139.59.146.146

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.146.28	attack	Attempting to access Wordpress login on a honeypot or private system.	2020-08-29 07:04:48
139.59.146.28	attack	139.59.146.28 - - [27/Aug/2020:14:58:12 +0200] "GET /wp-login.php HTTP/1.1" 200 9040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [27/Aug/2020:14:58:13 +0200] "POST /wp-login.php HTTP/1.1" 200 9291 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [27/Aug/2020:14:58:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-28 02:53:32
139.59.146.28	attackspam	139.59.146.28 - - [19/Aug/2020:06:19:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [19/Aug/2020:06:19:00 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [19/Aug/2020:06:19:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [19/Aug/2020:06:19:00 +0200] "POST /wp-login.php HTTP/1.1" 200 2007 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [19/Aug/2020:06:19:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [19/Aug/2020:06:19:00 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-08-19 20:29:37
139.59.146.28	attackspambots	eintrachtkultkellerfulda.de 139.59.146.28 [15/Aug/2020:22:46:10 +0200] "POST /wp-login.php HTTP/1.1" 200 3084 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" eintrachtkultkellerfulda.de 139.59.146.28 [15/Aug/2020:22:46:10 +0200] "POST /wp-login.php HTTP/1.1" 200 3049 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-16 05:32:17
139.59.146.28	attackspambots	139.59.146.28 - - [10/Aug/2020:15:10:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [10/Aug/2020:15:10:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [10/Aug/2020:15:10:56 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-11 03:50:32
139.59.146.28	attackspam	Automatic report - XMLRPC Attack	2020-08-05 14:24:49
139.59.146.28	attackbotsspam	139.59.146.28 - - [02/Aug/2020:08:20:01 +0200] "POST /xmlrpc.php HTTP/1.1" 403 207343 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [02/Aug/2020:08:43:08 +0200] "POST /xmlrpc.php HTTP/1.1" 403 9972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-02 16:00:57
139.59.146.28	attackbots	WordPress wp-login brute force :: 139.59.146.28 0.100 - [31/Jul/2020:08:13:44 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1837 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-07-31 18:11:51
139.59.146.28	attack	139.59.146.28 - - [16/Jul/2020:05:51:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [16/Jul/2020:05:51:47 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [16/Jul/2020:05:51:48 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [16/Jul/2020:05:51:48 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [16/Jul/2020:05:51:48 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [16/Jul/2020:05:51:49 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-07-16 15:28:11
139.59.146.28	attackspam	139.59.146.28 - - [30/Jun/2020:13:20:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [30/Jun/2020:13:20:23 +0100] "POST /wp-login.php HTTP/1.1" 200 1924 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [30/Jun/2020:13:20:24 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-01 19:38:26
139.59.146.28	attackbots	139.59.146.28 - - [30/Jun/2020:13:20:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [30/Jun/2020:13:20:23 +0100] "POST /wp-login.php HTTP/1.1" 200 1924 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - [30/Jun/2020:13:20:24 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-01 02:05:57
139.59.146.28	attackspam	WordPress wp-login brute force :: 139.59.146.28 0.080 BYPASS [27/Jun/2020:05:40:43 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2003 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-27 14:22:59
139.59.146.28	attack	139.59.146.28 - - \[25/Jun/2020:01:06:19 +0200\] "POST /wp-login.php HTTP/1.0" 200 2507 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - \[25/Jun/2020:01:06:20 +0200\] "POST /wp-login.php HTTP/1.0" 200 2473 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - \[25/Jun/2020:01:06:21 +0200\] "POST /wp-login.php HTTP/1.0" 200 2470 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-06-25 08:42:15
139.59.146.28	attackbots	139.59.146.28 - - \[29/May/2020:22:49:25 +0200\] "POST /wp-login.php HTTP/1.0" 200 5674 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - \[29/May/2020:22:49:26 +0200\] "POST /wp-login.php HTTP/1.0" 200 5644 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 139.59.146.28 - - \[29/May/2020:22:49:27 +0200\] "POST /wp-login.php HTTP/1.0" 200 5676 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-05-30 06:29:11
139.59.146.28	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-03 19:43:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.146.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58832
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.146.146.			IN	A

