129.205.135.73

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
129.205.135.171	attackspam	srvr1: (mod_security) mod_security (id:942100) triggered by 129.205.135.171 (ZA/-/129-205-135-171.dynamic.macrolan.co.za): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:05 [error] 482759#0: 840539 [client 129.205.135.171] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801150536.056070"] [ref ""], client: 129.205.135.171, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29%29%29+OR+++%28%28%284032%3D0 HTTP/1.1" [redacted]	2020-08-21 23:19:46

类型

评论内容

时间

129.205.135.171

attackspam

srvr1: (mod_security) mod_security (id:942100) triggered by 129.205.135.171 (ZA/-/129-205-135-171.dynamic.macrolan.co.za): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:05:05 [error] 482759#0: *840539 [client 129.205.135.171] ModSecurity: Access denied with code 406 (phase 2).  [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801150536.056070"] [ref ""], client: 129.205.135.171, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29%29%29+OR+++%28%28%284032%3D0 HTTP/1.1" [redacted]

2020-08-21 23:19:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.135.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52892
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.205.135.73.			IN	A

;; AUTHORITY SECTION:
.			360	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:45:53 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

73.135.205.129.in-addr.arpa domain name pointer 129-205-135-73.dynamic.macrolan.co.za.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
73.135.205.129.in-addr.arpa	name = 129-205-135-73.dynamic.macrolan.co.za.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.248.52.211	attack	Apr 22 05:52:29 santamaria sshd\[5049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.52.211 user=root Apr 22 05:52:31 santamaria sshd\[5049\]: Failed password for root from 104.248.52.211 port 43778 ssh2 Apr 22 05:57:13 santamaria sshd\[5114\]: Invalid user oracle from 104.248.52.211 Apr 22 05:57:13 santamaria sshd\[5114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.52.211 ...	2020-04-22 12:33:47
190.213.188.110	attack	Automatic report - Port Scan Attack	2020-04-22 12:56:31
106.13.47.66	attackbotsspam	Apr 22 05:48:12 vps sshd[12998]: Failed password for root from 106.13.47.66 port 47540 ssh2 Apr 22 05:53:14 vps sshd[13277]: Failed password for root from 106.13.47.66 port 41818 ssh2 Apr 22 05:56:32 vps sshd[13455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.66 ...	2020-04-22 13:03:36
185.50.149.2	attackbots	Apr 22 06:23:27 nlmail01.srvfarm.net postfix/smtpd[2039983]: warning: unknown[185.50.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 22 06:23:28 nlmail01.srvfarm.net postfix/smtpd[2039983]: lost connection after AUTH from unknown[185.50.149.2] Apr 22 06:23:36 nlmail01.srvfarm.net postfix/smtpd[2039983]: lost connection after AUTH from unknown[185.50.149.2] Apr 22 06:23:42 nlmail01.srvfarm.net postfix/smtpd[2039983]: lost connection after AUTH from unknown[185.50.149.2] Apr 22 06:23:48 nlmail01.srvfarm.net postfix/smtpd[2039994]: warning: unknown[185.50.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-22 12:42:18
167.71.212.3	attack	Bruteforce detected by fail2ban	2020-04-22 12:43:42
192.241.238.137	attackspambots	" "	2020-04-22 12:32:30
117.88.99.41	attackspam	" "	2020-04-22 12:48:39
188.162.252.214	attackspambots	20/4/21@23:57:00: FAIL: Alarm-Intrusion address from=188.162.252.214 ...	2020-04-22 12:49:56
203.90.233.7	attack	Bruteforce detected by fail2ban	2020-04-22 12:30:24
54.36.54.24	attackspambots	$f2bV_matches	2020-04-22 12:38:14
42.159.81.224	attackspambots	Apr 21 18:35:16 sachi sshd\[3516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.81.224 user=root Apr 21 18:35:18 sachi sshd\[3516\]: Failed password for root from 42.159.81.224 port 59013 ssh2 Apr 21 18:37:50 sachi sshd\[3710\]: Invalid user admin10 from 42.159.81.224 Apr 21 18:37:50 sachi sshd\[3710\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.81.224 Apr 21 18:37:51 sachi sshd\[3710\]: Failed password for invalid user admin10 from 42.159.81.224 port 34540 ssh2	2020-04-22 13:03:22
158.69.223.91	attackspambots	Apr 21 18:37:13 sachi sshd\[3660\]: Invalid user admin from 158.69.223.91 Apr 21 18:37:13 sachi sshd\[3660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-158-69-223.net Apr 21 18:37:14 sachi sshd\[3660\]: Failed password for invalid user admin from 158.69.223.91 port 35908 ssh2 Apr 21 18:39:36 sachi sshd\[3963\]: Invalid user mh from 158.69.223.91 Apr 21 18:39:36 sachi sshd\[3963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.ip-158-69-223.net	2020-04-22 12:44:19
5.135.179.178	attack	Apr 21 22:08:49 server1 sshd\[24418\]: Invalid user admin from 5.135.179.178 Apr 21 22:08:49 server1 sshd\[24418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.179.178 Apr 21 22:08:52 server1 sshd\[24418\]: Failed password for invalid user admin from 5.135.179.178 port 10222 ssh2 Apr 21 22:14:44 server1 sshd\[26010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.179.178 user=root Apr 21 22:14:46 server1 sshd\[26010\]: Failed password for root from 5.135.179.178 port 40483 ssh2 ...	2020-04-22 12:58:08
62.234.94.202	attackspambots	detected by Fail2Ban	2020-04-22 12:49:10
178.210.39.78	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-04-22 12:54:40

最近上报的IP列表

129.205.135.226	129.205.136.101	129.205.135.174	129.205.135.172
129.205.135.173	129.205.136.103	129.205.136.106	129.205.136.0
129.205.136.109	129.205.136.11	129.205.136.114	118.170.147.55
129.205.136.124	129.205.136.146	129.205.136.119	129.205.136.150
129.205.136.139	129.205.136.121	129.205.136.148	129.205.136.122