14.29.245.144 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jan 18 02:05:30 pi sshd[15969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.144 Jan 18 02:05:32 pi sshd[15969]: Failed password for invalid user felix from 14.29.245.144 port 49566 ssh2	2020-03-14 04:08:32
attackbotsspam	$f2bV_matches	2020-02-21 07:37:25
attackbotsspam	2020-02-12T17:04:51.4805111495-001 sshd[26954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.144 2020-02-12T17:04:51.4721631495-001 sshd[26954]: Invalid user army from 14.29.245.144 port 39489 2020-02-12T17:04:53.5568661495-001 sshd[26954]: Failed password for invalid user army from 14.29.245.144 port 39489 ssh2 2020-02-12T18:05:13.1118841495-001 sshd[30402]: Invalid user ian from 14.29.245.144 port 39498 2020-02-12T18:05:13.1196401495-001 sshd[30402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.144 2020-02-12T18:05:13.1118841495-001 sshd[30402]: Invalid user ian from 14.29.245.144 port 39498 2020-02-12T18:05:15.4359001495-001 sshd[30402]: Failed password for invalid user ian from 14.29.245.144 port 39498 ssh2 2020-02-12T18:08:46.0105811495-001 sshd[30691]: Invalid user mani from 14.29.245.144 port 49460 2020-02-12T18:08:46.0137301495-001 sshd[30691]: pam_unix(sshd:auth): authenti ...	2020-02-13 08:21:37
attackbotsspam	Feb 4 23:32:14 firewall sshd[20399]: Invalid user uno8 from 14.29.245.144 Feb 4 23:32:16 firewall sshd[20399]: Failed password for invalid user uno8 from 14.29.245.144 port 44060 ssh2 Feb 4 23:36:32 firewall sshd[20646]: Invalid user xbmc from 14.29.245.144 ...	2020-02-05 10:45:55
attackbotsspam	Scanned 3 times in the last 24 hours on port 22	2020-02-03 17:19:59
attackspambots	Unauthorized connection attempt detected from IP address 14.29.245.144 to port 2220 [J]	2020-01-26 02:27:32

Comments on same subnet:

IP	Type	Details	Datetime
14.29.245.137	attackspambots	Unauthorized connection attempt detected from IP address 14.29.245.137 to port 2220 [J]	2020-01-22 22:44:46
14.29.245.137	attackspambots	2020-01-19T14:32:23.875695shield sshd\[26122\]: Invalid user postgres from 14.29.245.137 port 41790 2020-01-19T14:32:23.879705shield sshd\[26122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.137 2020-01-19T14:32:25.846069shield sshd\[26122\]: Failed password for invalid user postgres from 14.29.245.137 port 41790 ssh2 2020-01-19T14:35:46.855209shield sshd\[27300\]: Invalid user postgres from 14.29.245.137 port 52576 2020-01-19T14:35:46.858698shield sshd\[27300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.137	2020-01-20 01:41:30

Type

Details

Datetime

14.29.245.137

attackspambots

Unauthorized connection attempt detected from IP address 14.29.245.137 to port 2220 [J]

2020-01-22 22:44:46

14.29.245.137

attackspambots

2020-01-19T14:32:23.875695shield sshd\[26122\]: Invalid user postgres from 14.29.245.137 port 41790
2020-01-19T14:32:23.879705shield sshd\[26122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.137
2020-01-19T14:32:25.846069shield sshd\[26122\]: Failed password for invalid user postgres from 14.29.245.137 port 41790 ssh2
2020-01-19T14:35:46.855209shield sshd\[27300\]: Invalid user postgres from 14.29.245.137 port 52576
2020-01-19T14:35:46.858698shield sshd\[27300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.245.137

2020-01-20 01:41:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.29.245.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5217
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.29.245.144.			IN	A

