5.139.217.202 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	445/tcp 445/tcp 445/tcp... [2019-10-02/11-15]4pkt,1pt.(tcp)	2019-11-16 08:00:06
attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 28-10-2019 11:50:27.	2019-10-29 00:20:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.139.217.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15782
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.139.217.202.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 00:20:09 CST 2019
;; MSG SIZE  rcvd: 117

Host info

202.217.139.5.in-addr.arpa domain name pointer pppoe-5-139-217-202.astranet.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
202.217.139.5.in-addr.arpa	name = pppoe-5-139-217-202.astranet.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.255.134.175	attackspambots	2020-03-19T13:59:54.952879vps751288.ovh.net sshd\[24092\]: Invalid user tanwei from 185.255.134.175 port 54290 2020-03-19T13:59:54.962077vps751288.ovh.net sshd\[24092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.255.134.175 2020-03-19T13:59:57.392969vps751288.ovh.net sshd\[24092\]: Failed password for invalid user tanwei from 185.255.134.175 port 54290 ssh2 2020-03-19T14:03:38.148445vps751288.ovh.net sshd\[24151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.255.134.175 user=root 2020-03-19T14:03:40.328703vps751288.ovh.net sshd\[24151\]: Failed password for root from 185.255.134.175 port 34808 ssh2	2020-03-19 21:05:41
42.179.7.82	attackspambots	Unauthorised access (Mar 19) SRC=42.179.7.82 LEN=40 TTL=49 ID=19324 TCP DPT=23 WINDOW=38239 SYN	2020-03-19 20:48:49
222.186.175.163	attack	Mar 19 13:29:51 [host] sshd[19430]: pam_unix(sshd: Mar 19 13:29:54 [host] sshd[19430]: Failed passwor Mar 19 13:29:57 [host] sshd[19430]: Failed passwor	2020-03-19 20:49:29
192.241.238.106	attack	TCP 3389 (RDP)	2020-03-19 21:10:33
61.160.245.87	attackspambots	Mar 19 12:41:27 v22018076622670303 sshd\[11529\]: Invalid user kensei from 61.160.245.87 port 37344 Mar 19 12:41:27 v22018076622670303 sshd\[11529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.160.245.87 Mar 19 12:41:29 v22018076622670303 sshd\[11529\]: Failed password for invalid user kensei from 61.160.245.87 port 37344 ssh2 ...	2020-03-19 20:43:15
134.19.251.26	attackbots	Unauthorized connection attempt detected from IP address 134.19.251.26 to port 23	2020-03-19 20:23:21
221.160.100.14	attackbots	$f2bV_matches_ltvn	2020-03-19 20:29:02
43.254.55.86	attackspambots	SSH brute-force: detected 7 distinct usernames within a 24-hour window.	2020-03-19 20:48:31
219.137.62.133	attack	SSH login attempts.	2020-03-19 20:52:21
116.111.98.128	attackbotsspam	SSH login attempts.	2020-03-19 20:54:21
177.82.108.79	attackbotsspam	SSH login attempts.	2020-03-19 21:03:08
122.51.234.86	attack	SSH invalid-user multiple login attempts	2020-03-19 20:47:52
106.13.49.213	attackbots	detected by Fail2Ban	2020-03-19 20:58:07
220.133.95.68	attackbots	Mar 19 09:29:59 marvibiene sshd[39203]: Invalid user fork1 from 220.133.95.68 port 34414 Mar 19 09:29:59 marvibiene sshd[39203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.133.95.68 Mar 19 09:29:59 marvibiene sshd[39203]: Invalid user fork1 from 220.133.95.68 port 34414 Mar 19 09:30:01 marvibiene sshd[39203]: Failed password for invalid user fork1 from 220.133.95.68 port 34414 ssh2 ...	2020-03-19 20:23:05
78.83.57.73	attackbots	Mar 19 10:41:43 vlre-nyc-1 sshd\[17273\]: Invalid user gitlab-psql from 78.83.57.73 Mar 19 10:41:43 vlre-nyc-1 sshd\[17273\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.83.57.73 Mar 19 10:41:45 vlre-nyc-1 sshd\[17273\]: Failed password for invalid user gitlab-psql from 78.83.57.73 port 37742 ssh2 Mar 19 10:48:21 vlre-nyc-1 sshd\[17434\]: Invalid user ftpuser from 78.83.57.73 Mar 19 10:48:21 vlre-nyc-1 sshd\[17434\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.83.57.73 ...	2020-03-19 20:31:09

Recently Reported IPs

42.86.158.185	213.16.147.73	204.210.134.37	123.18.140.91
121.121.104.82	117.245.137.9	106.201.30.39	201.186.65.92
100.223.134.63	106.200.171.62	219.78.58.206	203.101.174.9
186.24.50.166	136.232.11.10	177.129.48.34	182.75.54.26
177.128.42.122	2600:3c00::f03c:92ff:fedb:4563	141.98.80.119	176.99.68.26