139.59.98.198 - IPInfo

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.98.131	attackspam	2020-10-14T00:38:21.695402abusebot-4.cloudsearch.cf sshd[12528]: Invalid user svn from 139.59.98.131 port 38594 2020-10-14T00:38:21.700873abusebot-4.cloudsearch.cf sshd[12528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.131 2020-10-14T00:38:21.695402abusebot-4.cloudsearch.cf sshd[12528]: Invalid user svn from 139.59.98.131 port 38594 2020-10-14T00:38:23.324999abusebot-4.cloudsearch.cf sshd[12528]: Failed password for invalid user svn from 139.59.98.131 port 38594 ssh2 2020-10-14T00:45:48.935017abusebot-4.cloudsearch.cf sshd[12586]: Invalid user jakob from 139.59.98.131 port 33650 2020-10-14T00:45:48.940296abusebot-4.cloudsearch.cf sshd[12586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.131 2020-10-14T00:45:48.935017abusebot-4.cloudsearch.cf sshd[12586]: Invalid user jakob from 139.59.98.131 port 33650 2020-10-14T00:45:50.930209abusebot-4.cloudsearch.cf sshd[12586]: Failed passw ...	2020-10-14 09:00:25
139.59.98.138	attack	Lines containing failures of 139.59.98.138 (max 1000) Oct 12 20:00:49 UTC__SANYALnet-Labs__cac1 sshd[5496]: Connection from 139.59.98.138 port 55274 on 64.137.179.160 port 22 Oct 12 20:00:51 UTC__SANYALnet-Labs__cac1 sshd[5496]: User r.r from 139.59.98.138 not allowed because not listed in AllowUsers Oct 12 20:00:51 UTC__SANYALnet-Labs__cac1 sshd[5496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.138 user=r.r Oct 12 20:00:53 UTC__SANYALnet-Labs__cac1 sshd[5496]: Failed password for invalid user r.r from 139.59.98.138 port 55274 ssh2 Oct 12 20:00:53 UTC__SANYALnet-Labs__cac1 sshd[5496]: Received disconnect from 139.59.98.138 port 55274:11: Bye Bye [preauth] Oct 12 20:00:53 UTC__SANYALnet-Labs__cac1 sshd[5496]: Disconnected from 139.59.98.138 port 55274 [preauth] Oct 12 20:15:17 UTC__SANYALnet-Labs__cac1 sshd[6045]: Connection from 139.59.98.138 port 47234 on 64.137.179.160 port 22 Oct 12 20:15:18 UTC__SANYALnet-Labs__........ ------------------------------	2020-10-14 04:26:19
139.59.98.130	attack	Oct 12 19:06:49 lola sshd[24395]: Invalid user paintball1 from 139.59.98.130 Oct 12 19:06:49 lola sshd[24395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 Oct 12 19:06:51 lola sshd[24395]: Failed password for invalid user paintball1 from 139.59.98.130 port 35416 ssh2 Oct 12 19:06:51 lola sshd[24395]: Received disconnect from 139.59.98.130: 11: Bye Bye [preauth] Oct 12 19:20:14 lola sshd[25016]: Invalid user panis from 139.59.98.130 Oct 12 19:20:14 lola sshd[25016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 Oct 12 19:20:16 lola sshd[25016]: Failed password for invalid user panis from 139.59.98.130 port 46762 ssh2 Oct 12 19:20:16 lola sshd[25016]: Received disconnect from 139.59.98.130: 11: Bye Bye [preauth] Oct 12 19:24:17 lola sshd[25137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 user=r.r Oc........ -------------------------------	2020-10-13 22:25:50
139.59.98.138	attackbotsspam	Oct 13 12:18:49 santamaria sshd\[5176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.138 user=root Oct 13 12:18:50 santamaria sshd\[5176\]: Failed password for root from 139.59.98.138 port 41700 ssh2 Oct 13 12:23:54 santamaria sshd\[5237\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.138 user=root ...	2020-10-13 19:53:28
139.59.98.130	attack	Oct 12 19:06:49 lola sshd[24395]: Invalid user paintball1 from 139.59.98.130 Oct 12 19:06:49 lola sshd[24395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 Oct 12 19:06:51 lola sshd[24395]: Failed password for invalid user paintball1 from 139.59.98.130 port 35416 ssh2 Oct 12 19:06:51 lola sshd[24395]: Received disconnect from 139.59.98.130: 11: Bye Bye [preauth] Oct 12 19:20:14 lola sshd[25016]: Invalid user panis from 139.59.98.130 Oct 12 19:20:14 lola sshd[25016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 Oct 12 19:20:16 lola sshd[25016]: Failed password for invalid user panis from 139.59.98.130 port 46762 ssh2 Oct 12 19:20:16 lola sshd[25016]: Received disconnect from 139.59.98.130: 11: Bye Bye [preauth] Oct 12 19:24:17 lola sshd[25137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 user=r.r Oc........ -------------------------------	2020-10-13 13:48:34
