139.194.10.235

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.194.106.86	attackspam	scan z	2020-01-01 17:12:42
139.194.103.117	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/139.194.103.117/ ID - 1H : (39) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ID NAME ASN : ASN23700 IP : 139.194.103.117 CIDR : 139.194.96.0/19 PREFIX COUNT : 110 UNIQUE IP COUNT : 765440 WYKRYTE ATAKI Z ASN23700 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 3 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-20 00:46:35

Type

Details

Datetime

139.194.106.86

attackspam

scan z

2020-01-01 17:12:42

139.194.103.117

attackbots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/139.194.103.117/ 
 ID - 1H : (39)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : ID 
 NAME ASN : ASN23700 
 
 IP : 139.194.103.117 
 
 CIDR : 139.194.96.0/19 
 
 PREFIX COUNT : 110 
 
 UNIQUE IP COUNT : 765440 
 
 
 WYKRYTE ATAKI Z ASN23700 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 3 
 
 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery

2019-09-20 00:46:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.194.10.235
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16542
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.194.10.235.			IN	A

;; AUTHORITY SECTION:
.			395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 10:02:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

235.10.194.139.in-addr.arpa domain name pointer fm-dyn-139-194-10-235.fast.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
235.10.194.139.in-addr.arpa	name = fm-dyn-139-194-10-235.fast.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.53.88.4	attackspam	\[2019-12-14 09:45:22\] NOTICE\[2839\] chan_sip.c: Registration from '"101" \' failed for '185.53.88.4:5219' - Wrong password \[2019-12-14 09:45:22\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-14T09:45:22.989-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="101",SessionID="0x7f0fb406f938",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.4/5219",Challenge="4bbf33fe",ReceivedChallenge="4bbf33fe",ReceivedHash="eda328406c73445c27ba3b2104f00342" \[2019-12-14 09:45:23\] NOTICE\[2839\] chan_sip.c: Registration from '"101" \' failed for '185.53.88.4:5219' - Wrong password \[2019-12-14 09:45:23\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-14T09:45:23.141-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="101",SessionID="0x7f0fb40977c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.	2019-12-14 23:38:00
183.81.84.98	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 14-12-2019 14:45:15.	2019-12-14 23:51:57
157.230.112.34	attackspambots	Dec 14 16:17:10 ns381471 sshd[5222]: Failed password for root from 157.230.112.34 port 57798 ssh2 Dec 14 16:22:28 ns381471 sshd[5402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.112.34	2019-12-14 23:32:40
43.248.189.24	attackbotsspam	Dec 13 21:36:05 v26 sshd[4213]: Did not receive identification string from 43.248.189.24 port 58876 Dec 13 21:36:05 v26 sshd[4215]: Did not receive identification string from 43.248.189.24 port 40506 Dec 13 21:36:05 v26 sshd[4216]: Did not receive identification string from 43.248.189.24 port 58666 Dec 13 21:36:05 v26 sshd[4217]: Did not receive identification string from 43.248.189.24 port 38962 Dec 13 21:36:05 v26 sshd[4224]: Did not receive identification string from 43.248.189.24 port 35256 Dec 13 21:36:05 v26 sshd[4226]: Did not receive identification string from 43.248.189.24 port 36016 Dec 13 22:04:31 v26 sshd[6980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.248.189.24 user=r.r Dec 13 22:04:33 v26 sshd[6980]: Failed password for r.r from 43.248.189.24 port 59300 ssh2 Dec 13 22:04:33 v26 sshd[6980]: Received disconnect from 43.248.189.24 port 59300:11: Normal Shutdown, Thank you for playing [preauth] Dec 13 22:04:3........ -------------------------------	2019-12-15 00:06:06
42.118.242.189	attackbotsspam	Dec 14 14:32:05 XXXXXX sshd[56786]: Invalid user guest from 42.118.242.189 port 52912	2019-12-15 00:03:04
