139.59.5.224 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.5.179	attack	139.59.5.179 - - [06/Oct/2020:19:11:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:33 +0100] "POST /wp-login.php HTTP/1.1" 200 2441 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 04:09:06
139.59.59.75	attackbots	139.59.59.75 - - [06/Oct/2020:20:12:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 03:56:44
139.59.5.179	attack	CMS (WordPress or Joomla) login attempt.	2020-10-06 20:11:48
139.59.59.75	attackbots	139.59.59.75 is unauthorized and has been banned by fail2ban	2020-10-06 19:57:50
139.59.58.115	attackspam	TCP (SYN) 139.59.58.115:41161 -> port 16666, len 44	2020-10-04 05:48:16
139.59.58.115	attackspam	Port Scan ...	2020-10-03 13:31:50
139.59.59.102	attackspam	Port scan: Attack repeated for 24 hours	2020-10-02 06:56:36
139.59.59.102	attackspambots	Oct 1 17:23:04 localhost sshd\[6134\]: Invalid user mailer from 139.59.59.102 Oct 1 17:23:04 localhost sshd\[6134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 Oct 1 17:23:06 localhost sshd\[6134\]: Failed password for invalid user mailer from 139.59.59.102 port 58682 ssh2 Oct 1 17:26:56 localhost sshd\[6532\]: Invalid user Qwer123456 from 139.59.59.102 Oct 1 17:26:56 localhost sshd\[6532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 ...	2020-10-01 23:28:05
139.59.57.2	attack	2020-09-30T18:58:27.0319611495-001 sshd[24174]: Invalid user postgres from 139.59.57.2 port 38182 2020-09-30T18:58:28.9923601495-001 sshd[24174]: Failed password for invalid user postgres from 139.59.57.2 port 38182 ssh2 2020-09-30T19:01:48.3197441495-001 sshd[24371]: Invalid user jerry from 139.59.57.2 port 33216 2020-09-30T19:01:48.3238011495-001 sshd[24371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.57.2 2020-09-30T19:01:48.3197441495-001 sshd[24371]: Invalid user jerry from 139.59.57.2 port 33216 2020-09-30T19:01:50.2062181495-001 sshd[24371]: Failed password for invalid user jerry from 139.59.57.2 port 33216 ssh2 ...	2020-10-01 07:35:24
139.59.59.102	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-29 03:29:55
139.59.57.64	attackspambots	139.59.57.64 - - [16/Sep/2020:04:48:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 20:27:08
139.59.57.64	attackspam	139.59.57.64 - - [16/Sep/2020:04:48:19 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [16/Sep/2020:04:48:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 12:59:04
139.59.59.102	attack	$f2bV_matches	2020-09-16 12:38:29
139.59.57.64	attackspambots	139.59.57.64 - - [15/Sep/2020:18:01:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [15/Sep/2020:18:01:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1929 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.57.64 - - [15/Sep/2020:18:01:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 04:44:36
139.59.59.102	attackbotsspam	Brute-force attempt banned	2020-09-16 04:25:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.5.224
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60716
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.5.224.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 175 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:38:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 224.5.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 224.5.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.248.139.100	attack	1577025911 - 12/22/2019 15:45:11 Host: 201.248.139.100/201.248.139.100 Port: 445 TCP Blocked	2019-12-23 06:06:40
159.65.149.114	attack	Dec 22 16:06:46 pi sshd\[6566\]: Failed password for invalid user nfs from 159.65.149.114 port 53582 ssh2 Dec 22 16:12:55 pi sshd\[6880\]: Invalid user wq from 159.65.149.114 port 57728 Dec 22 16:12:55 pi sshd\[6880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.114 Dec 22 16:12:58 pi sshd\[6880\]: Failed password for invalid user wq from 159.65.149.114 port 57728 ssh2 Dec 22 16:19:04 pi sshd\[7173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.149.114 user=root ...	2019-12-23 06:38:40
139.219.5.139	attackbots	Dec 22 16:04:49 dallas01 sshd[10027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.5.139 Dec 22 16:04:51 dallas01 sshd[10027]: Failed password for invalid user test3 from 139.219.5.139 port 1664 ssh2 Dec 22 16:12:23 dallas01 sshd[15589]: Failed password for backup from 139.219.5.139 port 1664 ssh2	2019-12-23 06:20:08
103.138.41.74	attackspam	Dec 22 16:36:26 ncomp sshd[22649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.138.41.74 user=root Dec 22 16:36:28 ncomp sshd[22649]: Failed password for root from 103.138.41.74 port 47709 ssh2 Dec 22 16:44:25 ncomp sshd[22842]: Invalid user shiowling from 103.138.41.74	2019-12-23 06:45:03
