139.59.14.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.148.56	attack	Oct 13 14:30:51 staging sshd[30119]: Invalid user adm from 139.59.148.56 port 59726 Oct 13 14:30:51 staging sshd[30119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.148.56 Oct 13 14:30:51 staging sshd[30119]: Invalid user adm from 139.59.148.56 port 59726 Oct 13 14:30:53 staging sshd[30119]: Failed password for invalid user adm from 139.59.148.56 port 59726 ssh2 ...	2020-10-14 04:31:27
139.59.141.196	attack	139.59.141.196 - - [11/Oct/2020:16:45:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2520 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [11/Oct/2020:16:45:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2478 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [11/Oct/2020:16:45:32 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-12 00:48:43
139.59.141.196	attack	139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 16:44:14
139.59.141.196	attackspambots	139.59.141.196 - - [10/Oct/2020:22:54:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2375 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [10/Oct/2020:22:54:39 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-11 10:04:07
139.59.147.218	attackbots	xmlrpc attack	2020-10-06 05:38:03
139.59.147.218	attackbots	Automatic report - Banned IP Access	2020-10-05 21:42:20
139.59.147.218	attackbotsspam	memoran 139.59.147.218 [05/Oct/2020:09:39:59 "-" "POST /wp-login.php 200 6727 139.59.147.218 [05/Oct/2020:09:40:06 "-" "GET /wp-login.php 200 6618 139.59.147.218 [05/Oct/2020:09:40:12 "-" "POST /wp-login.php 200 6725	2020-10-05 13:36:21
139.59.141.196	attackspam	139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2340 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:21:42:48 +0100] "POST /wp-login.php HTTP/1.1" 200 2319 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:21:42:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2324 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-29 05:30:47
139.59.141.196	attackspambots	139.59.141.196 - - [28/Sep/2020:13:25:38 +0100] "POST /wp-login.php HTTP/1.1" 200 2862 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:13:25:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2831 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.141.196 - - [28/Sep/2020:13:25:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2866 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-28 21:51:17
139.59.141.196	attack	WordPress wp-login brute force :: 139.59.141.196 0.116 - [28/Sep/2020:05:49:23 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-09-28 13:58:01
139.59.141.196	attackbots	139.59.141.196 - - [13/Sep/2020:19:05:10 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:11 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:13 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:15 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 139.59.141.196 - - [13/Sep/2020:19:05:16 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-14 03:29:50
139.59.141.196	attack	Automatic report generated by Wazuh	2020-09-13 19:29:40
139.59.14.210	attackspam	Sep 8 22:57:09 gitea sshd[39431]: Invalid user martinez from 139.59.14.210 port 39882 Sep 8 22:57:24 gitea sshd[48741]: Invalid user knoppix from 139.59.14.210 port 43882	2020-09-09 15:35:15
139.59.14.210	attack	Sep 8 22:57:09 gitea sshd[39431]: Invalid user martinez from 139.59.14.210 port 39882 Sep 8 22:57:24 gitea sshd[48741]: Invalid user knoppix from 139.59.14.210 port 43882	2020-09-09 07:44:41
139.59.146.28	attack	Attempting to access Wordpress login on a honeypot or private system.	2020-08-29 07:04:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.14.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28236
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.14.53.			IN	A

;; AUTHORITY SECTION:
.			275	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:37:15 CST 2022
;; MSG SIZE  rcvd: 105

