139.59.59.170 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.59.75	attackbots	139.59.59.75 - - [06/Oct/2020:20:12:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2141 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2173 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [06/Oct/2020:20:12:58 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 03:56:44
139.59.59.75	attackbots	139.59.59.75 is unauthorized and has been banned by fail2ban	2020-10-06 19:57:50
139.59.59.102	attackspam	Port scan: Attack repeated for 24 hours	2020-10-02 06:56:36
139.59.59.102	attackspambots	Oct 1 17:23:04 localhost sshd\[6134\]: Invalid user mailer from 139.59.59.102 Oct 1 17:23:04 localhost sshd\[6134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 Oct 1 17:23:06 localhost sshd\[6134\]: Failed password for invalid user mailer from 139.59.59.102 port 58682 ssh2 Oct 1 17:26:56 localhost sshd\[6532\]: Invalid user Qwer123456 from 139.59.59.102 Oct 1 17:26:56 localhost sshd\[6532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 ...	2020-10-01 23:28:05
139.59.59.102	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-29 03:29:55
139.59.59.102	attack	$f2bV_matches	2020-09-16 12:38:29
139.59.59.102	attackbotsspam	Brute-force attempt banned	2020-09-16 04:25:14
139.59.59.102	attack	Sep 9 10:44:30 h2646465 sshd[23126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 user=root Sep 9 10:44:33 h2646465 sshd[23126]: Failed password for root from 139.59.59.102 port 49098 ssh2 Sep 9 12:44:09 h2646465 sshd[6731]: Invalid user hscroot from 139.59.59.102 Sep 9 12:44:09 h2646465 sshd[6731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 Sep 9 12:44:09 h2646465 sshd[6731]: Invalid user hscroot from 139.59.59.102 Sep 9 12:44:12 h2646465 sshd[6731]: Failed password for invalid user hscroot from 139.59.59.102 port 36724 ssh2 Sep 9 12:48:10 h2646465 sshd[7310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.59.102 user=root Sep 9 12:48:12 h2646465 sshd[7310]: Failed password for root from 139.59.59.102 port 40636 ssh2 Sep 9 12:52:02 h2646465 sshd[7864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho	2020-09-09 19:49:17
139.59.59.102	attackspam	TCP (SYN) 139.59.59.102:44187 -> port 22442, len 44	2020-09-09 13:47:14
139.59.59.102	attack	2020-09-08T11:56:00.428742morrigan.ad5gb.com sshd[2601631]: Failed password for root from 139.59.59.102 port 53478 ssh2 2020-09-08T11:56:02.531158morrigan.ad5gb.com sshd[2601631]: Disconnected from authenticating user root 139.59.59.102 port 53478 [preauth]	2020-09-09 05:59:29
139.59.59.75	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-09-03 16:38:54
139.59.59.75	attack	139.59.59.75 - - [30/Aug/2020:18:43:01 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [30/Aug/2020:18:43:07 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [30/Aug/2020:18:43:13 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [30/Aug/2020:18:43:13 +0200] "POST /wp-login.php HTTP/1.1" 200 2697 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [30/Aug/2020:18:43:19 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.59.75 - - [30/Aug/2020:18:43:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2696 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-08-31 03:02:53
139.59.59.102	attackspam	Invalid user alberto from 139.59.59.102 port 58428	2020-08-30 20:00:18
139.59.59.102	attackbotsspam	Aug 29 18:33:45 logopedia-1vcpu-1gb-nyc1-01 sshd[114431]: Invalid user hoge from 139.59.59.102 port 52198 ...	2020-08-30 07:36:15
139.59.59.187	attackbots	Invalid user tester from 139.59.59.187 port 52896	2020-08-30 07:00:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.59.170
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43943
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.59.170.			IN	A

