23.64	47.11.37.199	86.184.22.34
110.164.193.40	77.68.8.165	97.84.79.216	39.85.16.143
27.74.246.226	97.227.128.118	37.248.30.205	103.45.173.27