212.129.50.137

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: Online S.A.S.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[2020-04-17 05:54:15] NOTICE[1170] chan_sip.c: Registration from '"410"' failed for '212.129.50.137:8720' - Wrong password [2020-04-17 05:54:15] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-17T05:54:15.403-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="410",SessionID="0x7f6c0824ccd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/8720",Challenge="392248a2",ReceivedChallenge="392248a2",ReceivedHash="d86863d50ffe4d52eadd9b2fb57961ad" [2020-04-17 05:54:26] NOTICE[1170] chan_sip.c: Registration from '"411"' failed for '212.129.50.137:8738' - Wrong password [2020-04-17 05:54:26] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-17T05:54:26.922-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="411",SessionID="0x7f6c0825cda8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129 ...	2020-04-17 18:10:37
attack	[2020-04-16 20:12:20] NOTICE[1170] chan_sip.c: Registration from '"400"' failed for '212.129.50.137:8162' - Wrong password [2020-04-16 20:12:20] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-16T20:12:20.896-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="400",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/8162",Challenge="44a63db9",ReceivedChallenge="44a63db9",ReceivedHash="70ce35027082cd722d7062e31dc87e61" [2020-04-16 20:13:05] NOTICE[1170] chan_sip.c: Registration from '"401"' failed for '212.129.50.137:8215' - Wrong password [2020-04-16 20:13:05] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-16T20:13:05.269-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="401",SessionID="0x7f6c0824ccd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129 ...	2020-04-17 08:17:47
attackspam	[2020-04-16 09:37:19] NOTICE[1170] chan_sip.c: Registration from '"380"' failed for '212.129.50.137:7143' - Wrong password [2020-04-16 09:37:19] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-16T09:37:19.607-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="380",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/7143",Challenge="326d42df",ReceivedChallenge="326d42df",ReceivedHash="d1d39f30916095ab7bf1577f08ebaec2" [2020-04-16 09:38:32] NOTICE[1170] chan_sip.c: Registration from '"381"' failed for '212.129.50.137:7239' - Wrong password [2020-04-16 09:38:32] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-16T09:38:32.820-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="381",SessionID="0x7f6c0824ccd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129 ...	2020-04-16 21:51:01
attackspam	[2020-04-16 02:06:22] NOTICE[1170] chan_sip.c: Registration from '"370"' failed for '212.129.50.137:6671' - Wrong password [2020-04-16 02:06:22] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-16T02:06:22.360-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="370",SessionID="0x7f6c08099cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/6671",Challenge="4098daec",ReceivedChallenge="4098daec",ReceivedHash="bca8c6828bc89e9357ab98d0a5b2694a" [2020-04-16 02:14:59] NOTICE[1170] chan_sip.c: Registration from '"371"' failed for '212.129.50.137:6707' - Wrong password [2020-04-16 02:14:59] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-16T02:14:59.621-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="371",SessionID="0x7f6c081949a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129 ...	2020-04-16 14:54:57
attackbotsspam	[2020-04-13 13:16:30] NOTICE[1170] chan_sip.c: Registration from '"270"' failed for '212.129.50.137:6598' - Wrong password [2020-04-13 13:16:30] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-13T13:16:30.688-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="270",SessionID="0x7f6c08023648",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/6598",Challenge="35e6320f",ReceivedChallenge="35e6320f",ReceivedHash="5583a31610aa41244aa770882e44d541" [2020-04-13 13:21:01] NOTICE[1170] chan_sip.c: Registration from '"271"' failed for '212.129.50.137:6654' - Wrong password [2020-04-13 13:21:01] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-13T13:21:01.110-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="271",SessionID="0x7f6c08041578",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129 ...	2020-04-14 01:32:23
attackbots	[2020-04-10 09:39:06] NOTICE[12114] chan_sip.c: Registration from '"160"' failed for '212.129.50.137:6021' - Wrong password [2020-04-10 09:39:06] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-10T09:39:06.705-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="160",SessionID="0x7f020c08adb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/6021",Challenge="7dc23c6f",ReceivedChallenge="7dc23c6f",ReceivedHash="4da648976afc98ea7a4cf90b8a295b92" [2020-04-10 09:40:19] NOTICE[12114] chan_sip.c: Registration from '"161"' failed for '212.129.50.137:6088' - Wrong password [2020-04-10 09:40:19] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-10T09:40:19.076-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="161",SessionID="0x7f020c08adb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212 ...	2020-04-10 22:21:47
attack	[2020-04-09 13:53:36] NOTICE[12114] chan_sip.c: Registration from '"130"' failed for '212.129.50.137:9548' - Wrong password [2020-04-09 13:53:36] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-09T13:53:36.945-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="130",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.129.50.137/9548",Challenge="3158ba50",ReceivedChallenge="3158ba50",ReceivedHash="d75022e7ad5a526745f399154d25e622" [2020-04-09 13:54:39] NOTICE[12114] chan_sip.c: Registration from '"131"' failed for '212.129.50.137:9590' - Wrong password [2020-04-09 13:54:39] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-09T13:54:39.560-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="131",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212 ...	2020-04-10 02:00:45

