1.199.74.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Henan Telecom Corporation

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 1.199.74.129 on Port 445(SMB)	2020-08-13 08:52:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.199.74.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3639
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.199.74.129.			IN	A

;; AUTHORITY SECTION:
.			447	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081203 1800 900 604800 86400

;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 13 08:52:24 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 129.74.199.1.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.82.98, trying next server
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.74.199.1.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
204.111.241.83	attack	[ssh] SSH attack	2020-05-26 03:00:14
139.59.23.128	attackbots	May 25 19:14:14 ArkNodeAT sshd\[28389\]: Invalid user nobody4 from 139.59.23.128 May 25 19:14:14 ArkNodeAT sshd\[28389\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.23.128 May 25 19:14:16 ArkNodeAT sshd\[28389\]: Failed password for invalid user nobody4 from 139.59.23.128 port 47090 ssh2	2020-05-26 03:12:04
138.197.132.143	attackspambots	Invalid user pma from 138.197.132.143 port 42732	2020-05-26 03:12:29
124.82.88.120	attackspambots	Invalid user supervisor from 124.82.88.120 port 49808	2020-05-26 03:14:10
217.19.154.218	attack	Invalid user wwwadmin from 217.19.154.218 port 50289	2020-05-26 02:57:50
167.71.210.171	attack	2020-05-25T14:26:12.871104mail.thespaminator.com sshd[21222]: Invalid user orlando from 167.71.210.171 port 40632 2020-05-25T14:26:15.123171mail.thespaminator.com sshd[21222]: Failed password for invalid user orlando from 167.71.210.171 port 40632 ssh2 ...	2020-05-26 02:38:08
144.217.89.55	attackspam	May 25 19:03:12 sshd\[3408\]: User root from 55.ip-144-217-89.net not allowed because not listed in AllowUsersMay 25 19:03:14 sshd\[3408\]: Failed password for invalid user root from 144.217.89.55 port 41970 ssh2 ...	2020-05-26 02:40:11
111.229.202.53	attack	2020-05-25T17:51:16.643743abusebot-2.cloudsearch.cf sshd[23637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.202.53 user=root 2020-05-25T17:51:18.463905abusebot-2.cloudsearch.cf sshd[23637]: Failed password for root from 111.229.202.53 port 41172 ssh2 2020-05-25T17:55:00.605410abusebot-2.cloudsearch.cf sshd[23694]: Invalid user nkinyanjui from 111.229.202.53 port 50622 2020-05-25T17:55:00.610883abusebot-2.cloudsearch.cf sshd[23694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.202.53 2020-05-25T17:55:00.605410abusebot-2.cloudsearch.cf sshd[23694]: Invalid user nkinyanjui from 111.229.202.53 port 50622 2020-05-25T17:55:02.184661abusebot-2.cloudsearch.cf sshd[23694]: Failed password for invalid user nkinyanjui from 111.229.202.53 port 50622 ssh2 2020-05-25T17:58:38.428468abusebot-2.cloudsearch.cf sshd[23703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ru ...	2020-05-26 02:46:15
140.143.134.86	attackbotsspam	Invalid user alien from 140.143.134.86 port 36296	2020-05-26 03:10:58
124.156.105.47	attackbotsspam	Lines containing failures of 124.156.105.47 May 24 18:19:24 penfold sshd[1877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.105.47 user=r.r May 24 18:19:26 penfold sshd[1877]: Failed password for r.r from 124.156.105.47 port 48544 ssh2 May 24 18:19:28 penfold sshd[1877]: Received disconnect from 124.156.105.47 port 48544:11: Bye Bye [preauth] May 24 18:19:28 penfold sshd[1877]: Disconnected from authenticating user r.r 124.156.105.47 port 48544 [preauth] May 24 18:28:20 penfold sshd[2420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.105.47 user=r.r May 24 18:28:22 penfold sshd[2420]: Failed password for r.r from 124.156.105.47 port 54540 ssh2 May 24 18:28:22 penfold sshd[2420]: Received disconnect from 124.156.105.47 port 54540:11: Bye Bye [preauth] May 24 18:28:22 penfold sshd[2420]: Disconnected from authenticating user r.r 124.156.105.47 port 54540 [preauth] May 2........ ------------------------------	2020-05-26 03:13:38
185.58.226.235	attackspambots	May 26 03:15:22 web1 sshd[15793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.58.226.235 user=root May 26 03:15:24 web1 sshd[15793]: Failed password for root from 185.58.226.235 port 38312 ssh2 May 26 03:20:58 web1 sshd[17107]: Invalid user nicolae from 185.58.226.235 port 56214 May 26 03:20:58 web1 sshd[17107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.58.226.235 May 26 03:20:58 web1 sshd[17107]: Invalid user nicolae from 185.58.226.235 port 56214 May 26 03:21:00 web1 sshd[17107]: Failed password for invalid user nicolae from 185.58.226.235 port 56214 ssh2 May 26 03:23:06 web1 sshd[17593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.58.226.235 user=root May 26 03:23:09 web1 sshd[17593]: Failed password for root from 185.58.226.235 port 36184 ssh2 May 26 03:25:09 web1 sshd[18137]: Invalid user filip from 185.58.226.235 port 44392 ...	2020-05-26 03:04:00
138.68.105.194	attackspam	[ssh] SSH attack	2020-05-26 03:12:44
119.115.128.2	attackbots	$f2bV_matches	2020-05-26 02:44:59
36.110.111.51	attack	Invalid user horde from 36.110.111.51 port 47600	2020-05-26 02:55:22
209.141.40.12	attackspambots	May 25 18:07:28 ip-172-31-62-245 sshd\[6526\]: Invalid user guest from 209.141.40.12\ May 25 18:07:31 ip-172-31-62-245 sshd\[6523\]: Invalid user hadoop from 209.141.40.12\ May 25 18:07:31 ip-172-31-62-245 sshd\[6524\]: Invalid user opc from 209.141.40.12\ May 25 18:07:31 ip-172-31-62-245 sshd\[6525\]: Invalid user ec2-user from 209.141.40.12\ May 25 18:07:31 ip-172-31-62-245 sshd\[6531\]: Invalid user oracle from 209.141.40.12\	2020-05-26 02:59:30

Recently Reported IPs

84.208.117.51	75.70.226.43	175.54.163.72	73.79.45.243
107.0.172.247	58.211.117.198	109.133.208.114	46.147.221.57
118.68.11.199	133.41.205.243	172.192.176.21	124.83.37.181
198.29.18.59	86.113.85.230	191.204.14.75	153.164.214.160
41.37.90.234	26.242.159.198	12.83.179.181	118.88.239.224