139.59.5.143 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.5.179	attack	139.59.5.179 - - [06/Oct/2020:19:11:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:33 +0100] "POST /wp-login.php HTTP/1.1" 200 2441 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 04:09:06
139.59.59.75	attackbots	139.59.59.75 - - [06/Oct/2020:20:12:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 03:56:44
139.59.5.179	attack	CMS (WordPress or Joomla) login attempt.	2020-10-06 20:11:48
139.59.59.75	attackbots	139.59.59.75 is unauthorized and has been banned by fail2ban	2020-10-06 19:57:50
139.59.58.115	attackspam	TCP (SYN) 139.59.58.115:41161 -> port 16666, len 44	2020-10-04 05:48:16
139.59.58.115	attackspam	Port Scan ...	2020-10-03 13:31:50
139.59.59.102	attackspam	Port scan: Attack repeated for 24 hours	2020-10-02 06:56:36
139.59.59.102	attackspambots	Oct 1 17:23:04 localhost sshd\[6134\]: Invalid user mailer from 139.59.59.102 Oct 1 17:23:04 localhost sshd\[6134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 Oct 1 17:23:06 localhost sshd\[6134\]: Failed password for invalid user mailer from 139.59.59.102 port 58682 ssh2 Oct 1 17:26:56 localhost sshd\[6532\]: Invalid user Qwer123456 from 139.59.59.102 Oct 1 17:26:56 localhost sshd\[6532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 ...	2020-10-01 23:28:05
139.59.57.2	attack	2020-09-30T18:58:27.0319611495-001 sshd[24174]: Invalid user postgres from 139.59.57.2 port 38182 2020-09-30T18:58:28.9923601495-001 sshd[24174]: Failed password for invalid user postgres from 139.59.57.2 port 38182 ssh2 2020-09-30T19:01:48.3197441495-001 sshd[24371]: Invalid user jerry from 139.59.57.2 port 33216 2020-09-30T19:01:48.3238011495-001 sshd[24371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.57.2 2020-09-30T19:01:48.3197441495-001 sshd[24371]: Invalid user jerry from 139.59.57.2 port 33216 2020-09-30T19:01:50.2062181495-001 sshd[24371]: Failed password for invalid user jerry from 139.59.57.2 port 33216 ssh2 ...	2020-10-01 07:35:24
139.59.59.102	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-29 03:29:55
139.59.57.64	attackspambots	139.59.57.64 - - [16/Sep/2020:04:48:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 20:27:08
139.59.57.64	attackspam	139.59.57.64 - - [16/Sep/2020:04:48:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 12:59:04
139.59.59.102	attack	$f2bV_matches	2020-09-16 12:38:29
139.59.57.64	attackspambots	139.59.57.64 - - [15/Sep/2020:18:01:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [15/Sep/2020:18:01:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1929 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [15/Sep/2020:18:01:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 04:44:36
139.59.59.102	attackbotsspam	Brute-force attempt banned	2020-09-16 04:25:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.5.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5339
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.5.143.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 136 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:38:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 143.5.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 143.5.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.114.151.87	attack	$f2bV_matches	2020-02-16 05:06:18
188.237.50.113	attackbots	Honeypot attack, port: 445, PTR: host-static-188-237-50-113.moldtelecom.md.	2020-02-16 04:53:13
