14.29.160.194 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	SSH Invalid Login	2020-05-31 06:42:21
attack	checking lsof -i 22 found this unauthorized access :( shd 21603 root 3u IPv4 81058208 0t0 TCP :ssh->14.29.160.194:49003 (ESTABLISHED)	2020-05-29 07:41:43
attack	2020-05-15T14:50:43.853069linuxbox-skyline sshd[29815]: Invalid user openfire from 14.29.160.194 port 45199 ...	2020-05-16 05:23:03
attackbotsspam	21 attempts against mh-ssh on cloud	2020-05-15 18:18:36
attack	2020-05-12T12:03:35.235789abusebot-5.cloudsearch.cf sshd[26264]: Invalid user test from 14.29.160.194 port 51129 2020-05-12T12:03:35.241808abusebot-5.cloudsearch.cf sshd[26264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 2020-05-12T12:03:35.235789abusebot-5.cloudsearch.cf sshd[26264]: Invalid user test from 14.29.160.194 port 51129 2020-05-12T12:03:37.081333abusebot-5.cloudsearch.cf sshd[26264]: Failed password for invalid user test from 14.29.160.194 port 51129 ssh2 2020-05-12T12:10:38.263697abusebot-5.cloudsearch.cf sshd[26405]: Invalid user admin from 14.29.160.194 port 58920 2020-05-12T12:10:38.270054abusebot-5.cloudsearch.cf sshd[26405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 2020-05-12T12:10:38.263697abusebot-5.cloudsearch.cf sshd[26405]: Invalid user admin from 14.29.160.194 port 58920 2020-05-12T12:10:40.179783abusebot-5.cloudsearch.cf sshd[26405]: Failed pa ...	2020-05-12 20:47:12
attack	2020-04-25 20:03:49,258 fail2ban.actions [22360]: NOTICE [sshd] Ban 14.29.160.194 2020-04-25 20:38:49,645 fail2ban.actions [22360]: NOTICE [sshd] Ban 14.29.160.194 2020-04-25 21:17:15,358 fail2ban.actions [22360]: NOTICE [sshd] Ban 14.29.160.194 2020-04-25 21:52:10,830 fail2ban.actions [22360]: NOTICE [sshd] Ban 14.29.160.194 2020-04-25 22:26:42,336 fail2ban.actions [22360]: NOTICE [sshd] Ban 14.29.160.194 ...	2020-04-26 05:52:23
attackspam	Brute-force attempt banned	2020-04-25 04:50:06
attack	Apr 24 13:59:37 Ubuntu-1404-trusty-64-minimal sshd\[25163\]: Invalid user levieux from 14.29.160.194 Apr 24 13:59:37 Ubuntu-1404-trusty-64-minimal sshd\[25163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 Apr 24 13:59:38 Ubuntu-1404-trusty-64-minimal sshd\[25163\]: Failed password for invalid user levieux from 14.29.160.194 port 37310 ssh2 Apr 24 14:02:47 Ubuntu-1404-trusty-64-minimal sshd\[31652\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 user=root Apr 24 14:02:49 Ubuntu-1404-trusty-64-minimal sshd\[31652\]: Failed password for root from 14.29.160.194 port 53750 ssh2	2020-04-25 02:08:42
attackspambots	Apr 13 19:23:48 vps sshd[229090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 user=root Apr 13 19:23:50 vps sshd[229090]: Failed password for root from 14.29.160.194 port 48259 ssh2 Apr 13 19:26:19 vps sshd[245291]: Invalid user zabbix from 14.29.160.194 port 60951 Apr 13 19:26:19 vps sshd[245291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 Apr 13 19:26:21 vps sshd[245291]: Failed password for invalid user zabbix from 14.29.160.194 port 60951 ssh2 ...	2020-04-14 02:33:13
attackbots	$f2bV_matches	2020-04-01 19:53:04
attackbotsspam	k+ssh-bruteforce	2020-03-29 01:51:46
attackbots	$f2bV_matches	2020-03-25 15:31:04
attackspambots	Mar 20 14:05:31 sd-53420 sshd\[13172\]: Invalid user mm from 14.29.160.194 Mar 20 14:05:31 sd-53420 sshd\[13172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 Mar 20 14:05:32 sd-53420 sshd\[13172\]: Failed password for invalid user mm from 14.29.160.194 port 40822 ssh2 Mar 20 14:08:49 sd-53420 sshd\[14097\]: Invalid user ttttt from 14.29.160.194 Mar 20 14:08:49 sd-53420 sshd\[14097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 ...	2020-03-21 02:49:42
attack	Brute-force attempt banned	2020-03-13 02:10:38
