193.29.13.54 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Romania

运营商(isp): Bunea Telecom SRL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ET SCAN Potential SSH Scan - port: 22 proto: TCP cat: Attempted Information Leak	2020-03-20 23:24:46
attack	SSH login attempts.	2020-03-20 13:47:55

相同子网IP讨论:

IP	类型	评论内容	时间
193.29.13.31	attack	ataque tcp intento de intrusion	2020-09-29 02:02:05
193.29.13.35	attackspambots	TCP ports : 3388 / 3389 / 3390 / 3391	2020-09-25 01:57:26
193.29.13.35	attackspambots	Scanning	2020-09-24 17:37:30
193.29.13.27	attackbots	Unauthorized connection attempt detected from IP address 193.29.13.27 to port 3391 [T]	2020-08-13 04:45:51
193.29.13.89	attack	Unauthorized connection attempt from IP address 193.29.13.89 on Port 3306(MYSQL)	2020-07-27 02:57:03
193.29.13.89	attack	[mysql-auth] MySQL auth attack	2020-07-25 12:59:15
193.29.13.89	attackspambots	Jul 17 14:11:30 debian-2gb-nbg1-2 kernel: \[17246444.579554\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=193.29.13.89 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=111 ID=256 PROTO=TCP SPT=6000 DPT=3306 WINDOW=16384 RES=0x00 SYN URGP=0	2020-07-18 00:38:08
193.29.13.33	attack	Port scan: Attack repeated for 24 hours	2020-07-17 03:14:27
193.29.13.11	attackbotsspam	3389BruteforceStormFW21	2020-07-05 06:37:32
193.29.13.133	attackspam	Icarus honeypot on github	2020-06-26 20:37:47
193.29.13.125	attackspambots	May 13 14:32:19 vps691689 sshd[21673]: error: Received disconnect from 193.29.13.125 port 45740:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-05-14 03:38:38
193.29.13.92	attackbotsspam	[MySQL inject/portscan] tcp/3306 *(RWIN=16384)(04301449)	2020-04-30 23:17:48
193.29.13.119	attackspam	Unauthorised access (Apr 13) SRC=193.29.13.119 LEN=40 TTL=116 ID=256 TCP DPT=3306 WINDOW=16384 SYN	2020-04-14 03:31:58
193.29.13.30	attack	1 attempts against mh-modsecurity-ban on sand	2020-03-07 07:36:28
193.29.13.20	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 07:56:05

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.29.13.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34552
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.29.13.54.			IN	A

;; AUTHORITY SECTION:
.			564	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032000 1800 900 604800 86400

