149.129.225.230

Basic Info

City: Jakarta

Region: Jakarta

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
149.129.225.229	attackbotsspam	k+ssh-bruteforce	2020-08-12 21:30:15
149.129.225.229	attackbotsspam	20 attempts against mh-ssh on install-test	2020-05-14 01:06:43
149.129.225.57	attackbotsspam	Unauthorised access (Aug 11) SRC=149.129.225.57 LEN=40 TTL=48 ID=27455 TCP DPT=8080 WINDOW=18254 SYN	2019-08-12 05:21:55
149.129.225.237	attackspambots	firewall-block, port(s): 23/tcp	2019-08-07 10:09:09
149.129.225.239	attackspam	1565055083 - 08/06/2019 08:31:23 Host: 149.129.225.239/149.129.225.239 Port: 23 TCP Blocked ...	2019-08-06 14:13:44
149.129.225.113	attackbotsspam	Jul 31 22:48:58 localhost kernel: [15871932.048494] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=149.129.225.113 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=31073 PROTO=TCP SPT=24139 DPT=52869 WINDOW=5643 RES=0x00 SYN URGP=0 Jul 31 22:48:58 localhost kernel: [15871932.048520] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=149.129.225.113 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=31073 PROTO=TCP SPT=24139 DPT=52869 SEQ=758669438 ACK=0 WINDOW=5643 RES=0x00 SYN URGP=0 Jul 31 23:26:19 localhost kernel: [15874173.061373] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=149.129.225.113 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=36150 PROTO=TCP SPT=24139 DPT=52869 WINDOW=5643 RES=0x00 SYN URGP=0 Jul 31 23:26:19 localhost kernel: [15874173.061403] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=149.129.225.113 DST=[mungedIP2] LEN=40 TO	2019-08-01 16:53:43

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 149.129.225.230
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14148
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;149.129.225.230.		IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:48:45 CST 2021
;; MSG SIZE  rcvd: 44

'

