90.152.144.139

Basic Info

City: unknown

Region: unknown

Country: Austria

Internet Service Provider: A1 Telekom Austria AG

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 90.152.144.139 to port 81 [J]	2020-02-05 17:28:16
attackbotsspam	Honeypot attack, port: 81, PTR: 90-152-144-139.static.highway.a1.net.	2020-01-04 20:35:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 90.152.144.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6655
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;90.152.144.139.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 04 20:35:37 CST 2020
;; MSG SIZE  rcvd: 118

Host info

139.144.152.90.in-addr.arpa domain name pointer 90-152-144-139.static.highway.a1.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.144.152.90.in-addr.arpa	name = 90-152-144-139.static.highway.a1.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
174.138.56.93	attack	Jul 20 06:03:46 marvibiene sshd[4206]: Invalid user brett from 174.138.56.93 port 45270 Jul 20 06:03:46 marvibiene sshd[4206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.56.93 Jul 20 06:03:46 marvibiene sshd[4206]: Invalid user brett from 174.138.56.93 port 45270 Jul 20 06:03:47 marvibiene sshd[4206]: Failed password for invalid user brett from 174.138.56.93 port 45270 ssh2 ...	2019-07-20 14:27:46
132.232.104.106	attackbotsspam	Jul 20 08:32:43 legacy sshd[7989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.104.106 Jul 20 08:32:45 legacy sshd[7989]: Failed password for invalid user marcus from 132.232.104.106 port 40624 ssh2 Jul 20 08:39:11 legacy sshd[8156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.104.106 ...	2019-07-20 14:40:22
51.255.168.30	attack	Jul 20 08:51:09 meumeu sshd[12435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.30 Jul 20 08:51:11 meumeu sshd[12435]: Failed password for invalid user ranger from 51.255.168.30 port 33716 ssh2 Jul 20 08:55:48 meumeu sshd[13161]: Failed password for root from 51.255.168.30 port 60956 ssh2 ...	2019-07-20 15:01:03
62.210.80.123	attack	WordPress XMLRPC scan :: 62.210.80.123 0.084 BYPASS [20/Jul/2019:11:29:55 1000] www.[censored_1] "GET /xmlrpc.php?rsd HTTP/1.1" 200 760 "https://www.[censored_1]/knowledge-base/windows-10/windows-10-how-to-change-clock-to-12-hour-show-ampm/" "Mozilla/5.0 (Windows NT 5.1; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0"	2019-07-20 14:32:41
5.26.231.190	attackspambots	Jul 20 05:34:05 mail postfix/smtpd\[32012\]: NOQUEUE: reject: RCPT from unknown\[5.26.231.190\]: 554 5.7.1 Service unavailable\; Client host \[5.26.231.190\] blocked using zen.spamhaus.org\; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/5.26.231.190\; from=\ to=\ proto=ESMTP helo=\<\[5.26.231.190\]\>\	2019-07-20 14:30:29
41.83.80.121	attackbots	MagicSpam Rule: valid_helo_domain; Spammer IP: 41.83.80.121	2019-07-20 14:45:42
92.53.65.145	attackspambots	firewall-block, port(s): 3117/tcp, 3146/tcp	2019-07-20 14:23:48
209.237.142.184	attackbots	Automatic report - Port Scan Attack	2019-07-20 14:33:56
79.17.32.183	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-07-20 14:43:01
185.153.184.154	attackbotsspam	Jul 18 11:48:59 localhost kernel: [14709133.217539] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=185.153.184.154 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=19782 PROTO=TCP SPT=53999 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 11:48:59 localhost kernel: [14709133.217547] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=185.153.184.154 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=19782 PROTO=TCP SPT=53999 DPT=445 SEQ=2136419461 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 19 21:28:57 localhost kernel: [14830330.500197] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=185.153.184.154 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=58092 PROTO=TCP SPT=41272 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 19 21:28:57 localhost kernel: [14830330.500205] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=185.153.184.154 DST=[mungedIP2] LEN=40 TOS=	2019-07-20 14:53:45
88.251.144.150	attack	Automatic report - Port Scan Attack	2019-07-20 15:07:57
138.197.153.228	attackspambots	Invalid user jmail from 138.197.153.228 port 43350	2019-07-20 15:15:20
151.80.209.229	attackspam	2019-07-20T03:30:16.001275vfs-server-01 sshd\[10382\]: Invalid user admin from 151.80.209.229 port 52400 2019-07-20T03:30:16.410031vfs-server-01 sshd\[10387\]: Invalid user admin from 151.80.209.229 port 52770 2019-07-20T03:30:16.617446vfs-server-01 sshd\[10389\]: Invalid user user from 151.80.209.229 port 52908	2019-07-20 14:28:20
164.132.47.139	attackbots	Jul 20 08:02:42 web1 sshd\[26468\]: Invalid user sumit from 164.132.47.139 Jul 20 08:02:42 web1 sshd\[26468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.47.139 Jul 20 08:02:44 web1 sshd\[26468\]: Failed password for invalid user sumit from 164.132.47.139 port 57348 ssh2 Jul 20 08:09:08 web1 sshd\[26862\]: Invalid user th from 164.132.47.139 Jul 20 08:09:08 web1 sshd\[26862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.47.139	2019-07-20 15:10:07
14.225.3.37	attack	" "	2019-07-20 14:45:11

Recently Reported IPs

109.117.78.226	113.160.121.177	238.185.117.84	45.119.212.125
236.31.153.81	169.10.238.49	34.255.252.198	14.26.20.52
122.11.206.148	177.221.190.13	166.187.226.123	42.207.204.70
39.251.241.95	9.105.0.169	79.107.212.32	146.117.137.241
136.129.119.53	46.136.74.36	52.23.115.133	98.113.189.186