129.205.135.174

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
129.205.135.171	attackspam	srvr1: (mod_security) mod_security (id:942100) triggered by 129.205.135.171 (ZA/-/129-205-135-171.dynamic.macrolan.co.za): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:05 [error] 482759#0: 840539 [client 129.205.135.171] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801150536.056070"] [ref ""], client: 129.205.135.171, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29%29%29+OR+++%28%28%284032%3D0 HTTP/1.1" [redacted]	2020-08-21 23:19:46

类型

评论内容

时间

129.205.135.171

attackspam

srvr1: (mod_security) mod_security (id:942100) triggered by 129.205.135.171 (ZA/-/129-205-135-171.dynamic.macrolan.co.za): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:05 [error] 482759#0: *840539 [client 129.205.135.171] ModSecurity: Access denied with code 406 (phase 2).  [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801150536.056070"] [ref ""], client: 129.205.135.171, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29%29%29+OR+++%28%28%284032%3D0 HTTP/1.1" [redacted]

2020-08-21 23:19:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.135.174
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51637
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.205.135.174.		IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:45:53 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

174.135.205.129.in-addr.arpa domain name pointer 129-205-135-174.dynamic.macrolan.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
174.135.205.129.in-addr.arpa	name = 129-205-135-174.dynamic.macrolan.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.152.213.85	attackbots	Sep 13 07:53:10 vps639187 sshd\[20078\]: Invalid user perl from 122.152.213.85 port 49560 Sep 13 07:53:10 vps639187 sshd\[20078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.213.85 Sep 13 07:53:11 vps639187 sshd\[20078\]: Failed password for invalid user perl from 122.152.213.85 port 49560 ssh2 ...	2020-09-13 19:14:57
74.120.14.22	attack	TCP (SYN) 74.120.14.22:63511 -> port 25, len 44	2020-09-13 19:04:53
115.223.34.141	attackbotsspam	2020-09-13T06:04:38.665308devel sshd[24172]: Failed password for root from 115.223.34.141 port 42876 ssh2 2020-09-13T06:07:21.139743devel sshd[24380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.223.34.141 user=root 2020-09-13T06:07:23.039914devel sshd[24380]: Failed password for root from 115.223.34.141 port 57117 ssh2	2020-09-13 19:30:02
165.22.121.56	attack	2020-09-13T08:21:11.357021centos sshd[16270]: Failed password for invalid user yoyo from 165.22.121.56 port 59474 ssh2 2020-09-13T08:24:15.725551centos sshd[16453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.121.56 user=root 2020-09-13T08:24:17.508019centos sshd[16453]: Failed password for root from 165.22.121.56 port 51052 ssh2 ...	2020-09-13 19:37:26
51.79.86.173	attack	SSH auth scanning - multiple failed logins	2020-09-13 19:26:48
177.44.61.59	attack	Automatic report - Port Scan Attack	2020-09-13 19:20:55
51.83.139.55	attack	Sep 13 12:12:22 ns308116 sshd[2880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.139.55 user=root Sep 13 12:12:23 ns308116 sshd[2880]: Failed password for root from 51.83.139.55 port 45519 ssh2 Sep 13 12:12:25 ns308116 sshd[2880]: Failed password for root from 51.83.139.55 port 45519 ssh2 Sep 13 12:12:28 ns308116 sshd[2880]: Failed password for root from 51.83.139.55 port 45519 ssh2 Sep 13 12:12:28 ns308116 sshd[2880]: Failed password for root from 51.83.139.55 port 45519 ssh2 ...	2020-09-13 19:40:01
187.58.65.21	attack	2020-09-13T06:11:50.301717abusebot-4.cloudsearch.cf sshd[11418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 user=root 2020-09-13T06:11:52.476849abusebot-4.cloudsearch.cf sshd[11418]: Failed password for root from 187.58.65.21 port 20410 ssh2 2020-09-13T06:13:45.946926abusebot-4.cloudsearch.cf sshd[11430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 user=root 2020-09-13T06:13:47.911096abusebot-4.cloudsearch.cf sshd[11430]: Failed password for root from 187.58.65.21 port 2186 ssh2 2020-09-13T06:15:26.333289abusebot-4.cloudsearch.cf sshd[11437]: Invalid user shake from 187.58.65.21 port 34150 2020-09-13T06:15:26.339375abusebot-4.cloudsearch.cf sshd[11437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 2020-09-13T06:15:26.333289abusebot-4.cloudsearch.cf sshd[11437]: Invalid user shake from 187.58.65.21 port 34150 2020-09 ...	2020-09-13 19:09:05
82.212.129.252	attack	Tried sshing with brute force.	2020-09-13 19:03:19
221.209.17.222	attackspam	Invalid user admin from 221.209.17.222 port 47173	2020-09-13 19:25:20
119.40.33.22	attackspam	Sep 13 07:01:13 router sshd[13548]: Failed password for root from 119.40.33.22 port 40209 ssh2 Sep 13 07:15:49 router sshd[13619]: Failed password for root from 119.40.33.22 port 60897 ssh2 ...	2020-09-13 19:11:29
93.64.5.34	attack	Brute-force attempt banned	2020-09-13 19:31:14
106.12.45.110	attack	Sep 13 01:05:59 web1 sshd\[23350\]: Invalid user ubnt from 106.12.45.110 Sep 13 01:05:59 web1 sshd\[23350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.45.110 Sep 13 01:06:01 web1 sshd\[23350\]: Failed password for invalid user ubnt from 106.12.45.110 port 50406 ssh2 Sep 13 01:12:24 web1 sshd\[23888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.45.110 user=root Sep 13 01:12:25 web1 sshd\[23888\]: Failed password for root from 106.12.45.110 port 55278 ssh2	2020-09-13 19:13:02
80.82.77.212	attack	UDP ports : 8888 / 17185 / 32769	2020-09-13 19:03:41
202.83.45.0	attackbotsspam	[H1] Blocked by UFW	2020-09-13 19:19:15

最近上报的IP列表

129.205.136.101	129.205.135.172	129.205.135.173	129.205.136.103
129.205.136.106	129.205.136.0	129.205.136.109	129.205.136.11
129.205.136.114	118.170.147.55	129.205.136.124	129.205.136.146
129.205.136.119	129.205.136.150	129.205.136.139	129.205.136.121
129.205.136.148	129.205.136.122	129.205.136.140	129.205.136.15