This IP address has been reported a total of
104
times from
76 distinct
sources.
5.2.139.236 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
2026-07-13T05:37:33.859871+00:00 offbeat-record.ptr.network sshd[89562]: pam_unix(sshd:auth): authen ...
show more2026-07-13T05:37:33.859871+00:00 offbeat-record.ptr.network sshd[89562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.2.139.236
2026-07-13T05:37:36.138009+00:00 offbeat-record.ptr.network sshd[89562]: Failed password for invalid user nick from 5.2.139.236 port 55042 ssh2
2026-07-13T05:51:36.421555+00:00 offbeat-record.ptr.network sshd[89642]: Invalid user tiger from 5.2.139.236 port 35006
...
show less
Jul 13 05:38:13 dabeau sshd[12246]: Invalid user nick from 5.2.139.236 port 33824
Jul 13 05:38:13 da ...
show moreJul 13 05:38:13 dabeau sshd[12246]: Invalid user nick from 5.2.139.236 port 33824
Jul 13 05:38:13 dabeau sshd[12246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.2.139.236
Jul 13 05:38:15 dabeau sshd[12246]: Failed password for invalid user nick from 5.2.139.236 port 33824 ssh2
...
show less
SSH brute force attack on honeypot sensor. Credentials tried: postgres/postgre, laravel/laravel123, ...
show moreSSH brute force attack on honeypot sensor. Credentials tried: postgres/postgre, laravel/laravel123, root/123456abcd Detected by DShield/SANS ISC honeypot sensor.
show less
2026-07-13T05:11:54.771524+02:00 dhcp-server sshd-session[40660]: pam_unix(sshd:auth): authenticatio ...
show more2026-07-13T05:11:54.771524+02:00 dhcp-server sshd-session[40660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.2.139.236
2026-07-13T05:11:56.589738+02:00 dhcp-server sshd-session[40660]: Failed password for invalid user ubuntu from 5.2.139.236 port 45058 ssh2
2026-07-13T05:11:58.133758+02:00 dhcp-server sshd-session[40660]: Disconnected from invalid user ubuntu 5.2.139.236 port 45058 [preauth]
...
show less
Brute-Force
SSH
Anonymous
SSH brute force attempt. User: autologin, Pass: [REDACTED]
Brute-Force
SSH
Anonymous
SSH brute force attempt. User: root, Pass: [REDACTED]
Brute-Force
SSH
Anonymous
SSH brute force attempt. User: testing, Pass: [REDACTED]
2026-07-13T02:19:35.969089+00:00 web sshd[272526]: Invalid user postgres from 5.2.139.236 port 53956 ...
show more2026-07-13T02:19:35.969089+00:00 web sshd[272526]: Invalid user postgres from 5.2.139.236 port 53956
2026-07-13T02:22:27.582527+00:00 web sshd[272594]: Invalid user laravel from 5.2.139.236 port 55746
...
show less