169.239.159.52

Basic Info

City: unknown

Region: unknown

Country: Congo (Democratic Republic of the)

Internet Service Provider: Orange RDC

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Feb 4 14:49:18 grey postfix/smtpd\[23104\]: NOQUEUE: reject: RCPT from unknown\[169.239.159.52\]: 554 5.7.1 Service unavailable\; Client host \[169.239.159.52\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=169.239.159.52\; from=\ to=\ proto=ESMTP helo=\<\[169.239.159.52\]\> ...	2020-02-05 02:43:29

Type

Details

Datetime

attackbots

Feb  4 14:49:18 grey postfix/smtpd\[23104\]: NOQUEUE: reject: RCPT from unknown\[169.239.159.52\]: 554 5.7.1 Service unavailable\; Client host \[169.239.159.52\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=169.239.159.52\; from=\ to=\ proto=ESMTP helo=\<\[169.239.159.52\]\>
...

2020-02-05 02:43:29

Comments on same subnet:

IP	Type	Details	Datetime
169.239.159.244	attackspambots	Mar 22 02:10:47 gw1 sshd[29217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.239.159.244 Mar 22 02:10:49 gw1 sshd[29217]: Failed password for invalid user zaq1wsxcdv from 169.239.159.244 port 39760 ssh2 ...	2020-03-22 05:22:56

Type

Details

Datetime

169.239.159.244

attackspambots

Mar 22 02:10:47 gw1 sshd[29217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.239.159.244
Mar 22 02:10:49 gw1 sshd[29217]: Failed password for invalid user zaq1wsxcdv from 169.239.159.244 port 39760 ssh2
...

2020-03-22 05:22:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 169.239.159.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48826
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;169.239.159.52.			IN	A

;; AUTHORITY SECTION:
.			426	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020401 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 02:43:22 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 52.159.239.169.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.159.239.169.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.34.30	attackspam	Aug 28 02:07:11 ncomp sshd[4125]: Invalid user master from 134.209.34.30 Aug 28 02:07:11 ncomp sshd[4125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.34.30 Aug 28 02:07:11 ncomp sshd[4125]: Invalid user master from 134.209.34.30 Aug 28 02:07:12 ncomp sshd[4125]: Failed password for invalid user master from 134.209.34.30 port 41816 ssh2	2019-08-28 10:19:28
34.243.33.89	attackspam	RDP Bruteforce	2019-08-28 10:11:43
186.5.109.211	attackbotsspam	Aug 27 16:21:24 hpm sshd\[16802\]: Invalid user menu from 186.5.109.211 Aug 27 16:21:24 hpm sshd\[16802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.5.109.211 Aug 27 16:21:25 hpm sshd\[16802\]: Failed password for invalid user menu from 186.5.109.211 port 53983 ssh2 Aug 27 16:26:24 hpm sshd\[17157\]: Invalid user ie from 186.5.109.211 Aug 27 16:26:24 hpm sshd\[17157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.5.109.211	2019-08-28 10:35:16
185.175.93.105	attack	firewall-block, port(s): 30510/tcp, 31110/tcp, 32410/tcp, 35610/tcp, 39310/tcp	2019-08-28 10:29:20
196.52.43.62	attackbots	Honeypot hit.	2019-08-28 10:03:05
51.89.157.100	attack	Automatic report - Banned IP Access	2019-08-28 10:26:40
206.189.59.186	attackspam	Aug 27 01:43:04 wp sshd[10148]: Invalid user developer from 206.189.59.186 Aug 27 01:43:04 wp sshd[10148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.59.186 Aug 27 01:43:06 wp sshd[10148]: Failed password for invalid user developer from 206.189.59.186 port 46288 ssh2 Aug 27 01:43:06 wp sshd[10148]: Received disconnect from 206.189.59.186: 11: Bye Bye [preauth] Aug 27 01:48:52 wp sshd[10228]: Invalid user vz from 206.189.59.186 Aug 27 01:48:52 wp sshd[10228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.59.186 Aug 27 01:48:54 wp sshd[10228]: Failed password for invalid user vz from 206.189.59.186 port 51388 ssh2 Aug 27 01:48:54 wp sshd[10228]: Received disconnect from 206.189.59.186: 11: Bye Bye [preauth] Aug 27 01:52:44 wp sshd[10322]: Invalid user gx from 206.189.59.186 Aug 27 01:52:44 wp sshd[10322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid........ -------------------------------	2019-08-28 10:10:09
107.170.198.115	attack	389/tcp 14373/tcp 3790/tcp... [2019-06-26/08-27]74pkt,56pt.(tcp),4pt.(udp)	2019-08-28 10:06:05
106.110.40.184	attackspam	Aug 27 20:32:03 isowiki sshd[19956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.110.40.184 user=r.r Aug 27 20:32:05 isowiki sshd[19956]: Failed password for r.r from 106.110.40.184 port 36564 ssh2 Aug 27 20:32:08 isowiki sshd[19956]: Failed password for r.r from 106.110.40.184 port 36564 ssh2 Aug 27 20:32:10 isowiki sshd[19956]: Failed password for r.r from 106.110.40.184 port 36564 ssh2 Aug 27 20:32:13 isowiki sshd[19956]: Failed password for r.r from 106.110.40.184 port 36564 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.110.40.184	2019-08-28 10:31:43
167.71.41.110	attackspam	Aug 28 03:06:54 rpi sshd[5438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.41.110 Aug 28 03:06:57 rpi sshd[5438]: Failed password for invalid user campbell from 167.71.41.110 port 44592 ssh2	2019-08-28 10:17:38
186.28.100.45	attackspambots	BURG,WP GET /wp-login.php	2019-08-28 10:06:29
40.122.130.201	attackspambots	Aug 28 01:42:54 OPSO sshd\[8704\]: Invalid user 4 from 40.122.130.201 port 60210 Aug 28 01:42:54 OPSO sshd\[8704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.130.201 Aug 28 01:42:56 OPSO sshd\[8704\]: Failed password for invalid user 4 from 40.122.130.201 port 60210 ssh2 Aug 28 01:47:20 OPSO sshd\[9255\]: Invalid user g from 40.122.130.201 port 60534 Aug 28 01:47:20 OPSO sshd\[9255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.130.201	2019-08-28 10:08:59
51.79.140.142	attackbots	Aug x@x Aug x@x Aug x@x Aug x@x Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.79.140.142	2019-08-28 10:05:04
107.170.238.152	attackspam	389/tcp 111/udp 13852/tcp... [2019-06-28/08-26]66pkt,60pt.(tcp),3pt.(udp)	2019-08-28 09:59:34
185.4.135.177	attackspambots	Postfix SMTP rejection ...	2019-08-28 10:22:11

Recently Reported IPs

78.244.157.216	113.177.80.193	134.73.27.16	193.111.249.76
51.15.204.78	134.73.27.14	134.73.27.10	52.187.163.117
134.209.6.158	162.144.39.108	134.209.6.135	51.83.76.88
134.209.41.226	134.209.34.195	37.59.232.6	134.209.32.184
172.245.92.117	134.209.32.108	231.182.204.220	205.33.225.61