139.59.130.76 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.130.114	attack	23/tcp 37215/tcp... [2020-08-12/22]4pkt,2pt.(tcp)	2020-08-23 05:24:26
139.59.130.225	attackbotsspam	Aug 19 22:07:49 mail sshd\[22691\]: Invalid user nano from 139.59.130.225 port 44560 Aug 19 22:07:49 mail sshd\[22691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.130.225 Aug 19 22:07:50 mail sshd\[22691\]: Failed password for invalid user nano from 139.59.130.225 port 44560 ssh2 Aug 19 22:11:29 mail sshd\[23437\]: Invalid user service from 139.59.130.225 port 39692 Aug 19 22:11:29 mail sshd\[23437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.130.225	2019-08-20 04:20:40
139.59.130.48	attack	langenachtfulda.de 139.59.130.48 \[25/Jun/2019:09:02:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 6029 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" langenachtfulda.de 139.59.130.48 \[25/Jun/2019:09:02:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 6035 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-06-25 17:02:48

Type

Details

Datetime

139.59.130.114

attack

23/tcp 37215/tcp...
[2020-08-12/22]4pkt,2pt.(tcp)

2020-08-23 05:24:26

139.59.130.225

attackbotsspam

Aug 19 22:07:49 mail sshd\[22691\]: Invalid user nano from 139.59.130.225 port 44560
Aug 19 22:07:49 mail sshd\[22691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.130.225
Aug 19 22:07:50 mail sshd\[22691\]: Failed password for invalid user nano from 139.59.130.225 port 44560 ssh2
Aug 19 22:11:29 mail sshd\[23437\]: Invalid user service from 139.59.130.225 port 39692
Aug 19 22:11:29 mail sshd\[23437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.130.225

2019-08-20 04:20:40

139.59.130.48

attack

langenachtfulda.de 139.59.130.48 \[25/Jun/2019:09:02:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 6029 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
langenachtfulda.de 139.59.130.48 \[25/Jun/2019:09:02:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 6035 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"