;; Query time: 370 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 20 13:47:47 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 54.13.29.193.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.13.29.193.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.175.182	attackspambots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Failed password for root from 222.186.175.182 port 7644 ssh2 Failed password for root from 222.186.175.182 port 7644 ssh2 Failed password for root from 222.186.175.182 port 7644 ssh2 Failed password for root from 222.186.175.182 port 7644 ssh2	2019-12-09 14:13:46
200.54.255.253	attackbotsspam	$f2bV_matches	2019-12-09 14:00:41
118.24.158.42	attackbots	Dec 8 20:08:55 kapalua sshd\[11750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 user=root Dec 8 20:08:57 kapalua sshd\[11750\]: Failed password for root from 118.24.158.42 port 36028 ssh2 Dec 8 20:15:10 kapalua sshd\[12489\]: Invalid user manit from 118.24.158.42 Dec 8 20:15:10 kapalua sshd\[12489\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 Dec 8 20:15:12 kapalua sshd\[12489\]: Failed password for invalid user manit from 118.24.158.42 port 35548 ssh2	2019-12-09 14:15:25
128.199.95.163	attack	leo_www	2019-12-09 14:46:41
54.39.196.199	attack	Dec 9 06:10:56 web8 sshd\[4969\]: Invalid user Elephant@123 from 54.39.196.199 Dec 9 06:10:56 web8 sshd\[4969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.196.199 Dec 9 06:10:58 web8 sshd\[4969\]: Failed password for invalid user Elephant@123 from 54.39.196.199 port 51646 ssh2 Dec 9 06:16:39 web8 sshd\[7700\]: Invalid user jawa from 54.39.196.199 Dec 9 06:16:39 web8 sshd\[7700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.196.199	2019-12-09 14:18:24
182.176.228.149	attack	Unauthorized connection attempt detected from IP address 182.176.228.149 to port 445	2019-12-09 14:07:29
34.66.214.196	attackbots	Dec 9 07:46:50 server sshd\[11251\]: Invalid user test from 34.66.214.196 Dec 9 07:46:50 server sshd\[11251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.214.66.34.bc.googleusercontent.com Dec 9 07:46:52 server sshd\[11251\]: Failed password for invalid user test from 34.66.214.196 port 37376 ssh2 Dec 9 07:55:43 server sshd\[13767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.214.66.34.bc.googleusercontent.com user=daemon Dec 9 07:55:45 server sshd\[13767\]: Failed password for daemon from 34.66.214.196 port 51370 ssh2 ...	2019-12-09 14:20:33
123.13.210.89	attackbots	Dec 9 07:39:00 dedicated sshd[15586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.210.89 user=root Dec 9 07:39:02 dedicated sshd[15586]: Failed password for root from 123.13.210.89 port 51404 ssh2	2019-12-09 14:48:01
14.177.66.82	attackspambots	Unauthorized connection attempt detected from IP address 14.177.66.82 to port 445	2019-12-09 14:16:34
84.210.78.77	attack	Telnetd brute force attack detected by fail2ban	2019-12-09 14:21:57
129.211.24.104	attackbotsspam	Dec 9 07:05:42 [host] sshd[32488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.104 user=root Dec 9 07:05:44 [host] sshd[32488]: Failed password for root from 129.211.24.104 port 41816 ssh2 Dec 9 07:12:52 [host] sshd[423]: Invalid user 789+ from 129.211.24.104	2019-12-09 14:23:42
109.194.54.126	attackbotsspam	Dec 8 19:58:37 php1 sshd\[26693\]: Invalid user shikasyo from 109.194.54.126 Dec 8 19:58:37 php1 sshd\[26693\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Dec 8 19:58:38 php1 sshd\[26693\]: Failed password for invalid user shikasyo from 109.194.54.126 port 42724 ssh2 Dec 8 20:04:10 php1 sshd\[27390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 user=root Dec 8 20:04:12 php1 sshd\[27390\]: Failed password for root from 109.194.54.126 port 48770 ssh2	2019-12-09 14:17:05
49.88.112.116	attack	Dec 9 07:03:54 OPSO sshd\[7014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Dec 9 07:03:56 OPSO sshd\[7014\]: Failed password for root from 49.88.112.116 port 24353 ssh2 Dec 9 07:03:58 OPSO sshd\[7014\]: Failed password for root from 49.88.112.116 port 24353 ssh2 Dec 9 07:04:01 OPSO sshd\[7014\]: Failed password for root from 49.88.112.116 port 24353 ssh2 Dec 9 07:04:58 OPSO sshd\[7289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root	2019-12-09 14:19:46
190.221.81.6	attackspam	2019-12-09T06:03:50.546890abusebot-7.cloudsearch.cf sshd\[23621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.81.6 user=root	2019-12-09 14:28:38
118.143.198.3	attack	Dec 9 06:29:02 srv206 sshd[26423]: Invalid user ching from 118.143.198.3 Dec 9 06:29:02 srv206 sshd[26423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.143.198.3 Dec 9 06:29:02 srv206 sshd[26423]: Invalid user ching from 118.143.198.3 Dec 9 06:29:04 srv206 sshd[26423]: Failed password for invalid user ching from 118.143.198.3 port 41832 ssh2 ...	2019-12-09 13:56:13

最近上报的IP列表

36.104.144.12	134.175.92.233	129.211.60.4	27.83.170.191
100.244.185.67	46.41.139.155	48.129.136.43	45.14.150.140
61.213.207.126	95.202.174.175	155.216.184.251	70.50.24.207
225.243.19.69	51.202.32.216	216.151.248.24	240.200.157.65
242.156.213.185	108.134.241.224	195.101.87.204	173.255.80.127

