114.220.29.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ylmf-pc	2019-08-18 22:03:05

Comments on same subnet:

IP	Type	Details	Datetime
114.220.29.186	attack	Nov 27 08:51:17 mailman postfix/smtpd[31431]: warning: unknown[114.220.29.186]: SASL LOGIN authentication failed: authentication failure	2019-11-28 02:31:05
114.220.29.194	attack	SASL broute force	2019-11-24 23:19:12
114.220.29.220	attackbotsspam	Nov 23 23:20:27 mx1 postfix/smtpd\[9802\]: warning: unknown\[114.220.29.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6Nov 23 23:20:38 mx1 postfix/smtpd\[9802\]: warning: unknown\[114.220.29.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6Nov 23 23:20:57 mx1 postfix/smtpd\[9802\]: warning: unknown\[114.220.29.220\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-24 03:47:06
114.220.29.146	attack	SASL broute force	2019-11-13 21:49:22
114.220.29.254	attackspam	Fail2Ban - SMTP Bruteforce Attempt	2019-09-14 07:20:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.220.29.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2338
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.220.29.80.			IN	A

;; AUTHORITY SECTION:
.			3489	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081800 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 22:02:49 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 80.29.220.114.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 80.29.220.114.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.80.153.174	attackbotsspam	Feb 2 19:11:58 NPSTNNYC01T sshd[16567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.153.174 Feb 2 19:11:59 NPSTNNYC01T sshd[16567]: Failed password for invalid user 127.86.183.213 - SSH-2.0-Ope.SSH_6.6.1p1 Ubuntu-2ubuntu2.4\r from 151.80.153.174 port 48520 ssh2 Feb 2 19:12:07 NPSTNNYC01T sshd[16570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.153.174 ...	2020-02-03 08:40:23
39.98.124.123	attackspambots	IP: 39.98.124.123 Ports affected World Wide Web HTTP (80) Abuse Confidence rating 83% Found in DNSBL('s) ASN Details AS37963 Hangzhou Alibaba Advertising Co. Ltd. China (CN) CIDR 39.96.0.0/13 Log Date: 2/02/2020 10:48:32 PM UTC	2020-02-03 08:22:00
51.38.186.207	attackspam	Unauthorized connection attempt detected from IP address 51.38.186.207 to port 2220 [J]	2020-02-03 08:20:20
125.24.255.38	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 02-02-2020 23:30:13.	2020-02-03 08:12:16
106.12.52.98	attack	Feb 3 01:22:06 legacy sshd[24975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.98 Feb 3 01:22:08 legacy sshd[24975]: Failed password for invalid user kelvin123 from 106.12.52.98 port 43138 ssh2 Feb 3 01:25:29 legacy sshd[25224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.52.98 ...	2020-02-03 08:47:36
190.153.249.99	attack	Invalid user dhruv from 190.153.249.99 port 51810	2020-02-03 08:19:24
34.255.158.57	attackspambots	Feb 2 22:37:42 heicom postfix/smtpd\[21546\]: warning: ec2-34-255-158-57.eu-west-1.compute.amazonaws.com\[34.255.158.57\]: SASL LOGIN authentication failed: authentication failure Feb 2 23:16:20 heicom postfix/smtpd\[22620\]: warning: ec2-34-255-158-57.eu-west-1.compute.amazonaws.com\[34.255.158.57\]: SASL LOGIN authentication failed: authentication failure Feb 2 23:16:30 heicom postfix/smtpd\[22620\]: warning: ec2-34-255-158-57.eu-west-1.compute.amazonaws.com\[34.255.158.57\]: SASL LOGIN authentication failed: authentication failure Feb 3 00:01:49 heicom postfix/smtpd\[23520\]: warning: ec2-34-255-158-57.eu-west-1.compute.amazonaws.com\[34.255.158.57\]: SASL LOGIN authentication failed: authentication failure Feb 3 00:01:49 heicom postfix/smtpd\[23524\]: warning: ec2-34-255-158-57.eu-west-1.compute.amazonaws.com\[34.255.158.57\]: SASL LOGIN authentication failed: authentication failure ...	2020-02-03 08:27:22
167.71.223.191	attack	Feb 3 01:17:28 legacy sshd[24619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.223.191 Feb 3 01:17:30 legacy sshd[24619]: Failed password for invalid user lidio from 167.71.223.191 port 49516 ssh2 Feb 3 01:20:37 legacy sshd[24851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.223.191 ...	2020-02-03 08:53:36
110.153.69.125	attackspambots	"SERVER-WEBAPP GPON Router authentication bypass and command injection attempt"	2020-02-03 08:35:54
181.188.2.62	attack	Port scan: Attack repeated for 24 hours	2020-02-03 08:55:57
121.162.60.159	attackspambots	Feb 3 01:23:58 silence02 sshd[2432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.60.159 Feb 3 01:24:00 silence02 sshd[2432]: Failed password for invalid user iq from 121.162.60.159 port 54626 ssh2 Feb 3 01:27:38 silence02 sshd[2815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.60.159	2020-02-03 08:51:34
193.112.40.170	attack	Unauthorized connection attempt detected from IP address 193.112.40.170 to port 2220 [J]	2020-02-03 08:14:12
212.170.50.203	attackbots	Feb 3 01:00:05 [host] sshd[17689]: Invalid user harman from 212.170.50.203 Feb 3 01:00:05 [host] sshd[17689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.170.50.203 Feb 3 01:00:07 [host] sshd[17689]: Failed password for invalid user harman from 212.170.50.203 port 41154 ssh2	2020-02-03 08:52:21
125.17.144.51	attackbotsspam	Unauthorized connection attempt from IP address 125.17.144.51 on Port 445(SMB)	2020-02-03 08:12:40
93.174.93.27	attackspambots	IP: 93.174.93.27 Ports affected Simple Mail Transfer (25) IMAP over TLS protocol (993) Abuse Confidence rating 100% ASN Details AS202425 IP Volume inc Netherlands (NL) CIDR 93.174.88.0/21 Log Date: 2/02/2020 11:27:37 PM UTC	2020-02-03 08:13:57

Recently Reported IPs

51.158.113.104	40.86.186.33	36.72.223.249	202.158.13.122
151.80.211.75	95.15.86.102	78.186.17.46	49.234.216.132
195.230.146.79	5.135.159.221	192.99.7.71	171.6.249.102
82.149.21.234	111.21.171.211	139.217.223.143	109.152.218.195
113.5.109.157	103.88.234.114	16.226.202.115	1.113.71.245