146.247.13.129

Basic Info

City: unknown

Region: unknown

Country: Switzerland

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
146.247.137.7	attackspambots	[TueMar1019:11:05.5017822020][:error][pid29687:tid47434854631168][client146.247.137.7:57536][client146.247.137.7]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(\^w3c-\\|systran\\\\\\\\\)\)"against"REQUEST_HEADERS:User-Agent"required.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"237"][id"331039"][rev"1"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(Python-urllib\).DisablethisruleifyouusePython-urllib."][severity"CRITICAL"][hostname"ilgiornaledelticino.ch"][uri"/wp-content/uploads/2020/03/duo-hely-00001-640x358.jpg"][unique_id"XmfYORh8hhspYWMwe-LlhAAAAQQ"][TueMar1019:11:13.8349562020][:error][pid29621:tid47434873542400][client146.247.137.7:60428][client146.247.137.7]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(\^w3c-\\|systran\\\\\\\\\)\)"against"REQUEST_HEADERS:User-Agent"required.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"237"][id"331039"][rev"1"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAg	2020-03-11 07:57:25

Type

Details

Datetime

146.247.137.7

attackspambots

[TueMar1019:11:05.5017822020][:error][pid29687:tid47434854631168][client146.247.137.7:57536][client146.247.137.7]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(\^w3c-\|systran\\\\\\\\\)\)"against"REQUEST_HEADERS:User-Agent"required.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"237"][id"331039"][rev"1"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(Python-urllib\).DisablethisruleifyouusePython-urllib."][severity"CRITICAL"][hostname"ilgiornaledelticino.ch"][uri"/wp-content/uploads/2020/03/duo-hely-00001-640x358.jpg"][unique_id"XmfYORh8hhspYWMwe-LlhAAAAQQ"][TueMar1019:11:13.8349562020][:error][pid29621:tid47434873542400][client146.247.137.7:60428][client146.247.137.7]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(\^w3c-\|systran\\\\\\\\\)\)"against"REQUEST_HEADERS:User-Agent"required.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"237"][id"331039"][rev"1"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAg

2020-03-11 07:57:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 146.247.13.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;146.247.13.129.			IN	A

;; AUTHORITY SECTION:
.			416	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:21:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 129.13.247.146.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.13.247.146.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.97.13.15	attack	Unauthorized connection attempt from IP address 191.97.13.15 on Port 445(SMB)	2020-09-16 21:21:31
157.48.203.28	attack	Unauthorized connection attempt from IP address 157.48.203.28 on Port 445(SMB)	2020-09-16 20:54:57
118.172.227.96	attackbots	Unauthorized connection attempt from IP address 118.172.227.96 on Port 445(SMB)	2020-09-16 21:29:46
111.93.71.219	attackspam	Fail2Ban Ban Triggered	2020-09-16 21:07:03
193.228.91.123	attackspambots	TCP (SYN) 193.228.91.123:54865 -> port 22, len 48	2020-09-16 20:50:20
76.186.73.35	attackbots	Sep 16 11:30:36 ns3033917 sshd[2857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.186.73.35 user=root Sep 16 11:30:38 ns3033917 sshd[2857]: Failed password for root from 76.186.73.35 port 57459 ssh2 Sep 16 11:38:53 ns3033917 sshd[2901]: Invalid user maya from 76.186.73.35 port 35613 ...	2020-09-16 21:25:44
125.99.245.20	attackbotsspam	GPON Home Routers Remote Code Execution Vulnerability	2020-09-16 21:24:31
60.243.124.231	attack	Auto Detect Rule! proto TCP (SYN), 60.243.124.231:5304->gjan.info:23, len 40	2020-09-16 21:22:32
185.204.3.36	attackbots	Sep 16 07:56:39 pve1 sshd[18330]: Failed password for root from 185.204.3.36 port 42782 ssh2 ...	2020-09-16 20:51:10
81.68.128.31	attackspambots	Time: Wed Sep 16 08:56:42 2020 +0000 IP: 81.68.128.31 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 16 08:45:33 ca-16-ede1 sshd[11308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.128.31 user=root Sep 16 08:45:35 ca-16-ede1 sshd[11308]: Failed password for root from 81.68.128.31 port 59446 ssh2 Sep 16 08:52:10 ca-16-ede1 sshd[12115]: Invalid user admin from 81.68.128.31 port 34974 Sep 16 08:52:13 ca-16-ede1 sshd[12115]: Failed password for invalid user admin from 81.68.128.31 port 34974 ssh2 Sep 16 08:56:39 ca-16-ede1 sshd[12671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.128.31 user=root	2020-09-16 21:00:09
58.57.52.146	attackbotsspam	Unauthorized connection attempt from IP address 58.57.52.146 on Port 445(SMB)	2020-09-16 21:15:48
148.72.211.177	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-09-16 21:17:08
106.54.220.54	attackbots	Sep 16 14:42:53 mout sshd[3692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.220.54 user=root Sep 16 14:42:54 mout sshd[3692]: Failed password for root from 106.54.220.54 port 55016 ssh2	2020-09-16 20:52:13
140.143.211.45	attackspam	Sep 16 07:27:42 george sshd[8691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=mysql Sep 16 07:27:44 george sshd[8691]: Failed password for mysql from 140.143.211.45 port 50650 ssh2 Sep 16 07:31:48 george sshd[8803]: Invalid user jaye from 140.143.211.45 port 38458 Sep 16 07:31:48 george sshd[8803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Sep 16 07:31:50 george sshd[8803]: Failed password for invalid user jaye from 140.143.211.45 port 38458 ssh2 ...	2020-09-16 21:12:37
134.122.85.209	attackbotsspam	Sep 15 19:15:01 master sshd[6596]: Failed password for root from 134.122.85.209 port 49301 ssh2 Sep 15 19:20:20 master sshd[6769]: Failed password for root from 134.122.85.209 port 34302 ssh2 Sep 15 19:24:31 master sshd[6782]: Failed password for root from 134.122.85.209 port 42223 ssh2 Sep 15 19:28:42 master sshd[6845]: Failed password for root from 134.122.85.209 port 50151 ssh2 Sep 15 19:34:03 master sshd[7295]: Failed password for invalid user donut from 134.122.85.209 port 58083 ssh2 Sep 15 19:39:53 master sshd[7404]: Failed password for root from 134.122.85.209 port 37767 ssh2 Sep 15 19:46:01 master sshd[7577]: Failed password for root from 134.122.85.209 port 45687 ssh2 Sep 15 19:51:57 master sshd[7690]: Failed password for root from 134.122.85.209 port 53613 ssh2 Sep 15 19:57:59 master sshd[7767]: Failed password for root from 134.122.85.209 port 33301 ssh2	2020-09-16 21:10:15

Recently Reported IPs

146.241.179.103	146.217.8.42	146.241.123.73	146.247.132.49
146.247.137.79	146.247.25.107	146.247.158.136	146.247.49.130
146.247.24.108	146.247.90.65	146.247.26.206	146.255.0.151
146.255.0.138	146.249.204.25	146.255.100.190	146.255.0.145
146.255.100.101	146.255.100.218	217.161.121.253	145.82.53.232