JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 5.39.101.60

5.39.101.60 was found in our database!

This IP was reported 936 times. Confidence of Abuse is 100%: ?

100%

ISP	OVH BE
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	ip60.ip-5-39-101.eu
Domain Name	ovh.net
Country	🇫🇷 France
City	Dunkirk, Hauts-de-France

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 5.39.101.60

Whois 5.39.101.60

IP Abuse Reports for 5.39.101.60:

This IP address has been reported a total of 936 times from 85 distinct sources. 5.39.101.60 was first reported on July 22nd 2022, and the most recent report was 5 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-06-27 04:33:50 (5 hours ago)	Honeypot [uk-production01]: Suspicious payload (possible command injection); 5038 [1] TCP	Hacking
🇵🇱 sefinek.net	2026-06-26 18:07:12 (15 hours ago)	Honeypot hit: Suspicious payload (possible command injection); 5038 [1] TCP Reported by: https://git ... show more Honeypot hit: Suspicious payload (possible command injection); 5038 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking
🇩🇪 dispaisyenterprises	2026-06-26 12:45:50 (21 hours ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (62 bytes of payload); 5038 [1] TCP Reported by Dis ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (62 bytes of payload); 5038 [1] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇦🇺 LiftUp Hosting	2026-06-26 12:22:00 (21 hours ago)	Honeypot hit: Unauthorized traffic (62 bytes of payload); 5038 [1] TCP	Port Scan
🇬🇧 gbzret4d	2026-06-26 06:28:47 (1 day ago)	Honeypot [uk-production01]: Unauthorized traffic (62 bytes of payload); 5038 [1] TCP	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-26 04:17:36 (1 day ago)	Honeypot hit: Empty payload (likely service probe); 5038 [1] TCP	Port Scan
🇳🇱 donarev419	2026-06-26 01:00:24 (1 day ago)	Connection to port 5038 with data transfer. Data preview: Action: Login Username: cron Secret: 123 ... show more Connection to port 5038 with data transfer. Data preview: Action: Login Username: cron Secret: 1234 Events: off show less	Port Scan Hacking
🇵🇱 sefinek.net	2026-06-25 20:15:56 (1 day ago)	Honeypot hit: Unauthorized traffic (62 bytes of payload); 5038 [1] TCP Reported by: https://github.c ... show more Honeypot hit: Unauthorized traffic (62 bytes of payload); 5038 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan
🇳🇬 Aidar Kamalov	2026-06-25 11:46:54 (1 day ago)	2026-06-25T11:46:52.291570+00:00 localhost kamailio-32[118030]: { "level": "NOTICE", "module": "xlog ... show more 2026-06-25T11:46:52.291570+00:00 localhost kamailio-32[118030]: { "level": "NOTICE", "module": "xlog", "file": "xlog.c", "line": 283, "function": "", "callid": "e5f4a315309262e4f7a", "src": "[email protected]", "dst": "[email protected]", "mt": 1, "method": "REGISTER", "cseq": "1 REGISTER", "version_config": "26.0429", "message": "AUTH: REGISTER FAILED from 5.39.101.60 (code: -5) fd=102.223.38.215, adu=<null>, aa=<null>, ar=<null>, au=<null>, ad=<null>, aU=<null>, [email protected]" } 2026-06-25T11:46:52.402483+00:00 localhost kamailio-32[118030]: { "level": "NOTICE", "module": "xlog", "file": "xlog.c", "line": 283, "function": "", "callid": "e5f4a315309262e4f7a", "src": "[email protected]", "dst": "[email protected]", "mt": 1, "method": "REGISTER", "cseq": "2 REGISTER", "version_config": "26.0429", "message": "AUTH: REGISTER FAILED from 5.39.101.60 (code: -3) fd=102.223.38.215, adu=sip:102.223.38.215, aa=MD5, ar=102.223.38.215, au=900, ad=, aU=900, [email protected]" } 202 ... show less	Fraud VoIP
