139.59.213.37 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.213.125	attackspambots	Dec 18 18:25:44 reporting6 sshd[23557]: Did not receive identification string from 139.59.213.125 Dec 18 18:28:04 reporting6 sshd[24755]: reveeclipse mapping checking getaddrinfo for 353897.cloudwaysapps.com [139.59.213.125] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 18 18:28:04 reporting6 sshd[24755]: User r.r from 139.59.213.125 not allowed because not listed in AllowUsers Dec 18 18:28:04 reporting6 sshd[24755]: Failed password for invalid user r.r from 139.59.213.125 port 37836 ssh2 Dec 18 18:28:10 reporting6 sshd[24814]: reveeclipse mapping checking getaddrinfo for 353897.cloudwaysapps.com [139.59.213.125] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 18 18:28:10 reporting6 sshd[24814]: User r.r from 139.59.213.125 not allowed because not listed in AllowUsers Dec 18 18:28:10 reporting6 sshd[24814]: Failed password for invalid user r.r from 139.59.213.125 port 42598 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.59.213.125	2019-12-19 05:36:47
139.59.213.137	attackbots	139.59.213.137 - - [13/Oct/2019:13:52:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.213.137 - - [13/Oct/2019:13:52:55 +0200] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.213.137 - - [13/Oct/2019:13:52:55 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.213.137 - - [13/Oct/2019:13:52:56 +0200] "POST /wp-login.php HTTP/1.1" 200 1507 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.213.137 - - [13/Oct/2019:13:52:56 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.213.137 - - [13/Oct/2019:13:52:56 +0200] "POST /wp-login.php HTTP/1.1" 200 1501 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-13 23:00:16
139.59.213.27	attackspam	Aug 19 02:08:58 vpn01 sshd\[13555\]: Invalid user gregory from 139.59.213.27 Aug 19 02:08:58 vpn01 sshd\[13555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.213.27 Aug 19 02:09:00 vpn01 sshd\[13555\]: Failed password for invalid user gregory from 139.59.213.27 port 45156 ssh2	2019-08-19 10:55:46
139.59.213.27	attack	Aug 11 21:32:34 ns37 sshd[14472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.213.27	2019-08-12 04:42:26
139.59.213.27	attack	Aug 6 10:45:22 hosting sshd[25951]: Invalid user anuchaw from 139.59.213.27 port 40276 ...	2019-08-06 17:20:34
139.59.213.237	attack	Jun 26 13:33:24 server sshd\[27476\]: Invalid user ftpadmin from 139.59.213.237 Jun 26 13:33:24 server sshd\[27476\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.213.237 Jun 26 13:33:26 server sshd\[27476\]: Failed password for invalid user ftpadmin from 139.59.213.237 port 43338 ssh2 ...	2019-07-12 07:18:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.213.37
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56385
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.213.37.			IN	A

;; AUTHORITY SECTION:
.			390	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091400 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 00:13:59 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 37.213.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 37.213.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.162.179.154	attack	Brute force attempt	2020-09-25 14:55:52
37.49.224.131	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 37.49.224.131 (NL/Netherlands/-): 5 in the last 3600 secs - Tue Sep 4 16:57:29 2018	2020-09-25 15:16:31
186.154.34.226	attackbotsspam	TCP (SYN) 186.154.34.226:52166 -> port 23, len 44	2020-09-25 15:22:06
125.40.90.126	attackbotsspam	Brute force blocker - service: proftpd1 - aantal: 155 - Tue Sep 4 13:50:14 2018	2020-09-25 15:10:11
112.27.31.54	attack	Brute force blocker - service: proftpd1 - aantal: 155 - Tue Sep 4 11:20:14 2018	2020-09-25 15:12:00
187.174.191.100	attackspambots	bruteforce detected	2020-09-25 14:50:56
49.233.192.233	attackbots	Sep 25 02:48:27 vps46666688 sshd[5904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.192.233 Sep 25 02:48:30 vps46666688 sshd[5904]: Failed password for invalid user zope from 49.233.192.233 port 51324 ssh2 ...	2020-09-25 14:45:55
204.12.226.26	attackbots	20 attempts against mh-misbehave-ban on leaf	2020-09-25 14:46:08
111.229.167.10	attack	$f2bV_matches	2020-09-25 14:57:15
218.64.216.87	attackspambots	445/tcp [2020-09-24]1pkt	2020-09-25 15:20:14
61.170.215.43	attack	Brute force blocker - service: proftpd1 - aantal: 153 - Wed Sep 5 04:35:14 2018	2020-09-25 15:08:17
221.225.215.237	attack	Brute force blocker - service: proftpd1 - aantal: 118 - Sun Sep 2 23:45:17 2018	2020-09-25 15:23:54
40.85.132.27	attackbots	2020-09-25T01:08:01.664827morrigan.ad5gb.com sshd[3904596]: Disconnected from authenticating user root 40.85.132.27 port 44527 [preauth]	2020-09-25 14:47:04
66.165.231.210	attack	[2020-09-25 02:43:42] NOTICE[1159][C-000015eb] chan_sip.c: Call from '' (66.165.231.210:58991) to extension '00442037691054' rejected because extension not found in context 'public'. [2020-09-25 02:43:42] SECURITY[1198] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-25T02:43:42.503-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00442037691054",SessionID="0x7fcaa02d7a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/66.165.231.210/58991",ACLName="no_extension_match" [2020-09-25 02:46:33] NOTICE[1159][C-000015ed] chan_sip.c: Call from '' (66.165.231.210:55500) to extension '00442037691054' rejected because extension not found in context 'public'. [2020-09-25 02:46:33] SECURITY[1198] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-25T02:46:33.436-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00442037691054",SessionID="0x7fcaa0092e98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/6 ...	2020-09-25 14:52:22
222.221.242.74	attack	Brute force blocker - service: proftpd1 - aantal: 130 - Tue Sep 4 11:30:16 2018	2020-09-25 15:09:50

Recently Reported IPs

194.31.162.42	106.12.252.112	121.126.177.76	68.183.69.135
134.122.36.65	183.89.160.27	45.177.17.9	115.144.47.59
49.254.113.194	122.116.153.130	104.227.94.112	163.123.143.87
58.82.151.247	163.172.206.166	114.34.74.89	200.223.160.254
180.188.250.166	183.15.205.95	217.88.163.11	89.191.226.112