60.50.29.149 - IPInfo

Basic Info

City: Shah Alam

Region: Selangor

Country: Malaysia

Internet Service Provider: Telekom Malaysia Berhad

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 14 19:27:39 web1 sshd\[20000\]: Invalid user bruce from 60.50.29.149 Jun 14 19:27:39 web1 sshd\[20000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 Jun 14 19:27:41 web1 sshd\[20000\]: Failed password for invalid user bruce from 60.50.29.149 port 35948 ssh2 Jun 14 19:31:34 web1 sshd\[20427\]: Invalid user wz from 60.50.29.149 Jun 14 19:31:34 web1 sshd\[20427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149	2020-06-15 13:40:58
attackspam	Invalid user cc from 60.50.29.149 port 34654	2020-06-15 05:59:45
attackspam	Jun 14 05:42:48 localhost sshd\[15005\]: Invalid user laur from 60.50.29.149 port 42882 Jun 14 05:42:48 localhost sshd\[15005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 Jun 14 05:42:50 localhost sshd\[15005\]: Failed password for invalid user laur from 60.50.29.149 port 42882 ssh2 ...	2020-06-14 14:50:49
attackbots	Jun 12 14:05:37 home sshd[18236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 Jun 12 14:05:38 home sshd[18236]: Failed password for invalid user arnaud from 60.50.29.149 port 47602 ssh2 Jun 12 14:09:51 home sshd[18749]: Failed password for root from 60.50.29.149 port 50752 ssh2 ...	2020-06-12 20:15:43
attackbots	Jun 9 16:19:57 localhost sshd[3626211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 user=r.r Jun 9 16:19:59 localhost sshd[3626211]: Failed password for r.r from 60.50.29.149 port 58914 ssh2 Jun 9 16:27:52 localhost sshd[3629092]: Invalid user wolfman from 60.50.29.149 port 50818 Jun 9 16:27:52 localhost sshd[3629092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 Jun 9 16:27:52 localhost sshd[3629092]: Invalid user wolfman from 60.50.29.149 port 50818 Jun 9 16:27:54 localhost sshd[3629092]: Failed password for invalid user wolfman from 60.50.29.149 port 50818 ssh2 Jun 9 16:31:38 localhost sshd[3630811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.50.29.149 user=r.r Jun 9 16:31:40 localhost sshd[3630811]: Failed password for r.r from 60.50.29.149 port 59430 ssh2 Jun 9 16:35:25 localhost sshd[3632733]: I........ ------------------------------	2020-06-12 08:33:26

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 60.50.29.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;60.50.29.149.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061102 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 12 08:33:22 CST 2020
;; MSG SIZE  rcvd: 116

