1.2.150.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.150.15	attackbotsspam	Unauthorized connection attempt from IP address 1.2.150.15 on Port 445(SMB)	2020-03-28 02:05:58
1.2.150.40	attackbotsspam	Unauthorized connection attempt detected from IP address 1.2.150.40 to port 445	2020-01-02 22:47:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.150.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26381
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.150.129.			IN	A

;; AUTHORITY SECTION:
.			117	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 18:21:03 CST 2022
;; MSG SIZE  rcvd: 104

Host info

129.150.2.1.in-addr.arpa domain name pointer node-4g1.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
129.150.2.1.in-addr.arpa	name = node-4g1.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.220.21.98	attack	Port probing on unauthorized port 8080	2020-05-26 18:43:06
122.51.57.78	attack	May 26 11:14:58 [host] sshd[16390]: pam_unix(sshd: May 26 11:15:00 [host] sshd[16390]: Failed passwor May 26 11:18:12 [host] sshd[16460]: pam_unix(sshd:	2020-05-26 19:10:24
161.35.77.116	attackbotsspam	May2609:29:43server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=161.35.77.116DST=136.243.224.54LEN=40TOS=0x00PREC=0x00TTL=57ID=40430PROTO=TCPSPT=22375DPT=23WINDOW=31311RES=0x00SYNURGP=0May2609:29:58server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=161.35.77.116DST=136.243.224.54LEN=40TOS=0x00PREC=0x00TTL=57ID=40430PROTO=TCPSPT=22375DPT=23WINDOW=31311RES=0x00SYNURGP=0May2609:30:01server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=161.35.77.116DST=136.243.224.54LEN=40TOS=0x00PREC=0x00TTL=57ID=40430PROTO=TCPSPT=22375DPT=23WINDOW=31311RES=0x00SYNURGP=0May2609:30:02server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=161.35.77.116DST=136.243.224.54LEN=40TOS=0x00PREC=0x00TTL=57ID=40430PROTO=TCPSPT=22375DPT=23WINDOW=31311RES=0x00SYNURGP=0May2609:30:04server2kernel:Firewall:\TCP_INBlocked\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52	2020-05-26 19:01:41
49.159.180.116	attack	1590478248 - 05/26/2020 09:30:48 Host: 49.159.180.116/49.159.180.116 Port: 445 TCP Blocked	2020-05-26 19:21:24
2.236.188.179	attack	May 26 12:33:41 minden010 sshd[13607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.236.188.179 May 26 12:33:43 minden010 sshd[13607]: Failed password for invalid user test from 2.236.188.179 port 59236 ssh2 May 26 12:41:09 minden010 sshd[17984]: Failed password for root from 2.236.188.179 port 38796 ssh2 ...	2020-05-26 19:04:18
117.48.228.46	attack	May 26 01:04:49 dignus sshd[17646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.228.46 user=root May 26 01:04:51 dignus sshd[17646]: Failed password for root from 117.48.228.46 port 53122 ssh2 May 26 01:07:07 dignus sshd[17745]: Invalid user rosemarie from 117.48.228.46 port 57422 May 26 01:07:07 dignus sshd[17745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.48.228.46 May 26 01:07:10 dignus sshd[17745]: Failed password for invalid user rosemarie from 117.48.228.46 port 57422 ssh2 ...	2020-05-26 19:15:10
51.83.73.115	attack	May 25 21:56:44 php1 sshd\[29524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.73.115 user=root May 25 21:56:45 php1 sshd\[29524\]: Failed password for root from 51.83.73.115 port 40646 ssh2 May 25 21:59:23 php1 sshd\[30296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.73.115 user=sshd May 25 21:59:25 php1 sshd\[30296\]: Failed password for sshd from 51.83.73.115 port 33554 ssh2 May 25 22:02:03 php1 sshd\[30506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.73.115 user=root	2020-05-26 18:41:22
125.224.165.7	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-26 19:14:48
194.36.191.35	attackbotsspam	(mod_security) mod_security (id:210730) triggered by 194.36.191.35 (NL/Netherlands/-): 5 in the last 3600 secs	2020-05-26 19:06:38
213.251.41.225	attack	(sshd) Failed SSH login from 213.251.41.225 (DE/Germany/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 26 10:01:08 ubnt-55d23 sshd[18526]: Invalid user lorimor from 213.251.41.225 port 45798 May 26 10:01:10 ubnt-55d23 sshd[18526]: Failed password for invalid user lorimor from 213.251.41.225 port 45798 ssh2	2020-05-26 18:56:32
95.177.173.99	attackspambots	May 26 09:23:12 abendstille sshd\[31828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.177.173.99 user=root May 26 09:23:14 abendstille sshd\[31828\]: Failed password for root from 95.177.173.99 port 55316 ssh2 May 26 09:27:05 abendstille sshd\[3371\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.177.173.99 user=root May 26 09:27:07 abendstille sshd\[3371\]: Failed password for root from 95.177.173.99 port 59838 ssh2 May 26 09:31:01 abendstille sshd\[7121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.177.173.99 user=root ...	2020-05-26 18:59:41
196.52.43.58	attackspambots	Unauthorized connection attempt detected from IP address 196.52.43.58 to port 2002 [T]	2020-05-26 19:01:24
213.159.41.237	attackspambots	37215/tcp [2020-05-26]1pkt	2020-05-26 18:56:54
123.24.182.140	attackbotsspam	445/tcp [2020-05-26]1pkt	2020-05-26 18:45:40
14.127.243.155	attackbots	ICMP MH Probe, Scan /Distributed -	2020-05-26 18:43:55

Recently Reported IPs

1.2.150.104	1.2.150.17	168.66.44.158	1.2.150.173
1.2.150.174	45.95.39.99	1.2.150.188	1.2.150.191
1.2.150.20	1.2.150.200	1.2.150.224	1.2.150.241
216.55.149.132	1.2.159.25	1.2.159.252	1.2.159.32
173.208.110.183	1.2.159.54	1.2.159.87	1.2.159.92