149.128.204.197

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.128.204.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 823
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.128.204.197.		IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011002 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 12:33:43 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 197.204.128.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 197.204.128.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.13.28	attackbotsspam	Jun 19 10:11:34 server sshd\[231040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.13.28 user=root Jun 19 10:11:36 server sshd\[231040\]: Failed password for root from 157.230.13.28 port 56896 ssh2 Jun 19 10:17:28 server sshd\[231436\]: Invalid user cssserver from 157.230.13.28 ...	2019-07-12 01:40:03
154.125.80.151	attackbots	May 10 04:28:31 server sshd\[39670\]: Invalid user pi from 154.125.80.151 May 10 04:28:31 server sshd\[39669\]: Invalid user pi from 154.125.80.151 May 10 04:28:31 server sshd\[39670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.125.80.151 May 10 04:28:31 server sshd\[39669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.125.80.151 May 10 04:28:33 server sshd\[39670\]: Failed password for invalid user pi from 154.125.80.151 port 54420 ssh2 May 10 04:28:33 server sshd\[39669\]: Failed password for invalid user pi from 154.125.80.151 port 54418 ssh2 ...	2019-07-12 02:15:14
116.196.89.239	attackspam	Jul 8 20:19:42 vm8 sshd[20850]: Did not receive identification string from 116.196.89.239 port 56365 Jul 8 20:20:46 vm8 sshd[21242]: Invalid user packer from 116.196.89.239 port 43404 Jul 8 20:20:46 vm8 sshd[21242]: Received disconnect from 116.196.89.239 port 43404:11: Normal Shutdown, Thank you for playing [preauth] Jul 8 20:20:46 vm8 sshd[21242]: Disconnected from 116.196.89.239 port 43404 [preauth] Jul 8 20:21:37 vm8 sshd[21567]: Invalid user sandeep from 116.196.89.239 port 56349 Jul 8 20:21:37 vm8 sshd[21567]: Received disconnect from 116.196.89.239 port 56349:11: Normal Shutdown, Thank you for playing [preauth] Jul 8 20:21:37 vm8 sshd[21567]: Disconnected from 116.196.89.239 port 56349 [preauth] Jul 8 20:22:28 vm8 sshd[21883]: Invalid user db2 from 116.196.89.239 port 41043 Jul 8 20:22:28 vm8 sshd[21883]: Received disconnect from 116.196.89.239 port 41043:11: Normal Shutdown, Thank you for playing [preauth] Jul 8 20:22:28 vm8 sshd[21883]: Disconnected f........ -------------------------------	2019-07-12 02:13:28
111.241.59.167	attackbotsspam	37215/tcp [2019-07-11]1pkt	2019-07-12 01:43:31
113.5.107.75	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-12 02:03:36
62.133.58.66	attack	Jul 11 18:43:11 mail postfix/smtpd\[22887\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 11 19:02:58 mail postfix/smtpd\[23322\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 11 19:42:46 mail postfix/smtpd\[25890\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 11 20:02:40 mail postfix/smtpd\[26283\]: warning: unknown\[62.133.58.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-12 02:22:57
41.74.19.253	attackspambots	Honeypot attack, port: 445, PTR: 253.19.74.41-ip-dyn.orange.mg.	2019-07-12 01:54:29
120.77.150.214	attackbots	[ThuJul1115:58:05.1088232019][:error][pid9689:tid47152600213248][client120.77.150.214:53800][client120.77.150.214]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php\\\\\\\\.$\?$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1257"][id"390597"][rev"1"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attempttoaccessbackupconfigfile$disablethisruleifyourequireaccesstothesebackupfiles$"][severity"CRITICAL"][hostname"www.massimilianoparquet.ch"][uri"/wordpress/wp-config.php.backup"][unique_id"XSdAbZMsgtC5jLFqwIMwAwAAAAs"][ThuJul1116:13:02.6114422019][:error][pid9690:tid47152591808256][client120.77.150.214:53812][client120.77.150.214]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php\\\\\\\\.$\?$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/usr/lo	2019-07-12 02:26:28
93.23.6.66	attack	Jun 28 23:15:52 server sshd\[30196\]: Invalid user webuser from 93.23.6.66 Jun 28 23:15:52 server sshd\[30196\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.23.6.66 Jun 28 23:15:54 server sshd\[30196\]: Failed password for invalid user webuser from 93.23.6.66 port 51931 ssh2 ...	2019-07-12 02:03:59
154.8.139.43	attack	May 31 17:04:23 server sshd\[221430\]: Invalid user xj from 154.8.139.43 May 31 17:04:23 server sshd\[221430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.139.43 May 31 17:04:25 server sshd\[221430\]: Failed password for invalid user xj from 154.8.139.43 port 58056 ssh2 ...	2019-07-12 02:11:32
153.36.242.143	attackspambots	Jul 11 14:21:26 plusreed sshd[20334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Jul 11 14:21:28 plusreed sshd[20334]: Failed password for root from 153.36.242.143 port 24020 ssh2 ...	2019-07-12 02:23:57
95.68.188.233	attack	Jul 11 15:47:02 xxxxxxx0 sshd[17308]: Failed password for r.r from 95.68.188.233 port 39880 ssh2 Jul 11 15:47:04 xxxxxxx0 sshd[17308]: Failed password for r.r from 95.68.188.233 port 39880 ssh2 Jul 11 15:47:06 xxxxxxx0 sshd[17308]: Failed password for r.r from 95.68.188.233 port 39880 ssh2 Jul 11 15:47:08 xxxxxxx0 sshd[17308]: Failed password for r.r from 95.68.188.233 port 39880 ssh2 Jul 11 15:47:10 xxxxxxx0 sshd[17308]: Failed password for r.r from 95.68.188.233 port 39880 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.68.188.233	2019-07-12 02:19:28
157.230.157.99	attackbotsspam	Jul 1 01:06:54 server sshd\[101318\]: Invalid user sales from 157.230.157.99 Jul 1 01:06:54 server sshd\[101318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.157.99 Jul 1 01:06:56 server sshd\[101318\]: Failed password for invalid user sales from 157.230.157.99 port 50014 ssh2 ...	2019-07-12 01:33:29
157.100.133.21	attackspambots	Jun 9 13:32:25 server sshd\[114183\]: Invalid user huangjm from 157.100.133.21 Jun 9 13:32:25 server sshd\[114183\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.133.21 Jun 9 13:32:27 server sshd\[114183\]: Failed password for invalid user huangjm from 157.100.133.21 port 49840 ssh2 ...	2019-07-12 01:48:28
203.60.2.54	attack	$f2bV_matches	2019-07-12 02:26:00

Recently Reported IPs

70.169.152.52	72.86.64.68	109.76.228.154	192.22.128.181
112.159.19.222	249.153.25.254	166.182.244.151	202.113.49.157
91.124.61.3	181.50.136.146	97.188.165.54	111.177.74.184
243.5.186.0	69.53.223.200	221.13.172.25	143.226.197.133
36.182.230.214	115.55.183.48	87.17.226.190	175.94.18.254