IP	类型	评论内容	时间
222.186.175.182	attackspambots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Failed password for root from 222.186.175.182 port 7644 ssh2 Failed password for root from 222.186.175.182 port 7644 ssh2 Failed password for root from 222.186.175.182 port 7644 ssh2 Failed password for root from 222.186.175.182 port 7644 ssh2	2019-12-09 14:13:46
200.54.255.253	attackbotsspam	$f2bV_matches	2019-12-09 14:00:41
118.24.158.42	attackbots	Dec 8 20:08:55 kapalua sshd\[11750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 user=root Dec 8 20:08:57 kapalua sshd\[11750\]: Failed password for root from 118.24.158.42 port 36028 ssh2 Dec 8 20:15:10 kapalua sshd\[12489\]: Invalid user manit from 118.24.158.42 Dec 8 20:15:10 kapalua sshd\[12489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42 Dec 8 20:15:12 kapalua sshd\[12489\]: Failed password for invalid user manit from 118.24.158.42 port 35548 ssh2	2019-12-09 14:15:25
128.199.95.163	attack	leo_www	2019-12-09 14:46:41
54.39.196.199	attack	Dec 9 06:10:56 web8 sshd\[4969\]: Invalid user Elephant@123 from 54.39.196.199 Dec 9 06:10:56 web8 sshd\[4969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.196.199 Dec 9 06:10:58 web8 sshd\[4969\]: Failed password for invalid user Elephant@123 from 54.39.196.199 port 51646 ssh2 Dec 9 06:16:39 web8 sshd\[7700\]: Invalid user jawa from 54.39.196.199 Dec 9 06:16:39 web8 sshd\[7700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.196.199	2019-12-09 14:18:24
182.176.228.149	attack	Unauthorized connection attempt detected from IP address 182.176.228.149 to port 445	2019-12-09 14:07:29
34.66.214.196	attackbots	Dec 9 07:46:50 server sshd\[11251\]: Invalid user test from 34.66.214.196 Dec 9 07:46:50 server sshd\[11251\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.214.66.34.bc.googleusercontent.com Dec 9 07:46:52 server sshd\[11251\]: Failed password for invalid user test from 34.66.214.196 port 37376 ssh2 Dec 9 07:55:43 server sshd\[13767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.214.66.34.bc.googleusercontent.com user=daemon Dec 9 07:55:45 server sshd\[13767\]: Failed password for daemon from 34.66.214.196 port 51370 ssh2 ...	2019-12-09 14:20:33
123.13.210.89	attackbots	Dec 9 07:39:00 dedicated sshd[15586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.210.89 user=root Dec 9 07:39:02 dedicated sshd[15586]: Failed password for root from 123.13.210.89 port 51404 ssh2	2019-12-09 14:48:01
14.177.66.82	attackspambots	Unauthorized connection attempt detected from IP address 14.177.66.82 to port 445	2019-12-09 14:16:34
84.210.78.77	attack	Telnetd brute force attack detected by fail2ban	2019-12-09 14:21:57
129.211.24.104	attackbotsspam	Dec 9 07:05:42 [host] sshd[32488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.104 user=root Dec 9 07:05:44 [host] sshd[32488]: Failed password for root from 129.211.24.104 port 41816 ssh2 Dec 9 07:12:52 [host] sshd[423]: Invalid user 789+ from 129.211.24.104	2019-12-09 14:23:42
109.194.54.126	attackbotsspam	Dec 8 19:58:37 php1 sshd\[26693\]: Invalid user shikasyo from 109.194.54.126 Dec 8 19:58:37 php1 sshd\[26693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 Dec 8 19:58:38 php1 sshd\[26693\]: Failed password for invalid user shikasyo from 109.194.54.126 port 42724 ssh2 Dec 8 20:04:10 php1 sshd\[27390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.194.54.126 user=root Dec 8 20:04:12 php1 sshd\[27390\]: Failed password for root from 109.194.54.126 port 48770 ssh2	2019-12-09 14:17:05
49.88.112.116	attack	Dec 9 07:03:54 OPSO sshd\[7014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root Dec 9 07:03:56 OPSO sshd\[7014\]: Failed password for root from 49.88.112.116 port 24353 ssh2 Dec 9 07:03:58 OPSO sshd\[7014\]: Failed password for root from 49.88.112.116 port 24353 ssh2 Dec 9 07:04:01 OPSO sshd\[7014\]: Failed password for root from 49.88.112.116 port 24353 ssh2 Dec 9 07:04:58 OPSO sshd\[7289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.116 user=root	2019-12-09 14:19:46
190.221.81.6	attackspam	2019-12-09T06:03:50.546890abusebot-7.cloudsearch.cf sshd\[23621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.81.6 user=root	2019-12-09 14:28:38
118.143.198.3	attack	Dec 9 06:29:02 srv206 sshd[26423]: Invalid user ching from 118.143.198.3 Dec 9 06:29:02 srv206 sshd[26423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.143.198.3 Dec 9 06:29:02 srv206 sshd[26423]: Invalid user ching from 118.143.198.3 Dec 9 06:29:04 srv206 sshd[26423]: Failed password for invalid user ching from 118.143.198.3 port 41832 ssh2 ...	2019-12-09 13:56:13