14.29.116.195 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
14.29.116.147	attackspam	ssh failed login	2019-12-13 15:01:51
14.29.116.223	botsattack	14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /myadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /pma/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu" 14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET HTTP/1.1" 400 182 "-" "-"	2019-04-18 11:39:46

类型

评论内容

时间

14.29.116.147

attackspam

ssh failed login

2019-12-13 15:01:51

14.29.116.223

botsattack

14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /myadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu"
14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 301 194 "-" "ZmEu"
14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /pma/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu"
14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /MyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu"
14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu"
14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "ZmEu"
14.29.116.223 - - [18/Apr/2019:11:39:04 +0800] "GET  HTTP/1.1" 400 182 "-" "-"

2019-04-18 11:39:46

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.29.116.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;14.29.116.195.			IN	A

;; AUTHORITY SECTION:
.			122	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010801 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 09 09:54:21 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 195.116.29.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 195.116.29.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
13.92.208.215	attack	May 28 05:55:04 vps639187 sshd\[14302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.208.215 user=root May 28 05:55:06 vps639187 sshd\[14302\]: Failed password for root from 13.92.208.215 port 43514 ssh2 May 28 05:58:46 vps639187 sshd\[14352\]: Invalid user ahnstedt from 13.92.208.215 port 49352 May 28 05:58:46 vps639187 sshd\[14352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.208.215 ...	2020-05-28 12:02:03
156.182.115.81	normal	عايز افتح عشان مسروق منى	2020-05-28 10:19:19
191.241.242.10	attackbotsspam	Unauthorized connection attempt from IP address 191.241.242.10 on Port 445(SMB)	2020-05-28 08:14:34
181.93.114.19	attack	Automatic report - Port Scan	2020-05-28 08:14:57
193.35.48.18	attack	(smtpauth) Failed SMTP AUTH login from 193.35.48.18 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-05-28 08:27:17 login authenticator failed for ([193.35.48.18]) [193.35.48.18]: 535 Incorrect authentication data (set_id=mail@sarfarazanpersia.com) 2020-05-28 08:27:21 login authenticator failed for ([193.35.48.18]) [193.35.48.18]: 535 Incorrect authentication data (set_id=mail) 2020-05-28 08:27:55 login authenticator failed for ([193.35.48.18]) [193.35.48.18]: 535 Incorrect authentication data (set_id=silva@sarfarazanpersia.com) 2020-05-28 08:27:57 login authenticator failed for ([193.35.48.18]) [193.35.48.18]: 535 Incorrect authentication data (set_id=info@lalakala.ir) 2020-05-28 08:27:57 login authenticator failed for ([193.35.48.18]) [193.35.48.18]: 535 Incorrect authentication data (set_id=silva)	2020-05-28 12:03:58
222.186.180.6	attack	2020-05-28T07:17:44.867158afi-git.jinr.ru sshd[24582]: Failed password for root from 222.186.180.6 port 14872 ssh2 2020-05-28T07:17:48.325666afi-git.jinr.ru sshd[24582]: Failed password for root from 222.186.180.6 port 14872 ssh2 2020-05-28T07:17:52.021643afi-git.jinr.ru sshd[24582]: Failed password for root from 222.186.180.6 port 14872 ssh2 2020-05-28T07:17:52.021802afi-git.jinr.ru sshd[24582]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 14872 ssh2 [preauth] 2020-05-28T07:17:52.021816afi-git.jinr.ru sshd[24582]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-28 12:19:14