2019-06-25 17:02:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.130.76
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53740
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.130.76.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025052500 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 25 22:30:43 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 76.130.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 76.130.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.183.131.154	attackspam	Automatic report - Banned IP Access	2020-08-18 15:08:09
63.250.45.46	attack	Aug 17 19:37:07 eddieflores sshd\[6231\]: Invalid user tara from 63.250.45.46 Aug 17 19:37:07 eddieflores sshd\[6231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.250.45.46 Aug 17 19:37:10 eddieflores sshd\[6231\]: Failed password for invalid user tara from 63.250.45.46 port 37800 ssh2 Aug 17 19:44:42 eddieflores sshd\[6862\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.250.45.46 user=root Aug 17 19:44:43 eddieflores sshd\[6862\]: Failed password for root from 63.250.45.46 port 55578 ssh2	2020-08-18 14:56:36
176.31.225.231	attackspambots	[2020-08-18 02:17:29] NOTICE[1185] chan_sip.c: Registration from '"99" ' failed for '176.31.225.231:5406' - Wrong password [2020-08-18 02:17:29] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-18T02:17:29.613-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="99",SessionID="0x7f10c4245bd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.31.225.231/5406",Challenge="45da2eab",ReceivedChallenge="45da2eab",ReceivedHash="13ade68ded193798269651349520bd5d" [2020-08-18 02:17:29] NOTICE[1185] chan_sip.c: Registration from '"99" ' failed for '176.31.225.231:5406' - Wrong password [2020-08-18 02:17:29] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-18T02:17:29.840-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="99",SessionID="0x7f10c41b0fe8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.31.225. ...	2020-08-18 14:27:17
112.85.42.185	attackspambots	Aug 18 07:26:57 raspberrypi sshd[6927]: Failed password for root from 112.85.42.185 port 63128 ssh2 Aug 18 07:27:00 raspberrypi sshd[6927]: Failed password for root from 112.85.42.185 port 63128 ssh2 Aug 18 07:27:02 raspberrypi sshd[6927]: Failed password for root from 112.85.42.185 port 63128 ssh2 Aug 18 07:27:49 raspberrypi sshd[6939]: Failed password for root from 112.85.42.185 port 19885 ssh2 Aug 18 07:27:52 raspberrypi sshd[6939]: Failed password for root from 112.85.42.185 port 19885 ssh2 ...	2020-08-18 14:39:48
49.232.55.161	attack	2020-08-18T05:52:49.987909randservbullet-proofcloud-66.localdomain sshd[31974]: Invalid user shit from 49.232.55.161 port 43106 2020-08-18T05:52:49.992313randservbullet-proofcloud-66.localdomain sshd[31974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.55.161 2020-08-18T05:52:49.987909randservbullet-proofcloud-66.localdomain sshd[31974]: Invalid user shit from 49.232.55.161 port 43106 2020-08-18T05:52:51.599632randservbullet-proofcloud-66.localdomain sshd[31974]: Failed password for invalid user shit from 49.232.55.161 port 43106 ssh2 ...	2020-08-18 14:36:44
111.72.197.209	attackbots	Aug 18 06:14:54 srv01 postfix/smtpd\[597\]: warning: unknown\[111.72.197.209\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 06:15:05 srv01 postfix/smtpd\[597\]: warning: unknown\[111.72.197.209\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 06:15:24 srv01 postfix/smtpd\[597\]: warning: unknown\[111.72.197.209\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 06:15:43 srv01 postfix/smtpd\[597\]: warning: unknown\[111.72.197.209\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 18 06:15:54 srv01 postfix/smtpd\[597\]: warning: unknown\[111.72.197.209\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-18 14:52:09
111.231.202.236	attackbots	2020-08-18T05:48:13.343014shield sshd\[28346\]: Invalid user friend from 111.231.202.236 port 62627 2020-08-18T05:48:13.353252shield sshd\[28346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.236 2020-08-18T05:48:15.071547shield sshd\[28346\]: Failed password for invalid user friend from 111.231.202.236 port 62627 ssh2 2020-08-18T05:52:01.657900shield sshd\[28612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.236 user=root 2020-08-18T05:52:03.341175shield sshd\[28612\]: Failed password for root from 111.231.202.236 port 49276 ssh2	2020-08-18 14:56:23
51.79.84.48	attack	Aug 18 03:54:47 scw-6657dc sshd[26966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.84.48 Aug 18 03:54:47 scw-6657dc sshd[26966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.84.48 Aug 18 03:54:50 scw-6657dc sshd[26966]: Failed password for invalid user praveen from 51.79.84.48 port 33234 ssh2 ...	2020-08-18 14:47:38
3.125.49.109	attackbotsspam	$f2bV_matches	2020-08-18 14:37:09
116.7.234.239	attackbotsspam	(sshd) Failed SSH login from 116.7.234.239 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 18 05:22:05 amsweb01 sshd[9126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.7.234.239 user=root Aug 18 05:22:08 amsweb01 sshd[9126]: Failed password for root from 116.7.234.239 port 24377 ssh2 Aug 18 05:48:37 amsweb01 sshd[12883]: Invalid user titan from 116.7.234.239 port 24383 Aug 18 05:48:39 amsweb01 sshd[12883]: Failed password for invalid user titan from 116.7.234.239 port 24383 ssh2 Aug 18 05:54:19 amsweb01 sshd[13654]: Invalid user build from 116.7.234.239 port 24384	2020-08-18 15:05:20
192.171.81.120	attackbots	Automatic report - Banned IP Access	2020-08-18 14:33:11
220.123.241.30	attackbots	Aug 17 22:06:26 mockhub sshd[6108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.123.241.30 Aug 17 22:06:28 mockhub sshd[6108]: Failed password for invalid user ashley from 220.123.241.30 port 42328 ssh2 ...	2020-08-18 15:10:07
178.33.146.17	attackbots	Aug 18 03:54:58 scw-6657dc sshd[26978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.146.17 Aug 18 03:54:58 scw-6657dc sshd[26978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.146.17 Aug 18 03:55:00 scw-6657dc sshd[26978]: Failed password for invalid user ps from 178.33.146.17 port 60532 ssh2 ...	2020-08-18 14:32:00
43.225.151.252	attackspam	(sshd) Failed SSH login from 43.225.151.252 (BD/Bangladesh/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 18 07:05:58 srv sshd[10243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.151.252 user=root Aug 18 07:06:00 srv sshd[10243]: Failed password for root from 43.225.151.252 port 59210 ssh2 Aug 18 07:14:04 srv sshd[10475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.151.252 user=root Aug 18 07:14:06 srv sshd[10475]: Failed password for root from 43.225.151.252 port 49922 ssh2 Aug 18 07:18:43 srv sshd[10566]: Invalid user silvio from 43.225.151.252 port 59978	2020-08-18 15:08:39
103.145.13.12	attackbotsspam	TCP (SYN) 103.145.13.12:50234 -> port 50802, len 44	2020-08-18 15:11:03

Recently Reported IPs

152.42.231.245	138.68.66.64	20.106.32.128	161.35.74.240
138.68.96.190	138.68.111.40	233.187.126.159	168.149.189.57
0.215.0.199	188.166.158.169	90.88.25.63	60.2.81.202
214.5.65.88	250.57.254.77	242.160.91.44	172.234.217.192
199.234.4.11	244.192.115.32	20.169.107.249	227.146.58.135