14.170.111.29 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	1592050914 - 06/13/2020 14:21:54 Host: 14.170.111.29/14.170.111.29 Port: 445 TCP Blocked	2020-06-14 02:47:56

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.170.111.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18085
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.170.111.29.			IN	A

;; AUTHORITY SECTION:
.			340	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061301 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 14 02:47:50 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

29.111.170.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.111.170.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
179.106.152.140	attack	SMB Server BruteForce Attack	2020-05-09 08:28:46
201.144.110.19	attackspam	Unauthorized connection attempt from IP address 201.144.110.19 on Port 445(SMB)	2020-05-09 08:45:06
5.135.129.180	attack	/wp-login.php IP Address is infected with the Gozi botnet TCP connection from "5.135.129.180" on port "9794" going to IP address "192.42.119.41" botnet command and control domain for this connection was "n4curtispablo.info"	2020-05-09 08:41:30
109.116.196.174	attackbots	May 8 23:49:10 XXX sshd[60289]: Invalid user pentaho from 109.116.196.174 port 56802	2020-05-09 08:26:01
120.52.139.130	attackspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-05-09 08:33:18
160.155.113.19	attackspambots	May 9 05:36:55 gw1 sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.155.113.19 May 9 05:36:57 gw1 sshd[9068]: Failed password for invalid user hadoop from 160.155.113.19 port 56349 ssh2 ...	2020-05-09 08:54:28
79.173.253.50	attackspam	May 9 01:34:24 lock-38 sshd[2125603]: Failed password for invalid user zym from 79.173.253.50 port 26576 ssh2 May 9 01:34:24 lock-38 sshd[2125603]: Disconnected from invalid user zym 79.173.253.50 port 26576 [preauth] May 9 02:03:28 lock-38 sshd[2126481]: Invalid user mag from 79.173.253.50 port 46004 May 9 02:03:28 lock-38 sshd[2126481]: Invalid user mag from 79.173.253.50 port 46004 May 9 02:03:28 lock-38 sshd[2126481]: Failed password for invalid user mag from 79.173.253.50 port 46004 ssh2 ...	2020-05-09 08:19:29
192.99.34.42	attack	192.99.34.42 - - \[09/May/2020:02:09:55 +0200\] "POST /wp-login.php HTTP/1.0" 200 4402 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/46.0.2490.80 Safari/537.36" 192.99.34.42 - - \[09/May/2020:02:10:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 6533 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/46.0.2490.80 Safari/537.36" 192.99.34.42 - - \[09/May/2020:02:10:33 +0200\] "POST /wp-login.php HTTP/1.0" 200 4402 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/46.0.2490.80 Safari/537.36"	2020-05-09 08:22:47
195.54.167.11	attackspam	May 9 02:25:49 debian-2gb-nbg1-2 kernel: \[11242828.257491\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.11 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=15027 PROTO=TCP SPT=55214 DPT=2295 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-09 08:35:15
190.42.216.137	attackbots	Unauthorized connection attempt from IP address 190.42.216.137 on Port 445(SMB)	2020-05-09 08:43:57
178.46.153.249	attackbotsspam	Brute forcing RDP port 3389	2020-05-09 08:20:11
51.159.54.43	attackbotsspam	SSH Invalid Login	2020-05-09 08:36:40
121.229.57.211	attackspambots	SSH Invalid Login	2020-05-09 08:35:38
43.227.23.76	attackbots	May 8 18:58:36 s158375 sshd[14050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.23.76	2020-05-09 08:26:32
113.190.192.230	attackspambots	Fail2Ban Ban Triggered	2020-05-09 08:51:49

最近上报的IP列表

103.201.138.178	151.226.25.14	45.140.207.121	51.161.45.14
46.166.133.163	31.4.45.90	77.219.12.188	103.138.109.221
192.35.168.181	103.129.223.95	93.168.50.22	181.16.224.203
196.218.157.75	69.183.147.82	79.136.68.61	36.71.235.131
27.151.0.155	212.42.104.18	192.35.168.224	103.143.208.248