129.145.21.172

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Oracle Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	From bounce@info.sgs.com Tue Jun 02 09:02:02 2020 Received: from mail01.info.sgs.com ([129.145.21.172]:28331)	2020-06-03 02:17:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.145.21.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64674
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.145.21.172.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060201 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 03 02:17:44 CST 2020
;; MSG SIZE  rcvd: 118

Host info

172.21.145.129.in-addr.arpa domain name pointer mail01.info.sgs.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
172.21.145.129.in-addr.arpa	name = mail01.info.sgs.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.108.66.225	attackbots	Port 9722 scan denied	2020-03-13 16:07:17
36.238.111.54	attackspam	Telnetd brute force attack detected by fail2ban	2020-03-13 15:58:28
106.12.208.118	attack	Mar 13 07:23:02 legacy sshd[29545]: Failed password for root from 106.12.208.118 port 44050 ssh2 Mar 13 07:25:35 legacy sshd[29584]: Failed password for root from 106.12.208.118 port 32780 ssh2 ...	2020-03-13 16:08:03
222.24.63.126	attackspambots	Mar 13 09:48:20 server sshd\[2313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.24.63.126 user=root Mar 13 09:48:22 server sshd\[2313\]: Failed password for root from 222.24.63.126 port 58440 ssh2 Mar 13 09:55:17 server sshd\[3872\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.24.63.126 user=root Mar 13 09:55:19 server sshd\[3872\]: Failed password for root from 222.24.63.126 port 41044 ssh2 Mar 13 09:56:37 server sshd\[4006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.24.63.126 user=root ...	2020-03-13 16:11:48
139.162.77.6	attackspambots	" "	2020-03-13 16:14:24
194.67.90.41	attack	Mar 13 06:49:46 sip sshd[12249]: Failed password for root from 194.67.90.41 port 52342 ssh2 Mar 13 07:01:35 sip sshd[15195]: Failed password for root from 194.67.90.41 port 54778 ssh2	2020-03-13 16:18:27
210.242.252.134	attackbots	Telnetd brute force attack detected by fail2ban	2020-03-13 16:05:21
189.7.217.23	attackbotsspam	Invalid user jose from 189.7.217.23 port 52703	2020-03-13 15:48:33
45.63.83.160	attackspam	Mar 13 08:01:37 lnxded63 sshd[23388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.63.83.160 Mar 13 08:01:39 lnxded63 sshd[23388]: Failed password for invalid user mfptrading from 45.63.83.160 port 36683 ssh2 Mar 13 08:05:16 lnxded63 sshd[23690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.63.83.160	2020-03-13 16:06:35
61.94.36.45	attackspam	20/3/13@00:47:43: FAIL: Alarm-Network address from=61.94.36.45 ...	2020-03-13 15:48:15
195.151.89.9	attack	Lines containing failures of 195.151.89.9 Mar 11 22:32:47 shared01 sshd[686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.151.89.9 user=r.r Mar 11 22:32:49 shared01 sshd[686]: Failed password for r.r from 195.151.89.9 port 43114 ssh2 Mar 11 22:32:49 shared01 sshd[686]: Received disconnect from 195.151.89.9 port 43114:11: Bye Bye [preauth] Mar 11 22:32:49 shared01 sshd[686]: Disconnected from authenticating user r.r 195.151.89.9 port 43114 [preauth] Mar 11 22:34:32 shared01 sshd[1076]: Invalid user luis from 195.151.89.9 port 60592 Mar 11 22:34:32 shared01 sshd[1076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.151.89.9 Mar 11 22:34:34 shared01 sshd[1076]: Failed password for invalid user luis from 195.151.89.9 port 60592 ssh2 Mar 11 22:34:34 shared01 sshd[1076]: Received disconnect from 195.151.89.9 port 60592:11: Bye Bye [preauth] Mar 11 22:34:34 shared01 sshd[1076]: Disconn........ ------------------------------	2020-03-13 16:08:35
63.82.48.99	attackbotsspam	Mar 13 04:33:31 mail.srvfarm.net postfix/smtpd[2258471]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:19 mail.srvfarm.net postfix/smtpd[2269485]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:42 mail.srvfarm.net postfix/smtpd[2272686]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 13 04:36:57 mail.srvfarm.net postfix/smtpd[2270461]: NOQUEUE: reject: RCPT from unknown[63.82.48.99]: 450 4.1.8 : Sende	2020-03-13 16:36:17
190.151.216.83	attack	Automatic report - Port Scan Attack	2020-03-13 16:01:45
185.147.215.8	attackbotsspam	[2020-03-13 03:57:33] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.215.8:62930' - Wrong password [2020-03-13 03:57:33] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-13T03:57:33.306-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6430",SessionID="0x7fd82c3f03d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8/62930",Challenge="600725e7",ReceivedChallenge="600725e7",ReceivedHash="22415d28867bafb90b0aec67646144a7" [2020-03-13 03:57:55] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.215.8:55214' - Wrong password [2020-03-13 03:57:55] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-03-13T03:57:55.756-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8760",SessionID="0x7fd82ca712e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.8 ...	2020-03-13 16:13:11
49.235.36.51	attackspambots	Invalid user ftptest from 49.235.36.51 port 49822	2020-03-13 16:20:38

Recently Reported IPs

36.71.237.242	111.186.57.98	200.75.16.82	193.180.164.166
6.54.146.148	118.186.17.57	148.142.174.65	86.171.216.40
93.80.1.66	34.89.31.175	81.215.246.84	174.91.105.56
37.122.165.29	190.206.33.83	116.110.191.87	181.227.176.57
105.247.34.121	106.34.106.3	158.63.253.56	152.61.75.171