149.129.255.55

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Alibaba.com Singapore E-Commerce Private Limited

Hostname: unknown

Organization: Alibaba (US) Technology Co., Ltd.

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 19 14:27:11 myvps sshd[14539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.255.55 Aug 19 14:27:14 myvps sshd[14539]: Failed password for invalid user mi from 149.129.255.55 port 49402 ssh2 Aug 19 14:29:27 myvps sshd[16000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.255.55 ...	2020-08-20 00:40:38
attack	...	2020-02-01 22:26:33
attack	Invalid user ftpuser from 149.129.255.55 port 46080	2020-01-21 22:02:16
attackbots	Dec 16 06:09:01 wbs sshd\[2328\]: Invalid user COM from 149.129.255.55 Dec 16 06:09:01 wbs sshd\[2328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.255.55 Dec 16 06:09:03 wbs sshd\[2328\]: Failed password for invalid user COM from 149.129.255.55 port 47782 ssh2 Dec 16 06:16:06 wbs sshd\[3182\]: Invalid user bruschieri from 149.129.255.55 Dec 16 06:16:06 wbs sshd\[3182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.255.55	2019-12-17 01:22:52
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2019-10-19 18:29:06
attack	DATE:2019-07-26 21:53:18, IP:149.129.255.55, PORT:ssh brute force auth on SSH service (patata)	2019-07-27 04:03:59
attackbots	DATE:2019-07-07 05:48:23, IP:149.129.255.55, PORT:ssh brute force auth on SSH service (patata)	2019-07-07 16:34:25
attack	Jul 4 15:06:42 [snip] sshd[29857]: Invalid user gabin from 149.129.255.55 port 48290 Jul 4 15:06:42 [snip] sshd[29857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.255.55 Jul 4 15:06:44 [snip] sshd[29857]: Failed password for invalid user gabin from 149.129.255.55 port 48290 ssh2[...]	2019-07-05 03:48:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.255.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33642
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.255.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041401 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 15 05:19:01 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 55.255.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 55.255.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.108.119	attack	Unauthorized connection attempt detected from IP address 77.247.108.119 to port 443 [T]	2020-05-26 16:18:03
213.142.156.237	attackbotsspam	2020-05-26 02:24:04.561590-0500 localhost smtpd[40810]: NOQUEUE: reject: RCPT from unknown[213.142.156.237]: 450 4.7.25 Client host rejected: cannot find your hostname, [213.142.156.237]; from= to= proto=ESMTP helo=	2020-05-26 16:08:06
222.186.173.180	attackspam	May 26 15:26:27 itv-usvr-01 sshd[32627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root May 26 15:26:29 itv-usvr-01 sshd[32627]: Failed password for root from 222.186.173.180 port 56546 ssh2 May 26 15:26:32 itv-usvr-01 sshd[32627]: Failed password for root from 222.186.173.180 port 56546 ssh2 May 26 15:26:43 itv-usvr-01 sshd[32627]: error: maximum authentication attempts exceeded for root from 222.186.173.180 port 56546 ssh2 [preauth]	2020-05-26 16:26:54
193.56.28.51	attackspambots	(pop3d) Failed POP3 login from 193.56.28.51 (GB/United Kingdom/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 26 12:45:06 ir1 dovecot[2885757]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=193.56.28.51, lip=5.63.12.44, session=	2020-05-26 16:40:10
