139.59.2.204 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.25.61	attack	Fraud connect	2024-04-04 18:44:42
139.59.232.188	attackspambots	$f2bV_matches	2020-10-14 09:09:45
139.59.251.236	attackspambots	Oct 12 10:40:56 our-server-hostname sshd[10037]: Invalid user eric from 139.59.251.236 Oct 12 10:40:56 our-server-hostname sshd[10037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.251.236 Oct 12 10:40:59 our-server-hostname sshd[10037]: Failed password for invalid user eric from 139.59.251.236 port 46484 ssh2 Oct 12 11:17:44 our-server-hostname sshd[17015]: Invalid user belzer from 139.59.251.236 Oct 12 11:17:44 our-server-hostname sshd[17015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.251.236 Oct 12 11:17:46 our-server-hostname sshd[17015]: Failed password for invalid user belzer from 139.59.251.236 port 41720 ssh2 Oct 12 11:18:14 our-server-hostname sshd[17139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.251.236 user=r.r Oct 12 11:18:16 our-server-hostname sshd[17139]: Failed password for r.r from 139.59.251.236........ -------------------------------	2020-10-14 07:59:08
139.59.250.116	attackspambots	Oct 12 13:52:50 ahost sshd[30823]: Invalid user db2as from 139.59.250.116 Oct 12 13:52:50 ahost sshd[30823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.250.116 Oct 12 13:52:53 ahost sshd[30823]: Failed password for invalid user db2as from 139.59.250.116 port 36838 ssh2 Oct 12 13:52:53 ahost sshd[30823]: Received disconnect from 139.59.250.116: 11: Bye Bye [preauth] Oct 12 14:08:20 ahost sshd[4314]: Invalid user celine from 139.59.250.116 Oct 12 14:08:20 ahost sshd[4314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.250.116 Oct 12 14:08:22 ahost sshd[4314]: Failed password for invalid user celine from 139.59.250.116 port 35844 ssh2 Oct 12 14:08:22 ahost sshd[4314]: Received disconnect from 139.59.250.116: 11: Bye Bye [preauth] Oct 12 14:14:29 ahost sshd[4453]: Invalid user dorin from 139.59.250.116 Oct 12 14:14:29 ahost sshd[4453]: pam_unix(sshd:auth): authentication fa........ ------------------------------	2020-10-14 04:17:25
139.59.249.83	attack	(sshd) Failed SSH login from 139.59.249.83 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 13:57:56 jbs1 sshd[21873]: Invalid user tibor from 139.59.249.83 Oct 13 13:57:56 jbs1 sshd[21873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 Oct 13 13:57:58 jbs1 sshd[21873]: Failed password for invalid user tibor from 139.59.249.83 port 58225 ssh2 Oct 13 14:10:05 jbs1 sshd[26846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 user=root Oct 13 14:10:06 jbs1 sshd[26846]: Failed password for root from 139.59.249.83 port 8758 ssh2	2020-10-14 03:16:32
139.59.250.116	attack	Oct 12 13:52:50 ahost sshd[30823]: Invalid user db2as from 139.59.250.116 Oct 12 13:52:50 ahost sshd[30823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.250.116 Oct 12 13:52:53 ahost sshd[30823]: Failed password for invalid user db2as from 139.59.250.116 port 36838 ssh2 Oct 12 13:52:53 ahost sshd[30823]: Received disconnect from 139.59.250.116: 11: Bye Bye [preauth] Oct 12 14:08:20 ahost sshd[4314]: Invalid user celine from 139.59.250.116 Oct 12 14:08:20 ahost sshd[4314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.250.116 Oct 12 14:08:22 ahost sshd[4314]: Failed password for invalid user celine from 139.59.250.116 port 35844 ssh2 Oct 12 14:08:22 ahost sshd[4314]: Received disconnect from 139.59.250.116: 11: Bye Bye [preauth] Oct 12 14:14:29 ahost sshd[4453]: Invalid user dorin from 139.59.250.116 Oct 12 14:14:29 ahost sshd[4453]: pam_unix(sshd:auth): authentication fa........ ------------------------------	2020-10-13 19:42:22
139.59.249.83	attackspambots	2020-10-12 UTC: (42x) - allan,amanda,anikei,buser,ek,ftpuser2,hadoop(2x),harrison,jean,klement,nagios,netfonts,postgres,prueba(2x),public,root(17x),tkomatsu,ubuntu,web,workstation,xpertin,yosinski,yvonne,zlin	2020-10-13 18:34:11
