129.205.208.21

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Botswana

运营商(isp): Botswana Fibre Networks (Proprietary) Limited

主机名(hostname): unknown

机构(organization): BOFINET

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Apr 18 21:16:18 yesfletchmain sshd\[24473\]: Invalid user mysql2 from 129.205.208.21 port 22018 Apr 18 21:16:18 yesfletchmain sshd\[24473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Apr 18 21:16:21 yesfletchmain sshd\[24473\]: Failed password for invalid user mysql2 from 129.205.208.21 port 22018 ssh2 Apr 18 21:22:59 yesfletchmain sshd\[24739\]: Invalid user temp1 from 129.205.208.21 port 3000 Apr 18 21:22:59 yesfletchmain sshd\[24739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 ...	2019-12-24 02:40:15
attackspam	Jan 23 15:25:03 motanud sshd\[22063\]: Invalid user wmaina from 129.205.208.21 port 31267 Jan 23 15:25:03 motanud sshd\[22063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Jan 23 15:25:05 motanud sshd\[22063\]: Failed password for invalid user wmaina from 129.205.208.21 port 31267 ssh2 Mar 4 07:20:56 motanud sshd\[8200\]: Invalid user ftpadmin from 129.205.208.21 port 9310 Mar 4 07:20:56 motanud sshd\[8200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Mar 4 07:20:58 motanud sshd\[8200\]: Failed password for invalid user ftpadmin from 129.205.208.21 port 9310 ssh2	2019-08-04 10:43:31
attackbotsspam	SSH Bruteforce	2019-07-08 12:31:05
attack	Jun 30 15:42:48 lnxded64 sshd[13164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Jun 30 15:42:48 lnxded64 sshd[13164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Jun 30 15:42:50 lnxded64 sshd[13164]: Failed password for invalid user git from 129.205.208.21 port 27330 ssh2	2019-06-30 22:32:41

相同子网IP讨论:

