129.205.136.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
129.205.136.30	attack	unauthorized connection attempt	2020-02-04 17:35:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.205.136.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34678
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.205.136.4.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 04:46:15 CST 2022
;; MSG SIZE  rcvd: 106

Host info

4.136.205.129.in-addr.arpa domain name pointer 129-205-136-4.dynamic.macrolan.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.136.205.129.in-addr.arpa	name = 129-205-136-4.dynamic.macrolan.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.31.199.53	attack	3232/tcp 3234/tcp 3233/tcp... [2019-05-26/07-01]85pkt,30pt.(tcp)	2019-07-03 16:15:55
198.108.66.162	attackspam	firewall-block, port(s): 7547/tcp	2019-07-03 16:10:51
101.96.68.38	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:20:52,296 INFO [shellcode_manager] (101.96.68.38) no match, writing hexdump (3cebcd42110cae8fa471715bee9ebfb6 :2067495) - MS17010 (EternalBlue)	2019-07-03 16:26:32
118.69.248.83	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 03:05:06,668 INFO [shellcode_manager] (118.69.248.83) no match, writing hexdump (277d0fd16017453ed2cf80cbbf7755dc :2130248) - MS17010 (EternalBlue)	2019-07-03 15:56:43
124.158.7.146	attackbots	Jun 30 07:37:00 own sshd[23252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jun 30 07:37:01 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:04 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:06 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:11 own sshd[23252]: message repeated 2 times: [ Failed password for r.r from 124.158.7.146 port 57938 ssh2] Jun 30 07:37:11 own sshd[23252]: Connection reset by 124.158.7.146 port 57938 [preauth] Jun 30 07:37:11 own sshd[23252]: PAM 4 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jul 2 12:35:58 own sshd[18912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jul 2 12:36:00 own sshd[18912]: Failed password for r.r from 124.158.7.1........ -------------------------------	2019-07-03 16:05:28
194.36.97.41	attackspambots	Detected by ModSecurity. Request URI: /wp-login.php?action=register	2019-07-03 16:00:11
80.82.78.85	attack	Jul 3 06:11:56 elektron postfix/smtpd\[16239\]: warning: unknown\[80.82.78.85\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 06:11:56 elektron postfix/smtpd\[11856\]: warning: unknown\[80.82.78.85\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 06:50:20 elektron postfix/smtpd\[19782\]: warning: unknown\[80.82.78.85\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 06:50:20 elektron postfix/smtpd\[16789\]: warning: unknown\[80.82.78.85\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-03 16:17:36
82.147.102.46	attack	SPAM Delivery Attempt	2019-07-03 16:25:56
146.185.149.245	attackbots	SSH Bruteforce	2019-07-03 16:03:21
200.202.246.178	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:25:56,601 INFO [shellcode_manager] (200.202.246.178) no match, writing hexdump (f4e81419d5c73b324ed14a62f519294e :2417135) - MS17010 (EternalBlue)	2019-07-03 15:55:54
35.247.211.130	attackspambots	blacklist username maria Invalid user maria from 35.247.211.130 port 32804	2019-07-03 15:50:41
41.37.1.76	attack	Jul 3 06:50:05 srv-4 sshd\[18238\]: Invalid user admin from 41.37.1.76 Jul 3 06:50:05 srv-4 sshd\[18238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.37.1.76 Jul 3 06:50:07 srv-4 sshd\[18238\]: Failed password for invalid user admin from 41.37.1.76 port 46759 ssh2 ...	2019-07-03 16:20:38
203.122.21.26	attackbotsspam	Jul 3 07:03:36 cp sshd[16701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.122.21.26	2019-07-03 15:55:30
148.70.116.223	attackspam	Jul 1 21:13:26 * sshd[578]: Invalid user nagios from 148.70.116.223 port 49301 Jul 1 21:13:28 * sshd[578]: Failed password for invalid user nagios from 148.70.116.223 port 49301 ssh2 Jul 1 21:13:29 * sshd[578]: Received disconnect from 148.70.116.223 port 49301:11: Bye Bye [preauth] Jul 1 21:13:29 * sshd[578]: Disconnected from 148.70.116.223 port 49301 [preauth] Jul 1 21:22:45 * sshd[13071]: Invalid user ubuntu from 148.70.116.223 port 37615 Jul 1 21:22:48 * sshd[13071]: Failed password for invalid user ubuntu from 148.70.116.223 port 37615 ssh2 Jul 1 21:22:48 * sshd[13071]: Received disconnect from 148.70.116.223 port 37615:11: Bye Bye [preauth] Jul 1 21:22:48 * sshd[13071]: Disconnected from 148.70.116.223 port 37615 [preauth] Jul 1 21:28:14 * sshd[20264]: Invalid user master from 148.70.116.223 port 34628 Jul 1 21:28:15 * sshd[20264]: Failed password for invalid user master from 148.70.116.223 port 34628 ssh2 Jul 1 21:28:16 *** sshd[20........ -------------------------------	2019-07-03 16:07:55
222.240.1.51	attackbotsspam	[WedJul0305:50:09.2395412019][:error][pid22310:tid47523483887360][client222.240.1.51:41988][client222.240.1.51]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"/wp-config.php"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"3411"][id"381206"][rev"1"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:AccesstoWordPressconfigurationfileblocked"][data"/wp-config.php"][severity"CRITICAL"][hostname"148.251.104.84"][uri"/wp-config.php"][unique_id"XRwl8ckhhNgbUzQqMi8eJwAAAFA"][WedJul0305:50:41.4535292019][:error][pid10232:tid47523490191104][client222.240.1.51:53915][client222.240.1.51]ModSecurity:Accessdeniedwithcode404\(phase2\).Patternmatch"\(\?:/images/stories/\\|/components/com_smartformer/files/\\|/uploaded_files/user/\\|uploads/job-manager-uploads/\).\*\\\\\\\\.php"atREQUEST_URI.[file"/usr/local/apache.ea3/conf/modsec_rules/50_asl_rootkits.conf"][line"71"][id"318812"][rev"2"][msg"Atomicorp.comWAFRules:PossibleAttempttoAccessunauthori	2019-07-03 15:54:46

Recently Reported IPs

129.205.136.35	118.170.148.137	118.170.148.138	118.170.148.141
118.170.148.142	118.170.148.15	118.170.148.157	118.170.148.166
118.170.148.199	129.205.143.143	129.205.143.134	129.205.143.144
129.205.143.140	129.205.143.126	129.205.143.122	129.205.143.129
129.205.143.139	129.205.143.149	129.205.143.137	129.205.143.155