🇳🇬 Aidar Kamalov	2026-06-25 09:46:50 (2 days ago)	2026-06-25T08:46:43.405622+00:00 localhost kamailio-32[118043]: { "level": "NOTICE", "module": "xlog ... show more 2026-06-25T08:46:43.405622+00:00 localhost kamailio-32[118043]: { "level": "NOTICE", "module": "xlog", "file": "xlog.c", "line": 283, "function": "", "callid": "e5f4a893216735e4f7a", "src": "[email protected]", "dst": "[email protected]", "mt": 1, "method": "REGISTER", "cseq": "2 REGISTER", "version_config": "26.0429", "message": "AUTH: REGISTER FAILED from 5.39.101.60 (code: -3) fd=102.223.38.215, adu=sip:102.223.38.215, aa=MD5, ar=102.223.38.215, au=300, ad=, aU=300, [email protected]" } 2026-06-25T09:46:49.780036+00:00 localhost kamailio-32[118049]: { "level": "NOTICE", "module": "xlog", "file": "xlog.c", "line": 283, "function": "", "callid": "e5f4a789883612e4f7a", "src": "[email protected]", "dst": "[email protected]", "mt": 1, "method": "REGISTER", "cseq": "1 REGISTER", "version_config": "26.0429", "message": "AUTH: REGISTER FAILED from 5.39.101.60 (code: -5) fd=102.223.38.215, adu=<null>, aa=<null>, ar=<null>, au=<null>, ad=<null>, aU=<null>, [email protected]" } 202 ... show less	Fraud VoIP
🇪🇸 el-brujo	2026-06-25 09:02:14 (2 days ago)	06/25/2026-11:02:13.933379 5.39.101.60 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputati ... show more 06/25/2026-11:02:13.933379 5.39.101.60 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 3 show less	Hacking
🇳🇬 Aidar Kamalov	2026-06-25 08:46:43 (2 days ago)	2026-06-25T08:46:05.274815+00:00 localhost kamailio-32[118034]: { "level": "NOTICE", "module": "xlog ... show more 2026-06-25T08:46:05.274815+00:00 localhost kamailio-32[118034]: { "level": "NOTICE", "module": "xlog", "file": "xlog.c", "line": 283, "function": "", "callid": "e5f4a377679963e4f7a", "src": "[email protected]", "dst": "[email protected]", "mt": 1, "method": "REGISTER", "cseq": "1 REGISTER", "version_config": "26.0429", "message": "AUTH: REGISTER FAILED from 5.39.101.60 (code: -5) fd=102.223.38.215, adu=<null>, aa=<null>, ar=<null>, au=<null>, ad=<null>, aU=<null>, [email protected]" } 2026-06-25T08:46:05.386814+00:00 localhost kamailio-32[118034]: { "level": "NOTICE", "module": "xlog", "file": "xlog.c", "line": 283, "function": "", "callid": "e5f4a377679963e4f7a", "src": "[email protected]", "dst": "[email protected]", "mt": 1, "method": "REGISTER", "cseq": "2 REGISTER", "version_config": "26.0429", "message": "AUTH: REGISTER FAILED from 5.39.101.60 (code: -3) fd=102.223.38.215, adu=sip:102.223.38.215, aa=MD5, ar=102.223.38.215, au=101, ad=, aU=101, [email protected]" } 202 ... show less	Fraud VoIP
🇩🇪 EnthecSolutions	2026-06-24 06:00:56 (3 days ago)	Detected by Enthec Solutions. \| Attempts: 31 in 24h \| Target port: 5038	Port Scan Hacking
🇳🇱 VMHeaven.io	2026-06-24 05:00:33 (3 days ago)	Blocked by UFW [5061/tcp] Source port: 55262 TTL: 117 Packet length: 52	Port Scan
🇫🇷 Fasetech	2026-06-24 02:53:50 (3 days ago)	SecLedge detected suspicious activity. Score: 1614.36. Sensor: T-Pot.	Brute-Force Web App Attack

Showing 1 to 15 of 936 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 72.10.32.138

🇧🇷 2a09:bac5:dcf:274b::3ea:3

🇺🇸 208.68.37.246

🇧🇷 205.210.31.223

🇳🇱 203.55.131.4

🇨🇳 202.105.98.252

🇪🇸 185.62.21.187

🇫🇮 178.20.210.208

🇫🇮 147.185.133.112

🇺🇸 147.185.132.106

🇬🇧 118.193.64.15

🇹🇼 111.70.32.52

🇳🇱 45.148.10.147

🇸🇬 45.78.198.199

🇳🇱 45.66.35.35

🇲🇩 45.15.227.120

🇲🇽 187.191.48.23

🇳🇱 185.93.89.39

🇨🇳 121.40.213.179

🇻🇳 116.97.243.230