attackbots	Feb 4 07:57:45 lukav-desktop sshd\[30444\]: Invalid user taya from 14.29.160.194 Feb 4 07:57:45 lukav-desktop sshd\[30444\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 Feb 4 07:57:48 lukav-desktop sshd\[30444\]: Failed password for invalid user taya from 14.29.160.194 port 59470 ssh2 Feb 4 08:00:54 lukav-desktop sshd\[31667\]: Invalid user albina from 14.29.160.194 Feb 4 08:00:54 lukav-desktop sshd\[31667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194	2020-02-04 14:59:38
attackbotsspam	Feb 3 01:05:25 hostnameproxy sshd[4310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 user=daemon Feb 3 01:05:27 hostnameproxy sshd[4310]: Failed password for daemon from 14.29.160.194 port 50636 ssh2 Feb 3 01:06:34 hostnameproxy sshd[4369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 user=r.r Feb 3 01:06:36 hostnameproxy sshd[4369]: Failed password for r.r from 14.29.160.194 port 54700 ssh2 Feb 3 01:07:41 hostnameproxy sshd[4408]: Invalid user terrariaserver from 14.29.160.194 port 58764 Feb 3 01:07:41 hostnameproxy sshd[4408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.160.194 Feb 3 01:07:43 hostnameproxy sshd[4408]: Failed password for invalid user terrariaserver from 14.29.160.194 port 58764 ssh2 Feb 3 01:08:48 hostnameproxy sshd[4446]: Invalid user rusahimah from 14.29.160.194 port 34593 Feb ........ ------------------------------	2020-02-03 17:18:40

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.29.160.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.29.160.194.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020300 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 17:18:35 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 194.160.29.14.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 194.160.29.14.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.191.20.173	attackbots	Invalid user kernoops from 94.191.20.173 port 59500	2020-03-24 04:50:10
190.62.207.23	attack	Mar 23 16:30:37 xxxxxxx0 sshd[23208]: Invalid user pi from 190.62.207.23 port 39443 Mar 23 16:30:37 xxxxxxx0 sshd[23209]: Invalid user pi from 190.62.207.23 port 39442 Mar 23 16:30:37 xxxxxxx0 sshd[23208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.62.207.23 Mar 23 16:30:37 xxxxxxx0 sshd[23209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.62.207.23 Mar 23 16:30:39 xxxxxxx0 sshd[23208]: Failed password for invalid user pi from 190.62.207.23 port 39443 ssh2 Mar 23 16:30:39 xxxxxxx0 sshd[23209]: Failed password for invalid user pi from 190.62.207.23 port 39442 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.62.207.23	2020-03-24 04:31:00
165.227.113.2	attack	$f2bV_matches	2020-03-24 04:53:50
87.253.233.122	attack	Email spam message	2020-03-24 04:48:37
41.57.104.246	attackbots	20/3/23@11:43:59: FAIL: Alarm-Intrusion address from=41.57.104.246 ...	2020-03-24 04:51:50
185.220.103.9	attackbots	Mar 23 21:28:14 vpn01 sshd[31821]: Failed password for root from 185.220.103.9 port 38840 ssh2 Mar 23 21:28:24 vpn01 sshd[31821]: Failed password for root from 185.220.103.9 port 38840 ssh2 ...	2020-03-24 04:29:27
192.99.4.145	attackbotsspam	2020-03-23T21:16:46.282717 sshd[25418]: Invalid user lsfadmin from 192.99.4.145 port 42542 2020-03-23T21:16:46.296518 sshd[25418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.4.145 2020-03-23T21:16:46.282717 sshd[25418]: Invalid user lsfadmin from 192.99.4.145 port 42542 2020-03-23T21:16:48.371251 sshd[25418]: Failed password for invalid user lsfadmin from 192.99.4.145 port 42542 ssh2 ...	2020-03-24 04:29:59
35.226.165.144	attackspambots	2020-03-23T17:47:43.257678struts4.enskede.local sshd\[27929\]: Invalid user mckey from 35.226.165.144 port 51970 2020-03-23T17:47:43.263696struts4.enskede.local sshd\[27929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.165.226.35.bc.googleusercontent.com 2020-03-23T17:47:46.984324struts4.enskede.local sshd\[27929\]: Failed password for invalid user mckey from 35.226.165.144 port 51970 ssh2 2020-03-23T17:55:38.878137struts4.enskede.local sshd\[28102\]: Invalid user yxy from 35.226.165.144 port 57514 2020-03-23T17:55:38.886321struts4.enskede.local sshd\[28102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.165.226.35.bc.googleusercontent.com ...	2020-03-24 04:17:08