IP	类型	评论内容	时间
129.205.208.23	attackbotsspam	Apr 23 21:12:40 yesfletchmain sshd\[24809\]: Invalid user informix from 129.205.208.23 port 22498 Apr 23 21:12:40 yesfletchmain sshd\[24809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.23 Apr 23 21:12:42 yesfletchmain sshd\[24809\]: Failed password for invalid user informix from 129.205.208.23 port 22498 ssh2 Apr 23 21:16:27 yesfletchmain sshd\[24890\]: Invalid user ezequiel from 129.205.208.23 port 29625 Apr 23 21:16:27 yesfletchmain sshd\[24890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.23 ...	2019-12-24 02:37:56
129.205.208.20	attackspam	Jan 23 15:15:28 motanud sshd\[21702\]: Invalid user oracle from 129.205.208.20 port 19106 Jan 23 15:15:28 motanud sshd\[21702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.20 Jan 23 15:15:31 motanud sshd\[21702\]: Failed password for invalid user oracle from 129.205.208.20 port 19106 ssh2 Mar 4 07:02:42 motanud sshd\[7359\]: Invalid user jt from 129.205.208.20 port 7616 Mar 4 07:02:42 motanud sshd\[7359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.20 Mar 4 07:02:44 motanud sshd\[7359\]: Failed password for invalid user jt from 129.205.208.20 port 7616 ssh2 Mar 4 07:35:40 motanud sshd\[9071\]: Invalid user z from 129.205.208.20 port 1089 Mar 4 07:35:40 motanud sshd\[9071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.20 Mar 4 07:35:42 motanud sshd\[9071\]: Failed password for invalid user z from 129.205.208.20 port 1089 ssh2	2019-08-04 10:45:25
129.205.208.22	attack	Jan 23 15:20:48 motanud sshd\[21879\]: Invalid user test1 from 129.205.208.22 port 10659 Jan 23 15:20:48 motanud sshd\[21879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.22 Jan 23 15:20:49 motanud sshd\[21879\]: Failed password for invalid user test1 from 129.205.208.22 port 10659 ssh2 Mar 4 07:28:17 motanud sshd\[8624\]: Invalid user td from 129.205.208.22 port 26699 Mar 4 07:28:17 motanud sshd\[8624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.22 Mar 4 07:28:19 motanud sshd\[8624\]: Failed password for invalid user td from 129.205.208.22 port 26699 ssh2	2019-08-04 10:40:01
129.205.208.23	attackbots	Jan 23 15:34:00 motanud sshd\[22510\]: Invalid user rafael from 129.205.208.23 port 22230 Jan 23 15:34:00 motanud sshd\[22510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.23 Jan 23 15:34:01 motanud sshd\[22510\]: Failed password for invalid user rafael from 129.205.208.23 port 22230 ssh2 Mar 4 07:13:35 motanud sshd\[7767\]: Invalid user hn from 129.205.208.23 port 27528 Mar 4 07:13:35 motanud sshd\[7767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.23 Mar 4 07:13:37 motanud sshd\[7767\]: Failed password for invalid user hn from 129.205.208.23 port 27528 ssh2	2019-08-04 10:35:37
129.205.208.22	attackbotsspam	Jul 30 12:20:04 unicornsoft sshd\[25198\]: Invalid user spider from 129.205.208.22 Jul 30 12:20:04 unicornsoft sshd\[25198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.22 Jul 30 12:20:06 unicornsoft sshd\[25198\]: Failed password for invalid user spider from 129.205.208.22 port 22465 ssh2	2019-07-30 23:11:05
129.205.208.20	attack	SSH Bruteforce	2019-07-08 13:53:38
129.205.208.23	attackspambots	Jul 7 23:52:46 MK-Soft-VM5 sshd\[1544\]: Invalid user louis from 129.205.208.23 port 27158 Jul 7 23:52:46 MK-Soft-VM5 sshd\[1544\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.23 Jul 7 23:52:48 MK-Soft-VM5 sshd\[1544\]: Failed password for invalid user louis from 129.205.208.23 port 27158 ssh2 ...	2019-07-08 10:10:06

