139.59.24.249 - IPInfo

Basic Info

City: Bengaluru

Region: Karnataka

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.249.83	attack	(sshd) Failed SSH login from 139.59.249.83 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 13:57:56 jbs1 sshd[21873]: Invalid user tibor from 139.59.249.83 Oct 13 13:57:56 jbs1 sshd[21873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 Oct 13 13:57:58 jbs1 sshd[21873]: Failed password for invalid user tibor from 139.59.249.83 port 58225 ssh2 Oct 13 14:10:05 jbs1 sshd[26846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.249.83 user=root Oct 13 14:10:06 jbs1 sshd[26846]: Failed password for root from 139.59.249.83 port 8758 ssh2	2020-10-14 03:16:32
139.59.249.83	attackspambots	2020-10-12 UTC: (42x) - allan,amanda,anikei,buser,ek,ftpuser2,hadoop(2x),harrison,jean,klement,nagios,netfonts,postgres,prueba(2x),public,root(17x),tkomatsu,ubuntu,web,workstation,xpertin,yosinski,yvonne,zlin	2020-10-13 18:34:11
139.59.249.83	attackspambots	2020-10-12T08:42:23.648388hostname sshd[47670]: Failed password for root from 139.59.249.83 port 22774 ssh2 ...	2020-10-13 02:39:04
139.59.249.83	attack	no	2020-10-12 18:04:34
139.59.249.16	attack	Brute Force	2020-10-10 06:33:59
139.59.246.13	attackspam	Oct 9 09:41:14 lanister sshd[27061]: Invalid user adam from 139.59.246.13 Oct 9 09:41:14 lanister sshd[27061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.246.13 Oct 9 09:41:14 lanister sshd[27061]: Invalid user adam from 139.59.246.13 Oct 9 09:41:16 lanister sshd[27061]: Failed password for invalid user adam from 139.59.246.13 port 42466 ssh2	2020-10-10 02:44:53
139.59.249.16	attackspambots	Brute Force	2020-10-09 22:45:33
139.59.246.13	attackbotsspam	2020-10-09T13:01:32.362175lavrinenko.info sshd[20502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.246.13 2020-10-09T13:01:32.354869lavrinenko.info sshd[20502]: Invalid user gpadmin from 139.59.246.13 port 60390 2020-10-09T13:01:34.159994lavrinenko.info sshd[20502]: Failed password for invalid user gpadmin from 139.59.246.13 port 60390 ssh2 2020-10-09T13:05:38.634774lavrinenko.info sshd[20727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.246.13 user=root 2020-10-09T13:05:40.538055lavrinenko.info sshd[20727]: Failed password for root from 139.59.246.13 port 37052 ssh2 ...	2020-10-09 18:29:43
139.59.242.22	attackbots	SSH login attempts.	2020-10-09 16:24:39
139.59.249.16	attack	Brute Force	2020-10-09 14:36:45
139.59.242.22	attackspambots	Lines containing failures of 139.59.242.22 Oct 7 10:23:42 MAKserver05 sshd[7358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.242.22 user=r.r Oct 7 10:23:43 MAKserver05 sshd[7358]: Failed password for r.r from 139.59.242.22 port 57086 ssh2 Oct 7 10:23:43 MAKserver05 sshd[7358]: Received disconnect from 139.59.242.22 port 57086:11: Bye Bye [preauth] Oct 7 10:23:43 MAKserver05 sshd[7358]: Disconnected from authenticating user r.r 139.59.242.22 port 57086 [preauth] Oct 7 10:45:59 MAKserver05 sshd[8321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.242.22 user=r.r Oct 7 10:46:01 MAKserver05 sshd[8321]: Failed password for r.r from 139.59.242.22 port 37070 ssh2 Oct 7 10:46:03 MAKserver05 sshd[8321]: Received disconnect from 139.59.242.22 port 37070:11: Bye Bye [preauth] Oct 7 10:46:03 MAKserver05 sshd[8321]: Disconnected from authenticating user r.r 139.59.242.22 por........ ------------------------------	2020-10-09 03:24:31
139.59.241.75	attackbots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-07T21:50:45Z	2020-10-08 07:03:27
139.59.241.75	attack	Oct 7 13:33:06 ns382633 sshd\[12585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 user=root Oct 7 13:33:08 ns382633 sshd\[12585\]: Failed password for root from 139.59.241.75 port 58325 ssh2 Oct 7 13:36:40 ns382633 sshd\[13090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 user=root Oct 7 13:36:42 ns382633 sshd\[13090\]: Failed password for root from 139.59.241.75 port 45505 ssh2 Oct 7 13:37:48 ns382633 sshd\[13183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 user=root	2020-10-07 23:27:34
139.59.241.75	attackspam	<6 unauthorized SSH connections	2020-10-07 15:32:39
139.59.241.75	attackbots	Sep 27 03:09:56 vmi369945 sshd\[15031\]: Invalid user shawn from 139.59.241.75 Sep 27 03:09:56 vmi369945 sshd\[15031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 Sep 27 03:09:58 vmi369945 sshd\[15031\]: Failed password for invalid user shawn from 139.59.241.75 port 45915 ssh2 Sep 27 03:25:21 vmi369945 sshd\[15301\]: Invalid user pepe from 139.59.241.75 Sep 27 03:25:21 vmi369945 sshd\[15301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.241.75 ...	2020-10-05 01:30:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.24.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20677
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.24.249.			IN	A

