149.102.129.236

Basic Info

City: Düsseldorf

Region: Nordrhein-Westfalen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

b'#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       149.102.0.0 - 149.102.255.255
CIDR:           149.102.0.0/16
NetName:        COGENT-149-102-16
NetHandle:      NET-149-102-0-0-1
Parent:         NET149 (NET-149-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Cogent Communications, LLC (COGC)
RegDate:        1992-01-28
Updated:        2025-09-23
Ref:            https://rdap.arin.net/registry/ip/149.102.0.0



OrgName:        Cogent Communications, LLC
OrgId:          COGC
Address:        2450 N Street NW
City:           Washington
StateProv:      DC
PostalCode:     20037
Country:        US
RegDate:        2000-05-30
Updated:        2025-09-23
Comment:        Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref:            https://rdap.arin.net/registry/entity/COGC

ReferralServer:  rwhois://rwhois.cogentco.com:4321

OrgAbuseHandle: COGEN-ARIN
OrgAbuseName:   Cogent Abuse
OrgAbusePhone:  +1-877-875-4311 
OrgAbuseEmail:  abuse@cogentco.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/COGEN-ARIN

OrgTechHandle: IPALL-ARIN
OrgTechName:   IP Allocation
OrgTechPhone:  +1-877-875-4311 
OrgTechEmail:  ipalloc@cogentco.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IPALL-ARIN

OrgNOCHandle: ZC108-ARIN
OrgNOCName:   Cogent Communications
OrgNOCPhone:  +1-877-875-4311 
OrgNOCEmail:  noc@cogentco.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/ZC108-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to rwhois.cogentco.com:4321.

%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.1)
network:ID:NET4-9566800013
network:Network-Name:NET4-9566800013
network:IP-Network:149.102.128.0/19
network:Org-Name:Contabo GmbH
network:Street-Address:IN DER STEELE 39
network:City:DUSSELDORF
network:Country:DE
network:Postal-Code:40599
network:Tech-Contact:ZC108-ARIN
network:Updated:2025-04-29 23:01:11
%ok'

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.102.129.236
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37534
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.102.129.236.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025092401 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 24 21:30:47 CST 2025
;; MSG SIZE  rcvd: 108

Host info

236.129.102.149.in-addr.arpa domain name pointer vmi2736680.contaboserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
236.129.102.149.in-addr.arpa	name = vmi2736680.contaboserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.242.7.147	attack	95.242.7.147 (IT/Italy/host-95-242-7-147.business.telecomitalia.it), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-06-11 17:20:47
193.9.46.61	attackspam	Jun 11 08:27:50 lnxmail61 sshd[24729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.9.46.61	2020-06-11 16:58:27
49.232.51.60	attack	5x Failed Password	2020-06-11 17:06:02
46.38.145.253	attackbotsspam	Jun 11 11:11:33 srv01 postfix/smtpd\[16405\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:11:45 srv01 postfix/smtpd\[15832\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:12:31 srv01 postfix/smtpd\[16405\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:13:04 srv01 postfix/smtpd\[15831\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:13:19 srv01 postfix/smtpd\[15832\]: warning: unknown\[46.38.145.253\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-11 17:17:48
222.186.42.7	attackspambots	Jun 11 11:35:41 legacy sshd[16188]: Failed password for root from 222.186.42.7 port 51293 ssh2 Jun 11 11:35:43 legacy sshd[16188]: Failed password for root from 222.186.42.7 port 51293 ssh2 Jun 11 11:35:45 legacy sshd[16188]: Failed password for root from 222.186.42.7 port 51293 ssh2 ...	2020-06-11 17:39:49
49.235.143.244	attack	Jun 11 04:55:53 jumpserver sshd[22786]: Failed password for root from 49.235.143.244 port 57970 ssh2 Jun 11 04:59:20 jumpserver sshd[22801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.143.244 user=root Jun 11 04:59:23 jumpserver sshd[22801]: Failed password for root from 49.235.143.244 port 45478 ssh2 ...	2020-06-11 17:30:43
45.201.135.249	attackspam	port scan and connect, tcp 80 (http)	2020-06-11 17:26:39
159.65.189.115	attackbots	Jun 11 08:11:36 l02a sshd[17020]: Invalid user qxt from 159.65.189.115 Jun 11 08:11:36 l02a sshd[17020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.189.115 Jun 11 08:11:36 l02a sshd[17020]: Invalid user qxt from 159.65.189.115 Jun 11 08:11:38 l02a sshd[17020]: Failed password for invalid user qxt from 159.65.189.115 port 35784 ssh2	2020-06-11 17:09:08
185.176.27.30	attackspam	06/11/2020-04:48:30.825577 185.176.27.30 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-11 16:57:11
112.85.42.178	attackspambots	Jun 11 10:41:08 abendstille sshd\[15434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jun 11 10:41:09 abendstille sshd\[15444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jun 11 10:41:11 abendstille sshd\[15444\]: Failed password for root from 112.85.42.178 port 7267 ssh2 Jun 11 10:41:11 abendstille sshd\[15434\]: Failed password for root from 112.85.42.178 port 26605 ssh2 Jun 11 10:41:14 abendstille sshd\[15444\]: Failed password for root from 112.85.42.178 port 7267 ssh2 ...	2020-06-11 17:04:27
123.207.60.232	attackbotsspam	(sshd) Failed SSH login from 123.207.60.232 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 11 06:57:46 s1 sshd[2811]: Invalid user vpn from 123.207.60.232 port 47578 Jun 11 06:57:48 s1 sshd[2811]: Failed password for invalid user vpn from 123.207.60.232 port 47578 ssh2 Jun 11 07:01:16 s1 sshd[2919]: Invalid user ysw from 123.207.60.232 port 55126 Jun 11 07:01:18 s1 sshd[2919]: Failed password for invalid user ysw from 123.207.60.232 port 55126 ssh2 Jun 11 07:04:18 s1 sshd[2972]: Invalid user admin from 123.207.60.232 port 58064	2020-06-11 17:25:51
139.59.59.102	attackspambots	ssh brute force	2020-06-11 16:59:09
222.128.15.208	attackspam	Jun 11 10:37:37 dhoomketu sshd[649112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.15.208 Jun 11 10:37:37 dhoomketu sshd[649112]: Invalid user hhan from 222.128.15.208 port 53660 Jun 11 10:37:39 dhoomketu sshd[649112]: Failed password for invalid user hhan from 222.128.15.208 port 53660 ssh2 Jun 11 10:41:05 dhoomketu sshd[649270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.15.208 user=root Jun 11 10:41:07 dhoomketu sshd[649270]: Failed password for root from 222.128.15.208 port 47172 ssh2 ...	2020-06-11 17:34:24
45.148.10.39	attackbotsspam	Unauthorized connection attempt detected from IP address 45.148.10.39 to port 554 [T]	2020-06-11 17:28:35
185.176.27.42	attackspam	Jun 11 11:23:07 debian-2gb-nbg1-2 kernel: \[14126113.976169\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=59512 PROTO=TCP SPT=58546 DPT=9591 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-11 17:25:19

Recently Reported IPs

188.138.158.71	10.11.1.18	102.186.132.169	162.243.80.156
14.212.75.63	159.75.107.172	111.201.103.191	159.242.227.50
77.53.43.55	40.124.173.7	108.142.28.101	114.244.210.5
188.43.224.94	188.43.224.230	188.43.224.110	142.91.104.26
162.254.4.104	162.141.45.252	34.13.167.125	223.109.207.98