122.51.154.172	attackspam	Feb 15 21:24:03 server sshd[185416]: Failed password for invalid user zao from 122.51.154.172 port 47042 ssh2 Feb 15 21:37:18 server sshd[185779]: Failed password for invalid user power from 122.51.154.172 port 34004 ssh2 Feb 15 21:40:28 server sshd[185921]: Failed password for invalid user ghost from 122.51.154.172 port 60130 ssh2	2020-02-16 04:59:06
51.91.212.80	attackspambots	firewall-block, port(s): 8088/tcp	2020-02-16 05:00:38
118.37.91.137	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-16 05:11:15
145.239.133.204	spambotsattack	Włamywacz na konto Fb	2020-02-16 04:42:04
222.186.173.215	attackspam	Feb 15 20:49:33 124388 sshd[8477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Feb 15 20:49:35 124388 sshd[8477]: Failed password for root from 222.186.173.215 port 48046 ssh2 Feb 15 20:49:52 124388 sshd[8477]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 48046 ssh2 [preauth] Feb 15 20:49:57 124388 sshd[8479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Feb 15 20:49:59 124388 sshd[8479]: Failed password for root from 222.186.173.215 port 44646 ssh2	2020-02-16 04:58:42
177.183.60.133	attackspam	1581774476 - 02/15/2020 14:47:56 Host: 177.183.60.133/177.183.60.133 Port: 445 TCP Blocked	2020-02-16 04:57:32
210.75.253.243	attackspam	Feb 5 02:40:42 ms-srv sshd[539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.75.253.243 Feb 5 02:40:44 ms-srv sshd[539]: Failed password for invalid user jedit from 210.75.253.243 port 14694 ssh2	2020-02-16 04:58:15
80.20.49.213	attackspam	1581774465 - 02/15/2020 14:47:45 Host: 80.20.49.213/80.20.49.213 Port: 445 TCP Blocked	2020-02-16 05:05:54
46.101.88.10	attackbotsspam	Feb 15 21:21:38 srv206 sshd[4570]: Invalid user admin from 46.101.88.10 Feb 15 21:21:38 srv206 sshd[4570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=crushdigital.co.uk Feb 15 21:21:38 srv206 sshd[4570]: Invalid user admin from 46.101.88.10 Feb 15 21:21:40 srv206 sshd[4570]: Failed password for invalid user admin from 46.101.88.10 port 53376 ssh2 ...	2020-02-16 04:56:23
89.197.95.194	attackspam	Feb 11 12:46:34 kmh-wmh-002-nbg03 sshd[20173]: Invalid user vqy from 89.197.95.194 port 60164 Feb 11 12:46:34 kmh-wmh-002-nbg03 sshd[20173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.197.95.194 Feb 11 12:46:36 kmh-wmh-002-nbg03 sshd[20173]: Failed password for invalid user vqy from 89.197.95.194 port 60164 ssh2 Feb 11 12:46:36 kmh-wmh-002-nbg03 sshd[20173]: Received disconnect from 89.197.95.194 port 60164:11: Bye Bye [preauth] Feb 11 12:46:36 kmh-wmh-002-nbg03 sshd[20173]: Disconnected from 89.197.95.194 port 60164 [preauth] Feb 11 12:52:33 kmh-wmh-002-nbg03 sshd[20760]: Invalid user vux from 89.197.95.194 port 48166 Feb 11 12:52:33 kmh-wmh-002-nbg03 sshd[20760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.197.95.194 Feb 11 12:52:35 kmh-wmh-002-nbg03 sshd[20760]: Failed password for invalid user vux from 89.197.95.194 port 48166 ssh2 Feb 11 12:52:35 kmh-wmh-002-nbg03 sshd[20........ -------------------------------	2020-02-16 05:02:13
134.73.51.254	attack	Postfix RBL failed	2020-02-16 04:39:40
115.75.253.204	attack	Automatic report - Port Scan Attack	2020-02-16 05:02:38
45.115.6.251	attack	Port scan (80/tcp)	2020-02-16 05:07:24

Recently Reported IPs

139.59.5.119	139.59.5.224	139.59.5.5	118.254.202.6
139.59.50.100	139.59.50.85	139.59.50.96	139.59.51.139
139.59.51.109	139.59.51.163	118.254.202.61	118.254.202.71
118.254.202.73	139.59.65.132	139.59.65.223	139.59.64.9
139.59.65.11	139.59.64.214	139.59.65.209	139.59.65.160