132.148.142.109

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
132.148.142.61	attackspam	[munged]::443 132.148.142.61 - - [05/Oct/2019:21:40:59 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.142.61 - - [05/Oct/2019:21:41:01 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.142.61 - - [05/Oct/2019:21:41:04 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.142.61 - - [05/Oct/2019:21:41:06 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.142.61 - - [05/Oct/2019:21:41:08 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.142.61 - - [05/Oct/2019:21:41:10 +0200] "POST /[munged]: HTTP/1.1" 200 9079 "-" "Mozilla/5.0 (X11	2019-10-06 04:21:20
132.148.142.246	attackbots	Port Scan: TCP/445	2019-08-17 00:10:45
132.148.142.117	attackbots	132.148.142.117 - - [23/Jul/2019:23:14:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.142.117 - - [23/Jul/2019:23:14:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.142.117 - - [23/Jul/2019:23:14:35 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.142.117 - - [23/Jul/2019:23:14:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.142.117 - - [23/Jul/2019:23:14:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.142.117 - - [23/Jul/2019:23:14:36 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-07-24 08:50:27
132.148.142.117	attackbots	www.ft-1848-basketball.de 132.148.142.117 \[12/Jul/2019:14:44:23 +0200\] "POST /wp-login.php HTTP/1.1" 200 2174 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 132.148.142.117 \[12/Jul/2019:14:44:24 +0200\] "POST /wp-login.php HTTP/1.1" 200 2144 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 132.148.142.117 \[12/Jul/2019:14:44:26 +0200\] "POST /wp-login.php HTTP/1.1" 200 2131 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-12 21:35:55
132.148.142.117	attack	WordPress login Brute force / Web App Attack on client site.	2019-07-09 20:44:25
132.148.142.117	attack	belitungshipwreck.org 132.148.142.117 \[22/Jun/2019:17:02:48 +0200\] "POST /wp-login.php HTTP/1.1" 200 5597 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" belitungshipwreck.org 132.148.142.117 \[22/Jun/2019:17:02:49 +0200\] "POST /wp-login.php HTTP/1.1" 200 5575 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-06-23 07:20:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.142.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43257
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.148.142.109.		IN	A

;; AUTHORITY SECTION:
.			499	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 06:36:41 CST 2022
;; MSG SIZE  rcvd: 108

Host info

109.142.148.132.in-addr.arpa domain name pointer ip-132-148-142-109.ip.secureserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
109.142.148.132.in-addr.arpa	name = ip-132-148-142-109.ip.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.94.219.199	attackbots	Unauthorized connection attempt detected from IP address 177.94.219.199 to port 445	2019-12-20 06:07:17
51.83.74.126	attack	Dec 20 00:41:07 hosting sshd[25486]: Invalid user roix from 51.83.74.126 port 49782 Dec 20 00:41:07 hosting sshd[25486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.pharmust.com Dec 20 00:41:07 hosting sshd[25486]: Invalid user roix from 51.83.74.126 port 49782 Dec 20 00:41:10 hosting sshd[25486]: Failed password for invalid user roix from 51.83.74.126 port 49782 ssh2 Dec 20 00:50:14 hosting sshd[26502]: Invalid user oracle from 51.83.74.126 port 46270 ...	2019-12-20 06:19:49
139.59.5.179	attackbots	Automatic report - XMLRPC Attack	2019-12-20 05:51:34
212.64.54.49	attack	Dec 19 15:44:40 pi sshd\[25166\]: Invalid user ching from 212.64.54.49 port 51090 Dec 19 15:44:40 pi sshd\[25166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.54.49 Dec 19 15:44:42 pi sshd\[25166\]: Failed password for invalid user ching from 212.64.54.49 port 51090 ssh2 Dec 19 15:57:33 pi sshd\[25848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.54.49 user=root Dec 19 15:57:35 pi sshd\[25848\]: Failed password for root from 212.64.54.49 port 50834 ssh2 ...	2019-12-20 06:06:47
195.3.146.88	attack	" "	2019-12-20 06:02:55
158.69.64.9	attackspam	Dec 19 19:24:25 ns41 sshd[17869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.64.9	2019-12-20 05:57:48
188.59.137.31	attack	Automatic report - Port Scan Attack	2019-12-20 06:21:42
118.70.127.173	attackbotsspam	Unauthorized connection attempt detected from IP address 118.70.127.173 to port 445	2019-12-20 06:18:33
36.100.38.215	attackspambots	Unauthorized connection attempt from IP address 36.100.38.215 on Port 445(SMB)	2019-12-20 06:22:44
42.118.104.53	attackspambots	Unauthorized connection attempt from IP address 42.118.104.53 on Port 445(SMB)	2019-12-20 06:03:30
187.16.96.37	attackbots	$f2bV_matches	2019-12-20 06:23:12
190.232.74.23	attack	Unauthorized connection attempt from IP address 190.232.74.23 on Port 445(SMB)	2019-12-20 05:55:26
185.127.24.213	attackbotsspam	SSH invalid-user multiple login try	2019-12-20 06:04:29
103.196.52.136	attackbots	Unauthorized connection attempt from IP address 103.196.52.136 on Port 445(SMB)	2019-12-20 06:16:23
149.202.181.205	attackbotsspam	Dec 19 21:45:35 server sshd\[5751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.181.205 user=root Dec 19 21:45:37 server sshd\[5751\]: Failed password for root from 149.202.181.205 port 58940 ssh2 Dec 19 21:51:59 server sshd\[7394\]: Invalid user smmsp from 149.202.181.205 Dec 19 21:51:59 server sshd\[7394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.181.205 Dec 19 21:52:01 server sshd\[7394\]: Failed password for invalid user smmsp from 149.202.181.205 port 54958 ssh2 ...	2019-12-20 06:13:49

Recently Reported IPs

132.148.140.63	132.148.144.35	132.148.144.122	132.148.149.237
132.148.147.60	132.148.149.24	132.148.149.246	132.148.152.41
132.148.150.106	132.148.155.108	132.148.152.8	132.148.158.197
132.148.159.166	132.148.16.88	132.148.165.28	132.148.164.54
132.148.165.189	132.148.17.216	132.148.167.32	132.148.17.200