139.59.135.166

Basic Info

City: Frankfurt am Main

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.135.84	attackbots	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 22:04:05
139.59.135.84	attack	Invalid user kureyon from 139.59.135.84 port 48782	2020-10-13 13:30:00
139.59.135.84	attackspambots	Oct 12 22:40:32 eventyay sshd[28379]: Failed password for root from 139.59.135.84 port 59232 ssh2 Oct 12 22:44:59 eventyay sshd[28632]: Failed password for root from 139.59.135.84 port 35022 ssh2 ...	2020-10-13 06:14:29
139.59.135.84	attackbotsspam	Failed password for root from 139.59.135.84 port 51112 ssh2	2020-10-05 18:30:22
139.59.135.84	attackspam	$f2bV_matches	2020-10-04 04:12:07
139.59.135.84	attackspambots	Invalid user alan from 139.59.135.84 port 57124	2020-10-03 20:16:11
139.59.135.84	attack	(sshd) Failed SSH login from 139.59.135.84 (DE/Germany/-): 10 in the last 3600 secs	2020-09-08 02:53:10
139.59.135.84	attackspam	Sep 7 10:04:28 ovpn sshd\[22015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 user=root Sep 7 10:04:30 ovpn sshd\[22015\]: Failed password for root from 139.59.135.84 port 49936 ssh2 Sep 7 10:11:47 ovpn sshd\[23800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 user=root Sep 7 10:11:49 ovpn sshd\[23800\]: Failed password for root from 139.59.135.84 port 44100 ssh2 Sep 7 10:16:44 ovpn sshd\[25013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 user=root	2020-09-07 18:21:10
139.59.135.84	attackspam	Sep 1 05:56:45 mout sshd[4944]: Invalid user vnc from 139.59.135.84 port 57842	2020-09-01 12:02:04
139.59.135.84	attackbotsspam	SSH login attempts.	2020-08-27 04:01:14
139.59.135.84	attack	$f2bV_matches	2020-08-22 22:57:24
139.59.135.84	attack	Invalid user chiudi from 139.59.135.84 port 55970	2020-08-21 07:13:14
139.59.135.84	attackbots	Fail2Ban	2020-08-16 16:06:47
139.59.135.84	attack	$f2bV_matches	2020-08-08 15:50:34
139.59.135.84	attackspam	Aug 7 10:58:32 ovpn sshd\[21836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 user=root Aug 7 10:58:34 ovpn sshd\[21836\]: Failed password for root from 139.59.135.84 port 58598 ssh2 Aug 7 11:01:27 ovpn sshd\[23042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 user=root Aug 7 11:01:29 ovpn sshd\[23042\]: Failed password for root from 139.59.135.84 port 48792 ssh2 Aug 7 11:03:28 ovpn sshd\[23890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.135.84 user=root	2020-08-07 17:27:51

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       139.59.0.0 - 139.59.255.255
CIDR:           139.59.0.0/16
NetName:        APNIC-ERX-139-59-0-0
NetHandle:      NET-139-59-0-0-1
Parent:         NET139 (NET-139-0-0-0-0)
NetType:        Early Registrations, Transferred to APNIC
OriginAS:       
Organization:   Asia Pacific Network Information Centre (APNIC)
RegDate:        2004-03-03
Updated:        2009-10-08
Comment:        This IP address range is not registered in the ARIN database.
Comment:        This range was transferred to the APNIC Whois Database as
Comment:        part of the ERX (Early Registration Transfer) project.
Comment:        For details, refer to the APNIC Whois Database via
Comment:        WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:        
Comment:        ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment:        for the Asia Pacific region.  APNIC does not operate networks
Comment:        using this IP address range and is not able to investigate
Comment:        spam or abuse reports relating to these addresses.  For more
Comment:        help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref:            https://rdap.arin.net/registry/ip/139.59.0.0

ResourceLink:  https://apps.db.ripe.net/db-web-ui/query
ResourceLink:  whois.apnic.net


OrgName:        Asia Pacific Network Information Centre
OrgId:          APNIC
Address:        PO Box 3646
City:           South Brisbane
StateProv:      QLD
PostalCode:     4101
Country:        AU
RegDate:        
Updated:        2012-01-24
Ref:            https://rdap.arin.net/registry/entity/APNIC

ReferralServer:  whois://whois.apnic.net
ResourceLink:  https://apps.db.ripe.net/db-web-ui/query

OrgTechHandle: AWC12-ARIN
OrgTechName:   APNIC Whois Contact
OrgTechPhone:  +61 7 3858 3188 
OrgTechEmail:  search-apnic-not-arin@apnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName:   APNIC Whois Contact
OrgAbusePhone:  +61 7 3858 3188 
OrgAbuseEmail:  search-apnic-not-arin@apnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '139.59.128.0 - 139.59.159.255'

