139.59.96.172 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: Digital Ocean Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Dec 22 23:30:52 motanud sshd\[24475\]: Invalid user craig from 139.59.96.172 port 39807 Dec 22 23:30:52 motanud sshd\[24475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.96.172 Dec 22 23:30:54 motanud sshd\[24475\]: Failed password for invalid user craig from 139.59.96.172 port 39807 ssh2	2019-08-10 22:45:09
attackspambots	Jun 29 20:44:02 Tower sshd[18268]: Connection from 139.59.96.172 port 55609 on 192.168.10.220 port 22 Jun 29 20:44:04 Tower sshd[18268]: Invalid user magalie from 139.59.96.172 port 55609 Jun 29 20:44:04 Tower sshd[18268]: error: Could not get shadow information for NOUSER Jun 29 20:44:04 Tower sshd[18268]: Failed password for invalid user magalie from 139.59.96.172 port 55609 ssh2 Jun 29 20:44:04 Tower sshd[18268]: Received disconnect from 139.59.96.172 port 55609:11: Bye Bye [preauth] Jun 29 20:44:04 Tower sshd[18268]: Disconnected from invalid user magalie 139.59.96.172 port 55609 [preauth]	2019-06-30 09:54:26
attackbots	Jun 24 23:59:12 mail sshd\[13468\]: Invalid user leo from 139.59.96.172\ Jun 24 23:59:14 mail sshd\[13468\]: Failed password for invalid user leo from 139.59.96.172 port 41345 ssh2\ Jun 25 00:02:35 mail sshd\[13525\]: Invalid user fo from 139.59.96.172\ Jun 25 00:02:37 mail sshd\[13525\]: Failed password for invalid user fo from 139.59.96.172 port 52069 ssh2\ Jun 25 00:05:21 mail sshd\[13532\]: Invalid user send from 139.59.96.172\ Jun 25 00:05:23 mail sshd\[13532\]: Failed password for invalid user send from 139.59.96.172 port 60690 ssh2\	2019-06-25 07:13:29
attack	Jun 22 20:45:35 vps200512 sshd\[5682\]: Invalid user steve from 139.59.96.172 Jun 22 20:45:35 vps200512 sshd\[5682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.96.172 Jun 22 20:45:37 vps200512 sshd\[5682\]: Failed password for invalid user steve from 139.59.96.172 port 51057 ssh2 Jun 22 20:47:42 vps200512 sshd\[5708\]: Invalid user cyrus from 139.59.96.172 Jun 22 20:47:42 vps200512 sshd\[5708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.96.172	2019-06-23 09:39:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.96.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23737
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.59.96.172.			IN	A

;; AUTHORITY SECTION:
.			3340	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032802 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Mar 29 09:10:37 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 172.96.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 172.96.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.255.149.135	attack	SSH Brute Force	2020-03-22 13:38:02
171.4.208.96	attackspam	1584849371 - 03/22/2020 04:56:11 Host: 171.4.208.96/171.4.208.96 Port: 445 TCP Blocked	2020-03-22 13:46:15
51.254.32.102	attack	3x Failed Password	2020-03-22 14:21:18
107.170.129.141	attackbotsspam	Mar 22 04:56:10 nextcloud sshd\[508\]: Invalid user xfs from 107.170.129.141 Mar 22 04:56:10 nextcloud sshd\[508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.129.141 Mar 22 04:56:12 nextcloud sshd\[508\]: Failed password for invalid user xfs from 107.170.129.141 port 57156 ssh2	2020-03-22 13:44:52
221.176.65.168	attackbots	REQUESTED PAGE: /phpmyadmin/index.php	2020-03-22 13:40:33
194.78.0.9	attack	Brute force 77 attempts	2020-03-22 14:12:02
88.218.17.114	attack	Attempted connection to port 3389.	2020-03-22 13:49:12
165.227.67.64	attack	Mar 22 07:13:23 h2779839 sshd[18006]: Invalid user sunsoft from 165.227.67.64 port 49402 Mar 22 07:13:23 h2779839 sshd[18006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.67.64 Mar 22 07:13:23 h2779839 sshd[18006]: Invalid user sunsoft from 165.227.67.64 port 49402 Mar 22 07:13:25 h2779839 sshd[18006]: Failed password for invalid user sunsoft from 165.227.67.64 port 49402 ssh2 Mar 22 07:17:05 h2779839 sshd[18101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.67.64 user=mysql Mar 22 07:17:07 h2779839 sshd[18101]: Failed password for mysql from 165.227.67.64 port 37500 ssh2 Mar 22 07:20:37 h2779839 sshd[18184]: Invalid user alexie from 165.227.67.64 port 53828 Mar 22 07:20:37 h2779839 sshd[18184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.67.64 Mar 22 07:20:37 h2779839 sshd[18184]: Invalid user alexie from 165.227.67.64 port 53828 M ...	2020-03-22 14:25:14
139.59.10.186	attack	$f2bV_matches	2020-03-22 14:18:20
89.36.214.69	attack	(sshd) Failed SSH login from 89.36.214.69 (FR/France/host69-214-36-89.serverdedicati.aruba.it): 5 in the last 3600 secs	2020-03-22 13:39:16
178.90.216.58	attackspam	1584849347 - 03/22/2020 04:55:47 Host: 178.90.216.58/178.90.216.58 Port: 445 TCP Blocked	2020-03-22 14:06:39
106.12.201.118	attackbotsspam	SSH invalid-user multiple login attempts	2020-03-22 13:50:11
51.77.144.50	attack	Mar 22 06:09:59 srv206 sshd[26418]: Invalid user garden from 51.77.144.50 ...	2020-03-22 14:24:03
119.29.53.107	attackbotsspam	Invalid user lyj from 119.29.53.107 port 53300	2020-03-22 14:12:53
167.99.77.94	attackbotsspam	Mar 21 20:56:05 mockhub sshd[2336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.77.94 Mar 21 20:56:06 mockhub sshd[2336]: Failed password for invalid user smbread from 167.99.77.94 port 45522 ssh2 ...	2020-03-22 13:51:37

Recently Reported IPs

128.199.71.167	124.193.207.90	112.166.68.193	66.102.6.142
103.114.104.140	66.102.6.14	91.121.154.100	89.212.162.78
72.11.190.157	61.76.169.138	54.88.225.159	51.75.29.61
46.105.31.249	31.206.41.114	5.51.234.155	1.34.164.204
220.77.29.179	211.159.187.191	200.89.175.103	191.98.163.2