129.205.136.30

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Seacom Western Cape (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-02-04 17:35:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.136.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40681
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.205.136.30.			IN	A

;; AUTHORITY SECTION:
.			501	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020400 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 17:34:53 CST 2020
;; MSG SIZE  rcvd: 118

Host info

30.136.205.129.in-addr.arpa domain name pointer 129-205-136-30.dynamic.macrolan.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
30.136.205.129.in-addr.arpa	name = 129-205-136-30.dynamic.macrolan.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.147.215.14	attackspambots	[2020-04-05 02:55:47] NOTICE[12114] chan_sip.c: Registration from '' failed for '185.147.215.14:52705' - Wrong password [2020-04-05 02:55:47] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-05T02:55:47.545-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="52830",SessionID="0x7f020c105a58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14/52705",Challenge="3abe9562",ReceivedChallenge="3abe9562",ReceivedHash="f9e6b41bd10bae9084b6f43572c5981f" [2020-04-05 02:56:55] NOTICE[12114] chan_sip.c: Registration from '' failed for '185.147.215.14:61907' - Wrong password [2020-04-05 02:56:55] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-05T02:56:55.555-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="92392",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/18 ...	2020-04-05 15:00:53
92.62.136.63	attack	Invalid user eln from 92.62.136.63 port 35708	2020-04-05 14:53:44
129.211.27.10	attack	Apr 5 06:27:37 mout sshd[20168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.27.10 user=root Apr 5 06:27:40 mout sshd[20168]: Failed password for root from 129.211.27.10 port 35737 ssh2	2020-04-05 15:01:16
103.45.107.226	attackbotsspam	$f2bV_matches	2020-04-05 14:32:44
2400:6180:100:d0::80c:a001	attack	WordPress wp-login brute force :: 2400:6180:100:d0::80c:a001 0.076 BYPASS [05/Apr/2020:05:26:24 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-05 14:38:04
111.231.86.75	attack	Apr 5 05:26:02 IngegnereFirenze sshd[7416]: User root from 111.231.86.75 not allowed because not listed in AllowUsers ...	2020-04-05 15:10:41
180.76.148.147	attackbotsspam	SSH login attempts.	2020-04-05 14:57:32
45.137.183.59	attackspam	Apr 5 07:59:08 v22018086721571380 sshd[11216]: Failed password for invalid user 193.30.122.144 from 45.137.183.59 port 34560 ssh2	2020-04-05 14:59:25
46.101.150.9	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-04-05 14:51:24
179.33.137.117	attack	Apr 5 07:04:13 mail sshd[12851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 user=root Apr 5 07:04:16 mail sshd[12851]: Failed password for root from 179.33.137.117 port 47958 ssh2 Apr 5 07:13:30 mail sshd[27282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 user=root Apr 5 07:13:32 mail sshd[27282]: Failed password for root from 179.33.137.117 port 43632 ssh2 Apr 5 07:16:51 mail sshd[32573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 user=root Apr 5 07:16:53 mail sshd[32573]: Failed password for root from 179.33.137.117 port 56684 ssh2 ...	2020-04-05 14:35:58
31.192.147.99	attack	Wordpress attack	2020-04-05 14:30:39
80.211.88.70	attack	5x Failed Password	2020-04-05 14:40:18
59.126.80.127	attackspam	TW_MAINT-TW-TWNIC_<177>1586058885 [1:2403384:56467] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 43 [Classification: Misc Attack] [Priority: 2]: {TCP} 59.126.80.127:13845	2020-04-05 15:13:48
2002:b9ea:d8ce::b9ea:d8ce	attackbotsspam	Apr 5 08:04:51 web01.agentur-b-2.de postfix/smtpd[93286]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 08:04:51 web01.agentur-b-2.de postfix/smtpd[93286]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] Apr 5 08:05:09 web01.agentur-b-2.de postfix/smtpd[93286]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 08:05:09 web01.agentur-b-2.de postfix/smtpd[93286]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] Apr 5 08:05:30 web01.agentur-b-2.de postfix/smtpd[90079]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 08:05:30 web01.agentur-b-2.de postfix/smtpd[90079]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce]	2020-04-05 14:50:30
222.186.175.182	attackbots	DATE:2020-04-05 08:35:03, IP:222.186.175.182, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-05 14:35:40

Recently Reported IPs

159.135.16.173	112.246.168.202	36.110.139.45	22.70.163.74
200.111.243.19	199.152.109.17	206.189.140.215	243.246.11.20
81.23.49.239	72.115.123.182	85.99.246.150	82.146.43.93
66.96.237.91	62.171.135.227	122.106.232.141	1.2.129.252
86.141.29.227	101.210.132.14	195.254.12.57	223.155.34.76