% Abuse contact for '139.59.128.0 - 139.59.159.255' is 'abuse@digitalocean.com'

inetnum:        139.59.128.0 - 139.59.159.255
netname:        DIGITALOCEAN-AP
descr:          DigitalOcean, LLC
country:        DE
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
abuse-c:        AD699-AP
status:         ASSIGNED NON-PORTABLE
mnt-by:         MAINT-DIGITALOCEAN-AP
mnt-irt:        IRT-DIGITALOCEAN-AP
last-modified:  2020-05-31T21:37:28Z
source:         APNIC

irt:            IRT-DIGITALOCEAN-AP
address:        105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
e-mail:         noc@digitalocean.com
abuse-mailbox:  abuse@digitalocean.com
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
auth:           # Filtered
remarks:        noc@digitalocean.com was validated on 2025-05-20
remarks:        abuse@digitalocean.com was validated on 2025-08-14
mnt-by:         MAINT-DIGITALOCEAN-AP
last-modified:  2025-09-04T07:01:35Z
source:         APNIC

role:           ABUSE DIGITALOCEANAP
country:        ZZ
address:        105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
phone:          +000000000
e-mail:         noc@digitalocean.com
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
nic-hdl:        AD699-AP
remarks:        Generated from irt object IRT-DIGITALOCEAN-AP
remarks:        noc@digitalocean.com was validated on 2025-05-20
remarks:        abuse@digitalocean.com was validated on 2025-08-14
abuse-mailbox:  abuse@digitalocean.com
mnt-by:         APNIC-ABUSE
last-modified:  2025-08-14T13:27:09Z
source:         APNIC

role:           Digital Ocean Inc administrator
address:        105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
country:        US
phone:          +1 646-827-4366
fax-no:         +1 646-827-4366
e-mail:         abuse@digitalocean.com
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
nic-hdl:        DOIA2-AP
mnt-by:         MAINT-DIGITALOCEAN-AP
last-modified:  2025-04-11T18:24:27Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.135.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38841
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.135.166.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025092601 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 27 06:00:17 CST 2025
;; MSG SIZE  rcvd: 107

Host info

166.135.59.139.in-addr.arpa domain name pointer irteqa.net-01.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.135.59.139.in-addr.arpa	name = irteqa.net-01.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.241.182.103	attackspam	Bitcoin extortion email scam from a virus or trojan infected host	2019-12-25 05:56:23
178.238.236.128	attackbots	firewall-block, port(s): 5984/tcp	2019-12-25 05:31:17
177.185.136.201	attack	Unauthorised access (Dec 24) SRC=177.185.136.201 LEN=48 TTL=109 ID=27965 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-25 06:00:55
218.16.218.109	attack	" "	2019-12-25 05:35:01
183.81.84.249	attack	SSH bruteforce (Triggered fail2ban)	2019-12-25 05:43:40
114.237.109.115	attackbotsspam	Dec 24 16:28:07 grey postfix/smtpd\[23352\]: NOQUEUE: reject: RCPT from unknown\[114.237.109.115\]: 554 5.7.1 Service unavailable\; Client host \[114.237.109.115\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.109.115\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-25 05:59:13
54.39.97.17	attackspam	Automatic report - Banned IP Access	2019-12-25 05:54:40
178.128.168.87	attackspam	Invalid user almire from 178.128.168.87 port 59108	2019-12-25 05:56:44
165.227.84.119	attack	Dec 24 20:26:31 l02a sshd[2285]: Invalid user creel from 165.227.84.119 Dec 24 20:26:31 l02a sshd[2285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.84.119 Dec 24 20:26:31 l02a sshd[2285]: Invalid user creel from 165.227.84.119 Dec 24 20:26:33 l02a sshd[2285]: Failed password for invalid user creel from 165.227.84.119 port 52862 ssh2	2019-12-25 05:25:12
123.31.32.150	attack	SSH Login Bruteforce	2019-12-25 05:53:09
206.189.72.217	attackbotsspam	Dec 24 13:28:02 ws12vmsma01 sshd[54588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=tasked.me Dec 24 13:28:02 ws12vmsma01 sshd[54588]: Invalid user server from 206.189.72.217 Dec 24 13:28:03 ws12vmsma01 sshd[54588]: Failed password for invalid user server from 206.189.72.217 port 60846 ssh2 ...	2019-12-25 05:59:41
117.69.47.240	attackbots	Dec 24 16:29:04 grey postfix/smtpd\[32268\]: NOQUEUE: reject: RCPT from unknown\[117.69.47.240\]: 554 5.7.1 Service unavailable\; Client host \[117.69.47.240\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[117.69.47.240\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-25 05:29:54
213.82.114.206	attackbotsspam	Dec 24 16:25:18 minden010 sshd[26056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.82.114.206 Dec 24 16:25:20 minden010 sshd[26056]: Failed password for invalid user drottning from 213.82.114.206 port 33946 ssh2 Dec 24 16:28:48 minden010 sshd[30175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.82.114.206 ...	2019-12-25 05:37:49
144.91.117.6	attackbotsspam	10 attempts against mh_ha-misc-ban on comet.magehost.pro	2019-12-25 05:44:55
46.164.155.9	attackbotsspam	SSH brutforce	2019-12-25 05:26:44

Recently Reported IPs

34.221.19.242	82.165.16.214	162.216.149.217	180.76.199.13
167.86.95.210	159.65.148.99	93.65.19.209	172.16.29.2
185.226.197.32	143.44.193.146	58.49.233.126	8.160.132.124
65.58.176.209	45.203.61.2	171.13.14.37	54.151.57.110
101.43.45.77	2408:846c:4a70:4b0b:ad14:4135:d6ab:c095	195.178.110.199	54.219.56.105