5.139.13.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 5.139.13.214 on Port 445(SMB)	2020-06-28 20:35:00

Comments on same subnet:

IP	Type	Details	Datetime
5.139.134.236	attack	Unauthorized connection attempt from IP address 5.139.134.236 on Port 445(SMB)	2020-01-31 19:34:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.139.13.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12402
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.139.13.214.			IN	A

;; AUTHORITY SECTION:
.			502	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062800 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 28 20:34:55 CST 2020
;; MSG SIZE  rcvd: 116

Host info

214.13.139.5.in-addr.arpa domain name pointer dsl-5-139-13-214.avtlg.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.13.139.5.in-addr.arpa	name = dsl-5-139-13-214.avtlg.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.188.252	attackspam	Dec 3 09:40:10 vpn01 sshd[28849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.188.252 Dec 3 09:40:12 vpn01 sshd[28849]: Failed password for invalid user com from 106.12.188.252 port 40382 ssh2 ...	2019-12-03 21:10:50
185.26.220.235	attackspam	detected by Fail2Ban	2019-12-03 21:40:41
180.182.47.132	attackbots	Dec 3 11:32:00 ms-srv sshd[52511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.182.47.132 Dec 3 11:32:02 ms-srv sshd[52511]: Failed password for invalid user piram from 180.182.47.132 port 45602 ssh2	2019-12-03 21:22:09
45.143.221.24	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-03 21:05:22
133.130.90.174	attackspam	Dec 3 13:12:42 localhost sshd\[10344\]: Invalid user blssing from 133.130.90.174 port 57880 Dec 3 13:12:42 localhost sshd\[10344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.90.174 Dec 3 13:12:44 localhost sshd\[10344\]: Failed password for invalid user blssing from 133.130.90.174 port 57880 ssh2 Dec 3 13:19:00 localhost sshd\[10553\]: Invalid user zj from 133.130.90.174 port 39888 Dec 3 13:19:00 localhost sshd\[10553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.90.174 ...	2019-12-03 21:31:38
128.199.90.245	attack	SSH bruteforce (Triggered fail2ban)	2019-12-03 21:32:34
107.175.189.103	attack	Dec 3 01:15:49 hpm sshd\[9164\]: Invalid user 222222 from 107.175.189.103 Dec 3 01:15:49 hpm sshd\[9164\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.189.103 Dec 3 01:15:51 hpm sshd\[9164\]: Failed password for invalid user 222222 from 107.175.189.103 port 39612 ssh2 Dec 3 01:21:51 hpm sshd\[9741\]: Invalid user hye from 107.175.189.103 Dec 3 01:21:51 hpm sshd\[9741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.189.103	2019-12-03 21:37:09
200.44.50.155	attackbotsspam	2019-12-03T14:02:03.875865 sshd[13859]: Invalid user ppq from 200.44.50.155 port 53080 2019-12-03T14:02:03.891723 sshd[13859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155 2019-12-03T14:02:03.875865 sshd[13859]: Invalid user ppq from 200.44.50.155 port 53080 2019-12-03T14:02:06.336651 sshd[13859]: Failed password for invalid user ppq from 200.44.50.155 port 53080 ssh2 2019-12-03T14:08:40.173414 sshd[13958]: Invalid user hikaru from 200.44.50.155 port 34702 ...	2019-12-03 21:21:41
104.236.61.100	attack	Dec 3 13:14:51 localhost sshd\[10417\]: Invalid user clatterbaugh from 104.236.61.100 port 32864 Dec 3 13:14:51 localhost sshd\[10417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.61.100 Dec 3 13:14:53 localhost sshd\[10417\]: Failed password for invalid user clatterbaugh from 104.236.61.100 port 32864 ssh2 Dec 3 13:23:19 localhost sshd\[10706\]: Invalid user divino from 104.236.61.100 port 38509 Dec 3 13:23:19 localhost sshd\[10706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.61.100 ...	2019-12-03 21:24:58
106.13.49.233	attackspam	Dec 3 10:33:16 firewall sshd[19409]: Failed password for invalid user pcap from 106.13.49.233 port 32882 ssh2 Dec 3 10:41:20 firewall sshd[19669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.49.233 user=root Dec 3 10:41:22 firewall sshd[19669]: Failed password for root from 106.13.49.233 port 58594 ssh2 ...	2019-12-03 21:44:22
104.248.181.156	attackbotsspam	Dec 3 08:27:59 v22018086721571380 sshd[29833]: Failed password for invalid user gaby from 104.248.181.156 port 47248 ssh2 Dec 3 08:33:54 v22018086721571380 sshd[30217]: Failed password for invalid user p@ssword from 104.248.181.156 port 58586 ssh2	2019-12-03 21:24:37
103.15.226.14	attackbots	103.15.226.14 - - \[03/Dec/2019:10:14:53 +0100\] "POST /wp-login.php HTTP/1.0" 200 7538 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.15.226.14 - - \[03/Dec/2019:10:14:58 +0100\] "POST /wp-login.php HTTP/1.0" 200 7363 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.15.226.14 - - \[03/Dec/2019:10:15:01 +0100\] "POST /wp-login.php HTTP/1.0" 200 7358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-03 21:17:23
206.81.11.216	attackspam	Dec 3 13:55:18 server sshd\[452\]: Invalid user comrade from 206.81.11.216 Dec 3 13:55:18 server sshd\[452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.11.216 Dec 3 13:55:20 server sshd\[452\]: Failed password for invalid user comrade from 206.81.11.216 port 46914 ssh2 Dec 3 14:01:17 server sshd\[1789\]: Invalid user jnoakes from 206.81.11.216 Dec 3 14:01:17 server sshd\[1789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.11.216 ...	2019-12-03 21:15:13
203.110.87.91	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-12-03 21:13:45
203.189.144.201	attackspam	[ssh] SSH attack	2019-12-03 21:35:01

Recently Reported IPs

78.62.153.117	14.231.68.225	112.135.202.115	151.80.47.41
254.28.54.141	112.132.72.159	103.144.152.15	116.50.250.158
200.109.176.134	171.233.114.76	103.214.60.130	61.81.76.62
36.57.89.247	213.5.78.190	104.236.48.174	103.213.128.54
103.85.169.178	5.157.24.150	71.40.160.190	188.19.44.34