129.205.135.173

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
129.205.135.171	attackspam	srvr1: (mod_security) mod_security (id:942100) triggered by 129.205.135.171 (ZA/-/129-205-135-171.dynamic.macrolan.co.za): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:05 [error] 482759#0: 840539 [client 129.205.135.171] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801150536.056070"] [ref ""], client: 129.205.135.171, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29%29%29+OR+++%28%28%284032%3D0 HTTP/1.1" [redacted]	2020-08-21 23:19:46

类型

评论内容

时间

129.205.135.171

attackspam

srvr1: (mod_security) mod_security (id:942100) triggered by 129.205.135.171 (ZA/-/129-205-135-171.dynamic.macrolan.co.za): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:05 [error] 482759#0: *840539 [client 129.205.135.171] ModSecurity: Access denied with code 406 (phase 2).  [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801150536.056070"] [ref ""], client: 129.205.135.171, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29%29%29+OR+++%28%28%284032%3D0 HTTP/1.1" [redacted]

2020-08-21 23:19:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.135.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19907
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.205.135.173.		IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:45:52 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

b'173.135.205.129.in-addr.arpa domain name pointer 129-205-135-173.dynamic.macrolan.co.za.
'

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
173.135.205.129.in-addr.arpa	name = 129-205-135-173.dynamic.macrolan.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
164.132.46.14	attackbots	(sshd) Failed SSH login from 164.132.46.14 (FR/France/Hauts-de-France/Gravelines/14.ip-164-132-46.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 29 03:18:53 atlas sshd[1289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.46.14 user=root Sep 29 03:18:54 atlas sshd[1289]: Failed password for root from 164.132.46.14 port 47194 ssh2 Sep 29 03:30:47 atlas sshd[14763]: Invalid user home from 164.132.46.14 port 56854 Sep 29 03:30:49 atlas sshd[14763]: Failed password for invalid user home from 164.132.46.14 port 56854 ssh2 Sep 29 03:35:19 atlas sshd[7189]: Invalid user mcserver from 164.132.46.14 port 37994	2020-09-29 17:30:36
49.235.148.116	attack	(sshd) Failed SSH login from 49.235.148.116 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 29 01:53:44 server4 sshd[17905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.148.116 user=root Sep 29 01:53:46 server4 sshd[17905]: Failed password for root from 49.235.148.116 port 48552 ssh2 Sep 29 02:00:09 server4 sshd[21534]: Invalid user kibana from 49.235.148.116 Sep 29 02:00:09 server4 sshd[21534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.148.116 Sep 29 02:00:12 server4 sshd[21534]: Failed password for invalid user kibana from 49.235.148.116 port 49780 ssh2	2020-09-29 17:18:05
210.66.48.94	attackbotsspam	Portscan detected	2020-09-29 17:34:41
189.112.228.153	attack	Sep 29 10:31:21 melroy-server sshd[22452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.112.228.153 Sep 29 10:31:23 melroy-server sshd[22452]: Failed password for invalid user contact from 189.112.228.153 port 59565 ssh2 ...	2020-09-29 17:21:02
36.155.113.40	attackbots	Sep 29 02:50:29 [host] sshd[6350]: pam_unix(sshd:a Sep 29 02:50:31 [host] sshd[6350]: Failed password Sep 29 02:56:34 [host] sshd[6537]: pam_unix(sshd:a	2020-09-29 17:31:54
5.188.84.242	attackspambots	WEB SPAM: Invest $1 today to make $1000 tomorrow. Link - http://www.google.com/url?q=%68%74%74%70%73%3A%2F%2F%68%64%72%65%64%74%75%62%65%33%2e%6d%6f%62%69%2F%62%74%73%6d%61%72%74%23%56%67%50%7a%69%6b%79%75%65%62%76%77%64%4b%54%6f%5a&sa=D&sntz=1&usg=AFQjCNFwIhhLNuznXElcc_4PkoN9dSQL_Q	2020-09-29 17:36:56
107.189.11.160	attackbots	2020-09-29T10:51:29.549688ks3355764 sshd[27198]: Invalid user postgres from 107.189.11.160 port 42942 2020-09-29T10:51:29.576321ks3355764 sshd[27194]: Invalid user centos from 107.189.11.160 port 42938 ...	2020-09-29 16:59:51
61.52.11.5	attackbots	Automatic report - Port Scan Attack	2020-09-29 17:14:12
192.241.179.98	attack	$f2bV_matches	2020-09-29 17:14:35
173.212.244.135	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-29 17:12:25
134.175.154.145	attackspam	Sep 29 10:56:16 server sshd[15379]: Failed password for root from 134.175.154.145 port 52950 ssh2 Sep 29 10:59:57 server sshd[17123]: Failed password for invalid user user1 from 134.175.154.145 port 59228 ssh2 Sep 29 11:03:11 server sshd[19148]: Failed password for root from 134.175.154.145 port 36886 ssh2	2020-09-29 17:33:16
190.160.156.7	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-09-29 17:04:36
159.65.181.26	attackbots	sshd: Failed password for invalid user .... from 159.65.181.26 port 37962 ssh2 (6 attempts)	2020-09-29 17:35:12
14.228.75.180	attack	1601325275 - 09/28/2020 22:34:35 Host: 14.228.75.180/14.228.75.180 Port: 445 TCP Blocked	2020-09-29 17:30:19
103.243.164.251	attackspam	Sep 29 11:17:14 OPSO sshd\[13581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.164.251 user=root Sep 29 11:17:16 OPSO sshd\[13581\]: Failed password for root from 103.243.164.251 port 35664 ssh2 Sep 29 11:21:13 OPSO sshd\[14080\]: Invalid user oracle from 103.243.164.251 port 44114 Sep 29 11:21:13 OPSO sshd\[14080\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.164.251 Sep 29 11:21:15 OPSO sshd\[14080\]: Failed password for invalid user oracle from 103.243.164.251 port 44114 ssh2	2020-09-29 17:25:36

最近上报的IP列表

129.205.135.172	129.205.136.103	129.205.136.106	129.205.136.0
129.205.136.109	129.205.136.11	129.205.136.114	118.170.147.55
129.205.136.124	129.205.136.146	129.205.136.119	129.205.136.150
129.205.136.139	129.205.136.121	129.205.136.148	129.205.136.122
129.205.136.140	129.205.136.15	129.205.136.12	118.170.147.79