Host info

53.14.59.139.in-addr.arpa domain name pointer 694443.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.14.59.139.in-addr.arpa	name = 694443.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.201.180.175	attackbotsspam	F2B blocked SSH bruteforcing	2020-01-17 05:54:26
129.213.144.135	attackspam	Jan 16 16:44:47 ny01 sshd[9521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.144.135 Jan 16 16:44:49 ny01 sshd[9521]: Failed password for invalid user postgres from 129.213.144.135 port 57114 ssh2 Jan 16 16:46:28 ny01 sshd[9704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.144.135	2020-01-17 05:47:00
222.186.173.180	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-01-17 05:35:38
85.96.202.217	attack	20/1/16@16:20:03: FAIL: Alarm-Network address from=85.96.202.217 ...	2020-01-17 06:06:40
89.144.47.32	attackspambots	SSH Server BruteForce Attack	2020-01-17 05:33:15
109.215.224.21	attackbots	Jan 16 16:25:25 server sshd\[15399\]: Invalid user guest from 109.215.224.21 Jan 16 16:25:25 server sshd\[15399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-dij-1-225-21.w109-215.abo.wanadoo.fr Jan 16 16:25:27 server sshd\[15399\]: Failed password for invalid user guest from 109.215.224.21 port 59514 ssh2 Jan 17 00:20:41 server sshd\[7457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=lfbn-dij-1-225-21.w109-215.abo.wanadoo.fr user=root Jan 17 00:20:43 server sshd\[7457\]: Failed password for root from 109.215.224.21 port 49708 ssh2 ...	2020-01-17 05:38:25
158.69.27.201	attackbots	xmlrpc attack	2020-01-17 05:44:08
177.37.71.53	attackspambots	Jan 17 02:45:42 gw1 sshd[18673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.37.71.53 Jan 17 02:45:44 gw1 sshd[18673]: Failed password for invalid user student4 from 177.37.71.53 port 39768 ssh2 ...	2020-01-17 05:49:13
175.6.133.182	attack	Jan 16 22:55:24 zeus postfix/smtpd\[25279\]: warning: unknown\[175.6.133.182\]: SASL LOGIN authentication failed: authentication failure Jan 16 22:55:25 zeus postfix/smtpd\[25279\]: warning: unknown\[175.6.133.182\]: SASL LOGIN authentication failed: authentication failure Jan 16 22:55:26 zeus postfix/smtpd\[25279\]: warning: unknown\[175.6.133.182\]: SASL LOGIN authentication failed: authentication failure ...	2020-01-17 06:02:10
77.247.108.91	attackbotsspam	77.247.108.91 was recorded 7 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 42, 1052	2020-01-17 06:01:45
140.246.32.143	attackspambots	Unauthorized connection attempt detected from IP address 140.246.32.143 to port 2220 [J]	2020-01-17 05:55:34
42.99.117.44	attack	Jan 16 16:11:59 cumulus sshd[3872]: Invalid user mmm from 42.99.117.44 port 56058 Jan 16 16:11:59 cumulus sshd[3872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.99.117.44 Jan 16 16:12:01 cumulus sshd[3872]: Failed password for invalid user mmm from 42.99.117.44 port 56058 ssh2 Jan 16 16:12:02 cumulus sshd[3872]: Received disconnect from 42.99.117.44 port 56058:11: Bye Bye [preauth] Jan 16 16:12:02 cumulus sshd[3872]: Disconnected from 42.99.117.44 port 56058 [preauth] Jan 16 16:19:34 cumulus sshd[4171]: Invalid user mysql from 42.99.117.44 port 45312 Jan 16 16:19:34 cumulus sshd[4171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.99.117.44 Jan 16 16:19:36 cumulus sshd[4171]: Failed password for invalid user mysql from 42.99.117.44 port 45312 ssh2 Jan 16 16:19:36 cumulus sshd[4171]: Received disconnect from 42.99.117.44 port 45312:11: Bye Bye [preauth] Jan 16 16:19:36 cumulus ss........ -------------------------------	2020-01-17 06:10:32
176.31.253.204	attack	$f2bV_matches	2020-01-17 05:56:01
128.199.218.137	attack	Jan 16 23:00:28 mout sshd[7427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.218.137 user=root Jan 16 23:00:30 mout sshd[7427]: Failed password for root from 128.199.218.137 port 49732 ssh2	2020-01-17 06:04:00
139.199.159.77	attackbots	Automatic report - Banned IP Access	2020-01-17 06:03:36

Recently Reported IPs

139.59.140.254	230.38.152.224	139.59.143.132	139.59.143.227
139.59.143.245	139.59.143.22	139.59.144.191	139.59.140.85
139.59.146.13	139.59.147.61	139.59.147.110	139.59.145.64
139.59.148.97	139.59.15.152	139.59.149.46	139.59.148.134
139.59.15.247	85.98.169.98	139.59.15.204	139.59.15.18