149.129.136.252

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Alibaba.com Singapore E-Commerce Private Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-11 22:38:14

Comments on same subnet:

IP	Type	Details	Datetime
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on air	2020-10-03 04:53:48
149.129.136.90	attackbots	20 attempts against mh-ssh on cloud	2020-10-03 00:16:13
149.129.136.90	attackbotsspam	20 attempts against mh-ssh on cloud	2020-10-02 20:47:20
149.129.136.90	attack	20 attempts against mh-ssh on cloud	2020-10-02 17:20:09
149.129.136.90	attackspam	20 attempts against mh-ssh on cloud	2020-10-02 13:42:02
149.129.136.90	attackspam	20 attempts against mh-ssh on light	2020-09-30 08:36:29
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-30 01:25:20
149.129.136.90	attack	20 attempts against mh-ssh on light	2020-09-29 17:24:38
149.129.136.211	attackbotsspam	Unauthorised access (Aug 9) SRC=149.129.136.211 LEN=40 PREC=0x20 TTL=47 ID=22338 TCP DPT=8080 WINDOW=50376 SYN	2019-08-09 13:08:37
149.129.136.113	attackspam	Aug 8 02:23:17 DDOS Attack: SRC=149.129.136.113 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=49 DF PROTO=TCP SPT=16456 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2019-08-08 13:10:26
149.129.136.212	attackbots	[portscan] tcp/23 [TELNET] *(RWIN=27604)(08050931)	2019-08-05 20:17:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.136.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33367
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.136.252.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 11 22:38:03 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 252.136.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 252.136.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.89.46.81	attackbots	Oct 12 14:42:23 ns3033917 sshd[23000]: Failed password for invalid user eric from 118.89.46.81 port 40056 ssh2 Oct 12 15:00:26 ns3033917 sshd[23121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.46.81 user=root Oct 12 15:00:27 ns3033917 sshd[23121]: Failed password for root from 118.89.46.81 port 49162 ssh2 ...	2020-10-13 03:20:15
91.134.242.66	attackbotsspam	2020-10-12T14:01:08.663590yoshi.linuxbox.ninja sshd[3316122]: Invalid user stud from 91.134.242.66 port 58272 2020-10-12T14:01:11.106009yoshi.linuxbox.ninja sshd[3316122]: Failed password for invalid user stud from 91.134.242.66 port 58272 ssh2 2020-10-12T14:04:29.805815yoshi.linuxbox.ninja sshd[3318509]: Invalid user ed from 91.134.242.66 port 58736 ...	2020-10-13 03:16:30
195.154.250.127	attack	Oct 12 19:12:56 scw-gallant-ride sshd[8829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.250.127	2020-10-13 03:36:41
60.199.134.114	attack	$f2bV_matches	2020-10-13 03:08:31
40.86.72.197	attackbotsspam	Icarus honeypot on github	2020-10-13 03:17:53
103.24.97.250	attackbots	$f2bV_matches	2020-10-13 03:30:44
82.146.91.18	attackbots	port scan and connect, tcp 81 (hosts2-ns)	2020-10-13 03:08:18
106.75.95.6	attack	Oct 12 12:55:41 jane sshd[7889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.95.6 Oct 12 12:55:43 jane sshd[7889]: Failed password for invalid user alberto from 106.75.95.6 port 37062 ssh2 ...	2020-10-13 03:27:09
167.114.155.2	attackbotsspam	Invalid user oracle from 167.114.155.2 port 57350	2020-10-13 03:36:53
106.12.95.45	attackbots	SSH brute-force attempt	2020-10-13 03:05:51
36.112.11.174	attack	TCP (SYN) 36.112.11.174:56087 -> port 60000, len 44	2020-10-13 03:25:43
139.198.191.217	attack	Oct 12 20:07:04 markkoudstaal sshd[18067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217 Oct 12 20:07:06 markkoudstaal sshd[18067]: Failed password for invalid user oracle from 139.198.191.217 port 54070 ssh2 Oct 12 20:09:42 markkoudstaal sshd[18780]: Failed password for root from 139.198.191.217 port 36870 ssh2 ...	2020-10-13 03:26:16
209.50.50.34	attackbotsspam	209.50.50.34 is unauthorized and has been banned by fail2ban	2020-10-13 03:40:32
193.29.15.169	attackspambots	UDP 193.29.15.169:40069 -> port 53, len 64	2020-10-13 03:30:02
192.144.156.68	attackspambots	2020-10-12T01:01:52.104184hostname sshd[35456]: Failed password for invalid user precia from 192.144.156.68 port 59604 ssh2 ...	2020-10-13 03:06:51

Recently Reported IPs

80.211.239.10	79.124.49.227	23.249.167.146	91.135.188.209
185.88.197.15	206.189.148.96	15.171.9.108	142.44.130.187
108.160.74.150	2a02:560:4294:f400:c039:2f57:f3ac:ac88	91.210.85.39	94.73.147.215
82.165.80.246	174.200.71.45	87.103.8.94	90.108.210.116
49.88.160.25	130.77.60.182	189.198.144.47	39.182.157.4