129.232.138.10

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.232.138.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43560
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.232.138.10.			IN	A

;; AUTHORITY SECTION:
.			215	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:02:26 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

10.138.232.129.in-addr.arpa domain name pointer dedi575.jnb2.host-h.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
10.138.232.129.in-addr.arpa	name = dedi575.jnb2.host-h.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
77.86.112.179	attack	Sep 10 14:42:33 cumulus sshd[29717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.86.112.179 user=r.r Sep 10 14:42:35 cumulus sshd[29717]: Failed password for r.r from 77.86.112.179 port 53982 ssh2 Sep 10 14:42:35 cumulus sshd[29717]: Connection closed by 77.86.112.179 port 53982 [preauth] Sep 10 14:42:42 cumulus sshd[29858]: Invalid user pi from 77.86.112.179 port 40206 Sep 10 14:42:42 cumulus sshd[29857]: Invalid user pi from 77.86.112.179 port 39518 Sep 10 14:42:42 cumulus sshd[29857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.86.112.179 Sep 10 14:42:42 cumulus sshd[29858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.86.112.179 Sep 10 14:42:43 cumulus sshd[29858]: Failed password for invalid user pi from 77.86.112.179 port 40206 ssh2 Sep 10 14:42:43 cumulus sshd[29857]: Failed password for invalid user pi from 77.86.112.179 po........ -------------------------------	2020-09-11 07:47:29
217.55.75.111	attackbots	DATE:2020-09-10 18:54:30, IP:217.55.75.111, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-11 07:30:17
119.193.158.232	attackbots	Sep 10 18:56:06 andromeda sshd\[6270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.193.158.232 user=root Sep 10 18:56:08 andromeda sshd\[6270\]: Failed password for root from 119.193.158.232 port 45602 ssh2 Sep 10 18:56:11 andromeda sshd\[6519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.193.158.232 user=root	2020-09-11 07:10:48
167.71.187.10	attackspam	SSH Invalid Login	2020-09-11 07:44:48
107.189.10.101	attack	$f2bV_matches	2020-09-11 07:34:02
68.197.126.163	attack	Sep 10 18:50:24 h1946882 sshd[9114]: Failed password for r.r from 68.1= 97.126.163 port 46454 ssh2 Sep 10 18:50:25 h1946882 sshd[9114]: Connection closed by 68.197.126.16= 3 [preauth] Sep 10 18:50:40 h1946882 sshd[9158]: Failed password for r.r from 68.1= 97.126.163 port 46965 ssh2 Sep 10 18:50:40 h1946882 sshd[9158]: Connection closed by 68.197.126.16= 3 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=68.197.126.163	2020-09-11 07:35:13
222.175.223.74	attackbots	Failed password for invalid user ide from 222.175.223.74 port 33146 ssh2	2020-09-11 07:33:42
188.166.185.157	attackbotsspam	Sep 10 16:51:50 instance-2 sshd[17338]: Failed password for root from 188.166.185.157 port 42352 ssh2 Sep 10 16:55:52 instance-2 sshd[17359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.185.157 Sep 10 16:55:54 instance-2 sshd[17359]: Failed password for invalid user mysql from 188.166.185.157 port 42828 ssh2	2020-09-11 07:27:03
191.223.18.45	attackbotsspam	(sshd) Failed SSH login from 191.223.18.45 (BR/Brazil/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 10 18:55:23 grace sshd[24623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.223.18.45 user=root Sep 10 18:55:25 grace sshd[24623]: Failed password for root from 191.223.18.45 port 45312 ssh2 Sep 10 18:55:39 grace sshd[24712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.223.18.45 user=root Sep 10 18:55:41 grace sshd[24712]: Failed password for root from 191.223.18.45 port 45393 ssh2 Sep 10 18:55:43 grace sshd[24715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.223.18.45 user=root	2020-09-11 07:31:02
200.89.154.99	attackspambots	SSH Invalid Login	2020-09-11 07:29:17
51.83.76.25	attackbots	k+ssh-bruteforce	2020-09-11 07:23:00
181.46.164.9	attack	(cxs) cxs mod_security triggered by 181.46.164.9 (AR/Argentina/cpe-181-46-164-9.telecentro-reversos.com.ar): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_CXS; Logs: [Thu Sep 10 18:55:20.401814 2020] [:error] [pid 3943566:tid 47466712020736] [client 181.46.164.9:17461] [client 181.46.164.9] ModSecurity: Access denied with code 403 (phase 2). File "/tmp/20200910-185518-X1padp1cg7rkBOBCfBdcDgAAAA0-file-JRUfUL" rejected by the approver script "/etc/cxs/cxscgi.sh": 0 [file "/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"] [line "7"] [id "1010101"] [msg "ConfigServer Exploit Scanner (cxs) triggered"] [severity "CRITICAL"] [hostname "gastro-ptuj.si"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "X1padp1cg7rkBOBCfBdcDgAAAA0"], referer: http://gastro-ptuj.si/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php	2020-09-11 07:48:40
49.234.56.65	attackspambots	Sep 10 21:00:28 vpn01 sshd[12281]: Failed password for root from 49.234.56.65 port 51990 ssh2 ...	2020-09-11 07:39:03
178.137.83.51	attackspam	Sep 10 20:00:27 ssh2 sshd[16337]: Connection from 178.137.83.51 port 40760 on 192.240.101.3 port 22 Sep 10 20:00:29 ssh2 sshd[16337]: Invalid user netman from 178.137.83.51 port 40760 Sep 10 20:00:29 ssh2 sshd[16337]: Failed password for invalid user netman from 178.137.83.51 port 40760 ssh2 ...	2020-09-11 07:12:04
180.151.246.58	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-11 07:18:25

最近上报的IP列表

129.228.1.51	129.232.138.121	129.232.136.42	129.232.138.126
129.232.138.112	129.232.138.172	129.232.138.170	129.232.138.187
129.232.138.194	129.232.138.190	49.247.130.246	129.232.138.188
129.232.138.213	129.232.138.241	129.232.138.76	129.232.138.91
129.232.138.77	129.232.138.224	129.232.143.242	129.232.165.90