139.59.63.244 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: Digital Ocean Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SSH Brute Force, server-1 sshd[23458]: Failed password for invalid user ts3 from 139.59.63.244 port 42254 ssh2	2019-09-14 20:16:30
attackspam	F2B jail: sshd. Time: 2019-09-13 17:44:14, Reported by: VKReport	2019-09-13 23:54:10
attack	Sep 10 23:42:11 XXX sshd[61545]: Invalid user testuser from 139.59.63.244 port 38750	2019-09-11 13:21:43
attackbotsspam	2019-09-07T23:31:28.558166abusebot-8.cloudsearch.cf sshd\[6040\]: Invalid user postgres from 139.59.63.244 port 59502	2019-09-08 07:58:18
attackspambots	2019-09-07T20:07:17.842712abusebot-8.cloudsearch.cf sshd\[5351\]: Invalid user 1q2w3e4r from 139.59.63.244 port 37146	2019-09-08 04:13:21
attack	Sep 7 05:43:13 web8 sshd\[6366\]: Invalid user gituser from 139.59.63.244 Sep 7 05:43:13 web8 sshd\[6366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Sep 7 05:43:16 web8 sshd\[6366\]: Failed password for invalid user gituser from 139.59.63.244 port 33622 ssh2 Sep 7 05:48:13 web8 sshd\[8625\]: Invalid user test from 139.59.63.244 Sep 7 05:48:13 web8 sshd\[8625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244	2019-09-07 13:52:18
attackspambots	Sep 4 08:23:17 MainVPS sshd[16374]: Invalid user redmine from 139.59.63.244 port 42576 Sep 4 08:23:17 MainVPS sshd[16374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Sep 4 08:23:17 MainVPS sshd[16374]: Invalid user redmine from 139.59.63.244 port 42576 Sep 4 08:23:18 MainVPS sshd[16374]: Failed password for invalid user redmine from 139.59.63.244 port 42576 ssh2 Sep 4 08:28:05 MainVPS sshd[16686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 user=root Sep 4 08:28:07 MainVPS sshd[16686]: Failed password for root from 139.59.63.244 port 59242 ssh2 ...	2019-09-04 14:48:49
attack	Aug 16 23:26:47 eddieflores sshd\[11675\]: Invalid user siva from 139.59.63.244 Aug 16 23:26:47 eddieflores sshd\[11675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Aug 16 23:26:49 eddieflores sshd\[11675\]: Failed password for invalid user siva from 139.59.63.244 port 55710 ssh2 Aug 16 23:31:47 eddieflores sshd\[12105\]: Invalid user 123456 from 139.59.63.244 Aug 16 23:31:47 eddieflores sshd\[12105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244	2019-08-17 18:56:31
attackbots	$f2bV_matches_ltvn	2019-08-16 05:49:12
attackspambots	Aug 8 10:22:21 nextcloud sshd\[7314\]: Invalid user in from 139.59.63.244 Aug 8 10:22:21 nextcloud sshd\[7314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Aug 8 10:22:23 nextcloud sshd\[7314\]: Failed password for invalid user in from 139.59.63.244 port 43830 ssh2 ...	2019-08-08 19:12:22
attackspambots	Aug 3 18:01:49 debian sshd\[17333\]: Invalid user polycom from 139.59.63.244 port 37718 Aug 3 18:01:49 debian sshd\[17333\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 ...	2019-08-04 07:26:06
attackspam	Aug 1 03:14:38 vmd17057 sshd\[4073\]: Invalid user petra from 139.59.63.244 port 56802 Aug 1 03:14:38 vmd17057 sshd\[4073\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Aug 1 03:14:40 vmd17057 sshd\[4073\]: Failed password for invalid user petra from 139.59.63.244 port 56802 ssh2 ...	2019-08-01 10:15:26
attack	Jul 8 11:02:17 marvibiene sshd[29575]: Invalid user test from 139.59.63.244 port 44800 Jul 8 11:02:17 marvibiene sshd[29575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.244 Jul 8 11:02:17 marvibiene sshd[29575]: Invalid user test from 139.59.63.244 port 44800 Jul 8 11:02:19 marvibiene sshd[29575]: Failed password for invalid user test from 139.59.63.244 port 44800 ssh2 ...	2019-07-08 20:08:40
attackbots	29.06.2019 18:47:29 SSH access blocked by firewall	2019-06-30 11:33:49

