Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Bengaluru

Region: Karnataka

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
139.59.91.254 attackspambots
Jul 19 18:06:47 ajax sshd[11849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.254 
Jul 19 18:06:49 ajax sshd[11849]: Failed password for invalid user postgres from 139.59.91.254 port 48234 ssh2
2020-07-20 01:26:19
139.59.91.23 attackbots
Invalid user admin from 139.59.91.23 port 53526
2020-04-17 14:06:35
139.59.91.23 attack
Apr 16 13:44:27 www_kotimaassa_fi sshd[16132]: Failed password for root from 139.59.91.23 port 55098 ssh2
...
2020-04-17 01:24:59
139.59.91.22 attackspam
Jan 19 22:08:06 vpn01 sshd[29170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.22
Jan 19 22:08:08 vpn01 sshd[29170]: Failed password for invalid user hosting from 139.59.91.22 port 51236 ssh2
...
2020-01-20 05:54:07
139.59.91.165 attackspambots
Unauthorized connection attempt detected from IP address 139.59.91.165 to port 2220 [J]
2020-01-15 09:26:31
139.59.91.165 attackspam
Unauthorized connection attempt detected from IP address 139.59.91.165 to port 2220 [J]
2020-01-14 20:38:18
139.59.91.176 attackspam
Nov 28 13:11:23 vpn01 sshd[12983]: Failed password for root from 139.59.91.176 port 56023 ssh2
...
2019-11-28 22:31:15
139.59.91.176 attackspambots
Nov 27 15:03:21 vpn01 sshd[26949]: Failed password for root from 139.59.91.176 port 38403 ssh2
...
2019-11-27 22:08:31
139.59.91.215 attackspam
2019-11-24T07:59:53.405861matrix.arvenenaske.de sshd[358984]: Invalid user mysql from 139.59.91.215 port 37302
2019-11-24T07:59:53.410726matrix.arvenenaske.de sshd[358984]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.215 user=mysql
2019-11-24T07:59:53.411274matrix.arvenenaske.de sshd[358984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.215
2019-11-24T07:59:53.405861matrix.arvenenaske.de sshd[358984]: Invalid user mysql from 139.59.91.215 port 37302
2019-11-24T07:59:55.437052matrix.arvenenaske.de sshd[358984]: Failed password for invalid user mysql from 139.59.91.215 port 37302 ssh2
2019-11-24T08:06:20.413519matrix.arvenenaske.de sshd[359101]: Invalid user adhhostname from 139.59.91.215 port 50514
2019-11-24T08:06:20.418255matrix.arvenenaske.de sshd[359101]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.215 user=adhh........
------------------------------
2019-11-25 02:46:00
139.59.91.176 attackbots
detected by Fail2Ban
2019-11-10 19:30:54
139.59.91.176 attackspam
Nov  7 08:26:32 vpn01 sshd[15260]: Failed password for root from 139.59.91.176 port 44660 ssh2
...
2019-11-07 20:11:37
139.59.91.139 attackspambots
(sshd) Failed SSH login from 139.59.91.139 (-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 08:37:12 chookity sshd[30151]: Did not receive identification string from 139.59.91.139 port 60946
Sep 26 08:40:19 chookity sshd[30312]: Invalid user doctor from 139.59.91.139 port 33116
Sep 26 08:40:47 chookity sshd[30323]: Invalid user virus from 139.59.91.139 port 48666
Sep 26 08:41:15 chookity sshd[30326]: Invalid user windows from 139.59.91.139 port 37018
Sep 26 08:41:42 chookity sshd[30334]: Invalid user dummy from 139.59.91.139 port 52776
2019-09-26 21:00:58
139.59.91.139 attackspambots
Sep  4 02:20:00 vpn01 sshd\[21555\]: Invalid user quan from 139.59.91.139
Sep  4 02:20:00 vpn01 sshd\[21555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.139
Sep  4 02:20:02 vpn01 sshd\[21555\]: Failed password for invalid user quan from 139.59.91.139 port 53652 ssh2
2019-09-04 11:00:48
139.59.91.139 attackbots
Sep  3 04:30:17 lcl-usvr-02 sshd[11852]: Invalid user patrick from 139.59.91.139 port 52970
Sep  3 04:30:17 lcl-usvr-02 sshd[11852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.139
Sep  3 04:30:17 lcl-usvr-02 sshd[11852]: Invalid user patrick from 139.59.91.139 port 52970
Sep  3 04:30:18 lcl-usvr-02 sshd[11852]: Failed password for invalid user patrick from 139.59.91.139 port 52970 ssh2
Sep  3 04:34:49 lcl-usvr-02 sshd[12866]: Invalid user test from 139.59.91.139 port 51652
...
2019-09-03 05:51:44
139.59.91.139 attack
Aug 15 10:51:50 localhost sshd[25589]: Invalid user est from 139.59.91.139 port 46252
Aug 15 10:51:50 localhost sshd[25589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.91.139
Aug 15 10:51:50 localhost sshd[25589]: Invalid user est from 139.59.91.139 port 46252
Aug 15 10:51:52 localhost sshd[25589]: Failed password for invalid user est from 139.59.91.139 port 46252 ssh2
...
2019-08-15 16:18:48
Whois info:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       139.59.0.0 - 139.59.255.255
CIDR:           139.59.0.0/16
NetName:        APNIC-ERX-139-59-0-0
NetHandle:      NET-139-59-0-0-1
Parent:         NET139 (NET-139-0-0-0-0)
NetType:        Early Registrations, Transferred to APNIC
OriginAS:       
Organization:   Asia Pacific Network Information Centre (APNIC)
RegDate:        2004-03-03
Updated:        2009-10-08
Comment:        This IP address range is not registered in the ARIN database.
Comment:        This range was transferred to the APNIC Whois Database as
Comment:        part of the ERX (Early Registration Transfer) project.
Comment:        For details, refer to the APNIC Whois Database via
Comment:        WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:        
Comment:        ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment:        for the Asia Pacific region.  APNIC does not operate networks
Comment:        using this IP address range and is not able to investigate
Comment:        spam or abuse reports relating to these addresses.  For more
Comment:        help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref:            https://rdap.arin.net/registry/ip/139.59.0.0