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.208.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32326
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.205.208.21.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041301 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 14 06:18:45 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 21.208.205.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 21.208.205.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
223.24.186.171	attackspambots	Fail2ban Auto Reporting Attempted phpMyAdmin Login Attack	2020-05-15 19:48:40
106.12.176.128	attackspambots	Invalid user wanda from 106.12.176.128 port 41900	2020-05-15 19:39:21
134.122.94.184	attack	May 15 13:29:06 vps639187 sshd\[2305\]: Invalid user bestyrer from 134.122.94.184 port 56772 May 15 13:29:06 vps639187 sshd\[2305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.94.184 May 15 13:29:09 vps639187 sshd\[2305\]: Failed password for invalid user bestyrer from 134.122.94.184 port 56772 ssh2 ...	2020-05-15 19:46:44
106.54.145.68	attackbots	$f2bV_matches	2020-05-15 20:00:03
37.252.187.140	attack	$f2bV_matches	2020-05-15 20:05:53
14.241.244.88	attackbots	port scan and connect, tcp 22 (ssh)	2020-05-15 19:38:08
49.233.177.173	attackspam	May 13 01:47:04 server6 sshd[18304]: Failed password for invalid user publish from 49.233.177.173 port 47552 ssh2 May 13 01:47:04 server6 sshd[18304]: Received disconnect from 49.233.177.173: 11: Bye Bye [preauth] May 13 01:58:54 server6 sshd[28824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.177.173 user=r.r May 13 01:58:56 server6 sshd[28824]: Failed password for r.r from 49.233.177.173 port 49168 ssh2 May 13 01:58:56 server6 sshd[28824]: Received disconnect from 49.233.177.173: 11: Bye Bye [preauth] May 13 02:04:01 server6 sshd[6761]: Failed password for invalid user administrador from 49.233.177.173 port 45932 ssh2 May 13 02:04:02 server6 sshd[6761]: Received disconnect from 49.233.177.173: 11: Bye Bye [preauth] May 13 02:09:03 server6 sshd[11619]: Failed password for invalid user seb from 49.233.177.173 port 42672 ssh2 May 13 02:09:03 server6 sshd[11619]: Received disconnect from 49.233.177.173: 11: Bye Bye [prea........ -------------------------------	2020-05-15 19:40:30
119.28.132.211	attackbotsspam	May 15 09:32:52 haigwepa sshd[25174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.132.211 May 15 09:32:54 haigwepa sshd[25174]: Failed password for invalid user mysql1 from 119.28.132.211 port 57670 ssh2 ...	2020-05-15 19:39:05
125.141.56.230	attackbots	"Unauthorized connection attempt on SSHD detected"	2020-05-15 19:53:50
129.213.145.100	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-05-15 20:03:28
51.137.202.121	attackbots	May 15 14:00:37 vps647732 sshd[5996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.137.202.121 May 15 14:00:39 vps647732 sshd[5996]: Failed password for invalid user admin from 51.137.202.121 port 30728 ssh2 ...	2020-05-15 20:06:46
171.237.229.100	attackspambots	May 15 05:47:47 srv01 sshd[4261]: Did not receive identification string from 171.237.229.100 port 29235 May 15 05:47:50 srv01 sshd[4262]: Invalid user admina from 171.237.229.100 port 63148 May 15 05:47:51 srv01 sshd[4262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.237.229.100 May 15 05:47:50 srv01 sshd[4262]: Invalid user admina from 171.237.229.100 port 63148 May 15 05:47:53 srv01 sshd[4262]: Failed password for invalid user admina from 171.237.229.100 port 63148 ssh2 May 15 05:47:51 srv01 sshd[4262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.237.229.100 May 15 05:47:50 srv01 sshd[4262]: Invalid user admina from 171.237.229.100 port 63148 May 15 05:47:53 srv01 sshd[4262]: Failed password for invalid user admina from 171.237.229.100 port 63148 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=171.237.229.100	2020-05-15 20:07:41
70.37.72.190	attack	38 attacks on Wordpress URLs like: 70.37.72.190 - - [14/May/2020:23:39:11 +0100] "GET /sito/wp-includes/wlwmanifest.xml HTTP/1.1" 404 1128 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/73.0.3683.86 Safari/537.36"	2020-05-15 19:32:56
102.177.145.221	attackspambots	2020-05-15T19:46:17.000303vivaldi2.tree2.info sshd[5564]: Failed password for root from 102.177.145.221 port 42944 ssh2 2020-05-15T19:50:53.443339vivaldi2.tree2.info sshd[5844]: Invalid user anonymous from 102.177.145.221 2020-05-15T19:50:53.453961vivaldi2.tree2.info sshd[5844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.177.145.221 2020-05-15T19:50:53.443339vivaldi2.tree2.info sshd[5844]: Invalid user anonymous from 102.177.145.221 2020-05-15T19:50:55.112446vivaldi2.tree2.info sshd[5844]: Failed password for invalid user anonymous from 102.177.145.221 port 50106 ssh2 ...	2020-05-15 19:37:12
49.247.134.133	attack	Invalid user pmi from 49.247.134.133 port 56458	2020-05-15 20:04:36

最近上报的IP列表

47.104.29.5	192.40.95.29	148.102.120.208	141.98.10.38
178.113.24.248	42.117.121.20	213.90.54.195	106.13.70.44
177.66.208.6	134.209.8.98	203.186.184.146	2002:755b:fe5e::755b:fe5e
104.248.73.146	103.207.38.151	94.23.156.199	140.129.25.81
113.53.71.35	66.76.58.60	110.164.67.47	151.80.140.166