;; AUTHORITY SECTION:
.			338	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:41:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 170.59.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 170.59.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.31.124.117	attackspambots	Mar 26 15:19:27 ns382633 sshd\[3146\]: Invalid user hldm from 116.31.124.117 port 54046 Mar 26 15:19:27 ns382633 sshd\[3146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.31.124.117 Mar 26 15:19:28 ns382633 sshd\[3146\]: Failed password for invalid user hldm from 116.31.124.117 port 54046 ssh2 Mar 26 15:23:34 ns382633 sshd\[4240\]: Invalid user iv from 116.31.124.117 port 48578 Mar 26 15:23:34 ns382633 sshd\[4240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.31.124.117	2020-03-27 04:09:56
80.82.77.234	attack	Mar 26 17:07:57 debian-2gb-nbg1-2 kernel: \[7497952.449885\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.77.234 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=27370 PROTO=TCP SPT=47333 DPT=34889 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-27 04:34:48
27.34.90.24	attackbots	Mar 26 13:16:36 * sshd[22284]: Invalid user admin from 27.34.90.24 Mar 26 13:16:36 * sshd[22284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.90.24 Mar 26 13:16:38 * sshd[22284]: Failed password for invalid user admin from 27.34.90.24 port 49474 ssh2 Mar 26 13:16:38 * sshd[22284]: Connection closed by 27.34.90.24 [preauth] Mar 26 13:16:42 * sshd[22286]: Invalid user admin from 27.34.90.24 Mar 26 13:16:42 * sshd[22286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.90.24 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.34.90.24	2020-03-27 04:06:22
111.231.113.236	attackspambots	Invalid user kirk from 111.231.113.236 port 57732	2020-03-27 04:14:43
95.234.236.101	attackbots	Honeypot attack, port: 81, PTR: host101-236-dynamic.234-95-r.retail.telecomitalia.it.	2020-03-27 04:32:39
203.223.189.155	attackbots	SSH Bruteforce attack	2020-03-27 03:57:58
92.118.161.1	attackbots	ICMP MH Probe, Scan /Distributed -	2020-03-27 04:05:23
187.102.60.233	attack	Automatic report - Port Scan Attack	2020-03-27 04:21:29
210.1.19.131	attack	Mar 26 17:38:26 ns392434 sshd[372]: Invalid user shiqian from 210.1.19.131 port 47758 Mar 26 17:38:26 ns392434 sshd[372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.1.19.131 Mar 26 17:38:26 ns392434 sshd[372]: Invalid user shiqian from 210.1.19.131 port 47758 Mar 26 17:38:28 ns392434 sshd[372]: Failed password for invalid user shiqian from 210.1.19.131 port 47758 ssh2 Mar 26 17:46:52 ns392434 sshd[673]: Invalid user inter from 210.1.19.131 port 55814 Mar 26 17:46:52 ns392434 sshd[673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.1.19.131 Mar 26 17:46:52 ns392434 sshd[673]: Invalid user inter from 210.1.19.131 port 55814 Mar 26 17:46:53 ns392434 sshd[673]: Failed password for invalid user inter from 210.1.19.131 port 55814 ssh2 Mar 26 17:51:28 ns392434 sshd[702]: Invalid user couchdb from 210.1.19.131 port 34992	2020-03-27 04:08:15
95.83.244.119	attackbotsspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-03-27 04:13:01
171.227.73.70	attackbots	Automatic report - Port Scan Attack	2020-03-27 04:25:19
69.229.6.2	attackspam	Brute-force attempt banned	2020-03-27 04:17:17
2.139.215.255	attackspam	sshd jail - ssh hack attempt	2020-03-27 03:59:04
109.69.13.179	attackbots	Honeypot attack, port: 5555, PTR: 109-69-13-179-guifi.ip4.guifi.net.	2020-03-27 04:07:48
138.197.89.186	attackspam	Mar 27 00:43:58 webhost01 sshd[27220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.186 Mar 27 00:43:59 webhost01 sshd[27220]: Failed password for invalid user kip from 138.197.89.186 port 50938 ssh2 ...	2020-03-27 04:07:13

Recently Reported IPs

139.59.58.252	139.59.59.50	139.59.6.114	139.59.6.178
139.59.59.51	139.59.6.154	139.59.60.165	139.59.63.182
139.59.65.141	139.59.64.151	139.59.65.239	139.59.56.7
139.59.64.47	139.59.66.68	139.59.71.115	139.59.71.26
139.59.74.118	139.59.71.142	139.59.76.2	139.59.74.17