139.59.138.115

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	(sshd) Failed SSH login from 139.59.138.115 (DE/Germany/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 20:43:50 server sshd[3364]: Invalid user ssh from 139.59.138.115 Oct 11 20:43:51 server sshd[3364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 11 20:43:53 server sshd[3364]: Failed password for invalid user ssh from 139.59.138.115 port 58372 ssh2 Oct 11 20:48:12 server sshd[4014]: Invalid user teste from 139.59.138.115 Oct 11 20:48:12 server sshd[4014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115	2020-10-12 05:11:22
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-10-11 21:16:04
attack	fail2ban	2020-10-11 06:37:06
attackbots	Oct 10 17:20:21 vps-51d81928 sshd[721914]: Failed password for invalid user ftpuser from 139.59.138.115 port 54242 ssh2 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:00 vps-51d81928 sshd[721975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.138.115 Oct 10 17:24:00 vps-51d81928 sshd[721975]: Invalid user travis from 139.59.138.115 port 60512 Oct 10 17:24:02 vps-51d81928 sshd[721975]: Failed password for invalid user travis from 139.59.138.115 port 60512 ssh2 ...	2020-10-11 02:09:37
attackbots	Oct 10 11:08:39 vserver sshd\[2687\]: Invalid user zope from 139.59.138.115Oct 10 11:08:41 vserver sshd\[2687\]: Failed password for invalid user zope from 139.59.138.115 port 35194 ssh2Oct 10 11:16:52 vserver sshd\[2784\]: Invalid user acap from 139.59.138.115Oct 10 11:16:55 vserver sshd\[2784\]: Failed password for invalid user acap from 139.59.138.115 port 49926 ssh2 ...	2020-10-10 17:54:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.138.115
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23979
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.138.115.			IN	A

;; AUTHORITY SECTION:
.			320	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020101000 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 10 17:53:58 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 115.138.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 115.138.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.174.254.186	attackbotsspam	20/3/17@23:55:09: FAIL: Alarm-Intrusion address from=217.174.254.186 ...	2020-03-18 12:18:06
157.245.181.249	attack	Mar 17 18:32:43 server2 sshd[24431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.181.249 user=r.r Mar 17 18:32:46 server2 sshd[24431]: Failed password for r.r from 157.245.181.249 port 34020 ssh2 Mar 17 18:32:46 server2 sshd[24431]: Received disconnect from 157.245.181.249: 11: Bye Bye [preauth] Mar 17 18:39:42 server2 sshd[25017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.181.249 user=r.r Mar 17 18:39:45 server2 sshd[25017]: Failed password for r.r from 157.245.181.249 port 52840 ssh2 Mar 17 18:39:45 server2 sshd[25017]: Received disconnect from 157.245.181.249: 11: Bye Bye [preauth] Mar 17 18:42:26 server2 sshd[25282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.181.249 user=r.r Mar 17 18:42:28 server2 sshd[25282]: Failed password for r.r from 157.245.181.249 port 41300 ssh2 Mar 17 18:42:28 server2 sshd[25282]........ -------------------------------	2020-03-18 12:36:27
46.10.220.33	attackbotsspam	Mar 18 00:55:14 firewall sshd[9754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.10.220.33 Mar 18 00:55:14 firewall sshd[9754]: Invalid user info from 46.10.220.33 Mar 18 00:55:17 firewall sshd[9754]: Failed password for invalid user info from 46.10.220.33 port 48126 ssh2 ...	2020-03-18 12:13:37
35.197.133.238	attackbotsspam	Brute-force attempt banned	2020-03-18 12:40:46
14.174.211.224	attack	Unauthorized connection attempt from IP address 14.174.211.224 on Port 445(SMB)	2020-03-18 10:51:11
106.53.66.103	attackbots	Mar 18 00:57:12 firewall sshd[9902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.66.103 user=root Mar 18 00:57:15 firewall sshd[9902]: Failed password for root from 106.53.66.103 port 35950 ssh2 Mar 18 00:58:41 firewall sshd[10053]: Invalid user patrol from 106.53.66.103 ...	2020-03-18 12:01:01
192.95.3.151	attackbots	[portscan] Port scan	2020-03-18 12:36:56
49.233.153.154	attack	2020-03-18T02:45:10.905866shield sshd\[12988\]: Invalid user admins from 49.233.153.154 port 55910 2020-03-18T02:45:10.914587shield sshd\[12988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.153.154 2020-03-18T02:45:12.929704shield sshd\[12988\]: Failed password for invalid user admins from 49.233.153.154 port 55910 ssh2 2020-03-18T02:47:56.142482shield sshd\[13357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.153.154 user=root 2020-03-18T02:47:57.946641shield sshd\[13357\]: Failed password for root from 49.233.153.154 port 58350 ssh2	2020-03-18 10:50:44
159.203.17.176	attackbots	$f2bV_matches	2020-03-18 12:31:12
168.228.192.154	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 03:55:10.	2020-03-18 12:19:32
222.99.52.216	attackbotsspam	Mar 18 05:19:21 host01 sshd[2955]: Failed password for root from 222.99.52.216 port 48409 ssh2 Mar 18 05:22:55 host01 sshd[3684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.52.216 Mar 18 05:22:57 host01 sshd[3684]: Failed password for invalid user cpaneleximscanner from 222.99.52.216 port 47818 ssh2 ...	2020-03-18 12:34:56
162.243.129.97	attack	Port Scan detected from 162.243.129.97 (US/United States/California/San Francisco/zg-0312c-86.stretchoid.com). 4 hits in the last 200 seconds	2020-03-18 12:27:22
80.211.34.241	attackspambots	k+ssh-bruteforce	2020-03-18 10:48:34
152.136.36.250	attackbotsspam	$f2bV_matches	2020-03-18 12:28:00
41.95.192.127	attackspambots	Mar 18 03:51:57 marvibiene sshd[13673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.95.192.127 user=root Mar 18 03:51:59 marvibiene sshd[13673]: Failed password for root from 41.95.192.127 port 36000 ssh2 Mar 18 03:55:14 marvibiene sshd[13704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.95.192.127 user=root Mar 18 03:55:17 marvibiene sshd[13704]: Failed password for root from 41.95.192.127 port 56700 ssh2 ...	2020-03-18 12:15:12

Recently Reported IPs

27.2.241.133	12.219.100.162	223.17.188.224	41.214.185.119
222.211.253.198	94.158.22.237	59.94.147.3	110.169.248.8
45.95.235.28	190.199.230.47	24.231.111.71	221.124.13.43
176.31.127.97	68.183.41.140	220.92.137.31	220.88.197.187
200.245.80.38	89.248.167.193	220.246.190.22	200.46.58.4