14.160.29.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	failed_logins	2020-08-02 18:01:41
attackbots	Dovecot Invalid User Login Attempt.	2020-07-07 16:18:07
attackspam	Dovecot Invalid User Login Attempt.	2020-06-27 20:21:43
attack	2020-05-0205:52:171jUjCK-0000M7-Fy\<=info@whatsup2013.chH=$localhost$[113.172.100.201]:34802P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3059id=0e744e494269bc4f6c9264373ce8d1fdde343886ab@whatsup2013.chT="You'veeverbeenintruelove\?"forbglisson@rrisd.netquee1022@gmail.com2020-05-0205:52:361jUjCd-0000PA-5K\<=info@whatsup2013.chH=$localhost$[14.226.241.13]:51318P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3126id=a5de31626942979bbcf94f1ce82f25291a466e29@whatsup2013.chT="Iamjustinlovewithyou"forusuiautumn@gmail.comahmed359901@gmail.com2020-05-0205:53:041jUjD5-0000RE-CP\<=info@whatsup2013.chH=$localhost$[14.187.121.142]:44772P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3163id=888c3a696249636bf7f244e80ffbd1cd5f01fe@whatsup2013.chT="Youarefrommyfantasy"forrcolonna.mafp@gmail.combelcourt87@hotmail.com2020-05-0205:52:541jUjCv-0000Qh-0A\<=info@whatsup2013.chH=$localhost$	2020-05-02 16:07:11

相同子网IP讨论:

IP	类型	评论内容	时间
14.160.29.66	attackspambots	Unauthorized connection attempt from IP address 14.160.29.66 on Port 445(SMB)	2020-04-28 18:49:03
14.160.29.22	attack	445/tcp [2020-03-18]1pkt	2020-03-18 20:59:36
14.160.29.58	attackbots	Unauthorized connection attempt from IP address 14.160.29.58 on Port 445(SMB)	2020-03-11 03:38:42
14.160.29.246	attackbots	$f2bV_matches	2020-03-01 17:50:27
14.160.29.66	attack	20/2/2@23:46:03: FAIL: Alarm-Network address from=14.160.29.66 ...	2020-02-03 20:25:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.160.29.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1885
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.160.29.42.			IN	A

;; AUTHORITY SECTION:
.			369	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050200 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 16:07:05 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

42.29.160.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.29.160.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
111.229.78.212	attackbotsspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-08-02 06:36:28
139.215.217.181	attack	Aug 1 21:58:46 ip-172-31-61-156 sshd[23116]: Failed password for root from 139.215.217.181 port 43999 ssh2 Aug 1 21:58:43 ip-172-31-61-156 sshd[23116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.215.217.181 user=root Aug 1 21:58:46 ip-172-31-61-156 sshd[23116]: Failed password for root from 139.215.217.181 port 43999 ssh2 Aug 1 22:03:12 ip-172-31-61-156 sshd[23330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.215.217.181 user=root Aug 1 22:03:14 ip-172-31-61-156 sshd[23330]: Failed password for root from 139.215.217.181 port 51533 ssh2 ...	2020-08-02 06:50:14
51.75.144.58	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-01T20:21:35Z and 2020-08-01T22:12:28Z	2020-08-02 06:25:18
106.13.113.91	attackspambots	Aug 2 03:47:15 itv-usvr-02 sshd[22438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.91 user=root Aug 2 03:50:34 itv-usvr-02 sshd[22534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.91 user=root Aug 2 03:53:39 itv-usvr-02 sshd[22632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.91 user=root	2020-08-02 06:24:19
168.194.140.54	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-08-02 06:49:18
139.59.73.221	attack	08/01/2020-16:47:49.279148 139.59.73.221 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-02 06:28:06
174.138.64.163	attackspambots	Aug 1 23:23:31 kh-dev-server sshd[7075]: Failed password for root from 174.138.64.163 port 48794 ssh2 ...	2020-08-02 06:23:33
118.98.127.42	attackspam	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: 42.subnet118-98-127.astinet.telkom.net.id.	2020-08-02 06:24:47
95.255.14.141	attack	Invalid user shuchong from 95.255.14.141 port 53274	2020-08-02 06:12:34
220.132.215.165	attack	" "	2020-08-02 06:29:25
54.38.180.53	attack	SSH Invalid Login	2020-08-02 06:20:11
51.83.125.8	attackspambots	Aug 1 22:48:18 rocket sshd[9913]: Failed password for root from 51.83.125.8 port 39062 ssh2 Aug 1 22:52:15 rocket sshd[10531]: Failed password for root from 51.83.125.8 port 49872 ssh2 ...	2020-08-02 06:31:17
85.209.0.254	attack	Port Scan ...	2020-08-02 06:42:34
218.92.0.248	attackbotsspam	2020-08-01T19:52:10.691485correo.[domain] sshd[44726]: Failed password for root from 218.92.0.248 port 42711 ssh2 2020-08-01T19:52:14.302804correo.[domain] sshd[44726]: Failed password for root from 218.92.0.248 port 42711 ssh2 2020-08-01T19:52:17.467045correo.[domain] sshd[44726]: Failed password for root from 218.92.0.248 port 42711 ssh2 ...	2020-08-02 06:22:38
45.14.224.164	attackbots	TCP (SYN) 45.14.224.164:42317 -> port 22, len 40	2020-08-02 06:44:04

最近上报的IP列表

65.52.119.218	113.160.116.12	42.117.46.180	219.252.217.91
175.118.126.81	165.22.193.235	214.3.46.184	138.118.241.40
133.167.117.22	139.13.81.26	35.234.114.69	177.137.96.15
123.185.177.45	126.92.17.166	54.241.144.184	211.151.123.77
120.107.35.202	113.146.90.200	76.188.150.65	121.52.12.205