139.59.85.224 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.59.85.186	attack	detected by Fail2Ban	2020-08-28 07:49:44
139.59.85.41	attackbots	139.59.85.41 - - [25/Aug/2020:08:18:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [25/Aug/2020:08:18:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1819 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [25/Aug/2020:08:18:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [25/Aug/2020:08:18:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1816 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [25/Aug/2020:08:21:21 +0200] "GET /wp-login.php HTTP/1.1" 200 2010 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [25/Aug/2020:08:21:27 +0200] "POST /wp-login.php HTTP/1.1" 200 2143 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-08-25 14:30:30
139.59.85.41	attackbotsspam	Aug 21 22:23:55 10.23.102.230 wordpress(www.ruhnke.cloud)[73286]: Blocked authentication attempt for admin from 139.59.85.41 ...	2020-08-22 06:16:16
139.59.85.41	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-18 05:40:14
139.59.85.41	attackspam	Trolling for resource vulnerabilities	2020-08-15 15:23:33
139.59.85.41	attack	139.59.85.41 - - [09/Aug/2020:22:36:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1836 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [09/Aug/2020:22:37:03 +0100] "POST /wp-login.php HTTP/1.1" 200 1815 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [09/Aug/2020:22:37:04 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-10 07:49:49
139.59.85.41	attack	139.59.85.41 - - [03/Aug/2020:00:38:07 +0200] "GET /wp-login.php HTTP/1.1" 200 6398 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [03/Aug/2020:00:38:08 +0200] "POST /wp-login.php HTTP/1.1" 200 6649 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [03/Aug/2020:00:38:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-03 07:36:59
139.59.85.41	attackbotsspam	139.59.85.41 - - [27/Jul/2020:11:20:40 -0600] "GET /wp-login.php HTTP/1.1" 301 468 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-28 02:09:06
139.59.85.222	attackbotsspam	2020-07-25T17:10:35.834649hostname sshd[85216]: Failed password for invalid user unturned from 139.59.85.222 port 40820 ssh2 ...	2020-07-27 02:24:17
139.59.85.222	attack	Jul 23 15:49:50 vps sshd[406630]: Failed password for invalid user ftphome from 139.59.85.222 port 35700 ssh2 Jul 23 15:54:08 vps sshd[426790]: Invalid user katharina from 139.59.85.222 port 43684 Jul 23 15:54:08 vps sshd[426790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.85.222 Jul 23 15:54:10 vps sshd[426790]: Failed password for invalid user katharina from 139.59.85.222 port 43684 ssh2 Jul 23 15:58:36 vps sshd[446886]: Invalid user pal from 139.59.85.222 port 51668 ...	2020-07-24 03:10:50
139.59.85.41	attackspam	GET /wp-login.php HTTP/1.1	2020-07-23 03:19:29
139.59.85.41	attackbots	Automatic report - Brute Force attack using this IP address	2020-07-19 14:55:34
139.59.85.222	attackspam	Invalid user abuseio from 139.59.85.222 port 58344	2020-07-16 13:26:19
139.59.85.41	attack	[15/Jul/2020:15:01:41 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-16 02:29:09
139.59.85.41	attackspam	139.59.85.41 - - [14/Jul/2020:09:33:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1943 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [14/Jul/2020:09:33:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1973 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.85.41 - - [14/Jul/2020:09:33:34 +0100] "POST /wp-login.php HTTP/1.1" 200 1943 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-14 18:03:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.85.224
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1531
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.85.224.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:22:20 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 224.85.59.139.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 224.85.59.139.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.89.236.195	attackspam	SSH/22 MH Probe, BF, Hack -	2019-08-29 16:40:51
165.227.214.163	attackspambots	Invalid user db4web from 165.227.214.163 port 63209	2019-08-29 16:32:09
193.124.186.111	attackspam	Aug 29 08:57:21 debian sshd\[8988\]: Invalid user guest from 193.124.186.111 port 47798 Aug 29 08:57:21 debian sshd\[8988\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.124.186.111 ...	2019-08-29 16:11:25
181.48.116.50	attackspam	Invalid user server from 181.48.116.50 port 53650	2019-08-29 16:40:02
103.96.75.176	attack	Aug 29 09:33:42 host sshd\[30724\]: Invalid user admin from 103.96.75.176 port 43114 Aug 29 09:33:42 host sshd\[30724\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.96.75.176 ...	2019-08-29 16:13:58
76.27.163.60	attackspam	Aug 29 09:43:56 ns3367391 sshd\[6830\]: Failed password for root from 76.27.163.60 port 53662 ssh2 Aug 29 09:51:23 ns3367391 sshd\[9683\]: Failed password for root from 76.27.163.60 port 45508 ssh2 ...	2019-08-29 16:17:21
120.132.31.165	attackspam	Aug 28 22:24:36 php1 sshd\[7177\]: Invalid user center from 120.132.31.165 Aug 28 22:24:36 php1 sshd\[7177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.31.165 Aug 28 22:24:38 php1 sshd\[7177\]: Failed password for invalid user center from 120.132.31.165 port 36480 ssh2 Aug 28 22:28:06 php1 sshd\[7500\]: Invalid user qiao from 120.132.31.165 Aug 28 22:28:06 php1 sshd\[7500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.31.165	2019-08-29 16:34:42
218.4.169.82	attack	$f2bV_matches	2019-08-29 16:44:33
142.93.155.194	attackspam	Brute force SMTP login attempted. ...	2019-08-29 16:42:19
113.6.165.20	attack	Unauthorised access (Aug 29) SRC=113.6.165.20 LEN=40 TTL=49 ID=37486 TCP DPT=8080 WINDOW=7425 SYN Unauthorised access (Aug 29) SRC=113.6.165.20 LEN=40 TTL=49 ID=11106 TCP DPT=8080 WINDOW=35496 SYN Unauthorised access (Aug 28) SRC=113.6.165.20 LEN=40 TTL=49 ID=49528 TCP DPT=8080 WINDOW=58030 SYN	2019-08-29 16:54:02
216.14.163.171	attack	Invalid user bing from 216.14.163.171 port 39610	2019-08-29 16:42:54
188.166.109.87	attackspambots	Aug 29 03:51:35 [munged] sshd[15805]: Invalid user magic from 188.166.109.87 port 54736 Aug 29 03:51:35 [munged] sshd[15805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.109.87	2019-08-29 16:53:14
202.117.7.130	attackspam	Invalid user postgres from 202.117.7.130 port 35214	2019-08-29 16:22:30
181.49.117.136	attack	Aug 29 02:34:28 legacy sshd[21510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.136 Aug 29 02:34:30 legacy sshd[21510]: Failed password for invalid user shield from 181.49.117.136 port 40600 ssh2 Aug 29 02:38:59 legacy sshd[21588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.117.136 ...	2019-08-29 16:30:29
186.206.136.203	attack	Aug 29 09:52:52 XXX sshd[59414]: Invalid user nagios1 from 186.206.136.203 port 50432	2019-08-29 16:08:09

Recently Reported IPs

14.226.232.117	40.70.189.234	213.199.225.40	172.105.221.106
190.201.25.106	187.162.135.195	194.99.25.182	187.167.182.182
196.221.203.68	182.123.193.186	27.47.38.148	112.225.195.200
180.124.86.121	137.184.219.11	212.8.247.243	91.138.129.30
187.0.182.229	91.86.33.222	113.80.96.18	187.162.39.217