Host info

Host 230.225.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 230.225.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.2.45	attackbots	$f2bV_matches	2019-09-19 22:41:29
204.57.7.12	attackbotsspam	Sep 19 14:12:34 ip-172-31-1-72 sshd\[2290\]: Invalid user abahri from 204.57.7.12 Sep 19 14:12:34 ip-172-31-1-72 sshd\[2290\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.57.7.12 Sep 19 14:12:36 ip-172-31-1-72 sshd\[2290\]: Failed password for invalid user abahri from 204.57.7.12 port 44574 ssh2 Sep 19 14:17:31 ip-172-31-1-72 sshd\[2348\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.57.7.12 user=root Sep 19 14:17:33 ip-172-31-1-72 sshd\[2348\]: Failed password for root from 204.57.7.12 port 60444 ssh2	2019-09-19 22:22:09
152.231.26.54	attackspambots	2019-09-19T11:52:36.423753+01:00 suse sshd[19515]: Invalid user admin from 152.231.26.54 port 34110 2019-09-19T11:52:39.453436+01:00 suse sshd[19515]: error: PAM: User not known to the underlying authentication module for illegal user admin from 152.231.26.54 2019-09-19T11:52:36.423753+01:00 suse sshd[19515]: Invalid user admin from 152.231.26.54 port 34110 2019-09-19T11:52:39.453436+01:00 suse sshd[19515]: error: PAM: User not known to the underlying authentication module for illegal user admin from 152.231.26.54 2019-09-19T11:52:36.423753+01:00 suse sshd[19515]: Invalid user admin from 152.231.26.54 port 34110 2019-09-19T11:52:39.453436+01:00 suse sshd[19515]: error: PAM: User not known to the underlying authentication module for illegal user admin from 152.231.26.54 2019-09-19T11:52:39.454037+01:00 suse sshd[19515]: Failed keyboard-interactive/pam for invalid user admin from 152.231.26.54 port 34110 ssh2 ...	2019-09-19 23:10:03
91.121.136.44	attackbotsspam	2019-09-19T14:35:16.057414lon01.zurich-datacenter.net sshd\[29811\]: Invalid user princess from 91.121.136.44 port 32956 2019-09-19T14:35:16.066561lon01.zurich-datacenter.net sshd\[29811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3019109.ip-91-121-136.eu 2019-09-19T14:35:18.098298lon01.zurich-datacenter.net sshd\[29811\]: Failed password for invalid user princess from 91.121.136.44 port 32956 ssh2 2019-09-19T14:39:17.354377lon01.zurich-datacenter.net sshd\[29860\]: Invalid user flux from 91.121.136.44 port 51142 2019-09-19T14:39:17.361852lon01.zurich-datacenter.net sshd\[29860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3019109.ip-91-121-136.eu ...	2019-09-19 22:42:30
123.207.86.68	attackspam	2019-09-19T20:58:52.414239enmeeting.mahidol.ac.th sshd\[1442\]: Invalid user trendimsa1.0 from 123.207.86.68 port 33774 2019-09-19T20:58:52.433420enmeeting.mahidol.ac.th sshd\[1442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.86.68 2019-09-19T20:58:54.403073enmeeting.mahidol.ac.th sshd\[1442\]: Failed password for invalid user trendimsa1.0 from 123.207.86.68 port 33774 ssh2 ...	2019-09-19 22:27:38
37.187.181.182	attack	2019-09-19T11:59:23.771586abusebot-3.cloudsearch.cf sshd\[16122\]: Invalid user signalhill from 37.187.181.182 port 36784	2019-09-19 23:03:30
133.130.117.173	attack	Sep 19 12:53:38 cp sshd[21915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.117.173	2019-09-19 22:39:24
193.232.45.237	attackbots	SSH Brute Force, server-1 sshd[12437]: Failed password for invalid user clamav from 193.232.45.237 port 36411 ssh2	2019-09-19 22:22:44
128.14.209.242	attackspam	[18/Sep/2019:14:07:10 +0200] proxy attempt from Zenlayer (US) server	2019-09-19 22:39:58
139.198.4.44	attackspam	Sep 19 13:05:37 MK-Soft-VM5 sshd\[4700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.4.44 user=root Sep 19 13:05:39 MK-Soft-VM5 sshd\[4700\]: Failed password for root from 139.198.4.44 port 47904 ssh2 Sep 19 13:06:04 MK-Soft-VM5 sshd\[4702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.4.44 user=root ...	2019-09-19 22:37:58
159.65.109.148	attack	Sep 19 04:14:29 web1 sshd\[9887\]: Invalid user ubnt from 159.65.109.148 Sep 19 04:14:29 web1 sshd\[9887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.109.148 Sep 19 04:14:32 web1 sshd\[9887\]: Failed password for invalid user ubnt from 159.65.109.148 port 56478 ssh2 Sep 19 04:18:50 web1 sshd\[10286\]: Invalid user mongodb from 159.65.109.148 Sep 19 04:18:50 web1 sshd\[10286\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.109.148	2019-09-19 22:25:49
220.170.193.112	attackspambots	Sep 19 04:24:20 php1 sshd\[31353\]: Invalid user dev from 220.170.193.112 Sep 19 04:24:20 php1 sshd\[31353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.170.193.112 Sep 19 04:24:22 php1 sshd\[31353\]: Failed password for invalid user dev from 220.170.193.112 port 51444 ssh2 Sep 19 04:31:19 php1 sshd\[32504\]: Invalid user dpi from 220.170.193.112 Sep 19 04:31:19 php1 sshd\[32504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.170.193.112	2019-09-19 22:51:33
203.205.41.78	attackspambots	Automatic report - Port Scan Attack	2019-09-19 22:51:53
180.248.123.47	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:52:31.	2019-09-19 23:13:09
180.249.118.118	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:52:37.	2019-09-19 23:08:41

Recently Reported IPs

64.227.97.228	90.249.248.242	185.233.252.214	174.193.202.212
40.77.188.88	200.75.241.206	151.173.178.252	65.130.164.150
180.97.15.203	47.151.242.162	188.241.82.200	45.132.194.10
135.181.134.210	119.40.90.130	185.244.141.244	175.63.253.200
175.63.253.193	88.155.137.153	77.40.4.205	75.60.17.254