;; AUTHORITY SECTION:
.			342	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:35:03 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 146.146.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.146.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.225.153.227	attack		2020-01-08 05:18:28
181.28.208.64	attackbots	Jan 7 18:15:06 firewall sshd[13613]: Invalid user wp from 181.28.208.64 Jan 7 18:15:08 firewall sshd[13613]: Failed password for invalid user wp from 181.28.208.64 port 52251 ssh2 Jan 7 18:20:47 firewall sshd[13827]: Invalid user pi from 181.28.208.64 ...	2020-01-08 05:30:42
88.76.189.121	attackbotsspam	Jan 7 22:20:33 vmanager6029 sshd\[9084\]: Invalid user iez from 88.76.189.121 port 59488 Jan 7 22:20:33 vmanager6029 sshd\[9084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.76.189.121 Jan 7 22:20:35 vmanager6029 sshd\[9084\]: Failed password for invalid user iez from 88.76.189.121 port 59488 ssh2	2020-01-08 05:40:39
222.186.175.202	attackbotsspam	SSH login attempts	2020-01-08 05:45:18
103.207.11.7	attackbotsspam	Jan 7 22:12:28 ns3042688 sshd\[20327\]: Invalid user test from 103.207.11.7 Jan 7 22:12:28 ns3042688 sshd\[20327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.11.7 Jan 7 22:12:30 ns3042688 sshd\[20327\]: Failed password for invalid user test from 103.207.11.7 port 43810 ssh2 Jan 7 22:20:37 ns3042688 sshd\[23540\]: Invalid user ftpadmin from 103.207.11.7 Jan 7 22:20:37 ns3042688 sshd\[23540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.11.7 ...	2020-01-08 05:38:00
46.151.58.38	attackbotsspam	TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (745)	2020-01-08 05:47:28
104.177.180.24	attack	Unauthorized connection attempt detected from IP address 104.177.180.24 to port 2220 [J]	2020-01-08 05:43:58
188.166.232.14	attackbotsspam	2020-01-07T16:03:17.3133321495-001 sshd[23133]: Invalid user netflow from 188.166.232.14 port 48302 2020-01-07T16:03:17.3168161495-001 sshd[23133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14 2020-01-07T16:03:17.3133321495-001 sshd[23133]: Invalid user netflow from 188.166.232.14 port 48302 2020-01-07T16:03:18.5246341495-001 sshd[23133]: Failed password for invalid user netflow from 188.166.232.14 port 48302 ssh2 2020-01-07T16:05:56.2145801495-001 sshd[23332]: Invalid user ubnt1 from 188.166.232.14 port 44726 2020-01-07T16:05:56.2186821495-001 sshd[23332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.232.14 2020-01-07T16:05:56.2145801495-001 sshd[23332]: Invalid user ubnt1 from 188.166.232.14 port 44726 2020-01-07T16:05:58.5904331495-001 sshd[23332]: Failed password for invalid user ubnt1 from 188.166.232.14 port 44726 ssh2 2020-01-07T16:08:44.9676871495-001 sshd[23447]: Invali ...	2020-01-08 05:26:16
122.225.195.198	attackspambots	Unauthorized connection attempt detected from IP address 122.225.195.198 to port 22 [T]	2020-01-08 05:51:02
106.13.6.116	attackbots	Unauthorized connection attempt detected from IP address 106.13.6.116 to port 2220 [J]	2020-01-08 05:32:26
107.170.255.48	attackbots	WordPress wp-login brute force :: 107.170.255.48 0.120 - [07/Jan/2020:20:25:15 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1806 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-01-08 05:15:54
222.42.148.60	attackbotsspam	222.42.148.60 has been banned for [WebApp Attack] ...	2020-01-08 05:24:58
189.209.252.216	attackspam	Jan 7 18:21:04 vps46666688 sshd[10094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.209.252.216 Jan 7 18:21:06 vps46666688 sshd[10094]: Failed password for invalid user manager from 189.209.252.216 port 50824 ssh2 ...	2020-01-08 05:21:58
222.92.61.242	attack	Automatic report - Banned IP Access	2020-01-08 05:38:29
159.192.99.3	attackspam	Automatic report - Banned IP Access	2020-01-08 05:29:30

Recently Reported IPs

139.59.146.122	139.59.146.205	118.254.157.232	139.59.147.63
139.59.148.150	139.59.146.208	139.59.147.92	139.59.148.168
139.59.147.164	139.59.149.119	139.59.147.198	139.59.149.109
139.59.149.120	139.59.149.189	139.59.149.176	118.254.157.236
139.59.149.63	139.59.149.27	139.59.149.213	139.59.15.20