139.180.137.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
139.180.137.163	attack	Registration form abuse	2020-06-30 23:56:29
139.180.137.38	attackbots	2020-02-01 15:30:38 SMTP protocol synchronization error $input sent without waiting for greeting$: rejected connection from H=\[139.180.137.38\]:63683 I=\[193.107.88.166\]:25 input="CONNECT 35.170.216.115:443 HTTP/" 2020-02-01 15:30:38 SMTP protocol synchronization error $input sent without waiting for greeting$: rejected connection from H=\[139.180.137.38\]:63707 I=\[193.107.88.166\]:25 input="\004\001\001�\#��s" 2020-02-01 15:30:38 SMTP protocol synchronization error $input sent without waiting for greeting$: rejected connection from H=\[139.180.137.38\]:63728 I=\[193.107.88.166\]:25 input="\005\001" ...	2020-02-05 01:09:06
139.180.137.254	attackbots	Invalid user tc from 139.180.137.254 port 39268	2020-01-10 23:07:33
139.180.137.254	attackbots	(sshd) Failed SSH login from 139.180.137.254 (SG/Singapore/139.180.137.254.vultr.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 8 01:27:15 svr sshd[2962991]: Invalid user gameservers from 139.180.137.254 port 38980 Jan 8 01:27:17 svr sshd[2962991]: Failed password for invalid user gameservers from 139.180.137.254 port 38980 ssh2 Jan 8 01:44:44 svr sshd[3020581]: Invalid user server from 139.180.137.254 port 55294 Jan 8 01:44:46 svr sshd[3020581]: Failed password for invalid user server from 139.180.137.254 port 55294 ssh2 Jan 8 01:48:06 svr sshd[3031942]: Invalid user aiq from 139.180.137.254 port 59084	2020-01-08 18:19:01
139.180.137.254	attack	Dec 5 05:50:12 sbg01 sshd[10065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 Dec 5 05:50:14 sbg01 sshd[10065]: Failed password for invalid user admin from 139.180.137.254 port 33640 ssh2 Dec 5 05:56:42 sbg01 sshd[10126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254	2019-12-05 13:49:28
139.180.137.254	attackbotsspam	Dec 5 01:11:55 vibhu-HP-Z238-Microtower-Workstation sshd\[5153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 user=root Dec 5 01:11:57 vibhu-HP-Z238-Microtower-Workstation sshd\[5153\]: Failed password for root from 139.180.137.254 port 41110 ssh2 Dec 5 01:20:10 vibhu-HP-Z238-Microtower-Workstation sshd\[5619\]: Invalid user stoklosa from 139.180.137.254 Dec 5 01:20:10 vibhu-HP-Z238-Microtower-Workstation sshd\[5619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 Dec 5 01:20:12 vibhu-HP-Z238-Microtower-Workstation sshd\[5619\]: Failed password for invalid user stoklosa from 139.180.137.254 port 52748 ssh2 ...	2019-12-05 03:53:44
139.180.137.254	attack	detected by Fail2Ban	2019-12-04 00:54:10
139.180.137.254	attack	2019-12-01 07:00:33 server sshd[42235]: Failed password for invalid user test from 139.180.137.254 port 43538 ssh2	2019-12-02 00:25:11
139.180.137.254	attackspam	Lines containing failures of 139.180.137.254 Nov 25 20:27:58 shared07 sshd[15838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 user=r.r Nov 25 20:28:00 shared07 sshd[15838]: Failed password for r.r from 139.180.137.254 port 43568 ssh2 Nov 25 20:28:00 shared07 sshd[15838]: Received disconnect from 139.180.137.254 port 43568:11: Bye Bye [preauth] Nov 25 20:28:00 shared07 sshd[15838]: Disconnected from authenticating user r.r 139.180.137.254 port 43568 [preauth] Nov 25 20:57:50 shared07 sshd[25744]: Invalid user selamat from 139.180.137.254 port 49668 Nov 25 20:57:50 shared07 sshd[25744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 Nov 25 20:57:52 shared07 sshd[25744]: Failed password for invalid user selamat from 139.180.137.254 port 49668 ssh2 Nov 25 20:57:52 shared07 sshd[25744]: Received disconnect from 139.180.137.254 port 49668:11: Bye Bye [preauth]........ ------------------------------	2019-11-27 04:09:31
