149.129.136.113

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Alibaba.com Singapore E-Commerce Private Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 8 02:23:17 DDOS Attack: SRC=149.129.136.113 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=49 DF PROTO=TCP SPT=16456 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2019-08-08 13:10:26

Comments on same subnet:

IP	Type	Details	Datetime
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on air	2020-10-03 04:53:48
149.129.136.90	attackbots	20 attempts against mh-ssh on cloud	2020-10-03 00:16:13
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on cloud	2020-10-02 20:47:20
149.129.136.90	attack	20 attempts against mh-ssh on cloud	2020-10-02 17:20:09
149.129.136.90	attackspam	20 attempts against mh-ssh on cloud	2020-10-02 13:42:02
149.129.136.90	attackspam	20 attempts against mh-ssh on light	2020-09-30 08:36:29
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-30 01:25:20
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-29 17:24:38
149.129.136.211	attackbotsspam	Unauthorised access (Aug 9) SRC=149.129.136.211 LEN=40 PREC=0x20 TTL=47 ID=22338 TCP DPT=8080 WINDOW=50376 SYN	2019-08-09 13:08:37
149.129.136.212	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=27604)(08050931)	2019-08-05 20:17:24
149.129.136.252	attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-11 22:38:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.136.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38453
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.136.113.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 13:10:18 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 113.136.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 113.136.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.176.44.163	attackspam	Aug 30 13:18:35 dedicated sshd[28188]: Invalid user castis from 122.176.44.163 port 47976	2019-08-30 19:28:34
45.224.165.2	attack	Unauthorized connection attempt from IP address 45.224.165.2 on Port 445(SMB)	2019-08-30 19:27:24
2.228.45.89	attackspam	Honeypot attack, application: ssdp, PTR: 2-228-45-89.ip189.fastwebnet.it.	2019-08-30 18:54:34
81.241.50.141	attackspambots	Aug 29 22:21:23 kapalua sshd\[29154\]: Invalid user training from 81.241.50.141 Aug 29 22:21:23 kapalua sshd\[29154\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.50-241-81.adsl-dyn.isp.belgacom.be Aug 29 22:21:25 kapalua sshd\[29154\]: Failed password for invalid user training from 81.241.50.141 port 39554 ssh2 Aug 29 22:25:27 kapalua sshd\[29554\]: Invalid user mweb from 81.241.50.141 Aug 29 22:25:27 kapalua sshd\[29554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.50-241-81.adsl-dyn.isp.belgacom.be	2019-08-30 19:27:03
165.227.93.58	attack	Aug 30 11:43:28 plex sshd[1154]: Invalid user uwsgi from 165.227.93.58 port 39112	2019-08-30 19:05:54
104.224.162.238	attack	$f2bV_matches	2019-08-30 19:11:10
185.173.35.5	attackbots	Honeypot hit.	2019-08-30 19:26:18
207.244.66.70	attackspambots	hide.me Web proxy https://hide.me/en/proxy	2019-08-30 18:53:12
14.190.161.44	attackspambots	Unauthorized connection attempt from IP address 14.190.161.44 on Port 445(SMB)	2019-08-30 19:20:58
192.99.152.121	attackspam	ssh failed login	2019-08-30 18:41:21
36.65.171.66	attack	Unauthorized connection attempt from IP address 36.65.171.66 on Port 445(SMB)	2019-08-30 18:45:01
5.135.135.116	attack	Aug 30 12:09:28 tux-35-217 sshd\[32669\]: Invalid user alm from 5.135.135.116 port 48407 Aug 30 12:09:28 tux-35-217 sshd\[32669\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.135.116 Aug 30 12:09:30 tux-35-217 sshd\[32669\]: Failed password for invalid user alm from 5.135.135.116 port 48407 ssh2 Aug 30 12:13:17 tux-35-217 sshd\[32678\]: Invalid user ripley from 5.135.135.116 port 42432 Aug 30 12:13:17 tux-35-217 sshd\[32678\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.135.116 ...	2019-08-30 18:55:23
34.65.200.37	attackbots	Excessive Port-Scanning	2019-08-30 19:25:24
77.245.35.170	attackbotsspam	Aug 30 00:06:38 php1 sshd\[10872\]: Invalid user almacen from 77.245.35.170 Aug 30 00:06:38 php1 sshd\[10872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.245.35.170 Aug 30 00:06:40 php1 sshd\[10872\]: Failed password for invalid user almacen from 77.245.35.170 port 50463 ssh2 Aug 30 00:10:46 php1 sshd\[11321\]: Invalid user atb from 77.245.35.170 Aug 30 00:10:46 php1 sshd\[11321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.245.35.170	2019-08-30 18:42:55
45.124.147.213	attack	Unauthorized connection attempt from IP address 45.124.147.213 on Port 445(SMB)	2019-08-30 18:57:12

Recently Reported IPs

34.67.72.141	77.127.91.208	188.27.165.148	142.44.210.154
94.9.83.219	206.191.152.198	1.251.226.183	89.242.13.36
36.106.167.242	1.252.42.102	47.52.196.112	79.30.47.10
25.104.194.152	76.112.207.85	47.254.150.182	174.91.10.96
60.184.125.24	223.241.4.254	149.28.27.190	44.159.124.158