45.190.220.101	attack	2020-05-2609:31:021jdU3B-000822-R9\<=info@whatsup2013.chH=\(localhost\)[45.190.220.101]:56546P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2132id=797CCA999246692AF6F3BA02C639E54B@whatsup2013.chT="Mygoalistoresidenearifsomeonewillsimplyturntheirownbackuponyou"forvtailman1@gmail.com2020-05-2609:31:471jdU3u-00087m-Ti\<=info@whatsup2013.chH=\(localhost\)[14.169.249.14]:41126P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2209id=B9BC0A595286A9EA36337AC2064CE53E@whatsup2013.chT="Hopefullylateronwewilloftenthinkofeachother"fordannymorris214@gmail.com2020-05-2609:32:281jdU4Z-0008AJ-89\<=info@whatsup2013.chH=\(localhost\)[14.169.150.68]:60800P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2205id=909523707BAF80C31F1A53EB2F79210B@whatsup2013.chT="Ihavetofindanotherpersonwhodesirestobecometrulyhappy"foraspero3048@hotmail.com2020-05-2609:29:441jdU1u-0007vL-Jd\<=info@whatsup2013.chH=\(loc	2020-05-26 16:39:14
222.186.31.166	attack	May 26 10:13:08 home sshd[9744]: Failed password for root from 222.186.31.166 port 29115 ssh2 May 26 10:13:17 home sshd[9760]: Failed password for root from 222.186.31.166 port 54756 ssh2 ...	2020-05-26 16:19:57
85.21.78.213	attack	May 26 09:58:21 server sshd[14959]: Failed password for root from 85.21.78.213 port 13074 ssh2 May 26 10:02:13 server sshd[15983]: Failed password for root from 85.21.78.213 port 43652 ssh2 ...	2020-05-26 16:10:22
190.187.91.113	attack	Continuosly tries to access my home FTP	2020-05-26 16:33:42
162.14.10.158	attack	ICMP MH Probe, Scan /Distributed -	2020-05-26 16:34:31
51.178.50.20	attackbotsspam	2020-05-26T17:21:12.406658vivaldi2.tree2.info sshd[19517]: Invalid user test5 from 51.178.50.20 2020-05-26T17:21:12.422359vivaldi2.tree2.info sshd[19517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-178-50.eu 2020-05-26T17:21:12.406658vivaldi2.tree2.info sshd[19517]: Invalid user test5 from 51.178.50.20 2020-05-26T17:21:14.181564vivaldi2.tree2.info sshd[19517]: Failed password for invalid user test5 from 51.178.50.20 port 36456 ssh2 2020-05-26T17:24:47.596746vivaldi2.tree2.info sshd[19675]: Invalid user taro from 51.178.50.20 ...	2020-05-26 16:46:08
37.120.168.104	attack	May 26 03:21:40 r.ca sshd[16454]: Failed password for invalid user brigitte from 37.120.168.104 port 42186 ssh2	2020-05-26 16:13:25
113.161.49.100	attackbotsspam	Unauthorized connection attempt from IP address 113.161.49.100 on Port 445(SMB)	2020-05-26 16:28:59
162.14.12.143	attack	ICMP MH Probe, Scan /Distributed -	2020-05-26 16:09:35
118.170.224.154	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-26 16:34:59
14.169.150.68	attackspam	2020-05-2609:31:021jdU3B-000822-R9\<=info@whatsup2013.chH=\(localhost\)[45.190.220.101]:56546P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2132id=797CCA999246692AF6F3BA02C639E54B@whatsup2013.chT="Mygoalistoresidenearifsomeonewillsimplyturntheirownbackuponyou"forvtailman1@gmail.com2020-05-2609:31:471jdU3u-00087m-Ti\<=info@whatsup2013.chH=\(localhost\)[14.169.249.14]:41126P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2209id=B9BC0A595286A9EA36337AC2064CE53E@whatsup2013.chT="Hopefullylateronwewilloftenthinkofeachother"fordannymorris214@gmail.com2020-05-2609:32:281jdU4Z-0008AJ-89\<=info@whatsup2013.chH=\(localhost\)[14.169.150.68]:60800P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2205id=909523707BAF80C31F1A53EB2F79210B@whatsup2013.chT="Ihavetofindanotherpersonwhodesirestobecometrulyhappy"foraspero3048@hotmail.com2020-05-2609:29:441jdU1u-0007vL-Jd\<=info@whatsup2013.chH=\(loc	2020-05-26 16:37:42

Recently Reported IPs

90.157.232.114	113.172.207.155	103.228.142.158	79.107.194.206
77.237.234.118	218.76.92.150	177.159.10.9	101.29.97.20
94.244.138.21	42.202.33.251	125.25.128.166	119.244.178.73
103.70.145.231	94.90.13.141	27.195.216.24	209.213.23.159
123.11.210.227	198.108.67.54	183.80.247.205	182.48.84.6