195.54.140.132

Basic Info

City: Uddevalla

Region: Västra Götaland

Country: Sweden

Internet Service Provider: Tele2

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.54.140.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28620
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;195.54.140.132.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 06:59:07 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 132.140.54.195.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 132.140.54.195.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.210.62.45	attackbots	Aug 29 16:15:32 pkdns2 sshd\[37886\]: Address 190.210.62.45 maps to customer-static-210-62-45.iplannetworks.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 29 16:15:34 pkdns2 sshd\[37886\]: Failed password for root from 190.210.62.45 port 36078 ssh2Aug 29 16:19:56 pkdns2 sshd\[38047\]: Address 190.210.62.45 maps to customer-static-210-62-45.iplannetworks.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 29 16:19:56 pkdns2 sshd\[38047\]: Invalid user marilena from 190.210.62.45Aug 29 16:19:58 pkdns2 sshd\[38047\]: Failed password for invalid user marilena from 190.210.62.45 port 43832 ssh2Aug 29 16:24:11 pkdns2 sshd\[38286\]: Address 190.210.62.45 maps to customer-static-210-62-45.iplannetworks.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Aug 29 16:24:11 pkdns2 sshd\[38286\]: Invalid user zzy from 190.210.62.45Aug 29 16:24:12 pkdns2 sshd\[38286\]: Failed password for invalid user zzy from 190.210.6 ...	2020-08-30 01:21:04
144.217.85.124	attack	Aug 29 09:08:24 host sshd\[17964\]: Invalid user nikhil from 144.217.85.124 Aug 29 09:08:24 host sshd\[17964\]: Failed password for invalid user nikhil from 144.217.85.124 port 59658 ssh2 Aug 29 09:12:21 host sshd\[18938\]: Invalid user tomcat from 144.217.85.124 Aug 29 09:12:21 host sshd\[18938\]: Failed password for invalid user tomcat from 144.217.85.124 port 39932 ssh2 ...	2020-08-30 01:58:45
82.102.122.9	attackspam	82.102.122.9 - - [29/Aug/2020:08:06:48 -0400] "POST /xmlrpc.php HTTP/1.1" 404 208 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36" 82.102.122.9 - - [29/Aug/2020:08:06:48 -0400] "POST /wordpress/xmlrpc.php HTTP/1.1" 404 218 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36" 82.102.122.9 - - [29/Aug/2020:08:06:49 -0400] "POST /blog/xmlrpc.php HTTP/1.1" 404 213 "-" "Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.2309.372 Safari/537.36" ...	2020-08-30 01:28:39
119.28.238.101	attack	$f2bV_matches	2020-08-30 01:29:10
112.85.42.238	attack	Aug 29 17:16:50 jumpserver sshd[88393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.238 user=root Aug 29 17:16:51 jumpserver sshd[88393]: Failed password for root from 112.85.42.238 port 47544 ssh2 Aug 29 17:16:54 jumpserver sshd[88393]: Failed password for root from 112.85.42.238 port 47544 ssh2 ...	2020-08-30 01:19:13
68.183.90.64	attackbotsspam	Aug 29 19:17:00 sshd\[11356\]: Invalid user ad from 68.183.90.64Aug 29 19:17:02 sshd\[11356\]: Failed password for invalid user ad from 68.183.90.64 port 59506 ssh2 ...	2020-08-30 01:19:37
45.183.3.217	attackspam	1598702788 - 08/29/2020 14:06:28 Host: 45.183.3.217/45.183.3.217 Port: 445 TCP Blocked	2020-08-30 01:41:27
51.91.158.178	attack	Port scan denied	2020-08-30 01:23:14
95.85.28.125	attackbotsspam	$f2bV_matches	2020-08-30 01:32:34
18.18.248.17	attack	SQL Injection (attack)	2020-08-30 01:57:18
196.219.46.130	attackspam	Icarus honeypot on github	2020-08-30 01:43:07
193.31.24.77	attackspambots	193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 193.31.24.77 - - [29/Aug/2020:18:30:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/6 ...	2020-08-30 01:43:48
114.119.163.4	attack	[Sat Aug 29 19:06:48.719056 2020] [:error] [pid 14205:tid 139817367504640] [client 114.119.163.4:2970] [client 114.119.163.4] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/1528-kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kabupaten-tranggalek"] [unique_id "X0pE2Mn7VYhmitREAl4agwAAARA"] ...	2020-08-30 01:29:40
132.147.77.150	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-30 01:17:52
47.99.35.235	attack	SSH brutforce	2020-08-30 01:51:57

Recently Reported IPs

174.251.169.101	89.136.82.166	173.24.249.222	77.194.251.86
95.80.198.29	114.87.192.163	51.178.86.80	67.155.74.8
122.130.109.3	37.5.254.166	1.27.137.16	69.104.115.245
109.233.187.190	138.128.202.250	87.7.22.5	111.0.241.214
69.193.194.70	72.50.180.50	114.238.46.227	73.164.61.9