City: Singapore
Region: unknown
Country: Singapore
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.59.116.115 | attackspam | Oct 9 19:17:58 vps-51d81928 sshd[692298]: Failed password for root from 139.59.116.115 port 36468 ssh2 Oct 9 19:22:22 vps-51d81928 sshd[692415]: Invalid user mysql from 139.59.116.115 port 41912 Oct 9 19:22:22 vps-51d81928 sshd[692415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.116.115 Oct 9 19:22:22 vps-51d81928 sshd[692415]: Invalid user mysql from 139.59.116.115 port 41912 Oct 9 19:22:25 vps-51d81928 sshd[692415]: Failed password for invalid user mysql from 139.59.116.115 port 41912 ssh2 ... |
2020-10-10 06:05:43 |
| 139.59.116.115 | attackbots | 2020-10-09T15:36:12.025346ks3355764 sshd[13005]: Invalid user tf2 from 139.59.116.115 port 35304 2020-10-09T15:36:14.038962ks3355764 sshd[13005]: Failed password for invalid user tf2 from 139.59.116.115 port 35304 ssh2 ... |
2020-10-09 22:12:25 |
| 139.59.116.115 | attackbotsspam | Port scan denied |
2020-10-09 14:02:44 |
| 139.59.116.115 | attackbotsspam | [N3.H3.VM3] Port Scanner Detected Blocked by UFW |
2020-10-04 05:42:11 |
| 139.59.116.243 | attack | Fail2Ban Ban Triggered |
2020-09-29 03:03:54 |
| 139.59.116.243 | attack | [N10.H2.VM2] Port Scanner Detected Blocked by UFW |
2020-09-28 19:13:00 |
| 139.59.116.243 | attackbots |
|
2020-09-10 12:23:41 |
| 139.59.116.243 | attack | firewall-block, port(s): 11517/tcp |
2020-09-01 20:14:50 |
| 139.59.116.115 | attack | Aug 27 23:01:13 sip sshd[1441771]: Invalid user admin from 139.59.116.115 port 49294 Aug 27 23:01:15 sip sshd[1441771]: Failed password for invalid user admin from 139.59.116.115 port 49294 ssh2 Aug 27 23:07:30 sip sshd[1441838]: Invalid user teste from 139.59.116.115 port 37416 ... |
2020-08-28 06:45:00 |
| 139.59.116.243 | attackbotsspam | Aug 23 23:10:49 cosmoit sshd[15118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.116.243 |
2020-08-24 05:17:33 |
| 139.59.116.115 | attackspam | TCP port : 30511 |
2020-08-23 18:27:20 |
| 139.59.116.115 | attack | SIP/5060 Probe, BF, Hack - |
2020-08-21 16:11:54 |
| 139.59.116.243 | attack | 2020-08-21T10:50:18.222177lavrinenko.info sshd[681]: Failed password for root from 139.59.116.243 port 55046 ssh2 2020-08-21T10:53:13.867419lavrinenko.info sshd[878]: Invalid user ld from 139.59.116.243 port 53164 2020-08-21T10:53:13.872151lavrinenko.info sshd[878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.116.243 2020-08-21T10:53:13.867419lavrinenko.info sshd[878]: Invalid user ld from 139.59.116.243 port 53164 2020-08-21T10:53:15.853536lavrinenko.info sshd[878]: Failed password for invalid user ld from 139.59.116.243 port 53164 ssh2 ... |
2020-08-21 16:00:19 |
| 139.59.116.243 | attackspam |
|
2020-08-20 09:02:21 |
| 139.59.116.243 | attackspam |
|
2020-08-18 08:12:36 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 139.59.0.0 - 139.59.255.255
CIDR: 139.59.0.0/16
NetName: APNIC-ERX-139-59-0-0
NetHandle: NET-139-59-0-0-1
Parent: NET139 (NET-139-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2004-03-03
Updated: 2009-10-08
Comment: This IP address range is not registered in the ARIN database.
Comment: This range was transferred to the APNIC Whois Database as
Comment: part of the ERX (Early Registration Transfer) project.