Comments on same subnet:

IP	Type	Details	Datetime
139.59.63.216	attackspambots	2020-10-01T13:05:47.906197hostname sshd[129214]: Failed password for invalid user administrador from 139.59.63.216 port 40342 ssh2 ...	2020-10-02 02:15:55
139.59.63.216	attackspambots	Brute%20Force%20SSH	2020-10-01 18:23:24
139.59.63.216	attackbotsspam	Sep 27 00:50:18 ns381471 sshd[30366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.216 Sep 27 00:50:20 ns381471 sshd[30366]: Failed password for invalid user olga from 139.59.63.216 port 42386 ssh2	2020-09-27 07:18:47
139.59.63.216	attack	detected by Fail2Ban	2020-09-26 23:47:57
139.59.63.216	attackbotsspam	21 attempts against mh-ssh on cloud	2020-09-26 15:39:19
139.59.63.155	attack	139.59.63.155 - - [11/Apr/2020:14:15:31 +0200] "GET /wp-login.php HTTP/1.1" 200 6463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.63.155 - - [11/Apr/2020:14:15:33 +0200] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.63.155 - - [11/Apr/2020:14:15:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-12 01:41:43
139.59.63.230	attackspam	Apr 6 21:23:36 master sshd[26546]: Failed password for invalid user iptv from 139.59.63.230 port 59002 ssh2	2020-04-07 04:37:32
139.59.63.157	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 139.59.63.157 (IN/India/-): 5 in the last 3600 secs - Thu Apr 12 17:01:55 2018	2020-02-07 07:06:19
139.59.63.243	attack	Nov 23 17:09:18 SilenceServices sshd[10254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.243 Nov 23 17:09:20 SilenceServices sshd[10254]: Failed password for invalid user dominique12345 from 139.59.63.243 port 38030 ssh2 Nov 23 17:13:56 SilenceServices sshd[11596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.243	2019-11-24 00:34:44
139.59.63.61	attack	Oct 22 09:54:18 web9 sshd\[13712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.61 user=root Oct 22 09:54:20 web9 sshd\[13712\]: Failed password for root from 139.59.63.61 port 41122 ssh2 Oct 22 09:58:50 web9 sshd\[14312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.63.61 user=root Oct 22 09:58:53 web9 sshd\[14312\]: Failed password for root from 139.59.63.61 port 51526 ssh2 Oct 22 10:03:23 web9 sshd\[14863\]: Invalid user redis from 139.59.63.61	2019-10-23 04:04:00

