138.59.7.140 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Honduras

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.59.71.65	attackspam	unauthorized connection attempt	2020-02-07 18:20:36
138.59.71.65	attackbotsspam	Unauthorized connection attempt detected from IP address 138.59.71.65 to port 82 [J]	2020-01-13 02:45:21
138.59.74.144	attackspambots	Detected by Maltrail	2019-11-14 09:07:46
138.59.74.144	attackspambots	Nov 5 07:27:57 mc1 kernel: \[4221580.506943\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=138.59.74.144 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=58753 PROTO=TCP SPT=61000 DPT=80 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 07:28:00 mc1 kernel: \[4221583.654075\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=138.59.74.144 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=58753 PROTO=TCP SPT=61000 DPT=80 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 5 07:28:03 mc1 kernel: \[4221586.832025\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=138.59.74.144 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=58753 PROTO=TCP SPT=61000 DPT=80 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-05 16:26:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.59.7.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24583
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.59.7.140.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:35:58 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 140.7.59.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.7.59.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.43.159	attackbots	Apr 11 23:54:02 legacy sshd[32510]: Failed password for root from 139.59.43.159 port 43678 ssh2 Apr 11 23:57:56 legacy sshd[32693]: Failed password for root from 139.59.43.159 port 50568 ssh2 Apr 12 00:01:56 legacy sshd[405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.43.159 ...	2020-04-12 06:07:08
31.41.255.34	attackbots	Invalid user chris from 31.41.255.34 port 48848	2020-04-12 06:08:51
112.85.42.188	attack	04/11/2020-18:05:27.590922 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-12 06:06:16
49.234.212.15	attack	Apr 11 22:50:18 host01 sshd[20357]: Failed password for root from 49.234.212.15 port 34912 ssh2 Apr 11 22:53:25 host01 sshd[20972]: Failed password for root from 49.234.212.15 port 41952 ssh2 ...	2020-04-12 05:58:03
167.99.67.209	attackspambots	Apr 11 18:59:07 firewall sshd[2582]: Failed password for root from 167.99.67.209 port 55040 ssh2 Apr 11 19:01:06 firewall sshd[2648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.67.209 user=root Apr 11 19:01:09 firewall sshd[2648]: Failed password for root from 167.99.67.209 port 59594 ssh2 ...	2020-04-12 06:16:02
87.104.49.5	attackbots	Apr 11 23:34:09 host sshd\[9424\]: User user from 87.104.49.5 not allowed because none of user's groups are listed in AllowGroups	2020-04-12 05:51:35
222.186.180.9	attackspam	2020-04-12T00:00:27.173501centos sshd[20934]: Failed password for root from 222.186.180.9 port 56048 ssh2 2020-04-12T00:00:30.877025centos sshd[20934]: Failed password for root from 222.186.180.9 port 56048 ssh2 2020-04-12T00:00:34.386844centos sshd[20934]: Failed password for root from 222.186.180.9 port 56048 ssh2 ...	2020-04-12 06:06:51
94.102.56.215	attack	94.102.56.215 was recorded 23 times by 14 hosts attempting to connect to the following ports: 1797,1813. Incident counter (4h, 24h, all-time): 23, 137, 10847	2020-04-12 06:21:21
152.136.207.121	attack	Apr 12 00:01:03 nextcloud sshd\[27280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.207.121 user=root Apr 12 00:01:05 nextcloud sshd\[27280\]: Failed password for root from 152.136.207.121 port 48494 ssh2 Apr 12 00:06:52 nextcloud sshd\[1157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.207.121 user=root	2020-04-12 06:16:42
14.23.154.114	attackspambots	no	2020-04-12 06:28:42
103.145.12.44	attackspambots	[2020-04-11 17:38:41] NOTICE[12114][C-00004908] chan_sip.c: Call from '' (103.145.12.44:64956) to extension '941011101148413828003' rejected because extension not found in context 'public'. [2020-04-11 17:38:41] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T17:38:41.166-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="941011101148413828003",SessionID="0x7f020c167898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.44/64956",ACLName="no_extension_match" [2020-04-11 17:39:31] NOTICE[12114][C-0000490a] chan_sip.c: Call from '' (103.145.12.44:61657) to extension '9039801148778878003' rejected because extension not found in context 'public'. [2020-04-11 17:39:31] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-11T17:39:31.864-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9039801148778878003",SessionID="0x7f020c0db748",LocalAddress="IPV4/UDP/192.168.244.6/5060", ...	2020-04-12 05:51:13
49.88.112.68	attackspambots	Apr 11 23:43:59 v22018053744266470 sshd[2382]: Failed password for root from 49.88.112.68 port 25047 ssh2 Apr 11 23:45:46 v22018053744266470 sshd[2495]: Failed password for root from 49.88.112.68 port 63843 ssh2 ...	2020-04-12 05:49:37
62.234.130.87	attack	Apr 11 22:56:30 * sshd[11521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.130.87 Apr 11 22:56:32 * sshd[11521]: Failed password for invalid user uftp from 62.234.130.87 port 52590 ssh2	2020-04-12 05:50:52
185.40.4.114	attack	SSH Bruteforce attempt	2020-04-12 05:57:05
190.73.214.148	attackbotsspam	B: /wp-login.php attack	2020-04-12 05:59:09

Recently Reported IPs

138.36.92.237	138.36.97.30	138.59.222.2	138.59.227.243
138.36.199.218	138.59.7.191	138.59.11.227	138.59.7.154
138.68.128.206	138.59.7.207	138.68.148.113	138.68.132.63
138.68.106.168	138.68.151.140	138.68.143.131	138.68.156.210
138.68.152.39	138.68.186.139	138.59.51.120	138.68.158.95