138.99.29.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): E. D. Servicos de Comunicacoes Ltda

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	19/8/2@04:48:54: FAIL: Alarm-Intrusion address from=138.99.29.21 ...	2019-08-02 19:39:29

相同子网IP讨论:

IP	类型	评论内容	时间
138.99.29.136	attackspambots	1595735423 - 07/26/2020 05:50:23 Host: 138.99.29.136/138.99.29.136 Port: 23 TCP Blocked	2020-07-26 19:56:11

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.29.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57828
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.99.29.21.			IN	A

;; AUTHORITY SECTION:
.			3002	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042600 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 26 14:58:19 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 21.29.99.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 21.29.99.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
128.199.171.89	attack	02/04/2020-17:11:52.017679 128.199.171.89 Protocol: 6 ET POLICY Cleartext WordPress Login	2020-02-05 01:48:23
187.185.15.89	attackspambots	Feb 4 16:02:08 srv-ubuntu-dev3 sshd[29753]: Invalid user ftp1 from 187.185.15.89 Feb 4 16:02:08 srv-ubuntu-dev3 sshd[29753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.185.15.89 Feb 4 16:02:08 srv-ubuntu-dev3 sshd[29753]: Invalid user ftp1 from 187.185.15.89 Feb 4 16:02:10 srv-ubuntu-dev3 sshd[29753]: Failed password for invalid user ftp1 from 187.185.15.89 port 54000 ssh2 Feb 4 16:05:32 srv-ubuntu-dev3 sshd[30049]: Invalid user yahoo from 187.185.15.89 Feb 4 16:05:32 srv-ubuntu-dev3 sshd[30049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.185.15.89 Feb 4 16:05:32 srv-ubuntu-dev3 sshd[30049]: Invalid user yahoo from 187.185.15.89 Feb 4 16:05:34 srv-ubuntu-dev3 sshd[30049]: Failed password for invalid user yahoo from 187.185.15.89 port 40534 ssh2 Feb 4 16:08:54 srv-ubuntu-dev3 sshd[30421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.18 ...	2020-02-05 02:24:29
162.243.59.16	attack	Unauthorized connection attempt detected from IP address 162.243.59.16 to port 2220 [J]	2020-02-05 02:21:36
123.133.112.42	attack	Feb 4 18:44:06 v22018076622670303 sshd\[21855\]: Invalid user postgres from 123.133.112.42 port 44160 Feb 4 18:44:06 v22018076622670303 sshd\[21855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.133.112.42 Feb 4 18:44:08 v22018076622670303 sshd\[21855\]: Failed password for invalid user postgres from 123.133.112.42 port 44160 ssh2 ...	2020-02-05 01:53:15
86.106.245.54	attackbotsspam	Unauthorized connection attempt detected from IP address 86.106.245.54 to port 445	2020-02-05 01:49:17
134.73.7.198	attackspambots	2019-05-05 05:26:44 1hN7nX-0002xI-NF SMTP connection from son.sandyfadadu.com $son.getsmony.icu$ \[134.73.7.198\]:48356 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-05 05:27:51 1hN7oc-0002yj-Tl SMTP connection from son.sandyfadadu.com $son.getsmony.icu$ \[134.73.7.198\]:58499 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-05 05:28:36 1hN7pM-0002zZ-5k SMTP connection from son.sandyfadadu.com $son.getsmony.icu$ \[134.73.7.198\]:57912 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:26:33
134.73.7.222	attackbotsspam	2019-05-04 16:12:27 1hMvOt-0001ry-5l SMTP connection from bored.sandyfadadu.com $bored.halgheyevasl.icu$ \[134.73.7.222\]:60868 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-04 16:13:38 1hMvQ2-0001t9-KO SMTP connection from bored.sandyfadadu.com $bored.halgheyevasl.icu$ \[134.73.7.222\]:56364 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-04 16:16:27 1hMvSl-0001wb-Dd SMTP connection from bored.sandyfadadu.com $bored.halgheyevasl.icu$ \[134.73.7.222\]:48996 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:09:50