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.63.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17485
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.63.244.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050801 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 05:47:52 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 244.63.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 244.63.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.121.203.94	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/186.121.203.94/ BO - 1H : (1) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BO NAME ASN : ASN26210 IP : 186.121.203.94 CIDR : 186.121.203.0/24 PREFIX COUNT : 179 UNIQUE IP COUNT : 57344 WYKRYTE ATAKI Z ASN26210 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-14 21:56:10 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-15 06:04:00
217.150.43.129	attackspambots	[portscan] Port scan	2019-10-15 05:54:17
81.182.254.124	attack	Oct 14 11:19:42 sachi sshd\[18923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dsl51b6fe7c.fixip.t-online.hu user=root Oct 14 11:19:44 sachi sshd\[18923\]: Failed password for root from 81.182.254.124 port 38030 ssh2 Oct 14 11:23:51 sachi sshd\[19274\]: Invalid user teamspeak1 from 81.182.254.124 Oct 14 11:23:51 sachi sshd\[19274\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dsl51b6fe7c.fixip.t-online.hu Oct 14 11:23:53 sachi sshd\[19274\]: Failed password for invalid user teamspeak1 from 81.182.254.124 port 50426 ssh2	2019-10-15 05:43:07
80.211.180.23	attackbots	Oct 14 22:37:05 localhost sshd\[21193\]: Invalid user I2b2metadata2 from 80.211.180.23 port 34136 Oct 14 22:37:05 localhost sshd\[21193\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.180.23 Oct 14 22:37:07 localhost sshd\[21193\]: Failed password for invalid user I2b2metadata2 from 80.211.180.23 port 34136 ssh2	2019-10-15 06:04:36
111.230.249.77	attack	2019-10-14T20:57:31.652923hub.schaetter.us sshd\[30563\]: Invalid user guxincao2 from 111.230.249.77 port 53570 2019-10-14T20:57:31.663120hub.schaetter.us sshd\[30563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.249.77 2019-10-14T20:57:33.746216hub.schaetter.us sshd\[30563\]: Failed password for invalid user guxincao2 from 111.230.249.77 port 53570 ssh2 2019-10-14T21:01:56.063252hub.schaetter.us sshd\[30604\]: Invalid user xbsud from 111.230.249.77 port 36588 2019-10-14T21:01:56.072069hub.schaetter.us sshd\[30604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.249.77 ...	2019-10-15 05:31:16
217.182.79.245	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/217.182.79.245/ FR - 1H : (70) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN16276 IP : 217.182.79.245 CIDR : 217.182.0.0/16 PREFIX COUNT : 132 UNIQUE IP COUNT : 3052544 WYKRYTE ATAKI Z ASN16276 : 1H - 7 3H - 13 6H - 27 12H - 43 24H - 72 DateTime : 2019-10-14 23:18:58 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-15 05:43:45
95.213.181.6	attackspambots	Oct 15 00:35:09 server sshd\[9131\]: Invalid user user3 from 95.213.181.6 port 14926 Oct 15 00:35:09 server sshd\[9131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.213.181.6 Oct 15 00:35:12 server sshd\[9131\]: Failed password for invalid user user3 from 95.213.181.6 port 14926 ssh2 Oct 15 00:39:16 server sshd\[24553\]: Invalid user eslab from 95.213.181.6 port 56874 Oct 15 00:39:16 server sshd\[24553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.213.181.6	2019-10-15 05:50:59
46.246.45.78	attackspambots	$f2bV_matches	2019-10-15 05:40:58
118.24.54.178	attackspam	Oct 14 23:30:39 markkoudstaal sshd[17052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.54.178 Oct 14 23:30:41 markkoudstaal sshd[17052]: Failed password for invalid user mengyu2009 from 118.24.54.178 port 50528 ssh2 Oct 14 23:34:48 markkoudstaal sshd[17446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.54.178	2019-10-15 05:44:16
191.235.91.156	attackspam	SSH Brute-Force reported by Fail2Ban	2019-10-15 05:55:34
222.186.173.183	attackspambots	Oct 14 21:52:06 ip-172-31-1-72 sshd\[6989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Oct 14 21:52:08 ip-172-31-1-72 sshd\[6989\]: Failed password for root from 222.186.173.183 port 31814 ssh2 Oct 14 21:52:35 ip-172-31-1-72 sshd\[6995\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Oct 14 21:52:38 ip-172-31-1-72 sshd\[6995\]: Failed password for root from 222.186.173.183 port 37034 ssh2 Oct 14 21:53:09 ip-172-31-1-72 sshd\[7007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root	2019-10-15 05:56:58
3.16.37.226	attackbots	$f2bV_matches	2019-10-15 05:47:27
89.248.169.94	attackbotsspam	10/14/2019-23:04:03.486728 89.248.169.94 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2019-10-15 06:02:18
58.254.132.239	attack	[Aegis] @ 2019-10-14 22:22:20 0100 -> Multiple authentication failures.	2019-10-15 06:07:03
203.48.246.66	attack	Oct 14 22:59:50 icinga sshd[13597]: Failed password for root from 203.48.246.66 port 44306 ssh2 ...	2019-10-15 05:58:21

Recently Reported IPs

122.154.120.230	196.34.92.62	103.99.75.171	59.2.180.218
201.235.226.112	103.76.252.6	171.106.201.73	181.188.163.156
68.183.55.115	67.209.215.158	178.62.23.75	146.185.25.178
154.51.162.185	94.74.142.217	76.79.74.58	193.70.34.209
171.84.2.7	217.112.128.4	77.42.125.155	119.206.67.143