132.148.129.180

Basic Info

City: Scottsdale

Region: Arizona

Country: United States

Internet Service Provider: GoDaddy.com LLC

Hostname: unknown

Organization: GoDaddy.com, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Apr 6 17:40:28 marvibiene sshd[56095]: Invalid user ftpuser from 132.148.129.180 port 33948 Apr 6 17:40:28 marvibiene sshd[56095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Apr 6 17:40:28 marvibiene sshd[56095]: Invalid user ftpuser from 132.148.129.180 port 33948 Apr 6 17:40:30 marvibiene sshd[56095]: Failed password for invalid user ftpuser from 132.148.129.180 port 33948 ssh2 ...	2020-04-07 01:58:52
attackspambots	SSH Brute-Force reported by Fail2Ban	2020-04-05 15:37:05
attack	Mar 29 15:14:10 *** sshd[3464]: Invalid user ubuntu from 132.148.129.180	2020-03-29 23:20:25
attackbots	Invalid user thorstenschwarz from 132.148.129.180 port 49746	2020-03-11 17:43:12
attackspambots	Mar 10 06:29:52 lnxweb62 sshd[14191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Mar 10 06:29:53 lnxweb62 sshd[14191]: Failed password for invalid user fabriefijen from 132.148.129.180 port 40828 ssh2 Mar 10 06:33:12 lnxweb62 sshd[15900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180	2020-03-10 13:58:52
attackspambots	Mar 6 00:00:27 takio sshd[30494]: Invalid user ubuntu from 132.148.129.180 port 43990 Mar 6 00:03:43 takio sshd[30512]: Invalid user admin from 132.148.129.180 port 42110 Mar 6 00:06:55 takio sshd[30533]: Invalid user postgres from 132.148.129.180 port 40400	2020-03-06 06:29:35
attack	Mar 5 14:41:12 * sshd[21663]: Failed password for root from 132.148.129.180 port 53982 ssh2	2020-03-05 22:31:21
attackbotsspam	Fail2Ban - SSH Bruteforce Attempt	2020-03-04 15:56:18
attackspambots	Invalid user www from 132.148.129.180 port 37252	2020-02-24 15:00:40
attack	none	2020-02-06 01:56:02
attackspambots	Feb 4 14:51:07 vmd26974 sshd[30836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Feb 4 14:51:08 vmd26974 sshd[30836]: Failed password for invalid user phion from 132.148.129.180 port 42050 ssh2 ...	2020-02-05 00:34:45
attack	Feb 4 09:08:41 firewall sshd[14522]: Invalid user ftpuser from 132.148.129.180 Feb 4 09:08:43 firewall sshd[14522]: Failed password for invalid user ftpuser from 132.148.129.180 port 38110 ssh2 Feb 4 09:10:16 firewall sshd[14591]: Invalid user sybase from 132.148.129.180 ...	2020-02-04 20:47:05
attackspam	2020-1-26 11:21:02 AM: ssh bruteforce [3 failed attempts]	2020-01-26 19:02:58
attackbotsspam	Jan 25 20:14:00 webhost01 sshd[28284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Jan 25 20:14:02 webhost01 sshd[28284]: Failed password for invalid user ethos from 132.148.129.180 port 56982 ssh2 ...	2020-01-25 23:35:41
attackspambots	Jan 24 20:45:20 marvibiene sshd[34535]: Invalid user ethos from 132.148.129.180 port 33560 Jan 24 20:45:20 marvibiene sshd[34535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Jan 24 20:45:20 marvibiene sshd[34535]: Invalid user ethos from 132.148.129.180 port 33560 Jan 24 20:45:21 marvibiene sshd[34535]: Failed password for invalid user ethos from 132.148.129.180 port 33560 ssh2 ...	2020-01-25 04:50:25
attackbotsspam	Jan 18 19:18:07 XXX sshd[38292]: Invalid user avis from 132.148.129.180 port 54264	2020-01-19 03:18:54
attackbotsspam	Invalid user avis from 132.148.129.180 port 58398	2020-01-17 04:10:46