145.239.94.191	attackspam	Dec 22 21:07:17 ns382633 sshd\[31813\]: Invalid user marie from 145.239.94.191 port 50650 Dec 22 21:07:17 ns382633 sshd\[31813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.94.191 Dec 22 21:07:19 ns382633 sshd\[31813\]: Failed password for invalid user marie from 145.239.94.191 port 50650 ssh2 Dec 22 21:17:47 ns382633 sshd\[1343\]: Invalid user tohkubo from 145.239.94.191 port 52970 Dec 22 21:17:47 ns382633 sshd\[1343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.94.191	2019-12-23 06:18:27
188.213.165.189	attack	Dec 22 23:07:15 sd-53420 sshd\[326\]: User root from 188.213.165.189 not allowed because none of user's groups are listed in AllowGroups Dec 22 23:07:15 sd-53420 sshd\[326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.213.165.189 user=root Dec 22 23:07:18 sd-53420 sshd\[326\]: Failed password for invalid user root from 188.213.165.189 port 37576 ssh2 Dec 22 23:12:17 sd-53420 sshd\[2232\]: User root from 188.213.165.189 not allowed because none of user's groups are listed in AllowGroups Dec 22 23:12:17 sd-53420 sshd\[2232\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.213.165.189 user=root ...	2019-12-23 06:27:22
45.248.71.28	attack	2019-12-22T22:30:37.042953shield sshd\[972\]: Invalid user vmadmin from 45.248.71.28 port 58242 2019-12-22T22:30:37.048470shield sshd\[972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.28 2019-12-22T22:30:38.841486shield sshd\[972\]: Failed password for invalid user vmadmin from 45.248.71.28 port 58242 ssh2 2019-12-22T22:36:05.859218shield sshd\[2758\]: Invalid user somani from 45.248.71.28 port 34742 2019-12-22T22:36:05.867563shield sshd\[2758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.71.28	2019-12-23 06:42:35
159.89.115.126	attackbotsspam	Dec 22 10:55:00 php1 sshd\[11517\]: Invalid user primana from 159.89.115.126 Dec 22 10:55:00 php1 sshd\[11517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 Dec 22 10:55:02 php1 sshd\[11517\]: Failed password for invalid user primana from 159.89.115.126 port 40092 ssh2 Dec 22 11:00:17 php1 sshd\[12344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 user=root Dec 22 11:00:19 php1 sshd\[12344\]: Failed password for root from 159.89.115.126 port 44984 ssh2	2019-12-23 06:33:45
223.166.128.176	attackspambots	Dec 21 19:35:54 foo sshd[14385]: Invalid user udell from 223.166.128.176 Dec 21 19:35:54 foo sshd[14385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.166.128.176 Dec 21 19:35:56 foo sshd[14385]: Failed password for invalid user udell from 223.166.128.176 port 51056 ssh2 Dec 21 19:35:57 foo sshd[14385]: Received disconnect from 223.166.128.176: 11: Bye Bye [preauth] Dec 21 19:52:27 foo sshd[14554]: Invalid user derossett from 223.166.128.176 Dec 21 19:52:27 foo sshd[14554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.166.128.176 Dec 21 19:52:29 foo sshd[14554]: Failed password for invalid user derossett from 223.166.128.176 port 47298 ssh2 Dec 21 19:52:30 foo sshd[14554]: Received disconnect from 223.166.128.176: 11: Bye Bye [preauth] Dec 21 19:56:53 foo sshd[14588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.166.128.176 user........ -------------------------------	2019-12-23 06:32:27
203.160.162.213	attack	Dec 22 22:46:14 cp sshd[1342]: Failed password for lp from 203.160.162.213 port 34068 ssh2 Dec 22 22:46:14 cp sshd[1342]: Failed password for lp from 203.160.162.213 port 34068 ssh2	2019-12-23 06:22:58
106.12.91.209	attackbotsspam	Dec 22 22:02:33 zeus sshd[30111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.91.209 Dec 22 22:02:36 zeus sshd[30111]: Failed password for invalid user server from 106.12.91.209 port 41742 ssh2 Dec 22 22:09:20 zeus sshd[30399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.91.209 Dec 22 22:09:22 zeus sshd[30399]: Failed password for invalid user gorrie from 106.12.91.209 port 35578 ssh2	2019-12-23 06:20:53
194.28.86.219	attack	k+ssh-bruteforce	2019-12-23 06:48:31
185.209.0.51	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-12-23 06:19:21
104.244.75.21	attack	Dec 22 21:12:38 srv206 sshd[25094]: Invalid user ubnt from 104.244.75.21 Dec 22 21:12:38 srv206 sshd[25094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=lux.w00t.space Dec 22 21:12:38 srv206 sshd[25094]: Invalid user ubnt from 104.244.75.21 Dec 22 21:12:41 srv206 sshd[25094]: Failed password for invalid user ubnt from 104.244.75.21 port 57048 ssh2 ...	2019-12-23 06:40:06
202.59.138.18	attackbotsspam	Unauthorized connection attempt from IP address 202.59.138.18 on Port 445(SMB)	2019-12-23 06:06:25

Recently Reported IPs

139.59.5.143	139.59.5.5	118.254.202.6	139.59.50.100
139.59.50.85	139.59.50.96	139.59.51.139	139.59.51.109
139.59.51.163	118.254.202.61	118.254.202.71	118.254.202.73
139.59.65.132	139.59.65.223	139.59.64.9	139.59.65.11
139.59.64.214	139.59.65.209	139.59.65.160	139.59.65.134