198.108.66.109	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-05 01:57:43
80.36.254.203	attackbots	Feb 4 17:06:40 grey postfix/smtpd\[25950\]: NOQUEUE: reject: RCPT from 203.red-80-36-254.staticip.rima-tde.net\[80.36.254.203\]: 554 5.7.1 Service unavailable\; Client host \[80.36.254.203\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=80.36.254.203\; from=\ to=\ proto=ESMTP helo=\<203.red-80-36-254.staticip.rima-tde.net\> ...	2020-02-05 02:06:28
134.73.7.225	attackbots	2019-04-29 10:36:10 1hL1lh-0004oy-OP SMTP connection from pupil.sandyfadadu.com $pupil.somintstudio.icu$ \[134.73.7.225\]:55667 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-29 10:36:28 1hL1m0-0004pQ-HY SMTP connection from pupil.sandyfadadu.com $pupil.somintstudio.icu$ \[134.73.7.225\]:53742 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-29 10:38:27 1hL1nv-0004sS-Ke SMTP connection from pupil.sandyfadadu.com $pupil.somintstudio.icu$ \[134.73.7.225\]:59872 I=\[193.107.90.29\]:25 closed by DROP in ACL ...	2020-02-05 02:08:29
144.217.47.174	attackbotsspam	Unauthorized connection attempt detected from IP address 144.217.47.174 to port 2220 [J]	2020-02-05 02:11:23
96.78.175.33	attackspambots	Feb 4 14:43:16 srv-ubuntu-dev3 sshd[21651]: Invalid user adg from 96.78.175.33 Feb 4 14:43:16 srv-ubuntu-dev3 sshd[21651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.33 Feb 4 14:43:16 srv-ubuntu-dev3 sshd[21651]: Invalid user adg from 96.78.175.33 Feb 4 14:43:19 srv-ubuntu-dev3 sshd[21651]: Failed password for invalid user adg from 96.78.175.33 port 40424 ssh2 Feb 4 14:46:23 srv-ubuntu-dev3 sshd[21970]: Invalid user vaibhav from 96.78.175.33 Feb 4 14:46:23 srv-ubuntu-dev3 sshd[21970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.33 Feb 4 14:46:23 srv-ubuntu-dev3 sshd[21970]: Invalid user vaibhav from 96.78.175.33 Feb 4 14:46:25 srv-ubuntu-dev3 sshd[21970]: Failed password for invalid user vaibhav from 96.78.175.33 port 42702 ssh2 Feb 4 14:49:37 srv-ubuntu-dev3 sshd[22244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.78.175.3 ...	2020-02-05 02:22:19
134.73.7.199	attackspam	2019-05-09 17:13:41 1hOkjs-0006jb-OB SMTP connection from wet.sandyfadadu.com $wet.volovfashion.icu$ \[134.73.7.199\]:33519 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-09 17:15:03 1hOklC-0006mh-VS SMTP connection from wet.sandyfadadu.com $wet.volovfashion.icu$ \[134.73.7.199\]:48772 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-09 17:16:49 1hOkmv-0006pK-Bx SMTP connection from wet.sandyfadadu.com $wet.volovfashion.icu$ \[134.73.7.199\]:54002 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:25:34
103.89.252.123	attack	$f2bV_matches	2020-02-05 01:48:46
134.73.7.209	attack	2019-04-28 11:35:29 1hKgDZ-0007fu-Ck SMTP connection from showplace.sandyfadadu.com $showplace.ajayelectricals.icu$ \[134.73.7.209\]:46108 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-04-28 11:37:13 1hKgFF-0007ie-38 SMTP connection from showplace.sandyfadadu.com $showplace.ajayelectricals.icu$ \[134.73.7.209\]:42591 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-04-28 11:39:03 1hKgH1-0007mb-7L SMTP connection from showplace.sandyfadadu.com $showplace.ajayelectricals.icu$ \[134.73.7.209\]:33503 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:19:15

最近上报的IP列表

203.151.143.162	235.116.222.107	189.60.42.250	182.123.97.249
189.126.168.43	94.143.124.141	29.104.90.82	189.1.132.90
82.209.214.126	65.191.244.26	149.100.11.78	16.134.178.211
88.204.245.146	195.50.185.125	121.150.235.206	38.101.225.164
110.39.185.46	112.133.229.160	221.132.82.115	132.255.212.107