139.255.245.62

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. First Media TBK

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:22:34,285 INFO [shellcode_manager] (139.255.245.62) no match, writing hexdump (009d3da666ba07500b424e7a93fb98f4 :2115256) - MS17010 (EternalBlue)	2019-07-06 09:20:26

Type

Details

Datetime

attackbots

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:22:34,285 INFO [shellcode_manager] (139.255.245.62) no match, writing hexdump (009d3da666ba07500b424e7a93fb98f4 :2115256) - MS17010 (EternalBlue)

2019-07-06 09:20:26

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.245.62
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26418
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.255.245.62.			IN	A

;; AUTHORITY SECTION:
.			2491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 09:20:20 CST 2019
;; MSG SIZE  rcvd: 118

Host info

62.245.255.139.in-addr.arpa domain name pointer ln-static-139-255-245-62.link.net.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
62.245.255.139.in-addr.arpa	name = ln-static-139-255-245-62.link.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
209.17.97.98	attackbots	Automatic report - Banned IP Access	2020-06-12 07:32:46
191.255.232.53	attackbots	Jun 11 23:40:58 gestao sshd[21835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.255.232.53 Jun 11 23:41:00 gestao sshd[21835]: Failed password for invalid user hotel from 191.255.232.53 port 58909 ssh2 Jun 11 23:45:19 gestao sshd[21956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.255.232.53 ...	2020-06-12 06:56:47
222.186.15.115	attack	Jun 12 01:02:46 ArkNodeAT sshd\[32441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Jun 12 01:02:48 ArkNodeAT sshd\[32441\]: Failed password for root from 222.186.15.115 port 45332 ssh2 Jun 12 01:03:06 ArkNodeAT sshd\[32452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root	2020-06-12 07:04:12
23.105.157.105	attackbots	Registration form abuse	2020-06-12 07:20:14
85.209.0.103	attackbotsspam	Jun 12 01:50:59 server2 sshd\[2421\]: User root from 85.209.0.103 not allowed because not listed in AllowUsers Jun 12 01:51:00 server2 sshd\[2429\]: User root from 85.209.0.103 not allowed because not listed in AllowUsers Jun 12 01:51:00 server2 sshd\[2430\]: User root from 85.209.0.103 not allowed because not listed in AllowUsers Jun 12 01:51:00 server2 sshd\[2422\]: User root from 85.209.0.103 not allowed because not listed in AllowUsers Jun 12 01:51:03 server2 sshd\[2426\]: User root from 85.209.0.103 not allowed because not listed in AllowUsers Jun 12 01:51:04 server2 sshd\[2434\]: User root from 85.209.0.103 not allowed because not listed in AllowUsers	2020-06-12 07:10:52
64.227.37.2	attackspambots	TCP (SYN) 64.227.37.2:61953 -> port 25463, len 44	2020-06-12 07:21:50
222.186.31.83	attackspambots	Jun 12 01:07:09 legacy sshd[11274]: Failed password for root from 222.186.31.83 port 29181 ssh2 Jun 12 01:07:11 legacy sshd[11274]: Failed password for root from 222.186.31.83 port 29181 ssh2 Jun 12 01:07:14 legacy sshd[11274]: Failed password for root from 222.186.31.83 port 29181 ssh2 ...	2020-06-12 07:08:26
162.243.136.62	attack	path hacking	2020-06-12 07:02:50
202.137.154.91	attackspam	failed_logins	2020-06-12 06:51:24
51.75.73.211	attackbots	Invalid user lis from 51.75.73.211 port 39176	2020-06-12 07:16:46
157.245.124.160	attackbotsspam	Jun 11 18:56:07 ny01 sshd[11122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.124.160 Jun 11 18:56:09 ny01 sshd[11122]: Failed password for invalid user morgengold from 157.245.124.160 port 35424 ssh2 Jun 11 18:59:14 ny01 sshd[11664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.124.160	2020-06-12 07:14:44
156.96.156.71	attackspambots	Port Scan detected! ...	2020-06-12 06:51:40
118.193.46.160	attack	2020-06-11T17:28:41.815478linuxbox-skyline sshd[322593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.46.160 user=root 2020-06-11T17:28:43.914538linuxbox-skyline sshd[322593]: Failed password for root from 118.193.46.160 port 43402 ssh2 ...	2020-06-12 07:30:55
222.186.175.151	attack	Jun 11 23:05:32 localhost sshd[113786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Jun 11 23:05:34 localhost sshd[113786]: Failed password for root from 222.186.175.151 port 30024 ssh2 Jun 11 23:05:37 localhost sshd[113786]: Failed password for root from 222.186.175.151 port 30024 ssh2 Jun 11 23:05:32 localhost sshd[113786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Jun 11 23:05:34 localhost sshd[113786]: Failed password for root from 222.186.175.151 port 30024 ssh2 Jun 11 23:05:37 localhost sshd[113786]: Failed password for root from 222.186.175.151 port 30024 ssh2 Jun 11 23:05:32 localhost sshd[113786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Jun 11 23:05:34 localhost sshd[113786]: Failed password for root from 222.186.175.151 port 30024 ssh2 Jun 11 23:05:37 localhost ...	2020-06-12 07:06:12
182.75.216.74	attackbots	Jun 12 02:02:34 pkdns2 sshd\[56356\]: Address 182.75.216.74 maps to nsg-static-74.216.75.182-airtel.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Jun 12 02:02:34 pkdns2 sshd\[56356\]: Invalid user lol from 182.75.216.74Jun 12 02:02:36 pkdns2 sshd\[56356\]: Failed password for invalid user lol from 182.75.216.74 port 59235 ssh2Jun 12 02:09:24 pkdns2 sshd\[56716\]: Address 182.75.216.74 maps to nsg-static-74.216.75.182-airtel.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Jun 12 02:09:24 pkdns2 sshd\[56716\]: Invalid user root@12 from 182.75.216.74Jun 12 02:09:25 pkdns2 sshd\[56716\]: Failed password for invalid user root@12 from 182.75.216.74 port 37647 ssh2 ...	2020-06-12 07:24:15

Recently Reported IPs

106.8.112.35	46.10.6.191	1.87.129.192	187.216.60.134
192.96.203.71	185.22.71.247	206.196.116.245	245.82.38.3
36.105.44.129	78.155.206.150	201.92.197.54	23.238.115.210
121.142.165.111	248.38.145.136	167.105.42.134	223.97.201.132
201.123.116.113	227.118.184.109	182.76.53.114	88.230.231.27