149.18.29.172 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.18.29.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.18.29.172.			IN	A

;; AUTHORITY SECTION:
.			390	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091502 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 03:44:10 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 172.29.18.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 172.29.18.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.165.97.93	attack	Aug 19 08:35:24 server sshd\[12355\]: Invalid user mike from 31.165.97.93 port 54716 Aug 19 08:37:20 server sshd\[13123\]: Invalid user info from 31.165.97.93 port 38486	2020-08-20 04:22:19
46.6.15.129	attack	Automatic report - Banned IP Access	2020-08-20 04:49:19
192.241.210.224	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-19T15:27:57Z and 2020-08-19T15:35:49Z	2020-08-20 04:32:58
185.165.168.168	attackspam	[-]:443 185.165.168.168 - - [19/Aug/2020:14:25:11 +0200] "GET /wp-config-good HTTP/1.1" 404 15123 "[-]" "Mozilla/5.0 (Linux; Android 9; COL-L29) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36"	2020-08-20 04:20:18
223.199.23.42	attackspam	Email rejected due to spam filtering	2020-08-20 04:14:21
221.138.40.11	attackbots	2020-08-19T18:46:27.573929shield sshd\[3739\]: Invalid user NetLinx from 221.138.40.11 port 55419 2020-08-19T18:46:27.774437shield sshd\[3739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.138.40.11 2020-08-19T18:46:29.646874shield sshd\[3739\]: Failed password for invalid user NetLinx from 221.138.40.11 port 55419 ssh2 2020-08-19T18:46:30.839571shield sshd\[3745\]: Invalid user netscreen from 221.138.40.11 port 55624 2020-08-19T18:46:31.029216shield sshd\[3745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.138.40.11	2020-08-20 04:22:32
46.229.168.132	attackspam	[Thu Aug 20 02:24:57.132896 2020] [:error] [pid 29939:tid 140548190865152] [client 46.229.168.132:64680] [client 46.229.168.132] ModSecurity: Access denied with code 403 (phase 2). Pattern match "((?:[~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>][^~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>]*?){12})" at ARGS:id. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1255"] [id "942430"] [msg "Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12)"] [data "Matched Data: :prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal- found within ARGS:id: 620:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-16-juli-22-juli-2015"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [ta ...	2020-08-20 04:47:45
37.255.134.39	attackbots	Port Scan ...	2020-08-20 04:50:33
46.177.169.173	attackbots	Port Scan detected! ...	2020-08-20 04:45:23
177.66.145.244	attackspambots	SMB Server BruteForce Attack	2020-08-20 04:51:04
186.206.131.61	attackspambots	Aug 19 18:25:22 ws26vmsma01 sshd[243584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.131.61 Aug 19 18:25:24 ws26vmsma01 sshd[243584]: Failed password for invalid user user4 from 186.206.131.61 port 45709 ssh2 ...	2020-08-20 04:21:10
182.71.221.78	attackspambots	SSH Login Bruteforce	2020-08-20 04:22:03
49.233.32.245	attackspambots	DATE:2020-08-19 22:30:12,IP:49.233.32.245,MATCHES:10,PORT:ssh	2020-08-20 04:40:05
41.33.23.174	attack	Port Scan ...	2020-08-20 04:31:04
149.56.22.52	attackspambots	2020-08-19 15:24:52 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=servidor.g-8d.com [149.56.22.52] input="S" ...	2020-08-20 04:41:12

Recently Reported IPs

102.182.131.163	178.235.217.225	175.205.169.138	147.182.239.174
27.79.229.167	123.117.77.134	103.152.112.184	46.158.9.163
159.223.182.72	143.110.211.113	164.92.238.120	132.148.76.201
106.59.9.63	58.47.48.160	121.61.73.120	114.227.96.110
223.13.60.30	169.10.210.55	114.239.164.3	117.26.208.35