139.59.13.166 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.135.84	attackbots	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 22:04:05
139.59.135.84	attack	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 13:30:00
139.59.135.84	attackspambots	Oct 12 22:40:32 eventyay sshd[28379]: Failed password for root from 139.59.135.84 port 59232 ssh2 Oct 12 22:44:59 eventyay sshd[28632]: Failed password for root from 139.59.135.84 port 35022 ssh2 ...	2020-10-13 06:14:29
139.59.138.115	attackbotsspam	(sshd) Failed SSH login from 139.59.138.115 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 20:43:50 server sshd[3364]: Invalid user ssh from 139.59.138.115 Oct 11 20:43:51 server sshd[3364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 11 20:43:53 server sshd[3364]: Failed password for invalid user ssh from 139.59.138.115 port 58372 ssh2 Oct 11 20:48:12 server sshd[4014]: Invalid user teste from 139.59.138.115 Oct 11 20:48:12 server sshd[4014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115	2020-10-12 05:11:22
139.59.138.115	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-10-11 21:16:04
139.59.138.115	attack	fail2ban	2020-10-11 06:37:06
139.59.138.115	attackbots	Oct 10 17:20:21 vps-51d81928 sshd[721914]: Failed password for invalid user ftpuser from 139.59.138.115 port 54242 ssh2 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:00 vps-51d81928 sshd[721975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:02 vps-51d81928 sshd[721975]: Failed password for invalid user travis from 139.59.138.115 port 60512 ssh2 ...	2020-10-11 02:09:37
139.59.138.115	attackbots	Oct 10 11:08:39 vserver sshd\[2687\]: Invalid user zope from 139.59.138.115Oct 10 11:08:41 vserver sshd\[2687\]: Failed password for invalid user zope from 139.59.138.115 port 35194 ssh2Oct 10 11:16:52 vserver sshd\[2784\]: Invalid user acap from 139.59.138.115Oct 10 11:16:55 vserver sshd\[2784\]: Failed password for invalid user acap from 139.59.138.115 port 49926 ssh2 ...	2020-10-10 17:54:02
139.59.135.84	attackbotsspam	Failed password for root from 139.59.135.84 port 51112 ssh2	2020-10-05 18:30:22
139.59.135.84	attackspam	$f2bV_matches	2020-10-04 04:12:07
139.59.135.84	attackspambots	Invalid user alan from 139.59.135.84 port 57124	2020-10-03 20:16:11
139.59.136.99	attackbotsspam	Invalid user ubnt from 139.59.136.99 port 47440	2020-09-23 00:42:15
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:59205 -> port 22, len 44	2020-09-22 16:42:32
139.59.136.99	attackspam	leo_www	2020-09-22 01:23:02
139.59.136.99	attackbotsspam	TCP (SYN) 139.59.136.99:33612 -> port 22, len 44	2020-09-21 17:05:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.13.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.13.166.			IN	A

;; AUTHORITY SECTION:
.			276	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:37:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

166.13.59.139.in-addr.arpa domain name pointer 422798.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.13.59.139.in-addr.arpa	name = 422798.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
130.61.93.5	attack	Nov 13 17:13:59 SilenceServices sshd[31426]: Failed password for root from 130.61.93.5 port 42674 ssh2 Nov 13 17:17:54 SilenceServices sshd[1604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.93.5 Nov 13 17:17:56 SilenceServices sshd[1604]: Failed password for invalid user server from 130.61.93.5 port 51736 ssh2	2019-11-14 02:02:49
45.125.65.63	attackspambots	\[2019-11-13 12:43:22\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-13T12:43:22.484-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="46812400530",SessionID="0x7fdf2c3f5928",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.63/51438",ACLName="no_extension_match" \[2019-11-13 12:43:42\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-13T12:43:42.123-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00246462607502",SessionID="0x7fdf2ccecc48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.63/56559",ACLName="no_extension_match" \[2019-11-13 12:47:22\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-13T12:47:22.247-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="81046812400530",SessionID="0x7fdf2c1aed28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.63/59940",ACLName="no_extension_ma	2019-11-14 02:13:22
112.64.111.162	attackspam	Unauthorised access (Nov 13) SRC=112.64.111.162 LEN=40 TTL=50 ID=57951 TCP DPT=23 WINDOW=5828 SYN	2019-11-14 01:56:08
45.227.253.141	attack	2019-11-13T18:58:48.258853mail01 postfix/smtpd[31770]: warning: unknown[45.227.253.141]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T18:58:55.446125mail01 postfix/smtpd[28376]: warning: unknown[45.227.253.141]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T18:59:11.452808mail01 postfix/smtpd[19703]: warning: unknown[45.227.253.141]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-14 02:05:52
165.22.101.190	attack	" "	2019-11-14 01:59:00
3.86.94.38	attackspam	2019-11-13 15:48:14 H=ec2-3-86-94-38.compute-1.amazonaws.com (phylobago.mysecuritycamera.org) [3.86.94.38] sender verify fail for : Unrouteable address 2019-11-13 15:48:14 H=ec2-3-86-94-38.compute-1.amazonaws.com (phylobago.mysecuritycamera.org) [3.86.94.38] F= rejected RCPT : Sender verify failed ...	2019-11-14 02:04:48
111.204.164.82	attack	SSH login attempts	2019-11-14 02:08:23
103.127.131.18	attackbots	Port scan	2019-11-14 02:12:41
103.66.16.18	attackbots	leo_www	2019-11-14 02:18:11
113.196.127.245	attackspam	SMB Server BruteForce Attack	2019-11-14 02:12:28
81.22.47.118	attack	B: zzZZzz blocked content access	2019-11-14 01:59:35
18.215.220.11	attackspam	Nov 13 19:04:29 ns382633 sshd\[20426\]: Invalid user bosnes from 18.215.220.11 port 53480 Nov 13 19:04:29 ns382633 sshd\[20426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.215.220.11 Nov 13 19:04:31 ns382633 sshd\[20426\]: Failed password for invalid user bosnes from 18.215.220.11 port 53480 ssh2 Nov 13 19:15:47 ns382633 sshd\[22780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.215.220.11 user=root Nov 13 19:15:49 ns382633 sshd\[22780\]: Failed password for root from 18.215.220.11 port 50168 ssh2	2019-11-14 02:25:57
14.169.53.34	attack	Automatic report - Port Scan Attack	2019-11-14 02:24:29
165.227.9.184	attackspam	Nov 13 18:53:25 SilenceServices sshd[1434]: Failed password for root from 165.227.9.184 port 15928 ssh2 Nov 13 18:59:09 SilenceServices sshd[5554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.9.184 Nov 13 18:59:11 SilenceServices sshd[5554]: Failed password for invalid user misiek from 165.227.9.184 port 52938 ssh2	2019-11-14 02:09:42
103.47.168.117	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-11-14 02:10:19

Recently Reported IPs

139.59.131.15	139.59.13.115	139.59.131.177	139.59.131.83
139.59.132.221	139.59.132.148	139.59.132.8	139.59.133.206
139.59.139.247	139.59.139.45	139.59.138.165	139.59.132.65
139.59.138.7	139.59.133.54	139.59.14.133	139.59.140.254
139.59.14.53	230.38.152.224	139.59.143.132	139.59.143.227