139.132.242.175

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.132.242.175
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55419
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.132.242.175.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012501 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 06:03:59 CST 2025
;; MSG SIZE  rcvd: 108

Host info

175.242.132.139.in-addr.arpa domain name pointer 139-132-242-175.phones.deakin.edu.au.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
175.242.132.139.in-addr.arpa	name = 139-132-242-175.phones.deakin.edu.au.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.56.28.221	attack	Aug 21 17:44:32 postfix/smtpd: warning: unknown[193.56.28.221]: SASL LOGIN authentication failed Aug 21 17:44:40 postfix/smtpd: warning: unknown[193.56.28.221]: SASL LOGIN authentication failed	2020-08-22 02:35:06
93.64.5.34	attackspambots	Aug 21 19:32:48 rotator sshd\[21545\]: Invalid user cmh from 93.64.5.34Aug 21 19:32:50 rotator sshd\[21545\]: Failed password for invalid user cmh from 93.64.5.34 port 36666 ssh2Aug 21 19:36:30 rotator sshd\[22313\]: Invalid user office from 93.64.5.34Aug 21 19:36:32 rotator sshd\[22313\]: Failed password for invalid user office from 93.64.5.34 port 43632 ssh2Aug 21 19:40:05 rotator sshd\[22462\]: Invalid user bob from 93.64.5.34Aug 21 19:40:07 rotator sshd\[22462\]: Failed password for invalid user bob from 93.64.5.34 port 34405 ssh2 ...	2020-08-22 02:51:38
41.230.100.183	attack	20/8/21@08:01:55: FAIL: Alarm-Network address from=41.230.100.183 ...	2020-08-22 02:56:44
140.143.244.91	attackspambots	frenzy	2020-08-22 02:43:24
188.187.190.220	attack	Brute-force attempt banned	2020-08-22 02:45:27
49.233.205.82	attackspam	$f2bV_matches	2020-08-22 02:30:02
163.172.136.227	attackspambots	2020-08-21T07:02:14.991179morrigan.ad5gb.com sshd[1585493]: Failed password for invalid user anon from 163.172.136.227 port 41850 ssh2 2020-08-21T07:02:15.181706morrigan.ad5gb.com sshd[1585493]: Disconnected from invalid user anon 163.172.136.227 port 41850 [preauth]	2020-08-22 02:30:41
222.186.169.192	attack	2020-08-21T21:27:03.150841afi-git.jinr.ru sshd[17397]: Failed password for root from 222.186.169.192 port 25406 ssh2 2020-08-21T21:27:07.057151afi-git.jinr.ru sshd[17397]: Failed password for root from 222.186.169.192 port 25406 ssh2 2020-08-21T21:27:10.511583afi-git.jinr.ru sshd[17397]: Failed password for root from 222.186.169.192 port 25406 ssh2 2020-08-21T21:27:10.511727afi-git.jinr.ru sshd[17397]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 25406 ssh2 [preauth] 2020-08-21T21:27:10.511744afi-git.jinr.ru sshd[17397]: Disconnecting: Too many authentication failures [preauth] ...	2020-08-22 02:28:53
138.68.233.112	attack	138.68.233.112 - - [21/Aug/2020:18:11:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1905 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.233.112 - - [21/Aug/2020:18:11:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1890 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.233.112 - - [21/Aug/2020:18:11:38 +0100] "POST /wp-login.php HTTP/1.1" 200 1887 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-22 02:41:52
81.0.90.251	attack	srvr1: (mod_security) mod_security (id:942100) triggered by 81.0.90.251 (HU/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:01:58 [error] 482759#0: 840088 [client 81.0.90.251] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801131815.157417"] [ref ""], client: 81.0.90.251, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29+OR+UPDATEXML%285947%2CCONCAT%280x2e%2C0x317167483543%2C%28SELECT+%28ELT%282836%3D2836%2C1%29%29%29%2C0x317167483543%29%2C5431%29--+YUZJ HTTP/1.1" [redacted]	2020-08-22 02:47:03
13.233.22.253	attackspambots	Invalid user mongod from 13.233.22.253 port 51172	2020-08-22 02:16:37
195.54.167.167	attackbotsspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-21T13:47:03Z and 2020-08-21T15:39:27Z	2020-08-22 02:38:13
118.24.108.205	attackbotsspam	2020-08-21T14:02:00.476587+02:00 sshd[28150]: Failed password for root from 118.24.108.205 port 54344 ssh2	2020-08-22 02:45:52
222.186.175.148	attack	" "	2020-08-22 02:53:25
125.162.216.127	attack	Unauthorized connection attempt from IP address 125.162.216.127 on Port 445(SMB)	2020-08-22 02:51:02

Recently Reported IPs

179.188.65.114	50.150.61.233	147.169.1.238	65.98.193.87
88.86.11.18	53.151.184.245	59.249.165.198	189.116.226.198
159.164.211.133	201.92.126.44	242.246.78.254	136.65.159.104
203.122.225.174	227.202.236.106	106.39.157.74	109.191.95.116
192.94.2.237	207.238.193.79	230.253.15.13	52.67.235.28