139.180.137.254	attack	Nov 23 13:28:19 debian sshd\[21531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 user=root Nov 23 13:28:20 debian sshd\[21531\]: Failed password for root from 139.180.137.254 port 58760 ssh2 Nov 23 13:34:54 debian sshd\[21939\]: Invalid user oooo from 139.180.137.254 port 51406 Nov 23 13:34:54 debian sshd\[21939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.180.137.254 ...	2019-11-23 18:38:47
139.180.137.254	attackspambots	$f2bV_matches	2019-11-22 14:13:09
139.180.137.216	attackbotsspam	2019-08-1522:17:51dovecot_plainauthenticatorfailedfor$g6juv4vfbuu59gqmke3kyvmued6kn$[14.225.3.16]:55054:535Incorrectauthenticationdata$set_id=info$2019-08-1522:11:59dovecot_plainauthenticatorfailedfor$ikxtaqzpbvzha0h5pkxxrvvcaow9u613$[14.225.3.16]:42385:535Incorrectauthenticationdata$set_id=info$2019-08-1522:10:53dovecot_plainauthenticatorfailedfor$dv4orrvgfo0fhuvj0p0tjntekssvsz$[139.180.137.216]:40118:535Incorrectauthenticationdata$set_id=info$2019-08-1521:58:52dovecot_plainauthenticatorfailedfor$[191.53.195.232]$[191.53.195.232]:37092:535Incorrectauthenticationdata$set_id=info$2019-08-1521:44:41dovecot_plainauthenticatorfailedfor$[177.21.198.140]$[177.21.198.140]:32780:535Incorrectauthenticationdata$set_id=info$2019-08-1521:29:56dovecot_plainauthenticatorfailedfor$[138.36.200.238]$[138.36.200.238]:52220:535Incorrectauthenticationdata$set_id=info$2019-08-1522:12:19dovecot_plainauthenticatorfailedforip-192-169-216-124.ip.secureserver.net$comgn6j34cvvnuxh64r090jhs1$[192.169.216.124]:5	2019-08-16 07:38:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.180.137.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46515
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.180.137.1.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 04:06:31 CST 2022
;; MSG SIZE  rcvd: 106

Host info

1.137.180.139.in-addr.arpa domain name pointer 139.180.137.1.vultr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.137.180.139.in-addr.arpa	name = 139.180.137.1.vultr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.106.163.130	attackspambots	Apr 16 14:05:24 xeon postfix/smtpd[26637]: warning: unknown[177.106.163.130]: SASL LOGIN authentication failed: authentication failure	2020-04-17 02:27:29
94.177.232.23	attackspam	Apr 16 08:20:24 mockhub sshd[20651]: Failed password for root from 94.177.232.23 port 40774 ssh2 Apr 16 08:25:18 mockhub sshd[20872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.232.23 ...	2020-04-17 02:28:58
222.186.30.167	attackbotsspam	Apr 16 20:19:45 * sshd[18491]: Failed password for root from 222.186.30.167 port 46107 ssh2	2020-04-17 02:26:32
157.100.33.90	attack	Lines containing failures of 157.100.33.90 (max 1000) Apr 16 10:38:13 ks3373544 sshd[4515]: reveeclipse mapping checking getaddrinfo for host-157-100-33-90.ecua.net.ec [157.100.33.90] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 16 10:38:13 ks3373544 sshd[4515]: Invalid user tab2 from 157.100.33.90 port 60396 Apr 16 10:38:13 ks3373544 sshd[4515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.33.90 Apr 16 10:38:16 ks3373544 sshd[4515]: Failed password for invalid user tab2 from 157.100.33.90 port 60396 ssh2 Apr 16 10:38:16 ks3373544 sshd[4515]: Received disconnect from 157.100.33.90 port 60396:11: Bye Bye [preauth] Apr 16 10:38:16 ks3373544 sshd[4515]: Disconnected from 157.100.33.90 port 60396 [preauth] Apr 16 10:41:59 ks3373544 sshd[7422]: reveeclipse mapping checking getaddrinfo for host-157-100-33-90.ecua.net.ec [157.100.33.90] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 16 10:41:59 ks3373544 sshd[7422]: Invalid user aq from 15........ ------------------------------	2020-04-17 02:30:45