ResourceLink:  https://apps.db.ripe.net/db-web-ui/query
ResourceLink:  whois.apnic.net


OrgName:        Asia Pacific Network Information Centre
OrgId:          APNIC
Address:        PO Box 3646
City:           South Brisbane
StateProv:      QLD
PostalCode:     4101
Country:        AU
RegDate:        
Updated:        2012-01-24
Ref:            https://rdap.arin.net/registry/entity/APNIC

ReferralServer:  whois://whois.apnic.net
ResourceLink:  http://wq.apnic.net/whois-search/static/search.html

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName:   APNIC Whois Contact
OrgAbusePhone:  +61 7 3858 3188 
OrgAbuseEmail:  search-apnic-not-arin@apnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle: AWC12-ARIN
OrgTechName:   APNIC Whois Contact
OrgTechPhone:  +61 7 3858 3188 
OrgTechEmail:  search-apnic-not-arin@apnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '139.59.80.0 - 139.59.95.255'

% Abuse contact for '139.59.80.0 - 139.59.95.255' is 'abuse@digitalocean.com'

inetnum:        139.59.80.0 - 139.59.95.255
netname:        DIGITALOCEAN-AP
descr:          DigitalOcean, LLC
country:        IN
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
abuse-c:        AD699-AP
status:         ASSIGNED NON-PORTABLE
mnt-by:         MAINT-DIGITALOCEAN-AP
mnt-irt:        IRT-DIGITALOCEAN-AP
last-modified:  2020-05-31T21:36:27Z
source:         APNIC

irt:            IRT-DIGITALOCEAN-AP
address:        105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
e-mail:         noc@digitalocean.com
abuse-mailbox:  abuse@digitalocean.com
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
auth:           # Filtered
remarks:        abuse@digitalocean.com was validated on 2026-03-19
remarks:        noc@digitalocean.com was validated on 2026-03-25
mnt-by:         MAINT-DIGITALOCEAN-AP
last-modified:  2026-03-25T17:24:46Z
source:         APNIC

role:           ABUSE DIGITALOCEANAP
country:        ZZ
address:        105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
phone:          +000000000
e-mail:         noc@digitalocean.com
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
nic-hdl:        AD699-AP
remarks:        Generated from irt object IRT-DIGITALOCEAN-AP
remarks:        abuse@digitalocean.com was validated on 2026-03-19
remarks:        noc@digitalocean.com was validated on 2026-03-25
abuse-mailbox:  abuse@digitalocean.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-25T17:25:11Z
source:         APNIC

