5.139.52.254 - IPInfo

Basic Info

City: Volgograd

Region: Volgograd Oblast

Country: Russia

Internet Service Provider: OJSC Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 5.139.52.254 on Port 445(SMB)	2020-08-02 08:28:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.139.52.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17201
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.139.52.254.			IN	A

;; AUTHORITY SECTION:
.			402	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080102 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 02 08:28:37 CST 2020
;; MSG SIZE  rcvd: 116

Host info

254.52.139.5.in-addr.arpa domain name pointer dsl-5-139-52-254.avtlg.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
254.52.139.5.in-addr.arpa	name = dsl-5-139-52-254.avtlg.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.29.199.150	attackspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-24 03:50:36
114.30.79.34	attack	Failed password for invalid user eisp from 114.30.79.34 port 37408 ssh2	2020-05-24 03:54:04
68.183.183.21	attackspam	Invalid user tid from 68.183.183.21 port 36154	2020-05-24 04:00:17
42.3.148.20	attack	Invalid user admin from 42.3.148.20 port 56086	2020-05-24 04:02:48
159.203.74.227	attack	Invalid user rni from 159.203.74.227 port 47144	2020-05-24 03:43:45
159.65.132.170	attackbots	May 23 21:07:39 lnxded63 sshd[15209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.132.170 May 23 21:07:41 lnxded63 sshd[15209]: Failed password for invalid user mdc from 159.65.132.170 port 38104 ssh2 May 23 21:14:33 lnxded63 sshd[15773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.132.170	2020-05-24 03:44:04
14.29.165.173	attackbotsspam	May 23 20:14:53 Ubuntu-1404-trusty-64-minimal sshd\[22589\]: Invalid user wbq from 14.29.165.173 May 23 20:14:53 Ubuntu-1404-trusty-64-minimal sshd\[22589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.165.173 May 23 20:14:55 Ubuntu-1404-trusty-64-minimal sshd\[22589\]: Failed password for invalid user wbq from 14.29.165.173 port 41892 ssh2 May 23 20:29:29 Ubuntu-1404-trusty-64-minimal sshd\[29447\]: Invalid user vjo from 14.29.165.173 May 23 20:29:29 Ubuntu-1404-trusty-64-minimal sshd\[29447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.165.173	2020-05-24 04:05:11
49.233.147.108	attack	2020-05-23T16:51:12.946526shield sshd\[481\]: Invalid user cgg from 49.233.147.108 port 50752 2020-05-23T16:51:12.950545shield sshd\[481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.147.108 2020-05-23T16:51:15.243373shield sshd\[481\]: Failed password for invalid user cgg from 49.233.147.108 port 50752 ssh2 2020-05-23T16:54:52.684743shield sshd\[1609\]: Invalid user nhm from 49.233.147.108 port 34010 2020-05-23T16:54:52.688302shield sshd\[1609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.147.108	2020-05-24 03:30:52
108.174.198.218	attack	Port Scan detected from 108.174.198.218 (US/United States/Washington/Seattle/hwsrv-724419.hostwindsdns.com). 4 hits in the last 25 seconds	2020-05-24 03:24:14
206.189.161.240	attack	May 23 17:12:23 lnxmail61 sshd[32474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.161.240	2020-05-24 03:36:53
197.255.224.146	attackspambots	Invalid user administrator from 197.255.224.146 port 4001	2020-05-24 03:38:04
118.70.67.52	attackbots	May 23 19:48:30 lukav-desktop sshd\[11014\]: Invalid user fqc from 118.70.67.52 May 23 19:48:30 lukav-desktop sshd\[11014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.67.52 May 23 19:48:32 lukav-desktop sshd\[11014\]: Failed password for invalid user fqc from 118.70.67.52 port 33502 ssh2 May 23 19:49:46 lukav-desktop sshd\[11029\]: Invalid user vtn from 118.70.67.52 May 23 19:49:46 lukav-desktop sshd\[11029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.67.52	2020-05-24 03:51:03
51.75.70.30	attack	May 24 03:23:32 NG-HHDC-SVS-001 sshd[1451]: Invalid user uqf from 51.75.70.30 ...	2020-05-24 03:30:34
185.216.140.6	attack	ET DROP Dshield Block Listed Source group 1 - port: 8889 proto: TCP cat: Misc Attack	2020-05-24 03:39:47
51.68.44.154	attackspambots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-24 04:02:03

Recently Reported IPs

35.155.90.21	188.52.27.231	178.75.124.48	38.86.167.93
210.151.146.92	68.147.251.80	52.202.88.190	3.217.154.244
5.165.208.130	174.116.203.173	141.151.203.68	31.146.209.223
58.167.90.0	119.147.159.16	91.112.43.235	212.34.43.126
105.248.118.138	27.12.237.57	139.51.20.85	109.79.38.147