;; AUTHORITY SECTION:
.			473	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091400 1800 900 604800 86400

;; Query time: 417 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 14 19:01:35 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 249.24.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.24.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.38.169	attack	Feb 4 14:49:15 ks10 sshd[2414428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Feb 4 14:49:17 ks10 sshd[2414428]: Failed password for invalid user xademo from 139.59.38.169 port 43542 ssh2 ...	2020-02-05 02:41:57
59.153.74.43	attack	Unauthorized connection attempt detected from IP address 59.153.74.43 to port 2220 [J]	2020-02-05 02:52:54
122.164.200.108	attackspam	Feb 4 20:04:59 lukav-desktop sshd\[26646\]: Invalid user gmodserver from 122.164.200.108 Feb 4 20:04:59 lukav-desktop sshd\[26646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.164.200.108 Feb 4 20:05:01 lukav-desktop sshd\[26646\]: Failed password for invalid user gmodserver from 122.164.200.108 port 54404 ssh2 Feb 4 20:08:24 lukav-desktop sshd\[382\]: Invalid user ts3-1 from 122.164.200.108 Feb 4 20:08:24 lukav-desktop sshd\[382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.164.200.108	2020-02-05 02:35:34
52.187.163.117	attack	Feb 4 19:02:10 pornomens sshd\[32449\]: Invalid user weng123 from 52.187.163.117 port 39902 Feb 4 19:02:10 pornomens sshd\[32449\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.187.163.117 Feb 4 19:02:12 pornomens sshd\[32449\]: Failed password for invalid user weng123 from 52.187.163.117 port 39902 ssh2 ...	2020-02-05 03:01:35
134.73.27.34	attackspam	2019-05-13 11:24:30 1hQ7C9-0004EQ-Uy SMTP connection from tough.proanimakers.com \(tough.tehrandekor.icu\) \[134.73.27.34\]:43416 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-13 11:26:05 1hQ7Dg-0004JD-Ra SMTP connection from tough.proanimakers.com \(tough.tehrandekor.icu\) \[134.73.27.34\]:35461 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-13 11:26:47 1hQ7EN-0004KG-Bv SMTP connection from tough.proanimakers.com \(tough.tehrandekor.icu\) \[134.73.27.34\]:54309 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:49:58
195.84.49.20	attack	Unauthorized connection attempt detected from IP address 195.84.49.20 to port 2220 [J]	2020-02-05 02:54:58
191.178.44.165	attackspambots	Feb 4 19:36:59 legacy sshd[3947]: Failed password for root from 191.178.44.165 port 46089 ssh2 Feb 4 19:42:51 legacy sshd[4323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.178.44.165 Feb 4 19:42:53 legacy sshd[4323]: Failed password for invalid user library from 191.178.44.165 port 60451 ssh2 ...	2020-02-05 02:50:29
134.73.27.56	attack	2019-05-07 20:09:02 1hO4WT-00052g-Qb SMTP connection from \(strange.orcarpy.icu\) \[134.73.27.56\]:33297 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-07 20:12:45 1hO4a4-00059B-VM SMTP connection from \(strange.orcarpy.icu\) \[134.73.27.56\]:58333 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-07 20:12:59 1hO4aI-00059J-Ng SMTP connection from \(strange.orcarpy.icu\) \[134.73.27.56\]:34648 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:30:36
165.255.241.164	attackbots	Feb 4 17:13:49 grey postfix/smtpd\[15378\]: NOQUEUE: reject: RCPT from unknown\[165.255.241.164\]: 554 5.7.1 Service unavailable\; Client host \[165.255.241.164\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=165.255.241.164\; from=\ to=\ proto=ESMTP helo=\<165-255-241-164.ip.adsl.co.za\> ...	2020-02-05 02:46:23