139.59.98.130	attackspam	Oct 12 19:06:49 lola sshd[24395]: Invalid user paintball1 from 139.59.98.130 Oct 12 19:06:49 lola sshd[24395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 Oct 12 19:06:51 lola sshd[24395]: Failed password for invalid user paintball1 from 139.59.98.130 port 35416 ssh2 Oct 12 19:06:51 lola sshd[24395]: Received disconnect from 139.59.98.130: 11: Bye Bye [preauth] Oct 12 19:20:14 lola sshd[25016]: Invalid user panis from 139.59.98.130 Oct 12 19:20:14 lola sshd[25016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 Oct 12 19:20:16 lola sshd[25016]: Failed password for invalid user panis from 139.59.98.130 port 46762 ssh2 Oct 12 19:20:16 lola sshd[25016]: Received disconnect from 139.59.98.130: 11: Bye Bye [preauth] Oct 12 19:24:17 lola sshd[25137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.130 user=r.r Oc........ -------------------------------	2020-10-13 06:32:52
139.59.98.34	attackspam	Jun 9 14:08:07 guillermo sshd[5068]: Failed password for root from 139.59.98.34 port 57346 ssh2 Jun 9 14:08:04 guillermo sshd[5081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.34 user=root Jun 9 14:08:07 guillermo sshd[5081]: Failed password for root from 139.59.98.34 port 58128 ssh2 Jun 9 14:08:04 guillermo sshd[5059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.34 user=root Jun 9 14:08:07 guillermo sshd[5059]: Failed password for root from 139.59.98.34 port 57190 ssh2 ...	2020-06-09 21:16:20
139.59.98.34	attack	TCP (SYN) 139.59.98.34:58092 -> port 6069, len 44	2020-06-08 02:16:50
139.59.98.76	attackspambots	Sep 12 08:44:31 apollo sshd\[7790\]: Invalid user git from 139.59.98.76Sep 12 08:44:34 apollo sshd\[7790\]: Failed password for invalid user git from 139.59.98.76 port 50658 ssh2Sep 12 08:57:38 apollo sshd\[7850\]: Invalid user teamspeak from 139.59.98.76 ...	2019-09-12 15:37:21
139.59.98.76	attackbots	Sep 9 20:14:51 markkoudstaal sshd[22656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.76 Sep 9 20:14:53 markkoudstaal sshd[22656]: Failed password for invalid user teamspeak from 139.59.98.76 port 60742 ssh2 Sep 9 20:21:36 markkoudstaal sshd[23203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.76	2019-09-10 06:30:07
139.59.98.76	attackbots	Sep 2 06:25:51 web8 sshd\[26530\]: Invalid user group1 from 139.59.98.76 Sep 2 06:25:51 web8 sshd\[26530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.76 Sep 2 06:25:53 web8 sshd\[26530\]: Failed password for invalid user group1 from 139.59.98.76 port 54720 ssh2 Sep 2 06:30:45 web8 sshd\[29109\]: Invalid user suporte from 139.59.98.76 Sep 2 06:30:45 web8 sshd\[29109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.98.76	2019-09-02 17:41:59
139.59.98.76	attack	Aug 26 22:09:25 www2 sshd\[2282\]: Invalid user fctrserver from 139.59.98.76Aug 26 22:09:27 www2 sshd\[2282\]: Failed password for invalid user fctrserver from 139.59.98.76 port 36262 ssh2Aug 26 22:14:27 www2 sshd\[2822\]: Failed password for root from 139.59.98.76 port 54370 ssh2 ...	2019-08-27 04:15:25
139.59.98.76	attack	Aug 25 20:51:57 DAAP sshd[15524]: Invalid user oracle from 139.59.98.76 port 36498 ...	2019-08-26 04:00:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.98.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46392
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.98.198.			IN	A

;; AUTHORITY SECTION:
.			293	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031700 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 17 18:48:52 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 198.98.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.98.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
40.107.6.62	attackbotsspam	TCP Port: 25 invalid blocked Listed on backscatter (207)	2020-09-09 03:02:51
188.163.89.136	attackbotsspam	188.163.89.136 - [08/Sep/2020:16:30:28 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13" 188.163.89.136 - [08/Sep/2020:16:30:29 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13" 188.163.89.136 - [08/Sep/2020:16:34:06 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13" 188.163.89.136 - [08/Sep/2020:16:34:10 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13" 188.163.89.136 - [08/Sep/2020:16:37:51 + ...	2020-09-09 03:26:05
123.206.23.106	attackbotsspam	Jul 9 13:55:55 server sshd[3438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.23.106 Jul 9 13:55:57 server sshd[3438]: Failed password for invalid user je from 123.206.23.106 port 33790 ssh2 Jul 9 14:05:16 server sshd[4235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.23.106 Jul 9 14:05:18 server sshd[4235]: Failed password for invalid user user from 123.206.23.106 port 42694 ssh2	2020-09-09 03:14:06
41.140.242.36	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-09 03:11:57
51.79.74.209	attack	Failed password for invalid user ncmdbuser from 51.79.74.209 port 52728 ssh2	2020-09-09 03:13:34
119.29.41.117	attackspam	...	2020-09-09 03:29:03
94.102.56.216	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 84 - port: 48128 proto: udp cat: Misc Attackbytes: 71	2020-09-09 03:05:14
192.241.227.136	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-09 03:01:20
197.43.57.103	attack	privillege escalation attempt via GET request injection	2020-09-09 03:32:22
139.59.29.252	attackspambots	port scan and connect, tcp 443 (https)	2020-09-09 03:12:52
85.11.154.212	attackbots	2020-09-07 18:47:14 1kFKIT-000078-MT SMTP connection from \(85-11-154-212.sofianet.net\) \[85.11.154.212\]:31416 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-09-07 18:47:22 1kFKIb-00007J-P1 SMTP connection from \(85-11-154-212.sofianet.net\) \[85.11.154.212\]:31526 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-09-07 18:47:26 1kFKIf-00007T-UU SMTP connection from \(85-11-154-212.sofianet.net\) \[85.11.154.212\]:31581 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-09-09 03:16:54
111.72.196.146	attackbotsspam	Sep 7 20:22:48 srv01 postfix/smtpd\[30915\]: warning: unknown\[111.72.196.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:22:59 srv01 postfix/smtpd\[30915\]: warning: unknown\[111.72.196.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:23:15 srv01 postfix/smtpd\[30915\]: warning: unknown\[111.72.196.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:23:33 srv01 postfix/smtpd\[30915\]: warning: unknown\[111.72.196.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:23:45 srv01 postfix/smtpd\[30915\]: warning: unknown\[111.72.196.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-09 03:09:44
210.22.78.74	attackbotsspam	Sep 8 18:55:59 rush sshd[17743]: Failed password for root from 210.22.78.74 port 6401 ssh2 Sep 8 18:57:39 rush sshd[17760]: Failed password for root from 210.22.78.74 port 32864 ssh2 ...	2020-09-09 03:19:23
103.254.107.170	attackspam	Automatic report - Port Scan Attack	2020-09-09 03:25:00
72.210.252.148	attack	Dovecot Invalid User Login Attempt.	2020-09-09 03:32:25

Recently Reported IPs

235.170.76.190	93.155.55.114	208.30.235.31	128.183.208.184
70.45.185.158	185.249.180.170	210.120.186.21	34.20.203.149
236.233.33.161	38.103.254.70	102.112.195.155	27.147.158.191
52.251.75.209	190.110.157.11	135.125.137.228	154.10.222.182
230.150.180.95	60.53.52.238	252.23.103.242	205.195.136.13