149.129.58.243

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: Alibaba.com Singapore E-Commerce Private Limited

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 149.129.58.243 to port 2323 [J]	2020-02-04 01:34:32
attack	DATE:2020-01-20 14:07:57, IP:149.129.58.243, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-01-20 21:32:46
attackbots	Unauthorized connection attempt detected from IP address 149.129.58.243 to port 23 [J]	2020-01-13 00:02:00
attackbots	Automatic report - Banned IP Access	2019-12-29 07:10:20
attackbots	Bruteforce on SSH Honeypot	2019-12-09 03:04:10
attackspambots	2019-11-11T01:20:58.391934ns547587 sshd\[30129\]: Invalid user plexuser from 149.129.58.243 port 36902 2019-11-11T01:20:58.645858ns547587 sshd\[30129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.58.243 2019-11-11T01:21:00.985369ns547587 sshd\[30129\]: Failed password for invalid user plexuser from 149.129.58.243 port 36902 ssh2 2019-11-11T01:21:02.738565ns547587 sshd\[30247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.58.243 user=root ...	2019-11-11 20:43:10
attackspam	19/9/13@07:11:11: FAIL: IoT-SSH address from=149.129.58.243 ...	2019-09-14 04:05:18
attackspambots	Aug 8 15:10:15 master sshd[5560]: Failed password for invalid user plexuser from 149.129.58.243 port 43646 ssh2	2019-08-08 20:17:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.58.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17417
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.58.243.			IN	A

;; AUTHORITY SECTION:
.			2780	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080800 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 20:17:32 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 243.58.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 243.58.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.37.139.99	attackbotsspam	37215/tcp [2019-06-30]1pkt	2019-06-30 13:28:28
111.248.97.185	attackbots	37215/tcp [2019-06-30]1pkt	2019-06-30 13:26:26
123.140.238.171	attack	445/tcp [2019-06-30]1pkt	2019-06-30 13:57:13
139.59.39.174	attackbotsspam	Invalid user support from 139.59.39.174 port 33572	2019-06-30 13:19:30
77.189.159.164	attackspam	23/tcp [2019-06-30]1pkt	2019-06-30 13:12:42
85.101.249.92	attackbots	37215/tcp [2019-06-30]1pkt	2019-06-30 13:15:27
49.67.67.170	attack	2019-06-30T02:36:39.466115 X postfix/smtpd[15220]: warning: unknown[49.67.67.170]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-30T05:42:50.238299 X postfix/smtpd[41013]: warning: unknown[49.67.67.170]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-30T05:44:28.282418 X postfix/smtpd[47141]: warning: unknown[49.67.67.170]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-30 13:48:21
203.205.28.187	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-06-30 05:44:09]	2019-06-30 13:08:51
168.195.208.80	attackspambots	Jun 29 23:43:49 web1 postfix/smtpd[4411]: warning: 168.195.208.80.techinfotelecomrj.com.br[168.195.208.80]: SASL PLAIN authentication failed: authentication failure ...	2019-06-30 14:05:15
114.232.111.250	attack	2019-06-30T05:43:24.477596 X postfix/smtpd[41013]: warning: unknown[114.232.111.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-30T05:44:08.409846 X postfix/smtpd[47141]: warning: unknown[114.232.111.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-30T05:44:32.342722 X postfix/smtpd[49826]: warning: unknown[114.232.111.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-30 13:44:06
118.126.108.129	attackspambots	Jun 30 05:40:27 Proxmox sshd\[25372\]: Invalid user xiao from 118.126.108.129 port 36254 Jun 30 05:40:27 Proxmox sshd\[25372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.108.129 Jun 30 05:40:29 Proxmox sshd\[25372\]: Failed password for invalid user xiao from 118.126.108.129 port 36254 ssh2 Jun 30 05:44:28 Proxmox sshd\[28419\]: Invalid user public from 118.126.108.129 port 45610 Jun 30 05:44:28 Proxmox sshd\[28419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.126.108.129 Jun 30 05:44:30 Proxmox sshd\[28419\]: Failed password for invalid user public from 118.126.108.129 port 45610 ssh2	2019-06-30 13:46:31
197.89.185.33	attackspambots	60001/tcp [2019-06-30]1pkt	2019-06-30 13:06:56
186.206.134.122	attack	Jun 28 20:32:05 carla sshd[27971]: reveeclipse mapping checking getaddrinfo for bace867a.virtua.com.br [186.206.134.122] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 28 20:32:05 carla sshd[27971]: Invalid user sysadmin from 186.206.134.122 Jun 28 20:32:05 carla sshd[27971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.134.122 Jun 28 20:32:07 carla sshd[27971]: Failed password for invalid user sysadmin from 186.206.134.122 port 56082 ssh2 Jun 28 20:32:07 carla sshd[27972]: Received disconnect from 186.206.134.122: 11: Bye Bye Jun 28 20:35:57 carla sshd[27981]: reveeclipse mapping checking getaddrinfo for bace867a.virtua.com.br [186.206.134.122] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 28 20:35:57 carla sshd[27981]: Invalid user super from 186.206.134.122 Jun 28 20:35:57 carla sshd[27981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.134.122 Jun 28 20:35:59 carla sshd[27981]:........ -------------------------------	2019-06-30 13:58:33
167.114.0.23	attack	Jun 30 05:45:13 MK-Soft-Root2 sshd\[10592\]: Invalid user tphan from 167.114.0.23 port 44968 Jun 30 05:45:13 MK-Soft-Root2 sshd\[10592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.0.23 Jun 30 05:45:15 MK-Soft-Root2 sshd\[10592\]: Failed password for invalid user tphan from 167.114.0.23 port 44968 ssh2 ...	2019-06-30 13:18:58
121.152.165.213	attack	Invalid user web1 from 121.152.165.213 port 37848	2019-06-30 13:11:28

Recently Reported IPs

62.238.119.51	94.43.189.92	198.204.230.130	58.221.151.226
37.252.14.142	87.222.220.8	111.6.79.176	111.255.13.28
77.117.189.243	190.144.3.138	178.128.115.205	47.53.67.205
37.192.36.181	125.230.27.195	103.112.28.60	222.223.6.30
47.101.222.1	41.43.20.120	209.59.182.37	65.169.39.38