1.0.148.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.0.148.156	attack	Unauthorized connection attempt from IP address 1.0.148.156 on Port 445(SMB)	2020-07-08 14:22:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.0.148.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43685
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.0.148.29.			IN	A

;; AUTHORITY SECTION:
.			299	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 135 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 03:56:14 CST 2022
;; MSG SIZE  rcvd: 103

Host info

29.148.0.1.in-addr.arpa domain name pointer node-3z1.pool-1-0.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.148.0.1.in-addr.arpa	name = node-3z1.pool-1-0.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.200.118.68	attack	UDP 185.200.118.68:43045 -> port 1194, len 42	2020-08-02 08:37:46
87.16.172.3	attackspam	Unauthorized connection attempt from IP address 87.16.172.3 on Port 445(SMB)	2020-08-02 08:46:08
104.209.195.172	attack	XSS attack with string alert(String.fromCharCode(88,83,83))	2020-08-02 08:48:09
159.203.93.122	attack	[SatAug0122:45:52.0542822020][:error][pid25893:tid139903400621824][client159.203.93.122:40677][client159.203.93.122]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"www.leolivetv.ch"][uri"/newspotter/"][unique_id"XyXUgBl57toGFAEjvL1gNgAAAQw"]\,referer:http://www.konnect.online/[SatAug0122:45:53.0723362020][:error][pid22596:tid139903295723264][client159.203.93.122:40745][client159.203.93.122]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"]	2020-08-02 08:20:57
103.141.167.85	attackbots	Attempted connection to port 445.	2020-08-02 08:24:11
109.70.100.33	attack	Tried to find non-existing directory/file on the server	2020-08-02 08:43:44
177.134.147.241	attackbotsspam	Attempted connection to port 81.	2020-08-02 08:18:16
45.143.97.3	attack	WordPress brute force	2020-08-02 08:16:10
181.226.59.173	attackbotsspam	Attempted connection to port 445.	2020-08-02 08:15:39
35.184.240.132	attackbots	WordPress brute force	2020-08-02 08:30:59
106.13.35.232	attackbotsspam	2020-08-01T22:40:19+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-08-02 08:13:39
147.75.118.38	attackspambots	xmlrpc attack	2020-08-02 08:38:13
23.240.136.91	attackspambots	WordPress brute force	2020-08-02 08:34:28
176.74.13.170	attackbotsspam	Aug 2 04:23:21 gw1 sshd[23685]: Failed password for root from 176.74.13.170 port 33588 ssh2 ...	2020-08-02 08:25:54
35.155.90.21	attackbotsspam	WordPress brute force	2020-08-02 08:31:23

Recently Reported IPs

1.0.148.255	1.0.148.34	30.16.179.250	1.0.161.198
1.0.161.200	1.0.161.202	1.0.161.205	1.0.161.207
1.0.161.21	1.0.161.213	1.0.161.214	1.0.161.216
1.0.161.220	97.58.97.133	1.0.161.224	1.0.161.227
1.0.161.231	1.0.161.234	1.0.161.238	1.0.161.24