role:           Digital Ocean Inc administrator
address:        105 Edgeview Drive, Suite 425, Broomfield, Colorado 80021
country:        US
phone:          +1 646-827-4366
fax-no:         +1 646-827-4366
e-mail:         abuse@digitalocean.com
admin-c:        DOIA2-AP
tech-c:         DOIA2-AP
nic-hdl:        DOIA2-AP
mnt-by:         MAINT-DIGITALOCEAN-AP
last-modified:  2025-04-11T18:24:27Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.59.91.235
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61129
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.59.91.235.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026070502 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 06 04:30:40 CST 2026
;; MSG SIZE  rcvd: 106
Host info
Host 235.91.59.139.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 235.91.59.139.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
194.1.168.36 attackspambots
Feb 21 22:52:50 ns3042688 sshd\[13947\]: Invalid user postgres from 194.1.168.36
Feb 21 22:52:50 ns3042688 sshd\[13947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.1.168.36 
Feb 21 22:52:52 ns3042688 sshd\[13947\]: Failed password for invalid user postgres from 194.1.168.36 port 34560 ssh2
Feb 21 22:54:39 ns3042688 sshd\[14030\]: Invalid user ocean from 194.1.168.36
Feb 21 22:54:39 ns3042688 sshd\[14030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.1.168.36 
...
2020-02-22 08:01:29
222.186.30.187 attack
Feb 22 00:52:36 localhost sshd\[4642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.187  user=root
Feb 22 00:52:38 localhost sshd\[4642\]: Failed password for root from 222.186.30.187 port 59173 ssh2
Feb 22 00:52:40 localhost sshd\[4642\]: Failed password for root from 222.186.30.187 port 59173 ssh2
2020-02-22 07:56:31
185.94.111.1 attack
185.94.111.1 was recorded 12 times by 7 hosts attempting to connect to the following ports: 389,11211,111. Incident counter (4h, 24h, all-time): 12, 75, 9255
2020-02-22 08:10:23
222.186.175.202 attackbots
Scanned 40 times in the last 24 hours on port 22
2020-02-22 08:06:27
78.83.191.242 attackspam
DATE:2020-02-22 00:03:41, IP:78.83.191.242, PORT:ssh SSH brute force auth (docker-dc)
2020-02-22 07:59:04
190.128.230.14 attackspam
Feb 21 23:42:24 web8 sshd\[26405\]: Invalid user admin from 190.128.230.14
Feb 21 23:42:24 web8 sshd\[26405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.128.230.14
Feb 21 23:42:26 web8 sshd\[26405\]: Failed password for invalid user admin from 190.128.230.14 port 58349 ssh2
Feb 21 23:47:24 web8 sshd\[29227\]: Invalid user admin from 190.128.230.14
Feb 21 23:47:24 web8 sshd\[29227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.128.230.14
2020-02-22 08:02:17
51.38.224.84 attackspambots
Feb 22 01:19:34 vpn01 sshd[5117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.224.84
Feb 22 01:19:36 vpn01 sshd[5117]: Failed password for invalid user jayendra from 51.38.224.84 port 38242 ssh2
...
2020-02-22 08:30:09
111.229.34.230 attackspambots
Invalid user mailman from 111.229.34.230 port 57452
2020-02-22 08:24:40
178.62.117.106 attack
Ssh brute force
2020-02-22 08:21:31
49.235.42.39 attackspambots
Feb 21 13:35:11 kapalua sshd\[2378\]: Invalid user act-ftp from 49.235.42.39
Feb 21 13:35:11 kapalua sshd\[2378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.42.39
Feb 21 13:35:13 kapalua sshd\[2378\]: Failed password for invalid user act-ftp from 49.235.42.39 port 59476 ssh2
Feb 21 13:37:16 kapalua sshd\[2560\]: Invalid user zhuangzhenhua from 49.235.42.39
Feb 21 13:37:16 kapalua sshd\[2560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.42.39
2020-02-22 08:00:53
185.143.223.161 attack
Brute force attack stopped by firewall
2020-02-22 08:01:50
77.238.4.37 attackspambots
trying to access non-authorized port
2020-02-22 07:47:47
130.180.66.98 attack
Invalid user uno85 from 130.180.66.98 port 42088
2020-02-22 08:13:38
193.31.24.113 attackbotsspam
02/22/2020-01:15:46.927620 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic
2020-02-22 08:28:03
49.88.112.69 attack
Feb 21 23:30:43 server sshd[3150963]: Failed password for root from 49.88.112.69 port 28654 ssh2
Feb 22 00:30:46 server sshd[3188697]: Failed password for root from 49.88.112.69 port 36087 ssh2
Feb 22 00:30:50 server sshd[3188697]: Failed password for root from 49.88.112.69 port 36087 ssh2
2020-02-22 07:52:16

Recently Reported IPs

45.156.129.62 88.164.20.242 8.153.70.222 42.238.177.198
223.88.31.224 221.193.31.10 183.209.234.114 183.208.209.50
182.113.217.23 123.159.172.167 120.228.56.201 120.10.78.236
115.50.199.118 112.36.236.141 101.70.135.246 2606:4700:10::6814:5208
2606:4700:10::6814:6071 36.143.175.73 209.250.233.30 183.199.86.141