1.52.200.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-06-21 10:30:54 1heEwe-0006mG-Mv SMTP connection from \(\[1.52.200.129\]\) \[1.52.200.129\]:14820 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 10:31:03 1heEwn-0006mO-Np SMTP connection from \(\[1.52.200.129\]\) \[1.52.200.129\]:10750 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-21 10:31:09 1heEwu-0006mb-2k SMTP connection from \(\[1.52.200.129\]\) \[1.52.200.129\]:56344 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-06-01 22:27:19

Type

Details

Datetime

attack

2019-06-21 10:30:54 1heEwe-0006mG-Mv SMTP connection from \(\[1.52.200.129\]\) \[1.52.200.129\]:14820 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-06-21 10:31:03 1heEwn-0006mO-Np SMTP connection from \(\[1.52.200.129\]\) \[1.52.200.129\]:10750 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-06-21 10:31:09 1heEwu-0006mb-2k SMTP connection from \(\[1.52.200.129\]\) \[1.52.200.129\]:56344 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-06-01 22:27:19

Comments on same subnet:

IP	Type	Details	Datetime
1.52.200.100	attackspambots	ssh failed login	2020-02-09 02:57:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.52.200.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27561
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.52.200.129.			IN	A

;; AUTHORITY SECTION:
.			283	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060100 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 22:27:11 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 129.200.52.1.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 129.200.52.1.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.126.214.158	attack	Unauthorized connection attempt from IP address 189.126.214.158 on Port 445(SMB)	2019-11-09 04:36:15
46.121.220.52	attackspam	Brute force attempt	2019-11-09 04:37:00
212.129.138.67	attackbots	Nov 8 19:08:21 work-partkepr sshd\[12761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.138.67 user=root Nov 8 19:08:23 work-partkepr sshd\[12761\]: Failed password for root from 212.129.138.67 port 51668 ssh2 ...	2019-11-09 04:38:31
187.13.231.61	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/187.13.231.61/ BR - 1H : (173) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN7738 IP : 187.13.231.61 CIDR : 187.13.192.0/18 PREFIX COUNT : 524 UNIQUE IP COUNT : 7709184 ATTACKS DETECTED ASN7738 : 1H - 1 3H - 1 6H - 5 12H - 5 24H - 8 DateTime : 2019-11-08 15:32:30 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-09 04:40:13
118.97.67.114	attack	2019-11-08T21:00:07.076350abusebot-6.cloudsearch.cf sshd\[4395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.67.114 user=root	2019-11-09 05:01:11
190.57.173.82	attackspam	Unauthorized connection attempt from IP address 190.57.173.82 on Port 445(SMB)	2019-11-09 04:52:19
124.156.13.156	attackbotsspam	Nov 8 22:25:48 hosting sshd[3537]: Invalid user chat from 124.156.13.156 port 53996 ...	2019-11-09 04:35:32
102.132.67.47	attackspambots	Brute force attempt	2019-11-09 05:04:47
207.154.193.178	attackspambots	'Fail2Ban'	2019-11-09 04:50:03
157.230.109.166	attack	2019-11-08T18:19:22.343790abusebot-8.cloudsearch.cf sshd\[8658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 user=root	2019-11-09 04:51:41
58.65.197.155	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-11-09 04:35:48
49.206.211.34	attack	Unauthorized connection attempt from IP address 49.206.211.34 on Port 445(SMB)	2019-11-09 05:06:29
168.96.199.100	attackspambots	19/11/8@09:32:37: FAIL: Alarm-Intrusion address from=168.96.199.100 19/11/8@09:32:37: FAIL: Alarm-Intrusion address from=168.96.199.100 ...	2019-11-09 04:34:50
194.152.206.93	attackbots	$f2bV_matches	2019-11-09 05:07:16
27.72.78.220	attackspam	Unauthorized connection attempt from IP address 27.72.78.220 on Port 445(SMB)	2019-11-09 04:31:52

Recently Reported IPs

174.214.178.209	130.97.244.184	41.17.19.144	41.104.34.221
15.62.56.0	168.155.117.191	115.247.10.15	162.243.139.104
67.16.78.15	80.178.150.209	157.112.54.126	160.171.66.22
93.11.220.117	53.77.104.140	93.220.16.60	216.25.128.76
20.168.9.235	183.89.212.160	15.111.97.76	38.169.185.241