114.29.240.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
114.29.240.12	attackspambots	Unauthorized connection attempt detected from IP address 114.29.240.12 to port 4567 [J]	2020-01-31 00:44:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.29.240.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8045
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.29.240.19.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 01:27:03 CST 2022
;; MSG SIZE  rcvd: 106

Host info

b'Host 19.240.29.114.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 19.240.29.114.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.129.160.35	attackspam	Feb 14 23:21:39 tuxlinux sshd[62071]: Invalid user rockwood from 181.129.160.35 port 40594 Feb 14 23:21:39 tuxlinux sshd[62071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.160.35 Feb 14 23:21:39 tuxlinux sshd[62071]: Invalid user rockwood from 181.129.160.35 port 40594 Feb 14 23:21:39 tuxlinux sshd[62071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.160.35 Feb 14 23:21:39 tuxlinux sshd[62071]: Invalid user rockwood from 181.129.160.35 port 40594 Feb 14 23:21:39 tuxlinux sshd[62071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.129.160.35 Feb 14 23:21:41 tuxlinux sshd[62071]: Failed password for invalid user rockwood from 181.129.160.35 port 40594 ssh2 ...	2020-02-15 10:28:17
1.34.55.144	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 09:52:59
220.74.101.233	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-15 10:28:02
80.211.13.167	attackspambots	Feb 14 15:45:40 hpm sshd\[10819\]: Invalid user qwerty123 from 80.211.13.167 Feb 14 15:45:40 hpm sshd\[10819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.13.167 Feb 14 15:45:42 hpm sshd\[10819\]: Failed password for invalid user qwerty123 from 80.211.13.167 port 45966 ssh2 Feb 14 15:48:58 hpm sshd\[11207\]: Invalid user openvpn from 80.211.13.167 Feb 14 15:48:58 hpm sshd\[11207\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.13.167	2020-02-15 10:02:51
5.26.119.62	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-15 10:27:37
51.68.227.98	attackspam	Invalid user ringstad from 51.68.227.98 port 45878	2020-02-15 10:08:33
192.99.212.202	attack	Brute forcing email accounts	2020-02-15 09:47:45
1.20.82.216	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 10:14:42
37.71.138.29	attackspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-02-15 10:13:22
93.174.95.73	attackspambots	Feb 15 02:36:01 h2177944 kernel: \[4928508.162797\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.73 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=26749 PROTO=TCP SPT=49829 DPT=644 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 15 02:36:01 h2177944 kernel: \[4928508.162808\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.73 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=26749 PROTO=TCP SPT=49829 DPT=644 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 15 02:38:30 h2177944 kernel: \[4928657.314704\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.73 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=18414 PROTO=TCP SPT=49875 DPT=918 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 15 02:38:30 h2177944 kernel: \[4928657.314718\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.73 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=18414 PROTO=TCP SPT=49875 DPT=918 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 15 02:39:32 h2177944 kernel: \[4928719.572342\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.73 DST=85.214.117.9 LEN=40 T	2020-02-15 09:51:15
27.115.62.134	attack	$f2bV_matches	2020-02-15 09:46:53
222.186.42.75	attackspambots	Feb 15 03:37:53 server2 sshd\[9371\]: User root from 222.186.42.75 not allowed because not listed in AllowUsers Feb 15 03:37:53 server2 sshd\[9373\]: User root from 222.186.42.75 not allowed because not listed in AllowUsers Feb 15 03:37:54 server2 sshd\[9375\]: User root from 222.186.42.75 not allowed because not listed in AllowUsers Feb 15 03:42:50 server2 sshd\[9688\]: User root from 222.186.42.75 not allowed because not listed in AllowUsers Feb 15 03:42:51 server2 sshd\[9690\]: User root from 222.186.42.75 not allowed because not listed in AllowUsers Feb 15 03:43:21 server2 sshd\[9715\]: User root from 222.186.42.75 not allowed because not listed in AllowUsers	2020-02-15 09:50:30
84.33.83.107	attack	MIRAI HOST Fri Feb 14 15:21:59 2020 - Child process 28433 handling connection Fri Feb 14 15:21:59 2020 - New connection from: 84.33.83.107:57244 Fri Feb 14 15:21:59 2020 - Sending data to client: [Login: ] Fri Feb 14 15:21:59 2020 - Got data: Administrator Fri Feb 14 15:22:00 2020 - Sending data to client: [Password: ] Fri Feb 14 15:22:00 2020 - Got data: admin Fri Feb 14 15:22:02 2020 - Child 28439 granting shell Fri Feb 14 15:22:02 2020 - Child 28433 exiting Fri Feb 14 15:22:02 2020 - Sending data to client: [Logged in] Fri Feb 14 15:22:02 2020 - Sending data to client: [Welcome to MX990 Embedded Linux] Fri Feb 14 15:22:02 2020 - Sending data to client: [[root@dvrdvs /]# ] Fri Feb 14 15:22:03 2020 - Got data: enable system shell sh Fri Feb 14 15:22:03 2020 - Sending data to client: [Command not found] Fri Feb 14 15:22:03 2020 - Sending data to client: [[root@dvrdvs /]# ] Fri Feb 14 15:22:03 2020 - Got data: cat /proc/mounts; /bin/busybox SXHUR Fri Feb 14 15:22:03 2020 - Sending data to c	2020-02-15 10:17:30
188.166.228.244	attack	Feb 14 20:56:28 plusreed sshd[28562]: Invalid user ayco from 188.166.228.244 ...	2020-02-15 10:05:33
94.179.129.93	attack	fraudulent SSH attempt	2020-02-15 10:18:39

Recently Reported IPs

122.191.204.183	113.68.11.207	107.175.57.84	45.167.124.193
37.229.1.60	103.121.40.201	194.233.78.81	181.89.48.60
164.52.117.194	103.93.149.248	58.146.111.11	182.119.180.73
167.71.236.26	109.73.191.233	89.152.111.211	178.72.68.205
222.138.188.29	183.13.190.119	138.122.205.166	73.26.217.67