139.255.89.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. First Media TBK

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	1599721257 - 09/10/2020 09:00:57 Host: 139.255.89.2/139.255.89.2 Port: 445 TCP Blocked	2020-09-11 04:12:31
attack	1599721257 - 09/10/2020 09:00:57 Host: 139.255.89.2/139.255.89.2 Port: 445 TCP Blocked	2020-09-10 19:53:55

Comments on same subnet:

IP	Type	Details	Datetime
139.255.89.218	attack	1578029330 - 01/03/2020 06:28:50 Host: 139.255.89.218/139.255.89.218 Port: 445 TCP Blocked	2020-01-03 19:26:52
139.255.89.98	attackbotsspam	Aug 18 04:26:31 XXX sshd[1991]: Invalid user oracle from 139.255.89.98 port 37028	2019-08-18 19:59:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.255.89.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49101
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.255.89.2.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090901 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 10 19:53:46 CST 2020
;; MSG SIZE  rcvd: 116

Host info

2.89.255.139.in-addr.arpa domain name pointer ln-static-139-255-89-2.link.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.89.255.139.in-addr.arpa	name = ln-static-139-255-89-2.link.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
4.16.253.10	attackbots	Aug 16 21:37:56 hcbbdb sshd\[20858\]: Invalid user kfserver from 4.16.253.10 Aug 16 21:37:56 hcbbdb sshd\[20858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bmx2.aafp.org Aug 16 21:37:57 hcbbdb sshd\[20858\]: Failed password for invalid user kfserver from 4.16.253.10 port 39008 ssh2 Aug 16 21:44:44 hcbbdb sshd\[21630\]: Invalid user sysadmin from 4.16.253.10 Aug 16 21:44:44 hcbbdb sshd\[21630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bmx2.aafp.org	2019-08-17 06:03:45
52.53.182.4	attackspam	[portscan] Port scan	2019-08-17 03:53:22
131.100.219.3	attackbots	Aug 16 19:19:06 bouncer sshd\[3457\]: Invalid user fs from 131.100.219.3 port 49058 Aug 16 19:19:06 bouncer sshd\[3457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.100.219.3 Aug 16 19:19:08 bouncer sshd\[3457\]: Failed password for invalid user fs from 131.100.219.3 port 49058 ssh2 ...	2019-08-17 03:55:00
142.93.251.39	attack	Aug 16 22:04:51 dedicated sshd[22649]: Invalid user cod from 142.93.251.39 port 49200	2019-08-17 05:44:56
68.183.237.207	attackbots	Automated report - ssh fail2ban: Aug 16 21:27:24 authentication failure Aug 16 21:27:26 wrong password, user=Vision, port=50646, ssh2	2019-08-17 04:02:30
104.236.124.45	attackbotsspam	Aug 16 09:57:00 sachi sshd\[6677\]: Invalid user teamspeak from 104.236.124.45 Aug 16 09:57:00 sachi sshd\[6677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 Aug 16 09:57:02 sachi sshd\[6677\]: Failed password for invalid user teamspeak from 104.236.124.45 port 60308 ssh2 Aug 16 10:04:57 sachi sshd\[7396\]: Invalid user minecraft2 from 104.236.124.45 Aug 16 10:04:57 sachi sshd\[7396\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45	2019-08-17 05:42:52
61.159.237.85	attackspam	Unauthorised access (Aug 16) SRC=61.159.237.85 LEN=40 TTL=48 ID=12013 TCP DPT=8080 WINDOW=65426 SYN Unauthorised access (Aug 14) SRC=61.159.237.85 LEN=40 TTL=47 ID=8126 TCP DPT=8080 WINDOW=65426 SYN Unauthorised access (Aug 12) SRC=61.159.237.85 LEN=40 TTL=48 ID=56564 TCP DPT=8080 WINDOW=65426 SYN Unauthorised access (Aug 11) SRC=61.159.237.85 LEN=40 TTL=48 ID=47392 TCP DPT=8080 WINDOW=65426 SYN	2019-08-17 04:01:31
119.196.83.14	attackbotsspam	Aug 16 21:21:06 XXX sshd[25413]: Invalid user ofsaa from 119.196.83.14 port 43050	2019-08-17 04:03:55
165.227.159.16	attackbotsspam	Aug 16 21:42:15 hb sshd\[7584\]: Invalid user wilma from 165.227.159.16 Aug 16 21:42:15 hb sshd\[7584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.159.16 Aug 16 21:42:17 hb sshd\[7584\]: Failed password for invalid user wilma from 165.227.159.16 port 37276 ssh2 Aug 16 21:46:41 hb sshd\[7986\]: Invalid user mason from 165.227.159.16 Aug 16 21:46:41 hb sshd\[7986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.159.16	2019-08-17 05:52:22
188.165.255.8	attackbots	2019-08-16T19:29:34.539555abusebot-8.cloudsearch.cf sshd\[23801\]: Invalid user chase from 188.165.255.8 port 42058	2019-08-17 04:03:03
222.186.52.124	attackbots	Aug 16 17:38:59 TORMINT sshd\[8793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.124 user=root Aug 16 17:39:02 TORMINT sshd\[8793\]: Failed password for root from 222.186.52.124 port 33296 ssh2 Aug 16 17:39:03 TORMINT sshd\[8793\]: Failed password for root from 222.186.52.124 port 33296 ssh2 ...	2019-08-17 05:40:16
54.37.21.6	attackspambots	Aug 17 02:41:05 webhost01 sshd[3235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.21.6 Aug 17 02:41:08 webhost01 sshd[3235]: Failed password for invalid user ts3srv from 54.37.21.6 port 51629 ssh2 ...	2019-08-17 04:01:56
165.22.254.187	attackbotsspam	Aug 16 09:59:31 php1 sshd\[31731\]: Invalid user delete from 165.22.254.187 Aug 16 09:59:31 php1 sshd\[31731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.254.187 Aug 16 09:59:33 php1 sshd\[31731\]: Failed password for invalid user delete from 165.22.254.187 port 47840 ssh2 Aug 16 10:04:36 php1 sshd\[32162\]: Invalid user jin from 165.22.254.187 Aug 16 10:04:36 php1 sshd\[32162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.254.187	2019-08-17 05:52:42
3.0.70.93	attackspam	WordPress wp-login brute force :: 3.0.70.93 0.248 BYPASS [17/Aug/2019:05:19:09 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-17 03:52:02
36.156.24.79	attackbotsspam	2019-08-16T20:04:59.723185abusebot-2.cloudsearch.cf sshd\[4645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.79 user=root	2019-08-17 05:41:20

Recently Reported IPs

85.110.171.173	122.247.10.24	122.168.196.12	119.144.124.54
181.176.241.142	158.85.226.148	28.81.217.200	103.25.4.80
47.172.59.206	44.73.149.24	1.143.78.91	69.117.38.179
143.201.135.181	228.31.20.18	80.228.40.143	81.214.226.155
254.144.227.230	176.240.245.1	23.222.212.234	147.48.32.32