129.205.115.14

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Nigeria

运营商(isp): Globacom Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-07-05 22:11:48
attack	Unauthorized connection attempt detected from IP address 129.205.115.14 to port 445	2020-05-13 01:28:33

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.115.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31458
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.205.115.14.			IN	A

;; AUTHORITY SECTION:
.			295	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051200 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 01:28:29 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 14.115.205.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.115.205.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
189.50.43.10	attackspam	Unauthorized connection attempt detected from IP address 189.50.43.10 to port 80 [J]	2020-01-08 04:35:25
156.203.49.88	attackbots	Unauthorized connection attempt detected from IP address 156.203.49.88 to port 23 [J]	2020-01-08 04:33:40
165.227.225.195	attackspam	Jan 7 15:45:17 mail sshd\[45539\]: Invalid user is from 165.227.225.195 Jan 7 15:45:17 mail sshd\[45539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.225.195 ...	2020-01-08 04:46:44
103.100.210.198	attackspambots	[TueJan0713:54:21.0457372020][:error][pid19610:tid47836490135296][client103.100.210.198:33352][client103.100.210.198]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"136.243.224.51"][uri"/Admin33e0f388/Login.php"][unique_id"XhR-fWzE5ruDsFs0f8z9ugAAAE0"][TueJan0713:54:26.8639202020][:error][pid26559:tid47836397524736][client103.100.210.198:34964][client103.100.210.198]ModSecurity:Accessdeniedwithcode403	2020-01-08 04:40:50
49.88.112.62	attackbotsspam	Jan 7 21:27:52 jane sshd[20230]: Failed password for root from 49.88.112.62 port 42664 ssh2 Jan 7 21:27:56 jane sshd[20230]: Failed password for root from 49.88.112.62 port 42664 ssh2 ...	2020-01-08 04:39:02
218.22.36.135	attackspambots	Jan 7 21:33:26 ns381471 sshd[9060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.22.36.135 Jan 7 21:33:27 ns381471 sshd[9060]: Failed password for invalid user ubnt from 218.22.36.135 port 4182 ssh2	2020-01-08 04:50:12
63.79.60.180	attack	Unauthorized connection attempt detected from IP address 63.79.60.180 to port 2220 [J]	2020-01-08 05:07:36
122.152.203.83	attackbotsspam	Jan 7 01:33:06 main sshd[31373]: Failed password for invalid user yre from 122.152.203.83 port 42652 ssh2	2020-01-08 04:57:23
78.47.255.232	attackspambots	Jan 7 19:19:01 grey postfix/smtpd\[24772\]: NOQUEUE: reject: RCPT from static.232.255.47.78.clients.your-server.de\[78.47.255.232\]: 554 5.7.1 Service unavailable\; Client host \[78.47.255.232\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[78.47.255.232\]\; from=\ to=\ proto=SMTP helo=\ ...	2020-01-08 04:44:22
13.210.177.21	attackbotsspam	Fail2Ban Ban Triggered	2020-01-08 04:33:13
106.12.68.192	attack	Unauthorized connection attempt detected from IP address 106.12.68.192 to port 2220 [J]	2020-01-08 05:09:18
185.247.143.7	attackspam	[portscan] Port scan	2020-01-08 05:04:02
51.89.173.198	attackspambots	Unauthorized connection attempt detected from IP address 51.89.173.198 to port 8088 [J]	2020-01-08 04:58:08
89.135.122.109	attackbots	Jan 7 19:05:38 lnxweb61 sshd[19454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.135.122.109	2020-01-08 04:37:59
222.186.30.218	attack	Jan 7 15:39:09 debian sshd[4255]: Unable to negotiate with 222.186.30.218 port 25185: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Jan 7 15:42:04 debian sshd[4435]: Unable to negotiate with 222.186.30.218 port 62879: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-01-08 04:44:40

最近上报的IP列表

81.163.153.110	79.167.39.5	79.122.162.180	79.40.144.73
78.38.9.56	77.221.41.169	77.42.81.250	106.73.140.57
66.42.30.74	66.42.21.59	58.76.162.249	46.189.175.103
46.158.19.156	45.228.214.108	37.6.202.117	24.193.223.117
23.95.215.152	5.200.86.91	2.37.234.50	219.92.4.74