140.0.139.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT. First Media TBK

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH Bruteforce on Honeypot	2020-05-13 22:21:15

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.0.139.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20665
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.0.139.5.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051300 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 22:21:06 CST 2020
;; MSG SIZE  rcvd: 115

Host info

5.139.0.140.in-addr.arpa domain name pointer fm-dyn-140-0-139-5.fast.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.139.0.140.in-addr.arpa	name = fm-dyn-140-0-139-5.fast.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.210.232.101	attackspam	DATE:2020-06-25 01:07:02, IP:80.210.232.101, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-06-25 08:09:38
101.200.137.78	attack	Failed password for root from 101.200.137.78 port 55418 ssh2	2020-06-25 07:52:35
60.167.181.52	attackspambots	Invalid user gerencia from 60.167.181.52 port 50348	2020-06-25 08:11:21
106.13.165.247	attack	SSH brute force	2020-06-25 08:06:36
101.91.176.67	attackbots	2020-04-21T18:11:48.448111suse-nuc sshd[4009]: User root from 101.91.176.67 not allowed because listed in DenyUsers ...	2020-06-25 08:07:22
120.92.45.102	attack	Jun 25 01:19:10 abendstille sshd\[19609\]: Invalid user kir from 120.92.45.102 Jun 25 01:19:10 abendstille sshd\[19609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.45.102 Jun 25 01:19:12 abendstille sshd\[19609\]: Failed password for invalid user kir from 120.92.45.102 port 28173 ssh2 Jun 25 01:23:13 abendstille sshd\[23869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.45.102 user=root Jun 25 01:23:15 abendstille sshd\[23869\]: Failed password for root from 120.92.45.102 port 53125 ssh2 ...	2020-06-25 07:58:11
206.189.188.218	attack	trying to access non-authorized port	2020-06-25 07:41:54
51.75.78.128	attack	Jun 24 20:04:58 vps46666688 sshd[14046]: Failed password for root from 51.75.78.128 port 57112 ssh2 Jun 24 20:07:18 vps46666688 sshd[14121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.78.128 ...	2020-06-25 07:50:28
113.134.211.242	attackspam	DATE:2020-06-25 01:16:02, IP:113.134.211.242, PORT:ssh SSH brute force auth (docker-dc)	2020-06-25 07:44:27
2600:9000:20a6:d800:10:ab99:6600:21	attackspambots	Organized crime hosting edge cache http://d841gzbjvio48.cloudfront.net/35381/Screen%20Shot%202019-08-06%20at%2011.55.25%20AM.png	2020-06-25 07:36:45
14.207.44.88	attackbotsspam	Sql/code injection probe	2020-06-25 07:37:18
125.212.203.113	attackbots	2020-06-25T01:14:47.317371vps751288.ovh.net sshd\[23760\]: Invalid user webmaster from 125.212.203.113 port 36936 2020-06-25T01:14:47.328321vps751288.ovh.net sshd\[23760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.203.113 2020-06-25T01:14:49.064221vps751288.ovh.net sshd\[23760\]: Failed password for invalid user webmaster from 125.212.203.113 port 36936 ssh2 2020-06-25T01:18:04.728661vps751288.ovh.net sshd\[23817\]: Invalid user bet from 125.212.203.113 port 37970 2020-06-25T01:18:04.740330vps751288.ovh.net sshd\[23817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.203.113	2020-06-25 07:51:56
61.177.172.159	attackspam	2020-06-24T23:59:34.019064shield sshd\[19231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.159 user=root 2020-06-24T23:59:36.505860shield sshd\[19231\]: Failed password for root from 61.177.172.159 port 63197 ssh2 2020-06-24T23:59:39.782739shield sshd\[19231\]: Failed password for root from 61.177.172.159 port 63197 ssh2 2020-06-24T23:59:42.605342shield sshd\[19231\]: Failed password for root from 61.177.172.159 port 63197 ssh2 2020-06-24T23:59:46.364905shield sshd\[19231\]: Failed password for root from 61.177.172.159 port 63197 ssh2	2020-06-25 08:05:04
61.151.130.22	attack	Jun 25 01:18:08 piServer sshd[11716]: Failed password for root from 61.151.130.22 port 38976 ssh2 Jun 25 01:20:49 piServer sshd[11978]: Failed password for root from 61.151.130.22 port 61440 ssh2 ...	2020-06-25 07:50:05
158.69.194.115	attackspambots	Jun 25 01:06:50 server sshd[5444]: Failed password for invalid user mosquitto from 158.69.194.115 port 52555 ssh2 Jun 25 01:10:30 server sshd[9096]: Failed password for invalid user admin from 158.69.194.115 port 40215 ssh2 Jun 25 01:13:28 server sshd[12236]: Failed password for invalid user guest from 158.69.194.115 port 54555 ssh2	2020-06-25 07:57:53

Recently Reported IPs

41.80.40.160	84.200.229.42	66.176.210.163	102.130.119.95
146.164.51.52	14.164.165.212	42.112.232.24	197.51.236.161
191.6.173.215	178.176.113.113	243.7.126.48	13.75.64.111
85.212.187.18	194.58.98.58	64.54.159.28	89.204.154.239
46.140.182.8	62.234.103.191	62.122.97.5	78.36.13.133