Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Chengdu

Region: Sichuan

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
129.28.68.103 attackbots
Automatic report - XMLRPC Attack
2019-11-19 00:38:53
Whois info:
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       129.28.0.0 - 129.28.255.255
CIDR:           129.28.0.0/16
NetName:        APNIC
NetHandle:      NET-129-28-0-0-1
Parent:         NET129 (NET-129-0-0-0-0)
NetType:        Early Registrations, Transferred to APNIC
OriginAS:       
Organization:   Asia Pacific Network Information Centre (APNIC)
RegDate:        2017-08-29
Updated:        2017-08-29
Ref:            https://rdap.arin.net/registry/ip/129.28.0.0

ResourceLink:  https://apps.db.ripe.net/db-web-ui/query
ResourceLink:  whois://whois.apnic.net


OrgName:        Asia Pacific Network Information Centre
OrgId:          APNIC
Address:        PO Box 3646
City:           South Brisbane
StateProv:      QLD
PostalCode:     4101
Country:        AU
RegDate:        
Updated:        2012-01-24
Ref:            https://rdap.arin.net/registry/entity/APNIC

ReferralServer:  whois://whois.apnic.net
ResourceLink:  http://wq.apnic.net/whois-search/static/search.html

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName:   APNIC Whois Contact
OrgAbusePhone:  +61 7 3858 3188 
OrgAbuseEmail:  search-apnic-not-arin@apnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle: AWC12-ARIN
OrgTechName:   APNIC Whois Contact
OrgTechPhone:  +61 7 3858 3188 
OrgTechEmail:  search-apnic-not-arin@apnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '129.28.0.0 - 129.28.255.255'

% Abuse contact for '129.28.0.0 - 129.28.255.255' is 'abuse@tencent.com'

inetnum:        129.28.0.0 - 129.28.255.255
netname:        TENCENT-CN
descr:          Tencent Cloud Computing (Beijing) Co., Ltd
descr:          Floor 6, Yinke Building, 38 Haidian St, Haidian District
country:        CN
org:            ORG-TCCC1-AP
admin-c:        TCA15-AP
tech-c:         TCA15-AP
abuse-c:        AT992-AP
status:         ALLOCATED PORTABLE
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-TENCENT-CN
mnt-routes:     MAINT-TENCENT-CN
mnt-irt:        IRT-TENCENT-CN
last-modified:  2020-07-22T13:11:01Z
source:         APNIC

irt:            IRT-TENCENT-CN
address:        Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080
e-mail:         tencent_noc@tencent.com
abuse-mailbox:  abuse@tencent.com
admin-c:        TCA15-AP
tech-c:         TCA15-AP
auth:           # Filtered
remarks:        abuse@tencent.com was validated on 2026-05-15
remarks:        tencent_noc@tencent.com was validated on 2026-06-05
mnt-by:         MAINT-COMSENZ1-CN
last-modified:  2026-06-05T07:58:46Z
source:         APNIC

organisation:   ORG-TCCC1-AP
org-name:       Tencent Cloud Computing (Beijing) Co., Ltd
org-type:       LIR
country:        CN
address:        309 West Zone, 3F. 49 Zhichun Road. Haidian District.
phone:          +86-10-62671299
fax-no:         +86-10-82602088-41299
e-mail:         tencent_idc@tencent.com
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2023-09-05T02:16:21Z
source:         APNIC

role:           ABUSE TENCENTCN
country:        ZZ
address:        Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080
phone:          +000000000
e-mail:         tencent_noc@tencent.com
admin-c:        TCA15-AP
tech-c:         TCA15-AP
nic-hdl:        AT992-AP
remarks:        Generated from irt object IRT-TENCENT-CN
remarks:        abuse@tencent.com was validated on 2026-05-15
remarks:        tencent_noc@tencent.com was validated on 2026-06-05
abuse-mailbox:  abuse@tencent.com
mnt-by:         APNIC-ABUSE
last-modified:  2026-06-05T07:59:01Z
source:         APNIC

role:           Tencent Cloud administrator
address:        Floor 6, Yinke Building, 38 Haidian St, Haidian District, Beijing Beijing 100080
country:        CN
phone:          +86-10-62671299
e-mail:         tencent_idc@tencent.com
admin-c:        TCA15-AP
tech-c:         TCA15-AP
nic-hdl:        TCA15-AP
mnt-by:         MAINT-AP-DIALPAD
fax-no:         +86-10-62671299
last-modified:  2017-04-04T10:34:03Z
source:         APNIC