;; AUTHORITY SECTION:
.			516	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012500 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 26 02:27:29 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 144.245.29.14.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 144.245.29.14.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.234.216.231	attackspambots	Aug 22 00:32:56 mail postfix/smtpd\[1209\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 00:53:46 mail postfix/smtpd\[1795\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 01:16:17 mail postfix/smtpd\[1867\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 22 01:59:58 mail postfix/smtpd\[5149\]: warning: unknown\[185.234.216.231\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-22 08:12:29
118.25.237.124	attackspambots	Aug 22 02:49:00 server sshd\[2577\]: Invalid user cs from 118.25.237.124 port 47248 Aug 22 02:49:00 server sshd\[2577\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.237.124 Aug 22 02:49:02 server sshd\[2577\]: Failed password for invalid user cs from 118.25.237.124 port 47248 ssh2 Aug 22 02:54:05 server sshd\[19621\]: Invalid user venta from 118.25.237.124 port 34760 Aug 22 02:54:05 server sshd\[19621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.237.124	2019-08-22 08:00:38
87.196.188.211	attackbots	Aug 22 00:55:45 eventyay sshd[30252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.196.188.211 Aug 22 00:55:47 eventyay sshd[30252]: Failed password for invalid user snake from 87.196.188.211 port 57835 ssh2 Aug 22 00:58:54 eventyay sshd[31007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.196.188.211 ...	2019-08-22 08:03:31
178.128.215.16	attackbotsspam	Aug 21 14:18:13 lcprod sshd\[2222\]: Invalid user 1234567 from 178.128.215.16 Aug 21 14:18:13 lcprod sshd\[2222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.16 Aug 21 14:18:16 lcprod sshd\[2222\]: Failed password for invalid user 1234567 from 178.128.215.16 port 49140 ssh2 Aug 21 14:23:10 lcprod sshd\[2703\]: Invalid user gmodserver123 from 178.128.215.16 Aug 21 14:23:10 lcprod sshd\[2703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.16	2019-08-22 08:31:55
182.48.107.230	attackbotsspam	Aug 22 01:53:11 meumeu sshd[1221]: Failed password for invalid user erma from 182.48.107.230 port 42164 ssh2 Aug 22 01:57:56 meumeu sshd[1952]: Failed password for invalid user kudosman from 182.48.107.230 port 58758 ssh2 ...	2019-08-22 08:04:24
80.11.67.223	attackspambots	Aug 22 01:54:01 OPSO sshd\[25905\]: Invalid user cedric from 80.11.67.223 port 36598 Aug 22 01:54:01 OPSO sshd\[25905\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.11.67.223 Aug 22 01:54:03 OPSO sshd\[25905\]: Failed password for invalid user cedric from 80.11.67.223 port 36598 ssh2 Aug 22 02:00:11 OPSO sshd\[27453\]: Invalid user taniac from 80.11.67.223 port 53812 Aug 22 02:00:11 OPSO sshd\[27453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.11.67.223	2019-08-22 08:10:50
211.52.103.197	attack	Fail2Ban Ban Triggered	2019-08-22 08:33:21
52.237.23.159	attackspambots	Aug 21 14:16:13 lcprod sshd\[2025\]: Invalid user zimbra from 52.237.23.159 Aug 21 14:16:13 lcprod sshd\[2025\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.237.23.159 Aug 21 14:16:15 lcprod sshd\[2025\]: Failed password for invalid user zimbra from 52.237.23.159 port 58854 ssh2 Aug 21 14:21:00 lcprod sshd\[2511\]: Invalid user bill from 52.237.23.159 Aug 21 14:21:00 lcprod sshd\[2511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.237.23.159	2019-08-22 08:35:20
179.215.224.210	attack	scan z	2019-08-22 08:12:57
98.144.230.245	attackbotsspam	vps1:sshd-InvalidUser	2019-08-22 08:38:33
120.205.45.252	attackbots	2019-08-21T22:55:31.944777Z dafa87c3a61a New connection: 120.205.45.252:50205 (172.17.0.2:2222) [session: dafa87c3a61a] 2019-08-21T22:55:32.455701Z 7e4e2dc193db New connection: 120.205.45.252:50260 (172.17.0.2:2222) [session: 7e4e2dc193db]	2019-08-22 08:23:24
51.75.122.16	attackspambots	Aug 22 01:37:32 minden010 sshd[1937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.16 Aug 22 01:37:34 minden010 sshd[1937]: Failed password for invalid user nora from 51.75.122.16 port 49132 ssh2 Aug 22 01:42:03 minden010 sshd[3569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.16 ...	2019-08-22 08:06:08
197.253.75.3	attack	Aug 22 01:07:32 lnxmysql61 sshd[31326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.75.3	2019-08-22 08:29:16
31.13.32.186	attack	Aug 22 02:34:46 tuxlinux sshd[9006]: Invalid user teamspeak from 31.13.32.186 port 53808 Aug 22 02:34:46 tuxlinux sshd[9006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.13.32.186 Aug 22 02:34:46 tuxlinux sshd[9006]: Invalid user teamspeak from 31.13.32.186 port 53808 Aug 22 02:34:46 tuxlinux sshd[9006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.13.32.186 Aug 22 02:34:46 tuxlinux sshd[9006]: Invalid user teamspeak from 31.13.32.186 port 53808 Aug 22 02:34:46 tuxlinux sshd[9006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.13.32.186 Aug 22 02:34:48 tuxlinux sshd[9006]: Failed password for invalid user teamspeak from 31.13.32.186 port 53808 ssh2 ...	2019-08-22 08:35:57
5.133.24.98	attack	2019-08-21 17:27:52 H=(lucius.it) [5.133.24.98]:44652 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/5.133.24.98) 2019-08-21 17:27:53 H=(lucius.it) [5.133.24.98]:44652 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-08-21 17:27:53 H=(lucius.it) [5.133.24.98]:44652 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-08-22 08:11:08

Recently Reported IPs

53.230.68.239	147.12.145.29	138.36.190.156	125.224.172.55
124.42.66.23	123.232.227.124	117.63.100.25	115.72.85.196
109.227.200.47	109.201.195.98	109.94.115.103	106.13.138.101
92.24.141.93	77.55.194.169	70.15.249.67	49.235.135.230
47.96.233.211	31.163.185.15	27.224.137.181	168.206.47.72