70.113.242.156	attack	Mar 23 15:44:37 marvibiene sshd[28863]: Invalid user can from 70.113.242.156 port 44320 Mar 23 15:44:37 marvibiene sshd[28863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.113.242.156 Mar 23 15:44:37 marvibiene sshd[28863]: Invalid user can from 70.113.242.156 port 44320 Mar 23 15:44:40 marvibiene sshd[28863]: Failed password for invalid user can from 70.113.242.156 port 44320 ssh2 ...	2020-03-24 04:20:55
49.235.42.39	attack	Mar 23 17:51:42 ns381471 sshd[25962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.42.39 Mar 23 17:51:44 ns381471 sshd[25962]: Failed password for invalid user spark from 49.235.42.39 port 33010 ssh2	2020-03-24 04:42:54
196.52.55.200	attackspam	Lines containing failures of 196.52.55.200 Mar 23 16:31:26 shared12 sshd[8509]: Did not receive identification string from 196.52.55.200 port 33744 Mar 23 16:31:26 shared12 sshd[8510]: Did not receive identification string from 196.52.55.200 port 41464 Mar 23 16:32:39 shared12 sshd[9464]: Did not receive identification string from 196.52.55.200 port 53608 Mar 23 16:32:39 shared12 sshd[9465]: Did not receive identification string from 196.52.55.200 port 60926 Mar 23 16:32:52 shared12 sshd[9467]: Invalid user nologin from 196.52.55.200 port 32828 Mar 23 16:32:52 shared12 sshd[9467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.52.55.200 Mar 23 16:32:52 shared12 sshd[9466]: Invalid user nologin from 196.52.55.200 port 40132 Mar 23 16:32:52 shared12 sshd[9466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.52.55.200 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=196.52.	2020-03-24 04:25:35
69.130.166.47	attackbots	2020-03-23T15:35:32.743267abusebot-3.cloudsearch.cf sshd[24552]: Invalid user uz from 69.130.166.47 port 37978 2020-03-23T15:35:32.750030abusebot-3.cloudsearch.cf sshd[24552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=h69-130-166-47.cntcnh.dsl.dynamic.tds.net 2020-03-23T15:35:32.743267abusebot-3.cloudsearch.cf sshd[24552]: Invalid user uz from 69.130.166.47 port 37978 2020-03-23T15:35:34.322490abusebot-3.cloudsearch.cf sshd[24552]: Failed password for invalid user uz from 69.130.166.47 port 37978 ssh2 2020-03-23T15:44:22.170092abusebot-3.cloudsearch.cf sshd[24994]: Invalid user whisper from 69.130.166.47 port 40814 2020-03-23T15:44:22.177534abusebot-3.cloudsearch.cf sshd[24994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=h69-130-166-47.cntcnh.dsl.dynamic.tds.net 2020-03-23T15:44:22.170092abusebot-3.cloudsearch.cf sshd[24994]: Invalid user whisper from 69.130.166.47 port 40814 2020-03-23T15:44:24. ...	2020-03-24 04:32:05
71.6.233.38	attackspambots	" "	2020-03-24 04:29:09
202.29.80.133	attack	SSH auth scanning - multiple failed logins	2020-03-24 04:55:22
115.159.196.214	attack	(sshd) Failed SSH login from 115.159.196.214 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 23 20:44:47 amsweb01 sshd[3592]: Invalid user yf from 115.159.196.214 port 55966 Mar 23 20:44:48 amsweb01 sshd[3592]: Failed password for invalid user yf from 115.159.196.214 port 55966 ssh2 Mar 23 20:54:25 amsweb01 sshd[4772]: Invalid user hieu from 115.159.196.214 port 36974 Mar 23 20:54:27 amsweb01 sshd[4772]: Failed password for invalid user hieu from 115.159.196.214 port 36974 ssh2 Mar 23 21:01:15 amsweb01 sshd[5913]: Invalid user wildfly from 115.159.196.214 port 38556	2020-03-24 04:33:36

最近上报的IP列表

90.144.233.124	37.133.181.83	95.139.218.202	74.51.236.192
103.244.121.132	1.193.110.135	198.45.76.10	204.117.189.14
131.37.195.170	48.100.250.207	123.68.211.151	204.238.162.38
64.198.75.26	51.59.219.56	97.92.23.184	1.236.156.144
39.76.129.80	4.157.220.31	159.244.202.200	183.156.107.115