139.59.249.83	attackspambots	2020-10-12T08:42:23.648388hostname sshd[47670]: Failed password for root from 139.59.249.83 port 22774 ssh2 ...	2020-10-13 02:39:04
139.59.230.61	attack	Oct 12 03:20:19 dhoomketu sshd[3780358]: Invalid user harris from 139.59.230.61 port 63512 Oct 12 03:20:19 dhoomketu sshd[3780358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.230.61 Oct 12 03:20:19 dhoomketu sshd[3780358]: Invalid user harris from 139.59.230.61 port 63512 Oct 12 03:20:21 dhoomketu sshd[3780358]: Failed password for invalid user harris from 139.59.230.61 port 63512 ssh2 Oct 12 03:24:30 dhoomketu sshd[3780491]: Invalid user yonemitsu from 139.59.230.61 port 64553 ...	2020-10-13 01:19:41
139.59.215.171	attack	2020-10-13T02:06:50.771160vps-web1.h3z.jp sshd[15016]: Invalid user ftpuser from 139.59.215.171 port 51442 2020-10-13T02:08:04.431562vps-web1.h3z.jp sshd[15026]: Invalid user ftpuser from 139.59.215.171 port 35640 2020-10-13T02:08:41.876310vps-web1.h3z.jp sshd[15032]: Invalid user postgres from 139.59.215.171 port 55970 ...	2020-10-13 01:11:47
139.59.239.38	attackbotsspam	Oct 12 18:39:57 abendstille sshd\[20123\]: Invalid user kjayroe from 139.59.239.38 Oct 12 18:39:57 abendstille sshd\[20123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.239.38 Oct 12 18:40:00 abendstille sshd\[20123\]: Failed password for invalid user kjayroe from 139.59.239.38 port 34830 ssh2 Oct 12 18:43:53 abendstille sshd\[24774\]: Invalid user andrey from 139.59.239.38 Oct 12 18:43:53 abendstille sshd\[24774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.239.38 ...	2020-10-13 00:54:28
139.59.232.44	attackspam	(sshd) Failed SSH login from 139.59.232.44 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 12 04:38:08 server4 sshd[20897]: Invalid user thom from 139.59.232.44 Oct 12 04:38:08 server4 sshd[20897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.232.44 Oct 12 04:38:10 server4 sshd[20897]: Failed password for invalid user thom from 139.59.232.44 port 39804 ssh2 Oct 12 04:52:15 server4 sshd[30516]: Invalid user alyson from 139.59.232.44 Oct 12 04:52:15 server4 sshd[30516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.232.44	2020-10-12 23:59:12
139.59.249.83	attack	no	2020-10-12 18:04:34
139.59.230.61	attackbotsspam	Oct 12 03:20:19 dhoomketu sshd[3780358]: Invalid user harris from 139.59.230.61 port 63512 Oct 12 03:20:19 dhoomketu sshd[3780358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.230.61 Oct 12 03:20:19 dhoomketu sshd[3780358]: Invalid user harris from 139.59.230.61 port 63512 Oct 12 03:20:21 dhoomketu sshd[3780358]: Failed password for invalid user harris from 139.59.230.61 port 63512 ssh2 Oct 12 03:24:30 dhoomketu sshd[3780491]: Invalid user yonemitsu from 139.59.230.61 port 64553 ...	2020-10-12 16:42:09
139.59.215.171	attack	2020-10-12T11:11:07.239948mail.standpoint.com.ua sshd[32054]: Invalid user steam from 139.59.215.171 port 60818 2020-10-12T11:11:07.242903mail.standpoint.com.ua sshd[32054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.215.171 2020-10-12T11:11:07.239948mail.standpoint.com.ua sshd[32054]: Invalid user steam from 139.59.215.171 port 60818 2020-10-12T11:11:08.523134mail.standpoint.com.ua sshd[32054]: Failed password for invalid user steam from 139.59.215.171 port 60818 ssh2 2020-10-12T11:11:48.644489mail.standpoint.com.ua sshd[32129]: Invalid user centos from 139.59.215.171 port 56396 ...	2020-10-12 16:34:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.2.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51825
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.2.204.			IN	A

;; AUTHORITY SECTION:
