149.129.136.113

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Alibaba.com Singapore E-Commerce Private Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 8 02:23:17 DDOS Attack: SRC=149.129.136.113 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=49 DF PROTO=TCP SPT=16456 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2019-08-08 13:10:26

Comments on same subnet:

IP	Type	Details	Datetime
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on air	2020-10-03 04:53:48
149.129.136.90	attackbots	20 attempts against mh-ssh on cloud	2020-10-03 00:16:13
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on cloud	2020-10-02 20:47:20
149.129.136.90	attack	20 attempts against mh-ssh on cloud	2020-10-02 17:20:09
149.129.136.90	attackspam	20 attempts against mh-ssh on cloud	2020-10-02 13:42:02
149.129.136.90	attackspam	20 attempts against mh-ssh on light	2020-09-30 08:36:29
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-30 01:25:20
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-29 17:24:38
149.129.136.211	attackbotsspam	Unauthorised access (Aug 9) SRC=149.129.136.211 LEN=40 PREC=0x20 TTL=47 ID=22338 TCP DPT=8080 WINDOW=50376 SYN	2019-08-09 13:08:37
149.129.136.212	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=27604)(08050931)	2019-08-05 20:17:24
149.129.136.252	attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-11 22:38:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.136.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38453
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.136.113.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 13:10:18 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 113.136.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 113.136.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.90.154	attack	Oct 28 16:47:57 server sshd\[17881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.90.154 user=root Oct 28 16:47:59 server sshd\[17881\]: Failed password for root from 140.143.90.154 port 49334 ssh2 Oct 28 17:22:43 server sshd\[25877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.90.154 user=root Oct 28 17:22:45 server sshd\[25877\]: Failed password for root from 140.143.90.154 port 46022 ssh2 Oct 28 17:34:18 server sshd\[28371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.90.154 user=root ...	2019-10-28 22:56:42
104.238.120.56	attackbots	104.238.120.56 - - [01/Dec/2018:01:31:05 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "wp-iphone"	2019-10-28 22:47:33
101.231.146.36	attackbotsspam	Jul 31 05:48:20 ms-srv sshd[5516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.36 Jul 31 05:48:23 ms-srv sshd[5516]: Failed password for invalid user wd from 101.231.146.36 port 34834 ssh2	2019-10-28 22:57:48
193.193.224.170	attackbotsspam	445/tcp 445/tcp [2019-10-14/28]2pkt	2019-10-28 23:03:25
144.217.214.100	attackbotsspam	2019-10-28T14:04:29.579807abusebot-4.cloudsearch.cf sshd\[21653\]: Invalid user qwer1234!@\#\$ from 144.217.214.100 port 45758	2019-10-28 22:33:54
119.29.104.238	attackspam	Automatic report - Banned IP Access	2019-10-28 22:49:13
137.74.173.211	attackbotsspam	Automatic report - Banned IP Access	2019-10-28 22:26:48
89.100.106.42	attackspambots	2019-10-28T14:31:16.441135shield sshd\[10957\]: Invalid user teste from 89.100.106.42 port 39606 2019-10-28T14:31:16.446704shield sshd\[10957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.106.42 2019-10-28T14:31:18.353685shield sshd\[10957\]: Failed password for invalid user teste from 89.100.106.42 port 39606 ssh2 2019-10-28T14:34:55.892725shield sshd\[12019\]: Invalid user 00 from 89.100.106.42 port 49350 2019-10-28T14:34:55.898087shield sshd\[12019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.100.106.42	2019-10-28 22:52:06
152.32.164.39	attackspam	Oct 28 15:13:47 vps01 sshd[19952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.164.39 Oct 28 15:13:48 vps01 sshd[19952]: Failed password for invalid user system from 152.32.164.39 port 41388 ssh2	2019-10-28 22:26:23
101.254.214.36	attackspambots	May 4 21:12:58 ms-srv sshd[22128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.254.214.36 user=root May 4 21:13:00 ms-srv sshd[22128]: Failed password for invalid user root from 101.254.214.36 port 64009 ssh2	2019-10-28 22:39:19
165.22.193.16	attackbots	Oct 28 02:33:17 hanapaa sshd\[16347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.193.16 user=root Oct 28 02:33:19 hanapaa sshd\[16347\]: Failed password for root from 165.22.193.16 port 52002 ssh2 Oct 28 02:37:06 hanapaa sshd\[16652\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.193.16 user=root Oct 28 02:37:07 hanapaa sshd\[16652\]: Failed password for root from 165.22.193.16 port 33448 ssh2 Oct 28 02:40:59 hanapaa sshd\[17083\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.193.16 user=root	2019-10-28 22:42:37
104.247.192.3	attackspam	104.247.192.3 - - [04/Aug/2019:01:26:37 +0100] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.84 Safari/537.36"	2019-10-28 22:32:34
211.157.2.92	attackspam	Automatic report - Banned IP Access	2019-10-28 22:40:26
54.36.182.244	attackbots	Oct 27 21:03:13 server sshd\[14368\]: Failed password for invalid user csgoserver from 54.36.182.244 port 48236 ssh2 Oct 28 15:46:32 server sshd\[3945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.ip-54-36-182.eu user=root Oct 28 15:46:33 server sshd\[3945\]: Failed password for root from 54.36.182.244 port 40658 ssh2 Oct 28 15:58:41 server sshd\[6499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=244.ip-54-36-182.eu user=root Oct 28 15:58:43 server sshd\[6499\]: Failed password for root from 54.36.182.244 port 47954 ssh2 ...	2019-10-28 22:27:45
101.254.214.6	attack	Jan 8 13:36:14 ms-srv sshd[33437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.254.214.6 Jan 8 13:36:16 ms-srv sshd[33437]: Failed password for invalid user srv from 101.254.214.6 port 35978 ssh2	2019-10-28 22:37:50

Recently Reported IPs

34.67.72.141	77.127.91.208	188.27.165.148	142.44.210.154
94.9.83.219	206.191.152.198	1.251.226.183	89.242.13.36
36.106.167.242	1.252.42.102	47.52.196.112	79.30.47.10
25.104.194.152	76.112.207.85	47.254.150.182	174.91.10.96
60.184.125.24	223.241.4.254	149.28.27.190	44.159.124.158