139.59.5.183 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.5.179	attack	139.59.5.179 - - [06/Oct/2020:19:11:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:33 +0100] "POST /wp-login.php HTTP/1.1" 200 2441 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 04:09:06
139.59.59.75	attackbots	139.59.59.75 - - [06/Oct/2020:20:12:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 03:56:44
139.59.5.179	attack	CMS (WordPress or Joomla) login attempt.	2020-10-06 20:11:48
139.59.59.75	attackbots	139.59.59.75 is unauthorized and has been banned by fail2ban	2020-10-06 19:57:50
139.59.58.115	attackspam	TCP (SYN) 139.59.58.115:41161 -> port 16666, len 44	2020-10-04 05:48:16
139.59.58.115	attackspam	Port Scan ...	2020-10-03 13:31:50
139.59.59.102	attackspam	Port scan: Attack repeated for 24 hours	2020-10-02 06:56:36
139.59.59.102	attackspambots	Oct 1 17:23:04 localhost sshd\[6134\]: Invalid user mailer from 139.59.59.102 Oct 1 17:23:04 localhost sshd\[6134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 Oct 1 17:23:06 localhost sshd\[6134\]: Failed password for invalid user mailer from 139.59.59.102 port 58682 ssh2 Oct 1 17:26:56 localhost sshd\[6532\]: Invalid user Qwer123456 from 139.59.59.102 Oct 1 17:26:56 localhost sshd\[6532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 ...	2020-10-01 23:28:05
139.59.57.2	attack	2020-09-30T18:58:27.0319611495-001 sshd[24174]: Invalid user postgres from 139.59.57.2 port 38182 2020-09-30T18:58:28.9923601495-001 sshd[24174]: Failed password for invalid user postgres from 139.59.57.2 port 38182 ssh2 2020-09-30T19:01:48.3197441495-001 sshd[24371]: Invalid user jerry from 139.59.57.2 port 33216 2020-09-30T19:01:48.3238011495-001 sshd[24371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.57.2 2020-09-30T19:01:48.3197441495-001 sshd[24371]: Invalid user jerry from 139.59.57.2 port 33216 2020-09-30T19:01:50.2062181495-001 sshd[24371]: Failed password for invalid user jerry from 139.59.57.2 port 33216 ssh2 ...	2020-10-01 07:35:24
139.59.59.102	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-29 03:29:55
139.59.57.64	attackspambots	139.59.57.64 - - [16/Sep/2020:04:48:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 20:27:08
139.59.57.64	attackspam	139.59.57.64 - - [16/Sep/2020:04:48:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 12:59:04
139.59.59.102	attack	$f2bV_matches	2020-09-16 12:38:29
139.59.57.64	attackspambots	139.59.57.64 - - [15/Sep/2020:18:01:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [15/Sep/2020:18:01:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1929 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [15/Sep/2020:18:01:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 04:44:36
139.59.59.102	attackbotsspam	Brute-force attempt banned	2020-09-16 04:25:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.5.183
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2890
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.5.183.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 79 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 05:10:46 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 183.5.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 183.5.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.190.92	attack	Unauthorized connection attempt detected from IP address 222.186.190.92 to port 22	2020-02-28 19:34:52
217.111.239.37	attackspambots	Feb 28 12:33:32 silence02 sshd[4468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.111.239.37 Feb 28 12:33:34 silence02 sshd[4468]: Failed password for invalid user deb from 217.111.239.37 port 48466 ssh2 Feb 28 12:40:37 silence02 sshd[4821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.111.239.37	2020-02-28 19:51:24
94.243.57.138	attackspambots	Honeypot attack, port: 445, PTR: subscriber-94-243-57-138.mts-chita.ru.	2020-02-28 19:55:10
107.170.244.110	attackbotsspam	Feb 28 01:59:14 hanapaa sshd\[25618\]: Invalid user linqj from 107.170.244.110 Feb 28 01:59:14 hanapaa sshd\[25618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.244.110 Feb 28 01:59:17 hanapaa sshd\[25618\]: Failed password for invalid user linqj from 107.170.244.110 port 35584 ssh2 Feb 28 02:04:11 hanapaa sshd\[26057\]: Invalid user zhanghuahao from 107.170.244.110 Feb 28 02:04:11 hanapaa sshd\[26057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.244.110	2020-02-28 20:10:27
104.131.58.179	attack	104.131.58.179 - - [28/Feb/2020:12:38:31 +0300] "POST /wp-login.php HTTP/1.1" 200 2790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-02-28 20:02:24
206.189.72.217	attackbots	Feb 28 12:19:35 sso sshd[5501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.72.217 Feb 28 12:19:38 sso sshd[5501]: Failed password for invalid user zhucm from 206.189.72.217 port 38396 ssh2 ...	2020-02-28 19:30:45
27.77.92.80	attackspam	Unauthorized connection attempt detected from IP address 27.77.92.80 to port 23	2020-02-28 20:03:29
106.14.158.154	attack	/info/license.txt	2020-02-28 19:49:50
95.85.97.254	attackspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-28 20:04:05
45.143.220.164	attack	[2020-02-28 06:45:44] NOTICE[1148] chan_sip.c: Registration from '"6001" ' failed for '45.143.220.164:5515' - Wrong password [2020-02-28 06:45:44] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-28T06:45:44.239-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="6001",SessionID="0x7fd82c4d9f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.164/5515",Challenge="7f26d9f1",ReceivedChallenge="7f26d9f1",ReceivedHash="2e086fae27d0fb766877a387195cd6b9" [2020-02-28 06:45:44] NOTICE[1148] chan_sip.c: Registration from '"6001" ' failed for '45.143.220.164:5515' - Wrong password [2020-02-28 06:45:44] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-28T06:45:44.341-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="6001",SessionID="0x7fd82c538db8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP ...	2020-02-28 19:50:56
103.212.211.140	attack	1582865411 - 02/28/2020 05:50:11 Host: 103.212.211.140/103.212.211.140 Port: 445 TCP Blocked	2020-02-28 19:35:57
92.185.167.201	attackspam	Feb 28 12:47:37 MK-Soft-VM3 sshd[18162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.185.167.201 Feb 28 12:47:39 MK-Soft-VM3 sshd[18162]: Failed password for invalid user testuser from 92.185.167.201 port 52122 ssh2 ...	2020-02-28 20:07:57
178.219.123.76	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 19:32:01
192.241.237.107	attack	[SMTP/25/465/587 Probe] *(02281312)	2020-02-28 20:01:52
167.71.242.140	attackspam	Feb 27 20:49:10 web1 sshd\[25668\]: Invalid user info from 167.71.242.140 Feb 27 20:49:10 web1 sshd\[25668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140 Feb 27 20:49:12 web1 sshd\[25668\]: Failed password for invalid user info from 167.71.242.140 port 38256 ssh2 Feb 27 20:52:06 web1 sshd\[25936\]: Invalid user server from 167.71.242.140 Feb 27 20:52:06 web1 sshd\[25936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.242.140	2020-02-28 19:58:24

Recently Reported IPs

172.252.224.165	197.92.134.235	123.186.68.135	185.95.185.41
193.233.83.212	109.191.19.42	91.188.246.112	45.10.167.248
104.248.62.184	107.189.13.122	45.179.189.126	27.213.4.141
88.243.194.118	43.154.164.175	1.186.55.161	196.200.133.25
1.117.24.23	50.234.220.66	124.7.254.85	79.68.44.255