46.101.164.47	attack	Dec 13 19:21:38 riskplan-s sshd[2665]: Invalid user oracle from 46.101.164.47 Dec 13 19:21:38 riskplan-s sshd[2665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.164.47 Dec 13 19:21:40 riskplan-s sshd[2665]: Failed password for invalid user oracle from 46.101.164.47 port 50621 ssh2 Dec 13 19:21:40 riskplan-s sshd[2665]: Received disconnect from 46.101.164.47: 11: Bye Bye [preauth] Dec 13 19:31:48 riskplan-s sshd[2845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.164.47 user=r.r Dec 13 19:31:50 riskplan-s sshd[2845]: Failed password for r.r from 46.101.164.47 port 58240 ssh2 Dec 13 19:31:50 riskplan-s sshd[2845]: Received disconnect from 46.101.164.47: 11: Bye Bye [preauth] Dec 13 19:36:47 riskplan-s sshd[2879]: Invalid user server from 46.101.164.47 Dec 13 19:36:47 riskplan-s sshd[2879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= ........ -------------------------------	2019-12-14 23:44:52
201.114.252.23	attack	Dec 14 16:48:33 legacy sshd[7777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.114.252.23 Dec 14 16:48:35 legacy sshd[7777]: Failed password for invalid user www from 201.114.252.23 port 60056 ssh2 Dec 14 16:54:26 legacy sshd[7974]: Failed password for nobody from 201.114.252.23 port 39958 ssh2 ...	2019-12-14 23:55:05
123.21.88.222	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 14-12-2019 14:45:14.	2019-12-14 23:52:37
51.75.30.199	attack	Dec 14 05:22:21 web1 sshd\[8457\]: Invalid user serivodr from 51.75.30.199 Dec 14 05:22:21 web1 sshd\[8457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.199 Dec 14 05:22:23 web1 sshd\[8457\]: Failed password for invalid user serivodr from 51.75.30.199 port 49074 ssh2 Dec 14 05:27:42 web1 sshd\[9111\]: Invalid user sys_admin from 51.75.30.199 Dec 14 05:27:42 web1 sshd\[9111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.199	2019-12-14 23:45:31
80.211.31.147	attack	Fail2Ban Ban Triggered	2019-12-14 23:58:00
179.33.137.117	attack	Dec 14 05:59:52 hpm sshd\[27387\]: Invalid user operator from 179.33.137.117 Dec 14 05:59:52 hpm sshd\[27387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 Dec 14 05:59:55 hpm sshd\[27387\]: Failed password for invalid user operator from 179.33.137.117 port 50926 ssh2 Dec 14 06:07:10 hpm sshd\[28092\]: Invalid user je from 179.33.137.117 Dec 14 06:07:10 hpm sshd\[28092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117	2019-12-15 00:08:20
49.88.112.113	attackbots	Dec 13 06:32:55 ns382633 sshd\[20019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Dec 13 06:32:57 ns382633 sshd\[20019\]: Failed password for root from 49.88.112.113 port 61978 ssh2 Dec 13 06:33:00 ns382633 sshd\[20019\]: Failed password for root from 49.88.112.113 port 61978 ssh2 Dec 13 06:33:03 ns382633 sshd\[20019\]: Failed password for root from 49.88.112.113 port 61978 ssh2 Dec 13 06:33:32 ns382633 sshd\[20103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2019-12-14 23:59:11
62.234.106.199	attackspambots	$f2bV_matches	2019-12-14 23:42:42
180.168.55.110	attackspambots	Dec 12 22:52:59 ns382633 sshd\[1757\]: Invalid user fritsch from 180.168.55.110 port 42240 Dec 12 22:52:59 ns382633 sshd\[1757\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.55.110 Dec 12 22:53:01 ns382633 sshd\[1757\]: Failed password for invalid user fritsch from 180.168.55.110 port 42240 ssh2 Dec 12 23:02:05 ns382633 sshd\[3470\]: Invalid user ibach from 180.168.55.110 port 33759 Dec 12 23:02:05 ns382633 sshd\[3470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.55.110	2019-12-14 23:48:01
182.75.248.254	attackbotsspam	2019-12-14T15:57:34.619401struts4.enskede.local sshd\[17100\]: Invalid user horrer from 182.75.248.254 port 35968 2019-12-14T15:57:34.628760struts4.enskede.local sshd\[17100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.248.254 2019-12-14T15:57:37.608062struts4.enskede.local sshd\[17100\]: Failed password for invalid user horrer from 182.75.248.254 port 35968 ssh2 2019-12-14T16:04:19.078463struts4.enskede.local sshd\[17120\]: Invalid user server from 182.75.248.254 port 43776 2019-12-14T16:04:19.089303struts4.enskede.local sshd\[17120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.248.254 ...	2019-12-15 00:17:23

Recently Reported IPs

139.190.145.209	139.192.214.121	139.194.187.15	139.193.150.117
139.194.173.197	139.194.207.25	139.194.240.139	139.192.225.161
139.195.213.245	139.194.9.111	139.196.238.161	139.194.251.89
139.196.208.53	139.195.68.23	139.196.46.33	139.198.21.60
139.204.167.97	139.198.14.215	139.200.37.179	139.205.63.177