JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.255.79.234

139.255.79.234 was found in our database!

This IP was reported 23 times. Confidence of Abuse is 35%: ?

35%

ISP	PT. First Media,Tbk
Usage Type	Fixed Line ISP
ASN	AS9905
Hostname(s)	ln-static-139-255-79-234.link.net.id
Domain Name	xl.co.id
Country	🇮🇩 Indonesia
City	Jakarta, Jakarta

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.255.79.234

Whois 139.255.79.234

IP Abuse Reports for 139.255.79.234:

This IP address has been reported a total of 23 times from 15 distinct sources. 139.255.79.234 was first reported on January 13th 2026, and the most recent report was 22 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 sockominfo	2026-06-26 10:00:53 (22 hours ago)	User login to application from malicious IP 139.255.79.234.. Threat Score: 3.9/10 (LOW). Confidence: ... show more User login to application from malicious IP 139.255.79.234.. Threat Score: 3.9/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-26 09:00:09 (23 hours ago)	User login to application from malicious IP 139.255.79.234.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 139.255.79.234.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇩🇪 ValtonTahiri	2026-06-22 15:57:00 (4 days ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=139.255.79.234; proto=TCP; source_port=1087; target_port=8090; flags=SYN show less	Port Scan
🇮🇩 sockominfo	2026-06-18 11:01:00 (1 week ago)	User login to application from malicious IP 139.255.79.234.. Threat Score: 3.7/10 (LOW). Confidence: ... show more User login to application from malicious IP 139.255.79.234.. Threat Score: 3.7/10 (LOW). Confidence: 30%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 40%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-18 10:01:05 (1 week ago)	User login to application from malicious IP 139.255.79.234.. Threat Score: 4.1/10 (MEDIUM). Confiden ... show more User login to application from malicious IP 139.255.79.234.. Threat Score: 4.1/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 0/10 (None). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:N. Bayesian Probability: 57%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-06-18 07:00:09 (1 week ago)	User login to application from malicious IP 139.255.79.234.. Threat Score: 0/10 (INFORMATIONAL). Rep ... show more User login to application from malicious IP 139.255.79.234.. Threat Score: 0/10 (INFORMATIONAL). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇪 RoboSOC	2026-06-16 14:21:49 (1 week ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ln-static-139-255-79-234.link.net.id.	Port Scan
🇸🇪 KIDOS	2026-06-10 14:58:12 (2 weeks ago)	Apache monitor: ssrf_log_spoofing	Brute-Force SSH
🇮🇪 RoboSOC	2026-06-04 07:34:45 (3 weeks ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ln-static-139-255-79-234.link.net.id.	Port Scan
🇩🇪 Admins@FBN	2026-05-31 01:57:00 (3 weeks ago)	FW-PortScan: Traffic Blocked srcport=45467 dstport=8081	Port Scan
🇮🇪 RoboSOC	2026-05-30 10:36:40 (3 weeks ago)	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ln-static-139-255-79-234.link.net.id.	Port Scan
🇩🇪 iNetWorker	2026-05-29 22:40:54 (4 weeks ago)	firewall-block, port(s): 8082/tcp	Port Scan
🇮🇹 Fusty	2026-05-10 05:38:07 (1 month ago)	Unauthorized attempt on (TCP on port 8001). Source port: 44388 TTL: 239 Packet length: 40 Timestamp: ... show more Unauthorized attempt on (TCP on port 8001). Source port: 44388 TTL: 239 Packet length: 40 Timestamp: 2026-05-10 07:38:07 show less	Port Scan
🇨🇭 Elysium Security	2026-04-27 04:54:06 (2 months ago)	Mass port scanning on a whole network	Port Scan
🇹🇷 Threat.live	2026-04-02 10:55:38 (2 months ago)	Suspicious activity, tcp/5001	Port Scan

Showing 1 to 15 of 23 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇦 196.92.7.249

🇸🇬 165.154.200.214

🇮🇳 152.56.1.179

🇩🇿 105.109.223.228

🇲🇦 81.192.46.32

🇨🇳 49.233.55.19

🇸🇬 145.223.131.95

🇦🇪 94.59.103.194

🇬🇧 90.217.164.251

🇨🇦 85.217.149.38

🇩🇪 64.89.163.132

🇳🇱 45.148.10.151

🇺🇸 45.45.237.192

🇺🇸 20.118.209.123

🇧🇷 18.231.55.99

🇨🇱 201.186.40.250

🇪🇸 185.214.138.56

🇩🇪 167.94.146.45

🇻🇳 160.187.147.124

🇹🇭 110.164.193.195