Comment: For details, refer to the APNIC Whois Database via
Comment: WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:
Comment: ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment: for the Asia Pacific region. APNIC does not operate networks
Comment: using this IP address range and is not able to investigate
Comment: spam or abuse reports relating to these addresses. For more
Comment: help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref: https://rdap.arin.net/registry/ip/139.59.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: http://wq.apnic.net/whois-search/static/search.html
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '139.59.112.0 - 139.59.127.255'
% Abuse contact for '139.59.112.0 - 139.59.127.255' is 'abuse@digitalocean.com'
inetnum: 139.59.112.0 - 139.59.127.255
netname: DIGITALOCEAN-AP
descr: DigitalOcean, LLC
country: SG
admin-c: DOIA2-AP
tech-c: DOIA2-AP
abuse-c: AD699-AP
status: ASSIGNED NON-PORTABLE
mnt-by: MAINT-DIGITALOCEAN-AP
mnt-irt: IRT-DIGITALOCEAN-AP
last-modified: 2020-05-31T21:37:27Z
source: APNIC
irt: IRT-DIGITALOCEAN-AP
address: 105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
e-mail: noc@digitalocean.com
abuse-mailbox: abuse@digitalocean.com
admin-c: DOIA2-AP
tech-c: DOIA2-AP
auth: # Filtered
remarks: noc@digitalocean.com is invalid
remarks: abuse@digitalocean.com is invalid
mnt-by: MAINT-DIGITALOCEAN-AP
last-modified: 2026-03-04T13:09:28Z
source: APNIC
role: ABUSE DIGITALOCEANAP
country: ZZ
address: 105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
phone: +000000000
e-mail: noc@digitalocean.com
admin-c: DOIA2-AP
tech-c: DOIA2-AP
nic-hdl: AD699-AP
remarks: Generated from irt object IRT-DIGITALOCEAN-AP
remarks: noc@digitalocean.com is invalid
remarks: abuse@digitalocean.com is invalid
abuse-mailbox: abuse@digitalocean.com
mnt-by: APNIC-ABUSE
last-modified: 2026-03-04T13:11:16Z
source: APNIC
role: Digital Ocean Inc administrator
address: 105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
country: US
phone: +1 646-827-4366
fax-no: +1 646-827-4366
e-mail: abuse@digitalocean.com
admin-c: DOIA2-AP
tech-c: DOIA2-AP
nic-hdl: DOIA2-AP
mnt-by: MAINT-DIGITALOCEAN-AP
last-modified: 2025-04-11T18:24:27Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.116.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27604
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;139.59.116.9. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026031701 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 03:00:14 CST 2026
;; MSG SIZE rcvd: 105Host 9.116.59.139.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 9.116.59.139.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 36.235.67.174 | attack | Jul 31 00:21:28 localhost kernel: [15791082.096152] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.235.67.174 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45444 PROTO=TCP SPT=54614 DPT=37215 WINDOW=52557 RES=0x00 SYN URGP=0 Jul 31 00:21:28 localhost kernel: [15791082.096160] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.235.67.174 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=45444 PROTO=TCP SPT=54614 DPT=37215 SEQ=758669438 ACK=0 WINDOW=52557 RES=0x00 SYN URGP=0 Jul 31 04:10:40 localhost kernel: [15804834.234271] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.235.67.174 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=48411 PROTO=TCP SPT=54614 DPT=37215 WINDOW=52557 RES=0x00 SYN URGP=0 Jul 31 04:10:40 localhost kernel: [15804834.234291] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.235.67.174 DST=[mungedIP2] LEN=40 TOS=0x0 |
2019-07-31 16:35:57 |
| 192.241.211.215 | attackspambots | Jul 31 10:10:41 [host] sshd[25790]: Invalid user administrator from 192.241.211.215 Jul 31 10:10:41 [host] sshd[25790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.215 Jul 31 10:10:43 [host] sshd[25790]: Failed password for invalid user administrator from 192.241.211.215 port 54044 ssh2 |
2019-07-31 16:33:30 |
| 104.248.69.142 | attack | Apr 23 18:05:51 ubuntu sshd[23629]: Failed password for invalid user suporte from 104.248.69.142 port 38612 ssh2 Apr 23 18:08:13 ubuntu sshd[24079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.69.142 Apr 23 18:08:16 ubuntu sshd[24079]: Failed password for invalid user appldev from 104.248.69.142 port 35952 ssh2 Apr 23 18:10:37 ubuntu sshd[24771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.69.142 |
2019-07-31 16:37:40 |