attack	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Failed password for invalid user avis from 132.148.129.180 port 42388 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180	2020-01-15 16:31:25
attackbots	$f2bV_matches	2020-01-12 01:26:08
attack	Jan 7 16:50:50 server sshd\[3303\]: Invalid user user from 132.148.129.180 Jan 7 16:50:50 server sshd\[3303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-132-148-129-180.ip.secureserver.net Jan 7 16:50:52 server sshd\[3303\]: Failed password for invalid user user from 132.148.129.180 port 60288 ssh2 Jan 7 16:52:36 server sshd\[3888\]: Invalid user administrator from 132.148.129.180 Jan 7 16:52:36 server sshd\[3888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-132-148-129-180.ip.secureserver.net ...	2020-01-07 22:12:03
attackspam	Jan 6 14:14:06 ovpn sshd\[23080\]: Invalid user user from 132.148.129.180 Jan 6 14:14:06 ovpn sshd\[23080\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Jan 6 14:14:08 ovpn sshd\[23080\]: Failed password for invalid user user from 132.148.129.180 port 38604 ssh2 Jan 6 14:15:55 ovpn sshd\[23554\]: Invalid user administrator from 132.148.129.180 Jan 6 14:15:55 ovpn sshd\[23554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180	2020-01-06 21:22:05
attackbots	Automatically reported by fail2ban report script (powermetal)	2020-01-03 21:17:26
attackbots	$f2bV_matches	2019-12-22 02:12:04
attackbots	Dec 21 00:17:39 zx01vmsma01 sshd[40941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Dec 21 00:17:41 zx01vmsma01 sshd[40941]: Failed password for invalid user user from 132.148.129.180 port 57924 ssh2 ...	2019-12-21 09:07:14
attackspam	Invalid user oracle from 132.148.129.180 port 47462	2019-12-19 06:38:50
attackbotsspam	Nov 23 14:28:21 l02a sshd[15732]: Invalid user proxy from 132.148.129.180 Nov 23 14:28:23 l02a sshd[15732]: Failed password for invalid user proxy from 132.148.129.180 port 50466 ssh2 Nov 23 14:28:21 l02a sshd[15732]: Invalid user proxy from 132.148.129.180 Nov 23 14:28:23 l02a sshd[15732]: Failed password for invalid user proxy from 132.148.129.180 port 50466 ssh2	2019-11-23 22:36:44
attack	Nov 23 09:59:40 mail sshd\[7107\]: Invalid user postgres from 132.148.129.180 Nov 23 09:59:40 mail sshd\[7107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Nov 23 09:59:43 mail sshd\[7107\]: Failed password for invalid user postgres from 132.148.129.180 port 48814 ssh2 ...	2019-11-23 17:07:16
attackbotsspam	2019-11-07T18:02:17.441491homeassistant sshd[19593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 user=root 2019-11-07T18:02:19.300502homeassistant sshd[19593]: Failed password for root from 132.148.129.180 port 35826 ssh2 ...	2019-11-08 03:28:23
attackspambots	Oct 28 03:20:37 Ubuntu-1404-trusty-64-minimal sshd\[24557\]: Invalid user zimbra from 132.148.129.180 Oct 28 03:20:37 Ubuntu-1404-trusty-64-minimal sshd\[24557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180 Oct 28 03:20:39 Ubuntu-1404-trusty-64-minimal sshd\[24557\]: Failed password for invalid user zimbra from 132.148.129.180 port 46446 ssh2 Oct 28 12:59:44 Ubuntu-1404-trusty-64-minimal sshd\[32072\]: Invalid user usuario from 132.148.129.180 Oct 28 12:59:44 Ubuntu-1404-trusty-64-minimal sshd\[32072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.129.180	2019-10-28 20:31:25
attackspam	Oct 27 04:33:52 XXX sshd[49835]: Invalid user postgres from 132.148.129.180 port 59968	2019-10-27 12:39:28