Comments on same subnet:

IP	Type	Details	Datetime
212.129.50.243	attackbotsspam	FR - - [04/Jul/2020:01:53:07 +0300] GET /go.php?http://cialisfcanada.com/ HTTP/1.1 403 292 - Mozilla/5.0 compatible; BarkRowler/0.9; +https://babbar.tech/crawler	2020-07-04 16:09:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.129.50.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.129.50.137.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040901 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 02:00:34 CST 2020
;; MSG SIZE  rcvd: 118

Host info

137.50.129.212.in-addr.arpa domain name pointer 212-129-50-137.rev.poneytelecom.eu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
137.50.129.212.in-addr.arpa	name = 212-129-50-137.rev.poneytelecom.eu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.45.209.149	attackspam	$f2bV_matches	2019-09-11 17:38:36
192.99.68.159	attack	Reported by AbuseIPDB proxy server.	2019-09-11 18:17:06
182.61.11.3	attackspam	Reported by AbuseIPDB proxy server.	2019-09-11 19:03:19
106.13.15.122	attack	Sep 11 12:08:51 meumeu sshd[12854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 Sep 11 12:08:53 meumeu sshd[12854]: Failed password for invalid user a from 106.13.15.122 port 32784 ssh2 Sep 11 12:12:41 meumeu sshd[13399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.122 ...	2019-09-11 18:27:45
114.88.162.126	attack	Sep 11 12:07:10 mail sshd\[6744\]: Failed password for invalid user tom from 114.88.162.126 port 59176 ssh2 Sep 11 12:11:42 mail sshd\[7642\]: Invalid user support from 114.88.162.126 port 43662 Sep 11 12:11:42 mail sshd\[7642\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.88.162.126 Sep 11 12:11:45 mail sshd\[7642\]: Failed password for invalid user support from 114.88.162.126 port 43662 ssh2 Sep 11 12:16:19 mail sshd\[8512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.88.162.126 user=www-data	2019-09-11 18:26:48
123.142.29.76	attack	Sep 11 07:02:55 TORMINT sshd\[17660\]: Invalid user wwwadmin from 123.142.29.76 Sep 11 07:02:55 TORMINT sshd\[17660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.29.76 Sep 11 07:02:57 TORMINT sshd\[17660\]: Failed password for invalid user wwwadmin from 123.142.29.76 port 49964 ssh2 ...	2019-09-11 19:17:33
182.147.243.50	attack	recursive dns scanner	2019-09-11 18:52:20
146.88.240.14	attackbotsspam	recursive dns scanner	2019-09-11 18:53:39
51.79.18.47	attack	none	2019-09-11 19:21:43
27.97.81.168	attackbots	Brute force attempt	2019-09-11 19:02:46
193.56.28.74	attack	(pop3d) Failed POP3 login from 193.56.28.74 (GB/United Kingdom/-): 1 in the last 3600 secs	2019-09-11 19:07:50
212.92.121.47	attackbotsspam	RDP Bruteforce	2019-09-11 19:21:03
106.248.19.115	attack	Sep 11 12:16:51 mail sshd\[8611\]: Invalid user 12345 from 106.248.19.115 port 57556 Sep 11 12:16:51 mail sshd\[8611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.19.115 Sep 11 12:16:53 mail sshd\[8611\]: Failed password for invalid user 12345 from 106.248.19.115 port 57556 ssh2 Sep 11 12:24:16 mail sshd\[9899\]: Invalid user server from 106.248.19.115 port 36226 Sep 11 12:24:16 mail sshd\[9899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.19.115	2019-09-11 18:27:17
103.89.88.109	attack	Brute force attempt detected from IP 103.89.88.109 - IP already blocked by 'pfB_Asia_v4 auto rule'	2019-09-11 18:19:44
193.112.58.212	attackspam	2019-09-11T12:03:25.135944lon01.zurich-datacenter.net sshd\[20180\]: Invalid user sshuser from 193.112.58.212 port 37368 2019-09-11T12:03:25.140942lon01.zurich-datacenter.net sshd\[20180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.58.212 2019-09-11T12:03:27.996734lon01.zurich-datacenter.net sshd\[20180\]: Failed password for invalid user sshuser from 193.112.58.212 port 37368 ssh2 2019-09-11T12:08:05.450544lon01.zurich-datacenter.net sshd\[20302\]: Invalid user proxyuser from 193.112.58.212 port 50470 2019-09-11T12:08:05.455734lon01.zurich-datacenter.net sshd\[20302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.58.212 ...	2019-09-11 19:08:21

Recently Reported IPs

103.36.77.217	110.43.208.241	102.24.87.3	27.128.187.131
5.184.91.108	218.29.219.36	104.41.146.81	193.112.37.209
49.68.147.192	112.197.33.78	103.214.7.140	79.100.162.206
185.202.1.220	219.233.31.29	167.172.195.227	46.32.45.207
154.16.136.111	117.53.44.29	36.72.189.15	93.99.104.103