5.239.82.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran

Internet Service Provider: Telecommunication Company of Tehran

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 5.239.82.214 to port 445	2019-12-29 04:04:30

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.239.82.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44496
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.239.82.214.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122800 1800 900 604800 86400

;; Query time: 940 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 04:04:27 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 214.82.239.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.82.239.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.191.123.46	attack	Sep 17 17:16:14 ws12vmsma01 sshd[34213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.191.123.46 Sep 17 17:16:14 ws12vmsma01 sshd[34213]: Invalid user logger from 179.191.123.46 Sep 17 17:16:16 ws12vmsma01 sshd[34213]: Failed password for invalid user logger from 179.191.123.46 port 58990 ssh2 ...	2020-09-18 20:32:56
117.34.91.2	attackspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-18 20:33:40
202.70.33.190	attack	Unauthorized connection attempt from IP address 202.70.33.190 on Port 445(SMB)	2020-09-18 20:24:42
112.119.179.8	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 20:13:40
36.77.57.37	attack	Port Scan ...	2020-09-18 20:27:41
51.15.221.90	attackspam	2020-09-18T04:40:57.4673461495-001 sshd[61935]: Failed password for root from 51.15.221.90 port 54324 ssh2 2020-09-18T04:44:31.0046261495-001 sshd[62174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.221.90 user=root 2020-09-18T04:44:32.7643241495-001 sshd[62174]: Failed password for root from 51.15.221.90 port 36238 ssh2 2020-09-18T04:48:12.8609241495-001 sshd[62397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.221.90 user=root 2020-09-18T04:48:15.0973501495-001 sshd[62397]: Failed password for root from 51.15.221.90 port 46382 ssh2 2020-09-18T04:51:57.7862811495-001 sshd[62627]: Invalid user shader from 51.15.221.90 port 56872 ...	2020-09-18 20:10:37
111.202.211.10	attack	[f2b] sshd bruteforce, retries: 1	2020-09-18 19:57:19
46.101.43.224	attack	Sep 18 11:55:45 marvibiene sshd[26135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.43.224 Sep 18 11:55:47 marvibiene sshd[26135]: Failed password for invalid user alex from 46.101.43.224 port 40448 ssh2	2020-09-18 20:31:38
45.148.121.83	attackbots	Sep 18 08:33:12 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=45.148.121.83 DST=217.198.117.163 LEN=444 TOS=0x00 PREC=0x00 TTL=51 ID=1800 DF PROTO=UDP SPT=5100 DPT=5095 LEN=424 Sep 18 08:33:12 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=45.148.121.83 DST=217.198.117.163 LEN=444 TOS=0x00 PREC=0x00 TTL=51 ID=1801 DF PROTO=UDP SPT=5100 DPT=5072 LEN=424 Sep 18 08:33:12 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=45.148.121.83 DST=217.198.117.163 LEN=445 TOS=0x00 PREC=0x00 TTL=52 ID=1796 DF PROTO=UDP SPT=5100 DPT=5063 LEN=425 Sep 18 08:33:12 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=45.148.121.83 DST=217.198.117.163 LEN=444 TOS=0x00 PREC=0x00 TTL=51 ID=1799 DF PROTO=UDP SPT=5100 DPT=5085 LEN=424 Sep 18 08:33:12 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f: ...	2020-09-18 19:58:35
208.97.133.37	attackspam	[Thu Sep 17 16:39:18 2020 GMT] Americanas [RDNS_NONE,HTML_IMAGE_ONLY_28], Subject: Smart TV LED 50 Samsung 50RU7100 Ultra HD 4K Apenas R$ 959,00 Eu queroooooo	2020-09-18 20:32:24
122.202.32.70	attackspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-18 20:07:43
158.181.16.127	attack	Unauthorized connection attempt from IP address 158.181.16.127 on Port 445(SMB)	2020-09-18 20:20:58
219.79.248.222	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 20:19:39
112.119.229.86	attackbots	Sep 17 16:06:05 sip sshd[11185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.119.229.86 Sep 17 16:06:07 sip sshd[11185]: Failed password for invalid user netman from 112.119.229.86 port 35966 ssh2 Sep 18 13:00:47 sip sshd[22419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.119.229.86	2020-09-18 20:13:13
189.165.63.17	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 19:59:57

Recently Reported IPs

197.50.135.150	18.204.103.164	198.96.76.86	190.181.2.248
45.76.86.29	220.178.156.27	190.127.252.19	66.120.146.196
211.209.23.41	211.96.182.65	187.222.106.63	59.57.245.189
218.238.110.109	187.207.65.183	77.63.241.235	47.245.95.55
18.181.171.71	47.118.180.141	186.215.32.41	150.254.36.45