JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.129.24.168

139.129.24.168 was found in our database!

This IP was reported 177 times. Confidence of Abuse is 100%: ?

100%

ISP	Aliyun Computing Co., LTD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS37963
Domain Name	alibabacloud.com
Country	🇨🇳 China
City	Qingdao, Shandong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.129.24.168

Whois 139.129.24.168

IP Abuse Reports for 139.129.24.168:

This IP address has been reported a total of 177 times from 63 distinct sources. 139.129.24.168 was first reported on June 9th 2026, and the most recent report was 4 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 mxinfra	2026-06-18 02:31:38 (4 days ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇩🇪 mxinfra	2026-06-17 02:31:35 (5 days ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇩🇪 mxinfra	2026-06-16 02:31:25 (6 days ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇩🇪 mxinfra	2026-06-15 02:31:22 (1 week ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇩🇪 mxinfra	2026-06-14 02:31:00 (1 week ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇩🇪 mxinfra	2026-06-13 02:30:56 (1 week ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
Anonymous	2026-06-12 04:31:54 (1 week ago)	Failed login attempt detected by Fail2Ban in plesk-postfix jail	Brute-Force
🇩🇪 mxinfra	2026-06-12 02:30:38 (1 week ago)	Repeated unauthorized access attempts.	Port Scan Hacking Brute-Force
🇵🇾 SecOpsSL	2026-06-11 23:37:11 (1 week ago)	139.129.24.168 - - [11/Jun/2026:00:43:22 +0000] "POST /service/admin/soap/ HTTP/1.1" 500 505 "-" "-" ... show more 139.129.24.168 - - [11/Jun/2026:00:43:22 +0000] "POST /service/admin/soap/ HTTP/1.1" 500 505 "-" "-" 3 show less	Hacking Web App Attack
🇩🇪 mnpx	2026-06-11 13:08:50 (1 week ago)	SMTP brute forcing (10× over 9h:52m); first seen here 2026-06-10T02:21Z	Brute-Force
🇩🇪 mnpx	2026-06-11 13:08:50 (1 week ago)	SMTP brute forcing (6× over 6h:08m); first seen here 2026-06-10T02:21Z	Brute-Force
🇩🇪 mnpx	2026-06-11 13:08:50 (1 week ago)	SMTP brute forcing (3× over 2h:28m); first seen here 2026-06-10T02:21Z	Brute-Force
🇳🇱 Godert Jan van Manen	2026-06-11 12:54:03 (1 week ago)	Jun 11 14:53:17 odin postfix/submission/smtpd[7207]: warning: unknown[139.129.24.168]: SASL PLAIN au ... show more Jun 11 14:53:17 odin postfix/submission/smtpd[7207]: warning: unknown[139.129.24.168]: SASL PLAIN authentication failed: Jun 11 14:53:24 odin postfix/smtps/smtpd[10437]: warning: unknown[139.129.24.168]: SASL PLAIN authentication failed: Jun 11 14:54:03 odin postfix/submission/smtpd[7207]: warning: unknown[139.129.24.168]: SASL PLAIN authentication failed: show less	Brute-Force
🇺🇸 mnogoweb	2026-06-11 12:39:50 (1 week ago)	(smtpauth) Failed SMTP AUTH login from 139.129.24.168 (CN/China/-): 5 in the last 3600 secs; Ports: ... show more (smtpauth) Failed SMTP AUTH login from 139.129.24.168 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2026-06-11 06:10:51 plain authenticator failed for (localhost) [139.129.24.168]: 535 Incorrect authentication data ([email protected]) 2026-06-11 06:10:54 plain authenticator failed for (localhost) [139.129.24.168]: 535 Incorrect authentication data ([email protected]) 2026-06-11 06:12:52 plain authenticator failed for (localhost) [139.129.24.168]: 535 Incorrect authentication data ([email protected]) 2026-06-11 06:12:54 plain authenticator failed for (localhost) [139.129.24.168]: 535 Incorrect authentication data ([email protected]) 2026-06-11 06:39:46 plain authenticator failed for (localhost) [139.129.24.168]: 535 Incorrect authentication data ([email protected]) show less	Port Scan
🇬🇧 djboddington	2026-06-11 12:20:09 (1 week ago)	This IP was detected by CrowdSec triggering crowdsecurity/postfix-non-smtp-command	Email Spam Exploited Host

Showing 1 to 15 of 177 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2409:4051:2e8d:4d8c:2c18:be86:8cc2:f39c

🇰🇷 221.148.201.226

🇪🇸 196.196.150.99

🇪🇸 196.196.150.6

🇪🇹 196.189.126.17

🇪🇹 196.189.51.246

🇳🇱 176.65.132.17

🇻🇳 103.53.170.39

🇫🇷 85.217.140.38

🇫🇷 85.217.140.35

🇺🇸 64.62.156.222

🇯🇵 50.31.139.1

🇧🇷 45.205.1.245

🇳🇱 45.148.10.147

🇨🇦 4.204.204.10

🇲🇺 197.227.8.186

🇪🇹 196.188.116.41

🇺🇬 196.0.120.6

🇩🇪 195.248.242.36

🇷🇺 195.208.2.9