1.0.130.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.0.130.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.0.130.149.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022301 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 05:43:45 CST 2022
;; MSG SIZE  rcvd: 104

Host info

149.130.0.1.in-addr.arpa domain name pointer node-id.pool-1-0.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.130.0.1.in-addr.arpa	name = node-id.pool-1-0.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.80.94.228	attackbots	Aug 8 20:14:23 jane sshd[12548]: Failed password for root from 114.80.94.228 port 19726 ssh2 ...	2020-08-09 03:17:57
142.93.34.169	attack	142.93.34.169 - - [08/Aug/2020:18:36:43 +0100] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.34.169 - - [08/Aug/2020:18:36:44 +0100] "POST /wp-login.php HTTP/1.1" 200 1685 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.34.169 - - [08/Aug/2020:18:36:44 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 03:40:27
129.28.158.7	attackbotsspam	20 attempts against mh-ssh on echoip	2020-08-09 03:24:03
159.89.196.75	attackbotsspam	bruteforce detected	2020-08-09 03:32:44
40.77.191.13	attackbots	Español: 181 accesos web las últimas 24 horas buscando vulnerabilidades // English: 181 Web accesses last 24 hours looking for vulnerabilities	2020-08-09 03:56:09
49.234.50.247	attack	Aug 7 06:22:55 hidden sshd[26132]: Failed password for hidden from 49.234.50.247 port 57800 ssh2 Aug 7 06:29:06 hidden sshd[27635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.50.247 user=root Aug 7 06:29:08 hidden sshd[27635]: Failed password for hidden from 49.234.50.247 port 34028 ssh2	2020-08-09 03:41:47
61.219.11.153	attack	08/08/2020-15:00:31.303611 61.219.11.153 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 63	2020-08-09 03:38:45
31.173.200.78	attack	23/tcp [2020-08-08]1pkt	2020-08-09 03:47:58
185.147.215.14	attackspam	[2020-08-08 15:08:16] NOTICE[1248] chan_sip.c: Registration from '' failed for '185.147.215.14:64326' - Wrong password [2020-08-08 15:08:16] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-08T15:08:16.714-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1416",SessionID="0x7f27203df9b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14/64326",Challenge="05d1914a",ReceivedChallenge="05d1914a",ReceivedHash="0b1236b5876b2f945427a71c13d391f4" [2020-08-08 15:08:45] NOTICE[1248] chan_sip.c: Registration from '' failed for '185.147.215.14:56995' - Wrong password [2020-08-08 15:08:45] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-08T15:08:45.265-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="355",SessionID="0x7f272030cb08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215. ...	2020-08-09 03:22:52
60.212.191.66	attackbotsspam	Aug 9 02:01:33 itv-usvr-01 sshd[990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.212.191.66 user=root Aug 9 02:01:36 itv-usvr-01 sshd[990]: Failed password for root from 60.212.191.66 port 48278 ssh2 Aug 9 02:05:26 itv-usvr-01 sshd[1181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.212.191.66 user=root Aug 9 02:05:28 itv-usvr-01 sshd[1181]: Failed password for root from 60.212.191.66 port 59103 ssh2	2020-08-09 03:28:09
192.241.210.224	attackspam	Aug 8 21:16:07 minden010 sshd[713]: Failed password for root from 192.241.210.224 port 42978 ssh2 Aug 8 21:20:05 minden010 sshd[2096]: Failed password for root from 192.241.210.224 port 54150 ssh2 ...	2020-08-09 03:44:08
45.236.129.157	attackspam	Lines containing failures of 45.236.129.157 (max 1000) Aug 3 04:39:45 UTC__SANYALnet-Labs__cac12 sshd[2468]: Connection from 45.236.129.157 port 46254 on 64.137.176.96 port 22 Aug 3 04:39:47 UTC__SANYALnet-Labs__cac12 sshd[2468]: Address 45.236.129.157 maps to angelchile.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 3 04:39:47 UTC__SANYALnet-Labs__cac12 sshd[2468]: User r.r from 45.236.129.157 not allowed because not listed in AllowUsers Aug 3 04:39:47 UTC__SANYALnet-Labs__cac12 sshd[2468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.129.157 user=r.r Aug 3 04:39:50 UTC__SANYALnet-Labs__cac12 sshd[2468]: Failed password for invalid user r.r from 45.236.129.157 port 46254 ssh2 Aug 3 04:39:50 UTC__SANYALnet-Labs__cac12 sshd[2468]: Received disconnect from 45.236.129.157 port 46254:11: Bye Bye [preauth] Aug 3 04:39:50 UTC__SANYALnet-Labs__cac12 sshd[2468]: Disconnected from 45.236.12........ ------------------------------	2020-08-09 03:50:35
177.76.247.231	attack	Automatic report - Port Scan Attack	2020-08-09 03:17:11
54.38.185.131	attackbotsspam	Fail2Ban Ban Triggered (2)	2020-08-09 03:33:47
189.4.151.102	attackspam	189.4.151.102 (BR/Brazil/bd049766.virtua.com.br), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-08-09 03:42:48

Recently Reported IPs

1.0.130.143	1.0.130.156	1.0.130.163	1.0.130.173
141.200.15.108	1.0.130.178	1.0.130.187	1.0.130.188
1.0.130.192	1.0.130.197	1.0.130.198	1.0.130.201
1.0.130.204	1.0.130.21	1.0.130.211	1.0.130.224
1.0.130.229	1.0.130.235	1.0.130.236	1.0.130.243