149.129.97.155

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: AliCloud

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5410568abee7da00 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 \| CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:51:06

Type

Details

Datetime

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 5410568abee7da00 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_2_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Mobile/15E148 Safari/604.1 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:51:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.129.97.155
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11142
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.129.97.155.			IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 06:51:03 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 155.97.129.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 155.97.129.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.210.119.98	attackspambots	445/tcp 445/tcp [2020-05-28/06-01]2pkt	2020-06-01 19:54:37
101.255.66.154	attack	2019-10-23 14:06:17 1iNFP6-0002Kd-EO SMTP connection from \(\[101.255.66.154\]\) \[101.255.66.154\]:33376 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 14:06:37 1iNFPQ-0002LE-CG SMTP connection from \(\[101.255.66.154\]\) \[101.255.66.154\]:33545 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 14:06:49 1iNFPc-0002Li-Gc SMTP connection from \(\[101.255.66.154\]\) \[101.255.66.154\]:33627 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-06-01 20:21:45
223.75.227.216	attackspam	Brute forcing RDP port 3389	2020-06-01 19:53:56
176.65.176.187	attack	Attempted connection to port 445.	2020-06-01 19:58:19
180.183.159.194	attackbotsspam	Unauthorized connection attempt from IP address 180.183.159.194 on Port 445(SMB)	2020-06-01 20:07:35
182.254.186.229	attack	Jun 1 14:06:29 xeon sshd[16046]: Failed password for root from 182.254.186.229 port 44916 ssh2	2020-06-01 20:19:26
101.109.176.154	attackbotsspam	Unauthorized connection attempt from IP address 101.109.176.154 on Port 445(SMB)	2020-06-01 19:57:15
203.147.80.102	attackspam	Dovecot Invalid User Login Attempt.	2020-06-01 20:24:17
113.9.203.20	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-06-01 20:27:18
27.64.53.130	attack	Attempted connection to port 445.	2020-06-01 19:53:23
183.157.173.52	attack	Unauthorized connection attempt detected from IP address 183.157.173.52 to port 23	2020-06-01 19:56:38
112.85.42.173	attackbots	Jun 1 14:12:36 vmi345603 sshd[21133]: Failed password for root from 112.85.42.173 port 46126 ssh2 Jun 1 14:12:39 vmi345603 sshd[21133]: Failed password for root from 112.85.42.173 port 46126 ssh2 ...	2020-06-01 20:25:44
134.209.71.245	attack	Jun 1 14:03:05 abendstille sshd\[28795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.71.245 user=root Jun 1 14:03:07 abendstille sshd\[28795\]: Failed password for root from 134.209.71.245 port 45446 ssh2 Jun 1 14:06:31 abendstille sshd\[32074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.71.245 user=root Jun 1 14:06:33 abendstille sshd\[32074\]: Failed password for root from 134.209.71.245 port 50410 ssh2 Jun 1 14:09:58 abendstille sshd\[2880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.71.245 user=root ...	2020-06-01 20:22:55
134.175.120.56	attack	(pop3d) Failed POP3 login from 134.175.120.56 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 1 14:50:29 ir1 dovecot[2885757]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=134.175.120.56, lip=5.63.12.44, session=<+jjNJAOnePeGr3g4>	2020-06-01 19:59:13
117.242.111.116	attackspam	Unauthorized connection attempt detected from IP address 117.242.111.116 to port 23	2020-06-01 20:02:50

Recently Reported IPs

103.201.129.58	65.49.38.144	96.20.126.21	59.173.155.103
35.172.0.14	49.7.3.237	54.214.9.141	52.137.205.50
42.156.139.60	2001:da8:20b:200:100::84	27.224.137.100	27.224.137.35
146.167.236.131	27.211.187.53	222.79.48.54	221.13.12.74
221.11.4.146	220.200.165.180	219.143.174.117	219.140.118.241