JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 129.158.34.20

129.158.34.20 was found in our database!

This IP was reported 20 times. Confidence of Abuse is 0%: ?

ISP	Oracle Corporation
Usage Type	Data Center/Web Hosting/Transit
ASN	AS31898
Domain Name	oracle.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 129.158.34.20

Whois 129.158.34.20

IP Abuse Reports for 129.158.34.20:

This IP address has been reported a total of 20 times from 11 distinct sources. 129.158.34.20 was first reported on December 11th 2022, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2023-02-14 07:27:52 (3 years ago)	Scanning	Port Scan
🇦🇺 ozisp.com.au	2023-02-13 09:49:40 (3 years ago)	US_Oracle_<33>1676281779 [1:2031502:3] ET INFO Request to Hidden Environment File [Classification: M ... show more US_Oracle_<33>1676281779 [1:2031502:3] ET INFO Request to Hidden Environment File [Classification: Misc Attack] [Priority: 2] {TCP} 129.158.34.20:54588 show less	Hacking
🇨🇦 Mediashaker	2023-02-13 08:26:07 (3 years ago)	(apache-scanners) Failed apache-scanners trigger with match [redacted] from 129.158.34.20 (US/United ... show more (apache-scanners) Failed apache-scanners trigger with match [redacted] from 129.158.34.20 (US/United States/-) show less	Port Scan
🇭🇺 DumaNet	2023-02-12 23:56:51 (3 years ago)	Web app attack attempts, scanning for vulnerability. Date: 2023 Feb 12. 17:08:35 Source IP: 129.15 ... show more Web app attack attempts, scanning for vulnerability. Date: 2023 Feb 12. 17:08:35 Source IP: 129.158.34.20 Portion of the log(s): 129.158.34.20 - [12/Feb/2023:17:08:34 +0100] "GET /mailer.php HTTP/1.1" 404 153 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 129.158.34.20 - [12/Feb/2023:17:08:33 +0100] "GET /new.php HTTP/1.1" 404 153 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 129.158.34.20 - [12/Feb/2023:17:08:33 +0100] "GET /alex.php HTTP/1.1" 404 153 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 129.158.34.20 - [12/Feb/2023:17:08:32 +0100] "GET /lf.php HTTP/1.1" 404 153 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" 129.158.34.20 - [12/Feb/2023:17:08:31 +0100] "GET /leafmailer2.8.php HTTP/1.1" 404 153 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko .... show less	Web App Attack
🇧🇷 AC - Team	2023-02-12 22:18:45 (3 years ago)	129.158.34.20 - - [12/Feb/2023:19:18:44 -0300] "GET /x.php HTTP/1.1" 301 627 "https://www.google.com ... show more 129.158.34.20 - - [12/Feb/2023:19:18:44 -0300] "GET /x.php HTTP/1.1" 301 627 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Hacking Web App Attack
🇪🇸 10dencehispahard SL	2023-02-11 14:24:29 (3 years ago)	Suspicious activity detected by Modsecurity [Application attack LFI]	Hacking Web App Attack
🇧🇷 AC - Team	2023-02-11 04:33:06 (3 years ago)	129.158.34.20 - - [11/Feb/2023:01:33:04 -0300] "GET /x.php HTTP/1.1" 404 747 "https://www.google.com ... show more 129.158.34.20 - - [11/Feb/2023:01:33:04 -0300] "GET /x.php HTTP/1.1" 404 747 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Hacking Web App Attack
🇧🇷 AC - Team	2023-02-11 01:19:25 (3 years ago)	129.158.34.20 - - [10/Feb/2023:22:19:40 -0300] "GET /x.php HTTP/1.1" 301 594 "https://www.google.com ... show more 129.158.34.20 - - [10/Feb/2023:22:19:40 -0300] "GET /x.php HTTP/1.1" 301 594 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Hacking Web App Attack
🇧🇷 AC - Team	2023-02-10 09:57:48 (3 years ago)	129.158.34.20 - - [10/Feb/2023:06:57:47 -0300] "GET /x.php HTTP/1.1" 404 549 "https://www.google.com ... show more 129.158.34.20 - - [10/Feb/2023:06:57:47 -0300] "GET /x.php HTTP/1.1" 404 549 "https://www.google.com" "Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Firefox/52.0" ... show less	Hacking Web App Attack
🇲🇾 syokadmin	2023-01-25 01:38:25 (3 years ago)	(mod_security) mod_security (id:77317941) triggered by 129.158.34.20 (US/United States/-): 1 in the ... show more (mod_security) mod_security (id:77317941) triggered by 129.158.34.20 (US/United States/-): 1 in the last 3600 secs show less	Brute-Force
🇨🇭 backslash	2023-01-12 12:38:33 (3 years ago)		Bad Web Bot
🇬🇧 Ananymous	2023-01-04 05:31:34 (3 years ago)	Suspicious Login Attempt	Brute-Force
🇪🇸 10dencehispahard SL	2022-12-29 12:24:32 (3 years ago)	Unauthorized login attempts [ postfix-sasl, dovecot]	Brute-Force
🇳🇿 Tripwire	2022-12-29 11:11:43 (3 years ago)	Scanning for exploits - /wso.php	Web App Attack
🇦🇺 ozisp.com.au	2022-12-28 19:14:24 (3 years ago)	US_Oracle_<33>1672272863 [1:2031502:3] ET INFO Request to Hidden Environment File [Classification: M ... show more US_Oracle_<33>1672272863 [1:2031502:3] ET INFO Request to Hidden Environment File [Classification: Misc Attack] [Priority: 2] {TCP} 129.158.34.20:50255 show less	Hacking

Showing 1 to 15 of 20 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 205.210.31.86

🇺🇸 192.185.4.148

🇺🇸 167.71.175.236

🇹🇷 166.88.110.161

🇨🇳 119.167.244.44

🇨🇦 85.217.149.20

🇫🇷 85.217.140.29

🇷🇴 80.94.95.34

🇷🇴 80.94.92.184

🇳🇱 77.83.39.55

🇺🇸 66.132.172.119

🇳🇱 34.158.91.120

🇷🇺 5.167.71.217

🇩🇪 5.75.187.133

🇳🇱 203.55.131.3

🇧🇷 201.17.133.138

🇷🇴 193.32.162.125

🇦🇺 161.33.72.45

🇧🇩 160.25.6.18

🇺🇸 154.92.22.13