| 202.91.86.132 | attackspam | Unauthorised access (Jul 31) SRC=202.91.86.132 LEN=52 TTL=118 ID=32510 DF TCP DPT=445 WINDOW=8192 SYN |
2019-07-31 16:54:23 |
| 129.204.171.74 | attackbots | Jul 31 10:04:30 dev0-dcde-rnet sshd[28795]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.171.74 Jul 31 10:04:32 dev0-dcde-rnet sshd[28795]: Failed password for invalid user mb from 129.204.171.74 port 53622 ssh2 Jul 31 10:10:52 dev0-dcde-rnet sshd[28812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.171.74 |
2019-07-31 16:25:37 |
| 104.248.83.49 | attackbots | Apr 18 18:52:02 ubuntu sshd[954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.83.49 Apr 18 18:52:05 ubuntu sshd[954]: Failed password for invalid user phoebe from 104.248.83.49 port 35498 ssh2 Apr 18 18:54:14 ubuntu sshd[1350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.83.49 Apr 18 18:54:16 ubuntu sshd[1350]: Failed password for invalid user nh from 104.248.83.49 port 61302 ssh2 |
2019-07-31 16:20:12 |
| 220.83.161.249 | attack | Feb 21 12:57:42 vtv3 sshd\[19776\]: Invalid user ftpuser from 220.83.161.249 port 60144 Feb 21 12:57:42 vtv3 sshd\[19776\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.83.161.249 Feb 21 12:57:45 vtv3 sshd\[19776\]: Failed password for invalid user ftpuser from 220.83.161.249 port 60144 ssh2 Feb 21 13:04:34 vtv3 sshd\[21518\]: Invalid user user from 220.83.161.249 port 50188 Feb 21 13:04:34 vtv3 sshd\[21518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.83.161.249 Feb 24 02:34:43 vtv3 sshd\[11620\]: Invalid user nagios from 220.83.161.249 port 39108 Feb 24 02:34:43 vtv3 sshd\[11620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.83.161.249 Feb 24 02:34:45 vtv3 sshd\[11620\]: Failed password for invalid user nagios from 220.83.161.249 port 39108 ssh2 Feb 24 02:40:08 vtv3 sshd\[13874\]: Invalid user ubuntu from 220.83.161.249 port 45768 Feb 24 02:40:08 vtv3 sshd\ |
2019-07-31 16:54:51 |
| 125.212.176.220 | attackspambots | "SMTPD" 6280 164544 "2019-07-31 x@x "SMTPD" 6280 164544 "2019-07-31 09:56:38.140" "125.212.176.220" "SENT: 550 Delivery is not allowed to this address." IP Address: 125.212.176.220 Email x@x No MX record resolves to this server for domain: opvakantievanafmaastricht.nl ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.212.176.220 |
2019-07-31 16:39:23 |
| 104.248.49.171 | attackspam | Jul 31 08:10:50 MK-Soft-VM3 sshd\[14584\]: Invalid user acsite from 104.248.49.171 port 57244 Jul 31 08:10:50 MK-Soft-VM3 sshd\[14584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.49.171 Jul 31 08:10:52 MK-Soft-VM3 sshd\[14584\]: Failed password for invalid user acsite from 104.248.49.171 port 57244 ssh2 ... |
2019-07-31 16:26:27 |
| 112.197.0.125 | attack | Jul 31 04:35:37 xtremcommunity sshd\[3796\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.0.125 user=root Jul 31 04:35:39 xtremcommunity sshd\[3796\]: Failed password for root from 112.197.0.125 port 5656 ssh2 Jul 31 04:40:42 xtremcommunity sshd\[3967\]: Invalid user mpsoc from 112.197.0.125 port 18384 Jul 31 04:40:42 xtremcommunity sshd\[3967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.197.0.125 Jul 31 04:40:44 xtremcommunity sshd\[3967\]: Failed password for invalid user mpsoc from 112.197.0.125 port 18384 ssh2 ... |
2019-07-31 16:52:08 |
| 123.206.67.55 | attackbotsspam | SSH bruteforce (Triggered fail2ban) |
2019-07-31 16:11:57 |
| 139.59.6.148 | attack | Automatic report - Banned IP Access |
2019-07-31 16:14:22 |
| 59.100.246.170 | attack | Jul 31 09:29:44 localhost sshd\[31228\]: Invalid user demo3 from 59.100.246.170 port 45242 Jul 31 09:29:45 localhost sshd\[31228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.100.246.170 ... |
2019-07-31 16:35:40 |
| 104.248.65.3 | attackspambots | Apr 14 00:26:29 ubuntu sshd[17933]: Failed password for invalid user cc from 104.248.65.3 port 37954 ssh2 Apr 14 00:28:40 ubuntu sshd[18303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.3 Apr 14 00:28:42 ubuntu sshd[18303]: Failed password for invalid user kw from 104.248.65.3 port 35688 ssh2 Apr 14 00:31:01 ubuntu sshd[18348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.65.3 |
2019-07-31 16:44:29 |
| 185.220.100.253 | attack | Jul 31 10:26:34 [munged] sshd[30125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.100.253 user=root Jul 31 10:26:37 [munged] sshd[30125]: Failed password for root from 185.220.100.253 port 31368 ssh2 |
2019-07-31 16:57:11 |