.			441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 07:08:06 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 204.2.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.2.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.37.159.45	attackbotsspam	Aug 22 23:58:31 rocket sshd[30717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.159.45 Aug 22 23:58:33 rocket sshd[30717]: Failed password for invalid user sinus from 54.37.159.45 port 42528 ssh2 ...	2020-08-23 08:18:26
102.89.1.215	attack	Unauthorized connection attempt from IP address 102.89.1.215 on Port 445(SMB)	2020-08-23 08:22:23
51.159.20.123	attack	UDP 51.159.20.123:7784 -> port 5060, len 429	2020-08-23 08:31:55
51.91.123.235	attack	51.91.123.235 - - [22/Aug/2020:21:30:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.123.235 - - [22/Aug/2020:21:31:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.123.235 - - [22/Aug/2020:21:31:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-23 07:57:00
49.235.74.86	attackspam	(sshd) Failed SSH login from 49.235.74.86 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 23 02:36:00 s1 sshd[29771]: Invalid user upload from 49.235.74.86 port 52736 Aug 23 02:36:02 s1 sshd[29771]: Failed password for invalid user upload from 49.235.74.86 port 52736 ssh2 Aug 23 02:41:08 s1 sshd[29968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.74.86 user=root Aug 23 02:41:11 s1 sshd[29968]: Failed password for root from 49.235.74.86 port 46650 ssh2 Aug 23 02:45:54 s1 sshd[30109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.74.86 user=root	2020-08-23 08:02:28
186.4.192.110	attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-08-23 08:04:09
195.57.73.197	attackbots	Unauthorized connection attempt from IP address 195.57.73.197 on Port 445(SMB)	2020-08-23 08:13:10
192.241.172.175	attackspambots	Auto Fail2Ban report, multiple SSH login attempts.	2020-08-23 08:05:32
211.210.79.101	attackbots	(smtpauth) Failed SMTP AUTH login from 211.210.79.101 (KR/South Korea/-): 5 in the last 3600 secs	2020-08-23 08:05:47
196.2.14.137	attackbots	DATE:2020-08-22 22:30:12, IP:196.2.14.137, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-23 08:20:08
220.130.178.36	attackbotsspam	Aug 23 02:47:42 pkdns2 sshd\[43216\]: Failed password for root from 220.130.178.36 port 55498 ssh2Aug 23 02:50:00 pkdns2 sshd\[43320\]: Invalid user shuchang from 220.130.178.36Aug 23 02:50:02 pkdns2 sshd\[43320\]: Failed password for invalid user shuchang from 220.130.178.36 port 32966 ssh2Aug 23 02:52:25 pkdns2 sshd\[43472\]: Invalid user huawei from 220.130.178.36Aug 23 02:52:26 pkdns2 sshd\[43472\]: Failed password for invalid user huawei from 220.130.178.36 port 38660 ssh2Aug 23 02:54:50 pkdns2 sshd\[43544\]: Invalid user oat from 220.130.178.36 ...	2020-08-23 08:07:13
189.170.79.252	attackbots	Unauthorized connection attempt from IP address 189.170.79.252 on Port 445(SMB)	2020-08-23 08:02:57
89.248.168.112	attack	firewall-block, port(s): 5001/tcp	2020-08-23 08:24:16
45.6.29.62	attack	Unauthorized connection attempt from IP address 45.6.29.62 on Port 445(SMB)	2020-08-23 08:00:14
45.129.33.10	attackbots	Aug 23 01:04:28 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=45.129.33.10 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=57916 PROTO=TCP SPT=46840 DPT=26848 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 23 01:09:07 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=45.129.33.10 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=58868 PROTO=TCP SPT=46840 DPT=26894 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 23 01:36:14 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=45.129.33.10 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=59249 PROTO=TCP SPT=46840 DPT=26843 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-23 08:12:54

Recently Reported IPs

139.59.170.26	139.59.210.138	139.59.19.229	139.59.215.98
139.59.243.247	139.59.239.64	139.59.246.156	139.59.250.171
139.59.57.150	139.59.30.14	139.59.34.160	139.59.65.226
139.59.60.232	139.59.66.153	139.59.69.186	139.59.60.160
139.59.75.191	139.59.74.165	139.59.99.211	139.64.239.227