139.180.143.240

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: Choopa LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Portscan or hack attempt detected by psad/fwsnort	2020-02-02 13:54:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.180.143.240
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60573
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.180.143.240.		IN	A

;; AUTHORITY SECTION:
.			581	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020200 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 02 13:54:44 CST 2020
;; MSG SIZE  rcvd: 119

Host info

240.143.180.139.in-addr.arpa domain name pointer 139.180.143.240.vultr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
240.143.180.139.in-addr.arpa	name = 139.180.143.240.vultr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.24.117	attackbotsspam	Apr 5 14:36:11 pve sshd[23314]: Failed password for root from 80.211.24.117 port 37352 ssh2 Apr 5 14:40:41 pve sshd[24024]: Failed password for root from 80.211.24.117 port 49330 ssh2	2020-04-05 20:58:25
222.186.175.169	attack	Apr 5 18:12:25 gw1 sshd[10027]: Failed password for root from 222.186.175.169 port 58964 ssh2 Apr 5 18:12:38 gw1 sshd[10027]: Failed password for root from 222.186.175.169 port 58964 ssh2 Apr 5 18:12:38 gw1 sshd[10027]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 58964 ssh2 [preauth] ...	2020-04-05 21:17:25
49.232.23.127	attackspam	Apr 5 14:40:31 vpn01 sshd[11429]: Failed password for root from 49.232.23.127 port 55702 ssh2 ...	2020-04-05 21:27:42
14.177.166.111	attackbotsspam	Brute force attack to crack SMTP password (port 25 / 587)	2020-04-05 21:28:19
201.55.203.64	attack	Unauthorized connection attempt from IP address 201.55.203.64 on Port 445(SMB)	2020-04-05 20:50:52
122.99.125.85	attackbots	2020-04-05T14:45:30.766543 sshd[1025]: Invalid user ts3server2 from 122.99.125.85 port 43830 2020-04-05T14:45:30.780127 sshd[1025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.99.125.85 2020-04-05T14:45:30.766543 sshd[1025]: Invalid user ts3server2 from 122.99.125.85 port 43830 2020-04-05T14:45:32.590088 sshd[1025]: Failed password for invalid user ts3server2 from 122.99.125.85 port 43830 ssh2 ...	2020-04-05 21:01:32
176.32.34.6	attack	SIPVicious Scanner Detection	2020-04-05 21:07:52
45.141.86.128	attack	Apr 5 14:44:48 karger sshd[16195]: Connection from 45.141.86.128 port 62032 on 188.68.60.164 port 22 Apr 5 14:44:52 karger sshd[16195]: Invalid user admin from 45.141.86.128 port 62032 Apr 5 14:44:54 karger sshd[16197]: Connection from 45.141.86.128 port 30542 on 188.68.60.164 port 22 Apr 5 14:44:56 karger sshd[16197]: Invalid user support from 45.141.86.128 port 30542 Apr 5 14:44:59 karger sshd[16199]: Connection from 45.141.86.128 port 64477 on 188.68.60.164 port 22 Apr 5 14:45:01 karger sshd[16199]: Invalid user user from 45.141.86.128 port 64477 Apr 5 14:45:02 karger sshd[16248]: Connection from 45.141.86.128 port 27371 on 188.68.60.164 port 22 Apr 5 14:45:05 karger sshd[16248]: Invalid user admin from 45.141.86.128 port 27371 Apr 5 14:45:12 karger sshd[16473]: Connection from 45.141.86.128 port 24294 on 188.68.60.164 port 22 Apr 5 14:45:13 karger sshd[16473]: Invalid user admin from 45.141.86.128 port 24294 ...	2020-04-05 21:29:41
116.24.36.146	attack	1586090725 - 04/05/2020 14:45:25 Host: 116.24.36.146/116.24.36.146 Port: 445 TCP Blocked	2020-04-05 21:06:29
114.67.85.25	attackbotsspam	SSH Login Bruteforce	2020-04-05 20:57:04
136.49.109.217	attackspam	$f2bV_matches	2020-04-05 21:31:11
106.12.54.13	attack	$f2bV_matches	2020-04-05 21:31:32
49.234.194.208	attackbotsspam	Apr 5 14:41:24 ncomp sshd[31948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.194.208 user=root Apr 5 14:41:27 ncomp sshd[31948]: Failed password for root from 49.234.194.208 port 37110 ssh2 Apr 5 14:46:14 ncomp sshd[32045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.194.208 user=root Apr 5 14:46:16 ncomp sshd[32045]: Failed password for root from 49.234.194.208 port 55060 ssh2	2020-04-05 21:07:20
180.76.176.174	attack	(sshd) Failed SSH login from 180.76.176.174 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 5 14:45:42 ubnt-55d23 sshd[6248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.176.174 user=root Apr 5 14:45:44 ubnt-55d23 sshd[6248]: Failed password for root from 180.76.176.174 port 59982 ssh2	2020-04-05 20:45:50
139.199.4.219	attack	Apr 5 14:58:40 vps647732 sshd[28203]: Failed password for root from 139.199.4.219 port 43826 ssh2 ...	2020-04-05 21:11:05

Recently Reported IPs

186.91.214.189	174.28.42.100	102.9.124.82	212.126.14.222
213.226.178.188	106.13.171.34	79.86.140.155	66.245.28.49
201.198.175.76	33.145.76.8	79.135.35.227	103.43.112.105
132.34.26.80	12.213.88.184	91.192.251.209	183.8.97.88
fe80::42:acff:fe11:24	132.154.223.69	5.95.233.233	75.204.83.154