149.210.91.215	attackspam	(smtpauth) Failed SMTP AUTH login from 149.210.91.215 (GR/Greece/149-210-91-215.mobile.ren.cosmote.net): 5 in the last 3600 secs	2020-04-17 03:01:16
94.191.64.59	attackspam	Triggered by Fail2Ban at Ares web server	2020-04-17 02:31:04
221.12.59.212	attackbots	Unauthorized connection attempt detected from IP address 221.12.59.212 to port 1433	2020-04-17 02:37:10
193.112.98.79	attackbots	(sshd) Failed SSH login from 193.112.98.79 (CN/China/-): 5 in the last 3600 secs	2020-04-17 03:00:26
190.85.34.203	attackbots	Apr 16 20:43:35 sshd[18536]: Failed password for invalid user t from 190.85.34.203 port 42316 ssh2	2020-04-17 03:02:53
13.75.64.155	attack	Apr 16 19:52:10 derzbach sshd[20141]: Invalid user fa from 13.75.64.155 port 54092 Apr 16 19:52:12 derzbach sshd[20141]: Failed password for invalid user fa from 13.75.64.155 port 54092 ssh2 Apr 16 19:54:35 derzbach sshd[29645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.64.155 user=r.r Apr 16 19:54:37 derzbach sshd[29645]: Failed password for r.r from 13.75.64.155 port 32372 ssh2 Apr 16 19:57:02 derzbach sshd[7495]: Invalid user postgres from 13.75.64.155 port 10672 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=13.75.64.155	2020-04-17 02:42:48
218.95.175.166	attackspambots	2020-04-16T20:33:15.501639amanda2.illicoweb.com sshd\[29951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.95.175.166 user=root 2020-04-16T20:33:17.744371amanda2.illicoweb.com sshd\[29951\]: Failed password for root from 218.95.175.166 port 40519 ssh2 2020-04-16T20:38:02.740523amanda2.illicoweb.com sshd\[30136\]: Invalid user admin from 218.95.175.166 port 63044 2020-04-16T20:38:02.743039amanda2.illicoweb.com sshd\[30136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.95.175.166 2020-04-16T20:38:04.388051amanda2.illicoweb.com sshd\[30136\]: Failed password for invalid user admin from 218.95.175.166 port 63044 ssh2 ...	2020-04-17 02:45:03
222.160.207.157	attack	port scan and connect, tcp 23 (telnet)	2020-04-17 03:04:05
222.186.175.167	attackbotsspam	Apr 16 14:33:53 NPSTNNYC01T sshd[10721]: Failed password for root from 222.186.175.167 port 52182 ssh2 Apr 16 14:34:06 NPSTNNYC01T sshd[10721]: error: maximum authentication attempts exceeded for root from 222.186.175.167 port 52182 ssh2 [preauth] Apr 16 14:34:12 NPSTNNYC01T sshd[10732]: Failed password for root from 222.186.175.167 port 18206 ssh2 ...	2020-04-17 02:38:41
139.59.46.167	attack	Apr 16 13:30:50 ny01 sshd[8926]: Failed password for root from 139.59.46.167 port 58182 ssh2 Apr 16 13:34:23 ny01 sshd[9389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.46.167 Apr 16 13:34:26 ny01 sshd[9389]: Failed password for invalid user tc from 139.59.46.167 port 57214 ssh2	2020-04-17 02:41:09
122.224.98.46	attackspambots	Fail2Ban Ban Triggered (2)	2020-04-17 02:38:55

Recently Reported IPs

139.180.135.103	139.180.140.238	139.180.144.104	139.180.141.81
139.180.144.232	139.180.140.21	139.180.145.71	139.180.144.40
139.180.145.80	139.180.147.103	139.180.154.109	139.180.154.183
139.180.158.43	139.180.153.187	139.180.156.37	139.180.157.183
139.180.158.248	139.180.159.109	139.180.159.153	139.180.159.249