Host info

149.29.50.60.in-addr.arpa domain name pointer 149.29.50.60.kmr03-home.tm.net.my.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.29.50.60.in-addr.arpa	name = 149.29.50.60.kmr03-home.tm.net.my.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.48.155.149	attack	(sshd) Failed SSH login from 181.48.155.149 (CO/Colombia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 21 04:42:17 amsweb01 sshd[1058]: Invalid user fp from 181.48.155.149 port 49032 Mar 21 04:42:19 amsweb01 sshd[1058]: Failed password for invalid user fp from 181.48.155.149 port 49032 ssh2 Mar 21 04:52:57 amsweb01 sshd[7185]: Invalid user bronson from 181.48.155.149 port 57484 Mar 21 04:52:58 amsweb01 sshd[7185]: Failed password for invalid user bronson from 181.48.155.149 port 57484 ssh2 Mar 21 04:56:42 amsweb01 sshd[10704]: Invalid user cleta from 181.48.155.149 port 55648	2020-03-21 12:02:39
62.219.118.29	attackbots	DATE:2020-03-21 04:51:06, IP:62.219.118.29, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-21 12:36:03
51.77.136.155	attackbots	Mar 20 18:21:03 wbs sshd\[31104\]: Invalid user cpanelcabcache from 51.77.136.155 Mar 20 18:21:03 wbs sshd\[31104\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.ip-51-77-136.eu Mar 20 18:21:05 wbs sshd\[31104\]: Failed password for invalid user cpanelcabcache from 51.77.136.155 port 37486 ssh2 Mar 20 18:25:13 wbs sshd\[31482\]: Invalid user fct from 51.77.136.155 Mar 20 18:25:13 wbs sshd\[31482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.ip-51-77-136.eu	2020-03-21 12:27:20
80.211.9.57	attackbotsspam	Mar 21 00:12:52 plusreed sshd[6444]: Invalid user administrator from 80.211.9.57 Mar 21 00:12:52 plusreed sshd[6444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.9.57 Mar 21 00:12:52 plusreed sshd[6444]: Invalid user administrator from 80.211.9.57 Mar 21 00:12:53 plusreed sshd[6444]: Failed password for invalid user administrator from 80.211.9.57 port 51422 ssh2 ...	2020-03-21 12:26:56
170.106.38.190	attackspam	Ssh brute force	2020-03-21 10:47:02
94.23.204.130	attackbots	Mar 21 04:51:02 SilenceServices sshd[11903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.204.130 Mar 21 04:51:05 SilenceServices sshd[11903]: Failed password for invalid user admin from 94.23.204.130 port 18992 ssh2 Mar 21 04:54:43 SilenceServices sshd[12906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.204.130	2020-03-21 12:34:56
118.99.104.147	attack	Mar 20 18:30:16 web9 sshd\[7299\]: Invalid user admin from 118.99.104.147 Mar 20 18:30:16 web9 sshd\[7299\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.99.104.147 Mar 20 18:30:18 web9 sshd\[7299\]: Failed password for invalid user admin from 118.99.104.147 port 35128 ssh2 Mar 20 18:31:36 web9 sshd\[7524\]: Invalid user ag from 118.99.104.147 Mar 20 18:31:36 web9 sshd\[7524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.99.104.147	2020-03-21 12:32:49
111.21.99.227	attackbotsspam	Mar 20 22:07:17 server1 sshd\[32206\]: Invalid user sakurai from 111.21.99.227 Mar 20 22:07:17 server1 sshd\[32206\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.21.99.227 Mar 20 22:07:19 server1 sshd\[32206\]: Failed password for invalid user sakurai from 111.21.99.227 port 55888 ssh2 Mar 20 22:14:09 server1 sshd\[1744\]: Invalid user massimo from 111.21.99.227 Mar 20 22:14:09 server1 sshd\[1744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.21.99.227 ...	2020-03-21 12:16:11
51.38.33.178	attackbotsspam	DATE:2020-03-21 03:32:17, IP:51.38.33.178, PORT:ssh SSH brute force auth (docker-dc)	2020-03-21 10:42:12
188.142.241.175	attackbots	Mar 21 04:51:03 OPSO sshd\[943\]: Invalid user ts from 188.142.241.175 port 38194 Mar 21 04:51:03 OPSO sshd\[943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.142.241.175 Mar 21 04:51:05 OPSO sshd\[943\]: Failed password for invalid user ts from 188.142.241.175 port 38194 ssh2 Mar 21 04:55:12 OPSO sshd\[2265\]: Invalid user test from 188.142.241.175 port 47967 Mar 21 04:55:12 OPSO sshd\[2265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.142.241.175	2020-03-21 12:05:53
216.189.157.214	attackspam	Port Scan detected from 216.189.157.214 (US/United States/West Virginia/Gassaway/-). 4 hits in the last 95 seconds	2020-03-21 12:11:30
67.205.162.223	attackspam	Port Scan detected from 67.205.162.223 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 266 seconds	2020-03-21 12:09:56
118.186.11.4	attackspambots	SSH Brute-Forcing (server1)	2020-03-21 10:43:46
162.243.128.197	attackspam	Port Scan detected from 162.243.128.197 (US/United States/California/San Francisco/zg-0312c-31.stretchoid.com). 4 hits in the last 296 seconds	2020-03-21 12:13:01
197.234.219.49	attackspambots	Virus on this IP !	2020-03-21 12:03:25

Recently Reported IPs

114.178.29.69	131.174.99.190	139.6.37.42	46.180.246.234
73.230.76.182	128.199.33.67	101.10.31.183	185.93.80.93
70.77.32.250	74.233.226.90	117.81.51.168	236.242.38.186
216.7.31.74	155.131.20.243	78.213.61.77	213.172.181.97
85.225.147.185	234.99.4.133	13.238.168.109	175.96.215.64