213.155.29.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ukraine

运营商(isp): Tehnologii Budushego LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	SSH/22 MH Probe, BF, Hack -	2020-10-07 06:04:09
attackspam	SSH/22 MH Probe, BF, Hack -	2020-10-06 22:18:06
attackbotsspam	Oct 6 11:11:39 itv-usvr-01 sshd[5468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.155.29.104 user=root Oct 6 11:11:41 itv-usvr-01 sshd[5468]: Failed password for root from 213.155.29.104 port 37344 ssh2 Oct 6 11:15:24 itv-usvr-01 sshd[5633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.155.29.104 user=root Oct 6 11:15:27 itv-usvr-01 sshd[5633]: Failed password for root from 213.155.29.104 port 43808 ssh2 Oct 6 11:19:06 itv-usvr-01 sshd[5808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.155.29.104 user=root Oct 6 11:19:09 itv-usvr-01 sshd[5808]: Failed password for root from 213.155.29.104 port 50276 ssh2	2020-10-06 14:01:33

类型

评论内容

时间

attackbotsspam

SSH/22 MH Probe, BF, Hack -

2020-10-07 06:04:09

attackspam

SSH/22 MH Probe, BF, Hack -

2020-10-06 22:18:06

attackbotsspam

Oct  6 11:11:39 itv-usvr-01 sshd[5468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.155.29.104  user=root
Oct  6 11:11:41 itv-usvr-01 sshd[5468]: Failed password for root from 213.155.29.104 port 37344 ssh2
Oct  6 11:15:24 itv-usvr-01 sshd[5633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.155.29.104  user=root
Oct  6 11:15:27 itv-usvr-01 sshd[5633]: Failed password for root from 213.155.29.104 port 43808 ssh2
Oct  6 11:19:06 itv-usvr-01 sshd[5808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.155.29.104  user=root
Oct  6 11:19:09 itv-usvr-01 sshd[5808]: Failed password for root from 213.155.29.104 port 50276 ssh2

2020-10-06 14:01:33

相同子网IP讨论:

IP	类型	评论内容	时间
213.155.29.1	attack	Dec 13 11:06:27 debian-2gb-nbg1-2 kernel: \[24513120.725330\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.155.29.1 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=14604 PROTO=TCP SPT=42177 DPT=4100 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-13 18:17:59

类型

评论内容

时间

213.155.29.1

attack

Dec 13 11:06:27 debian-2gb-nbg1-2 kernel: \[24513120.725330\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.155.29.1 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=14604 PROTO=TCP SPT=42177 DPT=4100 WINDOW=1024 RES=0x00 SYN URGP=0

2019-12-13 18:17:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.155.29.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50053
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.155.29.104.			IN	A

;; AUTHORITY SECTION:
.			275	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100600 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 06 14:01:27 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

104.29.155.213.in-addr.arpa domain name pointer 104.29.155.213.hosting.ua.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.29.155.213.in-addr.arpa	name = 104.29.155.213.hosting.ua.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
121.229.20.121	attack	$f2bV_matches	2020-05-26 00:40:50
187.8.182.21	attack	May 25 18:37:15 debian-2gb-nbg1-2 kernel: \[12683437.729643\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=187.8.182.21 DST=195.201.40.59 LEN=48 TOS=0x00 PREC=0x00 TTL=111 ID=64686 PROTO=TCP SPT=35987 DPT=9090 WINDOW=65535 RES=0x00 SYN URGP=0	2020-05-26 01:03:06
45.119.83.210	attackbots	May 25 16:29:10 buvik sshd[29546]: Invalid user fe from 45.119.83.210 May 25 16:29:10 buvik sshd[29546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.83.210 May 25 16:29:12 buvik sshd[29546]: Failed password for invalid user fe from 45.119.83.210 port 42628 ssh2 ...	2020-05-26 00:54:19
114.39.163.175	attack	trying to access non-authorized port	2020-05-26 00:47:00
192.241.175.48	attackspambots	May 25 17:57:49 sshd\[31736\]: User root from 192.241.175.48 not allowed because not listed in AllowUsersMay 25 17:57:52 sshd\[31736\]: Failed password for invalid user root from 192.241.175.48 port 35866 ssh2 ...	2020-05-26 00:34:47
180.166.141.58	attackspam	May 25 18:25:52 debian-2gb-nbg1-2 kernel: \[12682755.408941\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.166.141.58 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=237 ID=11359 PROTO=TCP SPT=50029 DPT=63590 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-26 00:34:29
111.231.33.135	attack	May 25 15:45:46 ArkNodeAT sshd\[22994\]: Invalid user hxeadm from 111.231.33.135 May 25 15:45:46 ArkNodeAT sshd\[22994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.33.135 May 25 15:45:48 ArkNodeAT sshd\[22994\]: Failed password for invalid user hxeadm from 111.231.33.135 port 50500 ssh2	2020-05-26 00:44:40
202.146.1.163	attackspambots	Unauthorized connection attempt from IP address 202.146.1.163 on Port 445(SMB)	2020-05-26 01:02:19
217.199.187.67	attackspambots	Automatic report - XMLRPC Attack	2020-05-26 00:50:18
195.54.166.138	attackspam	SmallBizIT.US 6 packets to tcp(1247,1289,3029,12809,33881,50090)	2020-05-26 00:59:10
133.242.231.162	attackspambots	May 25 15:24:42 tuxlinux sshd[33251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root May 25 15:24:44 tuxlinux sshd[33251]: Failed password for root from 133.242.231.162 port 49422 ssh2 May 25 15:24:42 tuxlinux sshd[33251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root May 25 15:24:44 tuxlinux sshd[33251]: Failed password for root from 133.242.231.162 port 49422 ssh2 May 25 15:28:52 tuxlinux sshd[33338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root ...	2020-05-26 00:31:52
212.92.116.76	attackspam	RDP brute forcing (d)	2020-05-26 00:38:18
152.136.128.105	attack	May 25 11:57:34 vlre-nyc-1 sshd\[20486\]: Invalid user admin from 152.136.128.105 May 25 11:57:34 vlre-nyc-1 sshd\[20486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.128.105 May 25 11:57:36 vlre-nyc-1 sshd\[20486\]: Failed password for invalid user admin from 152.136.128.105 port 32393 ssh2 May 25 12:00:23 vlre-nyc-1 sshd\[20521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.128.105 user=root May 25 12:00:25 vlre-nyc-1 sshd\[20521\]: Failed password for root from 152.136.128.105 port 10938 ssh2 ...	2020-05-26 00:48:25
185.190.104.78	attackbotsspam	Unauthorized connection attempt from IP address 185.190.104.78 on Port 445(SMB)	2020-05-26 01:08:00
185.147.215.8	attackspam	\[May 25 21:50:26\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.8:59026' - Wrong password \[May 25 21:50:59\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.8:54587' - Wrong password \[May 25 21:52:42\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.8:49433' - Wrong password \[May 25 21:53:14\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.8:58575' - Wrong password \[May 25 21:54:56\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.8:57918' - Wrong password \[May 25 21:55:27\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.8:50773' - Wrong password \[May 25 21:55:58\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed fo ...	2020-05-26 01:08:32

最近上报的IP列表

158.235.90.235	17.92.245.19	156.49.236.152	5.188.3.105
240.23.242.25	64.227.74.131	27.151.196.236	119.61.19.87
212.58.109.209	118.68.212.131	185.239.242.212	35.238.78.110
192.241.220.144	83.77.14.128	213.152.218.23	192.40.59.230
139.3.253.91	245.181.96.68	255.213.178.161	3.93.109.236