37.59.123.166	attackspam	May 28 08:58:16 gw1 sshd[5206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.123.166 May 28 08:58:18 gw1 sshd[5206]: Failed password for invalid user ftp from 37.59.123.166 port 56622 ssh2 ...	2020-05-28 12:15:26
61.3.193.45	attack	IP 61.3.193.45 attacked honeypot on port: 8080 at 5/28/2020 4:58:45 AM	2020-05-28 12:01:38
202.137.142.83	attack	Dovecot Invalid User Login Attempt.	2020-05-28 12:06:52
182.61.149.31	attackbots	May 28 05:53:30 srv-ubuntu-dev3 sshd[45404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.31 user=root May 28 05:53:32 srv-ubuntu-dev3 sshd[45404]: Failed password for root from 182.61.149.31 port 60246 ssh2 May 28 05:56:03 srv-ubuntu-dev3 sshd[45832]: Invalid user host from 182.61.149.31 May 28 05:56:03 srv-ubuntu-dev3 sshd[45832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.31 May 28 05:56:03 srv-ubuntu-dev3 sshd[45832]: Invalid user host from 182.61.149.31 May 28 05:56:06 srv-ubuntu-dev3 sshd[45832]: Failed password for invalid user host from 182.61.149.31 port 37580 ssh2 May 28 05:58:31 srv-ubuntu-dev3 sshd[46156]: Invalid user khuay from 182.61.149.31 May 28 05:58:31 srv-ubuntu-dev3 sshd[46156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.31 May 28 05:58:31 srv-ubuntu-dev3 sshd[46156]: Invalid user khuay from 182.61.14 ...	2020-05-28 12:05:48
198.20.87.98	attackspambots	[Thu May 28 11:43:49 2020] - DDoS Attack From IP: 198.20.87.98 Port: 18020	2020-05-28 12:21:52
112.116.155.205	attack	May 28 05:47:23 hell sshd[14764]: Failed password for root from 112.116.155.205 port 39721 ssh2 ...	2020-05-28 12:22:09
79.124.62.66	attack	May 28 05:58:16 debian-2gb-nbg1-2 kernel: \[12897087.991228\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=79.124.62.66 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=6042 PROTO=TCP SPT=58077 DPT=3366 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-28 12:14:58
219.153.100.153	attackbotsspam	May 28 05:49:14 h1745522 sshd[17772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.153.100.153 user=root May 28 05:49:16 h1745522 sshd[17772]: Failed password for root from 219.153.100.153 port 38874 ssh2 May 28 05:53:44 h1745522 sshd[17876]: Invalid user zimbra from 219.153.100.153 port 46936 May 28 05:53:44 h1745522 sshd[17876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.153.100.153 May 28 05:53:44 h1745522 sshd[17876]: Invalid user zimbra from 219.153.100.153 port 46936 May 28 05:53:47 h1745522 sshd[17876]: Failed password for invalid user zimbra from 219.153.100.153 port 46936 ssh2 May 28 05:55:56 h1745522 sshd[17947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.153.100.153 user=root May 28 05:55:58 h1745522 sshd[17947]: Failed password for root from 219.153.100.153 port 44560 ssh2 May 28 05:58:11 h1745522 sshd[18106]: pam_unix(sshd:auth) ...	2020-05-28 12:18:13
222.186.42.137	attackbots	May 28 04:08:23 localhost sshd[89753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root May 28 04:08:25 localhost sshd[89753]: Failed password for root from 222.186.42.137 port 62181 ssh2 May 28 04:08:28 localhost sshd[89753]: Failed password for root from 222.186.42.137 port 62181 ssh2 May 28 04:08:23 localhost sshd[89753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root May 28 04:08:25 localhost sshd[89753]: Failed password for root from 222.186.42.137 port 62181 ssh2 May 28 04:08:28 localhost sshd[89753]: Failed password for root from 222.186.42.137 port 62181 ssh2 May 28 04:08:23 localhost sshd[89753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root May 28 04:08:25 localhost sshd[89753]: Failed password for root from 222.186.42.137 port 62181 ssh2 May 28 04:08:28 localhost sshd[89753]: Fa ...	2020-05-28 12:08:51

最近上报的IP列表

72.142.153.14	105.23.3.218	193.203.59.26	229.153.50.248
186.78.46.228	61.223.134.188	142.41.54.7	172.16.1.201
82.220.253.24	100.111.185.22	131.101.29.99	237.12.65.202
229.33.154.93	10.149.169.189	198.88.120.161	189.100.209.150
166.159.173.230	52.175.211.139	41.226.18.209	180.48.57.120