72.69.106.21	attackbotsspam	Feb 4 18:17:55 srv01 sshd[4490]: Invalid user gary from 72.69.106.21 port 42002 Feb 4 18:17:55 srv01 sshd[4490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.69.106.21 Feb 4 18:17:55 srv01 sshd[4490]: Invalid user gary from 72.69.106.21 port 42002 Feb 4 18:17:56 srv01 sshd[4490]: Failed password for invalid user gary from 72.69.106.21 port 42002 ssh2 Feb 4 18:20:52 srv01 sshd[4782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=72.69.106.21 user=root Feb 4 18:20:54 srv01 sshd[4782]: Failed password for root from 72.69.106.21 port 60881 ssh2 ...	2020-02-05 02:29:36
134.73.27.41	attack	2019-05-14 22:43:43 1hQeH1-0002C8-8u SMTP connection from cheese.proanimakers.com \(cheese.mytourbuilder.icu\) \[134.73.27.41\]:48145 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-14 22:45:26 1hQeIf-0002Fu-U0 SMTP connection from cheese.proanimakers.com \(cheese.mytourbuilder.icu\) \[134.73.27.41\]:53720 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-14 22:46:33 1hQeJl-0002Gz-55 SMTP connection from cheese.proanimakers.com \(cheese.mytourbuilder.icu\) \[134.73.27.41\]:51285 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:45:27
106.225.211.193	attackbotsspam	Feb 4 06:42:22 hpm sshd\[22334\]: Invalid user rudo from 106.225.211.193 Feb 4 06:42:22 hpm sshd\[22334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.211.193 Feb 4 06:42:24 hpm sshd\[22334\]: Failed password for invalid user rudo from 106.225.211.193 port 42274 ssh2 Feb 4 06:46:31 hpm sshd\[22838\]: Invalid user oleta from 106.225.211.193 Feb 4 06:46:31 hpm sshd\[22838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.211.193	2020-02-05 02:18:06
134.73.7.205	attackbotsspam	2019-05-03 01:18:10 1hMKxu-0000aY-9Z SMTP connection from animated.sandyfadadu.com \(animated.ajaznanda.icu\) \[134.73.7.205\]:35432 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-03 01:20:38 1hML0I-0000es-0x SMTP connection from animated.sandyfadadu.com \(animated.ajaznanda.icu\) \[134.73.7.205\]:40100 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-03 01:21:13 1hML0q-0000fR-WC SMTP connection from animated.sandyfadadu.com \(animated.ajaznanda.icu\) \[134.73.7.205\]:52530 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:23:37
51.178.51.119	attackspam	Unauthorized connection attempt detected from IP address 51.178.51.119 to port 2220 [J]	2020-02-05 02:53:47
134.73.27.55	attack	2019-05-10 10:27:17 H=rare.proanimakers.com \(rare.eliyantosarage.icu\) \[134.73.27.55\]:33518 I=\[193.107.88.166\]:25 sender verify fail for \: Unrouteable address 2019-05-10 10:27:17 H=rare.proanimakers.com \(rare.eliyantosarage.icu\) \[134.73.27.55\]:33518 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-05-10 10:27:17 H=rare.proanimakers.com \(rare.eliyantosarage.icu\) \[134.73.27.55\]:46054 I=\[193.107.88.166\]:25 sender verify fail for \: Unrouteable address 2019-05-10 10:27:17 H=rare.proanimakers.com \(rare.eliyantosarage.icu\) \[134.73.27.55\]:46054 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-02-05 02:31:27

Recently Reported IPs

170.231.54.4	139.194.247.211	37.44.197.134	91.243.190.95
23.230.42.159	45.140.207.91	104.144.179.92	125.7.161.169
172.245.220.171	91.243.191.254	172.245.11.88	104.168.91.92
230.151.78.123	129.226.184.8	107.172.61.207	185.89.42.122
172.245.101.171	153.77.247.121	193.233.251.125	85.239.37.126