139.59.13.115 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.135.84	attackbots	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 22:04:05
139.59.135.84	attack	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 13:30:00
139.59.135.84	attackspambots	Oct 12 22:40:32 eventyay sshd[28379]: Failed password for root from 139.59.135.84 port 59232 ssh2 Oct 12 22:44:59 eventyay sshd[28632]: Failed password for root from 139.59.135.84 port 35022 ssh2 ...	2020-10-13 06:14:29
139.59.138.115	attackbotsspam	(sshd) Failed SSH login from 139.59.138.115 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 20:43:50 server sshd[3364]: Invalid user ssh from 139.59.138.115 Oct 11 20:43:51 server sshd[3364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 11 20:43:53 server sshd[3364]: Failed password for invalid user ssh from 139.59.138.115 port 58372 ssh2 Oct 11 20:48:12 server sshd[4014]: Invalid user teste from 139.59.138.115 Oct 11 20:48:12 server sshd[4014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115	2020-10-12 05:11:22
139.59.138.115	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-10-11 21:16:04
139.59.138.115	attack	fail2ban	2020-10-11 06:37:06
139.59.138.115	attackbots	Oct 10 17:20:21 vps-51d81928 sshd[721914]: Failed password for invalid user ftpuser from 139.59.138.115 port 54242 ssh2 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:00 vps-51d81928 sshd[721975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:02 vps-51d81928 sshd[721975]: Failed password for invalid user travis from 139.59.138.115 port 60512 ssh2 ...	2020-10-11 02:09:37
139.59.138.115	attackbots	Oct 10 11:08:39 vserver sshd\[2687\]: Invalid user zope from 139.59.138.115Oct 10 11:08:41 vserver sshd\[2687\]: Failed password for invalid user zope from 139.59.138.115 port 35194 ssh2Oct 10 11:16:52 vserver sshd\[2784\]: Invalid user acap from 139.59.138.115Oct 10 11:16:55 vserver sshd\[2784\]: Failed password for invalid user acap from 139.59.138.115 port 49926 ssh2 ...	2020-10-10 17:54:02
139.59.135.84	attackbotsspam	Failed password for root from 139.59.135.84 port 51112 ssh2	2020-10-05 18:30:22
139.59.135.84	attackspam	$f2bV_matches	2020-10-04 04:12:07
139.59.135.84	attackspambots	Invalid user alan from 139.59.135.84 port 57124	2020-10-03 20:16:11
139.59.136.99	attackbotsspam	Invalid user ubnt from 139.59.136.99 port 47440	2020-09-23 00:42:15
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:59205 -> port 22, len 44	2020-09-22 16:42:32
139.59.136.99	attackspam	leo_www	2020-09-22 01:23:02
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:33612 -> port 22, len 44	2020-09-21 17:05:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.13.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.13.115.			IN	A

;; AUTHORITY SECTION:
.			129	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:37:09 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 115.13.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 115.13.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.10.9.81	attack	[portscan] tcp/23 [TELNET] *(RWIN=8561)(08050931)	2019-08-05 23:39:56
202.46.36.33	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-06 00:35:32
188.125.46.188	attack	[portscan] tcp/23 [TELNET] *(RWIN=30602)(08050931)	2019-08-06 00:16:38
118.107.24.34	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-06 00:21:20
112.80.159.216	attackbotsspam	[portscan] tcp/22 [SSH] *(RWIN=44996)(08050931)	2019-08-05 23:47:40
178.216.49.108	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 23:56:21
187.210.126.55	attack	19/8/5@05:03:15: FAIL: Alarm-Intrusion address from=187.210.126.55 ...	2019-08-06 00:37:55
116.204.187.95	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 23:57:33
148.64.101.190	attackspambots	[portscan] tcp/23 [TELNET] *(RWIN=49042)(08050931)	2019-08-06 00:40:43
187.169.189.191	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-06 00:38:19
46.21.166.110	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-06 00:02:04
1.6.156.237	attackbots	[portscan] tcp/139 [NetBIOS Session Service] *(RWIN=1024)(08050931)	2019-08-05 23:44:36
212.21.13.178	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=14600)(08050931)	2019-08-06 00:09:37
180.241.24.209	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=29217)(08050931)	2019-08-06 00:39:27
92.51.85.34	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08050931)	2019-08-05 23:38:26

Recently Reported IPs

139.59.13.166	139.59.131.177	139.59.131.83	139.59.132.221
139.59.132.148	139.59.132.8	139.59.133.206	139.59.139.247
139.59.139.45	139.59.138.165	139.59.132.65	139.59.138.7
139.59.133.54	139.59.14.133	139.59.140.254	139.59.14.53
230.38.152.224	139.59.143.132	139.59.143.227	139.59.143.245