147.185.132.189

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
147.185.132.9	attack	SSH bot	2024-07-01 12:48:16
147.185.132.252	attack	Malicious IP / Malware	2024-06-14 13:00:37
147.185.132.91	attack	Malicious IP / Malware	2024-06-13 12:42:24
147.185.132.49	attack	Malicious IP / Malware	2024-06-04 13:03:49
147.185.132.37	attack	Fraud connect	2024-05-31 12:46:32

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       147.185.132.0 - 147.185.139.255
CIDR:           147.185.132.0/22, 147.185.136.0/22
NetName:        PAN-22
NetHandle:      NET-147-185-132-0-1
Parent:         NET147 (NET-147-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Palo Alto Networks, Inc (PAN-22)
RegDate:        2023-09-07
Updated:        2023-09-07
Ref:            https://rdap.arin.net/registry/ip/147.185.132.0



OrgName:        Palo Alto Networks, Inc
OrgId:          PAN-22
Address:        Palo Alto Networks
Address:        3000 Tannery Way
Address:        Santa Clara, CA 95054
City:           Santa Clara
StateProv:      CA
PostalCode:     95054
Country:        US
RegDate:        2017-11-22
Updated:        2024-11-25
Ref:            https://rdap.arin.net/registry/entity/PAN-22


OrgTechHandle: GNS20-ARIN
OrgTechName:   Global Network Services 
OrgTechPhone:  +1-408-753-4000 
OrgTechEmail:  gns-prod@paloaltonetworks.com
OrgTechRef:    https://rdap.arin.net/registry/entity/GNS20-ARIN

OrgAbuseHandle: IPABU42-ARIN
OrgAbuseName:   IP Abuse
OrgAbusePhone:  +1-408-753-4000 
OrgAbuseEmail:  dl-ipabuse@paloaltonetworks.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IPABU42-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.185.132.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2819
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;147.185.132.189.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025112902 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 30 04:00:39 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 189.132.185.147.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.132.185.147.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.54.134.145	attack	Feb 16 03:03:45 MK-Soft-VM3 sshd[21043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.134.145 Feb 16 03:03:48 MK-Soft-VM3 sshd[21043]: Failed password for invalid user chicken from 106.54.134.145 port 44056 ssh2 ...	2020-02-16 10:15:19
60.225.208.251	attackspam	Invalid user dorita from 60.225.208.251 port 58400	2020-02-16 10:41:12
193.57.40.38	attack	port	2020-02-16 10:12:43
113.161.16.112	attackspambots	Unauthorized connection attempt from IP address 113.161.16.112 on Port 445(SMB)	2020-02-16 10:12:28
180.253.98.155	attack	Unauthorized connection attempt from IP address 180.253.98.155 on Port 445(SMB)	2020-02-16 10:07:16
95.70.241.166	attackspam	Automatic report - Port Scan Attack	2020-02-16 10:30:27
188.247.65.179	attack	Jan 19 06:33:15 pi sshd[26062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.247.65.179 Jan 19 06:33:18 pi sshd[26062]: Failed password for invalid user dsj from 188.247.65.179 port 59218 ssh2	2020-02-16 10:22:46
194.26.29.129	attackbotsspam	Feb 16 00:40:48 h2177944 kernel: \[5007980.775000\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.26.29.129 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=10502 PROTO=TCP SPT=50000 DPT=3372 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 16 00:40:48 h2177944 kernel: \[5007980.775014\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.26.29.129 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=10502 PROTO=TCP SPT=50000 DPT=3372 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 16 01:17:10 h2177944 kernel: \[5010162.792091\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.26.29.129 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=56121 PROTO=TCP SPT=50000 DPT=3341 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 16 01:35:23 h2177944 kernel: \[5011256.010108\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.26.29.129 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=49677 PROTO=TCP SPT=50000 DPT=3392 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 16 01:35:23 h2177944 kernel: \[5011256.010123\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=194.26.29.129 DST=85.214.117.9	2020-02-16 10:39:34
177.139.132.78	attackspam	Automatic report - SSH Brute-Force Attack	2020-02-16 10:40:02
164.132.49.98	attackbots	2020-02-15T23:11:07.046972scmdmz1 sshd[24268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-164-132-49.eu user=root 2020-02-15T23:11:09.735574scmdmz1 sshd[24268]: Failed password for root from 164.132.49.98 port 53272 ssh2 2020-02-15T23:13:39.344603scmdmz1 sshd[24534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-164-132-49.eu user=root 2020-02-15T23:13:41.554034scmdmz1 sshd[24534]: Failed password for root from 164.132.49.98 port 50600 ssh2 2020-02-15T23:16:05.940922scmdmz1 sshd[24779]: Invalid user leonard from 164.132.49.98 port 47928 ...	2020-02-16 10:15:50
132.232.63.71	attack	Wordpress XMLRPC attack	2020-02-16 10:36:18
218.173.135.177	attack	1581804951 - 02/15/2020 23:15:51 Host: 218.173.135.177/218.173.135.177 Port: 445 TCP Blocked	2020-02-16 10:40:23
89.210.62.202	attackspambots	Port probing on unauthorized port 23	2020-02-16 10:25:17
27.74.105.58	attack	Automatic report - Port Scan Attack	2020-02-16 10:39:12
190.79.197.252	attack	Unauthorized connection attempt from IP address 190.79.197.252 on Port 445(SMB)	2020-02-16 10:17:05

Recently Reported IPs

151.203.241.9	54.153.158.37	54.208.124.191	3.90.58.105
205.210.31.50	157.156.232.241	180.153.236.114	125.94.173.234
111.6.77.15	112.65.212.202	202.120.234.42	111.221.212.230
18.182.17.243	47.99.39.250	152.42.136.22	111.221.213.99
138.197.12.227	137.184.10.92	135.237.126.204	103.167.204.86