% Information related to '129.28.0.0/16AS45090'

route:          129.28.0.0/16
origin:         AS45090
descr:          Tencent Cloud Computing (Beijing) Co., Ltd
                309 West Zone, 3F. 49 Zhichun Road. Haidian District.
mnt-by:         MAINT-TENCENT-CN
last-modified:  2018-01-17T08:22:13Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.28.68.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41931
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;129.28.68.229.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026070500 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 15:30:25 CST 2026
;; MSG SIZE  rcvd: 106
Host info
Host 229.68.28.129.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 229.68.28.129.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
181.110.240.194 attackspambots
SSH invalid-user multiple login try
2019-12-26 20:23:08
217.138.76.66 attack
Dec 26 07:25:20 localhost sshd\[45317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66  user=root
Dec 26 07:25:22 localhost sshd\[45317\]: Failed password for root from 217.138.76.66 port 54678 ssh2
Dec 26 07:28:27 localhost sshd\[45397\]: Invalid user tabori from 217.138.76.66 port 41387
Dec 26 07:28:27 localhost sshd\[45397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66
Dec 26 07:28:29 localhost sshd\[45397\]: Failed password for invalid user tabori from 217.138.76.66 port 41387 ssh2
...
2019-12-26 19:51:08
198.108.67.49 attackbots
firewall-block, port(s): 8008/tcp
2019-12-26 19:52:33
182.48.93.26 attack
proto=tcp  .  spt=59179  .  dpt=25  .     (Found on   Blocklist de  Dec 25)     (279)
2019-12-26 20:24:26
125.137.191.215 attack
SSH invalid-user multiple login attempts
2019-12-26 20:13:14
39.152.54.180 attackbots
Scanning
2019-12-26 20:13:00
27.38.78.9 attack
12/26/2019-01:22:24.172453 27.38.78.9 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433
2019-12-26 19:54:47
190.196.15.43 attackbots
Automatic report - XMLRPC Attack
2019-12-26 19:54:11
106.75.7.70 attack
2019-12-26T11:36:00.364405abusebot-3.cloudsearch.cf sshd[13733]: Invalid user lol3 from 106.75.7.70 port 33000
2019-12-26T11:36:00.370749abusebot-3.cloudsearch.cf sshd[13733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.70
2019-12-26T11:36:00.364405abusebot-3.cloudsearch.cf sshd[13733]: Invalid user lol3 from 106.75.7.70 port 33000
2019-12-26T11:36:02.307330abusebot-3.cloudsearch.cf sshd[13733]: Failed password for invalid user lol3 from 106.75.7.70 port 33000 ssh2
2019-12-26T11:39:02.262486abusebot-3.cloudsearch.cf sshd[13793]: Invalid user kntel from 106.75.7.70 port 55824
2019-12-26T11:39:02.267972abusebot-3.cloudsearch.cf sshd[13793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.70
2019-12-26T11:39:02.262486abusebot-3.cloudsearch.cf sshd[13793]: Invalid user kntel from 106.75.7.70 port 55824
2019-12-26T11:39:04.193832abusebot-3.cloudsearch.cf sshd[13793]: Failed password for inv
...
2019-12-26 20:18:14
222.186.175.167 attackspambots
Dec 26 12:16:47 db sshd\[21150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167  user=root
Dec 26 12:16:50 db sshd\[21150\]: Failed password for root from 222.186.175.167 port 60958 ssh2
Dec 26 12:16:53 db sshd\[21150\]: Failed password for root from 222.186.175.167 port 60958 ssh2
Dec 26 12:16:56 db sshd\[21150\]: Failed password for root from 222.186.175.167 port 60958 ssh2
Dec 26 12:16:59 db sshd\[21150\]: Failed password for root from 222.186.175.167 port 60958 ssh2
...
2019-12-26 20:22:10
106.13.102.73 attackbots
Dec 26 09:23:05 MK-Soft-Root1 sshd[20600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.102.73 
Dec 26 09:23:07 MK-Soft-Root1 sshd[20600]: Failed password for invalid user vasanth from 106.13.102.73 port 55266 ssh2
...
2019-12-26 20:31:19
36.71.233.203 attackspam
Unauthorised access (Dec 26) SRC=36.71.233.203 LEN=48 TTL=117 ID=21190 DF TCP DPT=445 WINDOW=8192 SYN
2019-12-26 20:09:19
80.150.162.146 attack
Invalid user smmsp from 80.150.162.146 port 27902
2019-12-26 20:00:39
177.124.184.72 attack
email spam
2019-12-26 20:29:39
189.197.77.146 attack
port scan and connect, tcp 1433 (ms-sql-s)
2019-12-26 19:57:27

Recently Reported IPs

119.188.172.147 103.151.6.224 34.62.110.130 129.28.38.92
66.249.75.226 34.156.249.225 120.227.139.154 2606:4700:10::6814:8155
2606:4700:10::ac43:2770 2606:4700:10::6816:721 36.148.52.23 223.73.71.178
20.100.175.1 2606:4700:10::6814:6227 43.134.93.164 60.25.70.11
218.66.32.204 123.178.210.186 120.227.117.140 120.231.133.69