Comments on same subnet:

IP	Type	Details	Datetime
132.148.129.251	attackbotsspam	Scanning and Vuln Attempts	2019-06-26 19:20:15
132.148.129.251	attackbots	xmlrpc attack	2019-06-24 19:40:35

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.129.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49088
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.148.129.180.		IN	A

;; AUTHORITY SECTION:
.			3504	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041800 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 02:35:27 +08 2019
;; MSG SIZE  rcvd: 119

Host info

180.129.148.132.in-addr.arpa domain name pointer ip-132-148-129-180.ip.secureserver.net.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
180.129.148.132.in-addr.arpa	name = ip-132-148-129-180.ip.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.158.111.168	attackspam	Sep 22 13:22:02 nextcloud sshd\[14297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.111.168 user=root Sep 22 13:22:04 nextcloud sshd\[14297\]: Failed password for root from 51.158.111.168 port 48722 ssh2 Sep 22 13:25:35 nextcloud sshd\[18673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.111.168 user=root	2020-09-22 21:07:22
104.131.106.203	attack	fail2ban/Sep 22 12:32:49 h1962932 sshd[22769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203 user=root Sep 22 12:32:51 h1962932 sshd[22769]: Failed password for root from 104.131.106.203 port 56742 ssh2 Sep 22 12:38:52 h1962932 sshd[23428]: Invalid user support from 104.131.106.203 port 38902 Sep 22 12:38:52 h1962932 sshd[23428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.106.203 Sep 22 12:38:52 h1962932 sshd[23428]: Invalid user support from 104.131.106.203 port 38902 Sep 22 12:38:54 h1962932 sshd[23428]: Failed password for invalid user support from 104.131.106.203 port 38902 ssh2	2020-09-22 20:55:58
182.190.4.53	attackspam	Autoban 182.190.4.53 ABORTED AUTH	2020-09-22 21:04:23
186.234.80.10	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-09-22 21:01:21
71.6.233.73	attackspambots	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=49152 . dstport=49152 . (3229)	2020-09-22 21:17:52
116.72.130.199	attackspambots	IP 116.72.130.199 attacked honeypot on port: 23 at 9/21/2020 10:03:46 AM	2020-09-22 20:58:47
156.54.170.118	attackspambots	SSH brute force	2020-09-22 21:17:08
51.255.168.254	attackspam	51.255.168.254 (FR/France/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 22 05:30:51 server2 sshd[20792]: Failed password for root from 51.255.168.254 port 58818 ssh2 Sep 22 05:37:53 server2 sshd[24746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.209.158 user=root Sep 22 05:37:56 server2 sshd[24746]: Failed password for root from 167.71.209.158 port 44326 ssh2 Sep 22 05:37:57 server2 sshd[24738]: Failed password for root from 137.74.219.114 port 60006 ssh2 Sep 22 05:39:09 server2 sshd[25576]: Failed password for root from 51.255.168.254 port 35040 ssh2 Sep 22 05:41:40 server2 sshd[26838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.226.205 user=root IP Addresses Blocked:	2020-09-22 21:27:18
134.122.113.222	attackspambots	Time: Tue Sep 22 11:59:44 2020 +0000 IP: 134.122.113.222 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 22 11:43:54 29-1 sshd[31034]: Invalid user afa from 134.122.113.222 port 60450 Sep 22 11:43:57 29-1 sshd[31034]: Failed password for invalid user afa from 134.122.113.222 port 60450 ssh2 Sep 22 11:56:00 29-1 sshd[32559]: Invalid user orange from 134.122.113.222 port 50120 Sep 22 11:56:02 29-1 sshd[32559]: Failed password for invalid user orange from 134.122.113.222 port 50120 ssh2 Sep 22 11:59:40 29-1 sshd[541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.113.222 user=root	2020-09-22 21:06:54
94.229.66.131	attackspam	2020-09-22T08:07:07.504589mail.thespaminator.com sshd[19975]: Invalid user ds from 94.229.66.131 port 45326 2020-09-22T08:07:09.091936mail.thespaminator.com sshd[19975]: Failed password for invalid user ds from 94.229.66.131 port 45326 ssh2 ...	2020-09-22 21:14:04
119.28.7.77	attackbots	Invalid user pgadmin from 119.28.7.77 port 52870	2020-09-22 21:26:47
134.122.117.129	attackspambots	Brute forcing email accounts	2020-09-22 21:08:24
180.100.213.63	attackbots	Sep 22 00:41:03 hosting sshd[3846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.100.213.63 user=postgres Sep 22 00:41:05 hosting sshd[3846]: Failed password for postgres from 180.100.213.63 port 40294 ssh2 ...	2020-09-22 20:58:22
45.14.150.51	attack	Sep 22 12:51:43 ip106 sshd[9293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.51 Sep 22 12:51:46 ip106 sshd[9293]: Failed password for invalid user gb from 45.14.150.51 port 39746 ssh2 ...	2020-09-22 21:04:53
177.205.157.41	attackspam	1600707847 - 09/21/2020 19:04:07 Host: 177.205.157.41/177.205.157.41 Port: 445 TCP Blocked	2020-09-22 21:06:06

Recently Reported IPs

5.45.110.136	46.27.34.44	109.245.39.35	78.165.233.129
128.199.101.148	86.107.139.160	113.22.53.137	185.253.250.167
200.87.233.68	185.200.118.68	86.160.62.255	141.145.123.175
145.239.204.118	103.36.29.41	88.71.177.209	51.254.200.204
186.179.195.109	185.143.223.135	192.3.2.85	158.176.91.183