5.239.159.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran (ISLAMIC Republic Of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.239.159.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62698
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.239.159.2.			IN	A

;; AUTHORITY SECTION:
.			213	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:00:19 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 2.159.239.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.159.239.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.82.87.55	attack	2020-09-24 UTC: (2x) - root(2x)	2020-09-25 17:46:21
46.101.204.20	attackspambots	(sshd) Failed SSH login from 46.101.204.20 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 25 06:36:27 server sshd[31471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.204.20 user=root Sep 25 06:36:29 server sshd[31471]: Failed password for root from 46.101.204.20 port 44070 ssh2 Sep 25 07:03:33 server sshd[3088]: Invalid user spring from 46.101.204.20 Sep 25 07:03:33 server sshd[3088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.204.20 Sep 25 07:03:35 server sshd[3088]: Failed password for invalid user spring from 46.101.204.20 port 35224 ssh2	2020-09-25 17:47:02
49.235.217.169	attackbotsspam	2020-09-25T00:44:20.577520morrigan.ad5gb.com sshd[3895102]: Invalid user servidor from 49.235.217.169 port 34540	2020-09-25 18:24:09
13.72.79.186	attackspambots	Sep 25 06:20:13 hidden sshd[20127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.72.79.186 Sep 25 06:20:15 hidden sshd[20127]: Failed password for invalid user admin from 13.72.79.186 port 28787 ssh2 Sep 25 11:30:12 hidden sshd[62348]: Invalid user admin from 13.72.79.186 port 20848	2020-09-25 17:53:03
83.234.218.42	attackspam	srvr3: (mod_security) mod_security (id:920350) triggered by 83.234.218.42 (RU/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/24 22:36:57 [error] 213524#0: 963 [client 83.234.218.42] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160097981723.743749"] [ref "o0,14v21,14"], client: 83.234.218.42, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-25 18:13:43
161.35.122.197	attackbots	Invalid user coin from 161.35.122.197 port 42690	2020-09-25 17:56:42
42.63.9.198	attack	Invalid user boss from 42.63.9.198 port 50060	2020-09-25 18:09:19
190.24.57.38	attackbotsspam	firewall-block, port(s): 9527/tcp	2020-09-25 17:50:34
167.172.156.12	attackspambots	Sep 25 09:23:35 IngegnereFirenze sshd[13027]: Failed password for invalid user tom from 167.172.156.12 port 46390 ssh2 ...	2020-09-25 17:51:05
47.50.246.114	attack	Invalid user freeswitch from 47.50.246.114 port 35252	2020-09-25 18:22:52
91.106.45.199	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-25 18:11:37
36.99.180.242	attackspam	Sep 25 11:59:29 vpn01 sshd[30409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.99.180.242 Sep 25 11:59:31 vpn01 sshd[30409]: Failed password for invalid user testuser from 36.99.180.242 port 47174 ssh2 ...	2020-09-25 18:03:51
23.99.253.95	attackbotsspam	lfd: (smtpauth) Failed SMTP AUTH login from 23.99.253.95 (-): 5 in the last 3600 secs - Sat Aug 25 17:07:52 2018	2020-09-25 18:06:20
167.249.66.0	attackspambots	Sep 25 12:02:30 piServer sshd[7813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.249.66.0 Sep 25 12:02:32 piServer sshd[7813]: Failed password for invalid user nas from 167.249.66.0 port 56321 ssh2 Sep 25 12:11:21 piServer sshd[9043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.249.66.0 ...	2020-09-25 18:14:36
118.250.97.93	attackspam	Brute force blocker - service: proftpd1 - aantal: 97 - Sat Aug 25 13:05:17 2018	2020-09-25 18:07:28

Recently Reported IPs

14.21.7.208	13.77.209.236	183.161.1.77	117.195.88.47
23.108.43.85	114.237.41.159	172.252.224.225	42.113.153.10
103.43.77.213	194.146.190.156	120.85.113.126	1.34.81.123
125.46.136.98	111.90.138.162	60.12.13.115	180.104.205.209
110.78.138.65	122.4.45.81	77.89.251.138	195.211.23.210