118.128.29.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): LG Dacom Corporation

主机名(hostname): unknown

机构(organization): LG DACOM Corporation

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	email spam	2019-12-17 20:05:06
attackspam	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 02:51:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.128.29.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32864
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.128.29.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 11 14:27:04 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.29.128.118.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 139.29.128.118.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.102.51.28	attackspam	07/29/2020-16:40:32.737866 94.102.51.28 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-30 04:41:56
222.85.140.116	attackspambots	$f2bV_matches	2020-07-30 04:43:30
13.94.60.109	attack	Jul 29 14:05:21 debian-2gb-nbg1-2 kernel: \[18282817.164133\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=13.94.60.109 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=49331 PROTO=TCP SPT=47138 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-30 04:28:14
189.37.78.107	attack	Automatic report - Port Scan Attack	2020-07-30 04:31:24
165.227.66.215	attackspam	Jul 29 22:28:28 debian-2gb-nbg1-2 kernel: \[18313002.686905\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=165.227.66.215 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=58676 PROTO=TCP SPT=59545 DPT=6508 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-30 04:59:17
200.188.19.31	attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: tcp cat: Potentially Bad Trafficbytes: 60	2020-07-30 04:29:06
218.104.225.140	attackspambots	Jul 29 20:22:54 localhost sshd[82996]: Invalid user xiaowu from 218.104.225.140 port 26971 Jul 29 20:22:54 localhost sshd[82996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.225.140 Jul 29 20:22:54 localhost sshd[82996]: Invalid user xiaowu from 218.104.225.140 port 26971 Jul 29 20:22:56 localhost sshd[82996]: Failed password for invalid user xiaowu from 218.104.225.140 port 26971 ssh2 Jul 29 20:28:55 localhost sshd[83726]: Invalid user andy from 218.104.225.140 port 21992 ...	2020-07-30 04:38:34
212.70.149.82	attackspambots	Jul 29 22:52:24 relay postfix/smtpd\[31741\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 22:52:40 relay postfix/smtpd\[4479\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 22:52:52 relay postfix/smtpd\[3636\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 22:53:09 relay postfix/smtpd\[5896\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 22:53:21 relay postfix/smtpd\[31740\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-30 04:56:59
106.12.12.127	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-29T20:19:11Z and 2020-07-29T20:28:51Z	2020-07-30 04:42:21
81.68.97.184	attack	Jul 30 03:31:56 itv-usvr-01 sshd[1539]: Invalid user wzmao from 81.68.97.184 Jul 30 03:31:56 itv-usvr-01 sshd[1539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.97.184 Jul 30 03:31:56 itv-usvr-01 sshd[1539]: Invalid user wzmao from 81.68.97.184 Jul 30 03:31:58 itv-usvr-01 sshd[1539]: Failed password for invalid user wzmao from 81.68.97.184 port 56296 ssh2 Jul 30 03:38:33 itv-usvr-01 sshd[1835]: Invalid user lms from 81.68.97.184	2020-07-30 04:51:48
185.222.57.183	attack	Bad Web Bot (Python-urllib).	2020-07-30 04:50:20
106.124.137.108	attackspambots	2020-07-29T22:22:57.482577centos sshd[19493]: Invalid user zhangyong from 106.124.137.108 port 46451 2020-07-29T22:22:59.373050centos sshd[19493]: Failed password for invalid user zhangyong from 106.124.137.108 port 46451 ssh2 2020-07-29T22:28:22.326006centos sshd[19836]: Invalid user whchoe from 106.124.137.108 port 44940 ...	2020-07-30 04:59:39
220.128.159.121	attack	Repeated brute force against a port	2020-07-30 04:28:31
139.198.122.19	attackspambots	Jul 29 22:30:25 db sshd[3797]: Invalid user yamaya from 139.198.122.19 port 40768 ...	2020-07-30 04:43:46
59.163.102.4	attackbotsspam	Jul 29 22:50:44 icinga sshd[54299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.163.102.4 Jul 29 22:50:46 icinga sshd[54299]: Failed password for invalid user peng from 59.163.102.4 port 58578 ssh2 Jul 29 22:54:56 icinga sshd[61218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.163.102.4 ...	2020-07-30 05:00:12

最近上报的IP列表

160.177.252.58	14.245.150.183	131.196.93.86	114.6.197.42
178.239.222.58	113.173.70.36	212.156.96.2	119.165.15.234
128.199.178.188	120.27.107.165	213.165.162.29	105.227.224.90
217.165.96.100	200.60.120.98	156.208.158.184	23.235.206.131
121.204.182.64	72.249.58.183	191.7.211.174	27.42.163.254