95.103.45.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Slovakia

Internet Service Provider: Slovak Telecom A. S.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	DATE:2020-05-04 12:37:51,IP:95.103.45.29,MATCHES:10,PORT:ssh	2020-05-04 19:38:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.103.45.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65061
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.103.45.29.			IN	A

;; AUTHORITY SECTION:
.			481	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050400 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 04 19:38:52 CST 2020
;; MSG SIZE  rcvd: 116

Host info

29.45.103.95.in-addr.arpa domain name pointer bband-dyn29.95-103-45.t-com.sk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.45.103.95.in-addr.arpa	name = bband-dyn29.95-103-45.t-com.sk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.120.106.254	attackbots	Oct 4 17:48:22 wbs sshd\[6651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 user=root Oct 4 17:48:24 wbs sshd\[6651\]: Failed password for root from 220.120.106.254 port 36266 ssh2 Oct 4 17:52:48 wbs sshd\[7000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 user=root Oct 4 17:52:50 wbs sshd\[7000\]: Failed password for root from 220.120.106.254 port 51712 ssh2 Oct 4 17:57:11 wbs sshd\[7375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 user=root	2019-10-05 12:02:14
101.140.53.220	attackspam	Unauthorised access (Oct 4) SRC=101.140.53.220 LEN=40 TTL=53 ID=7472 TCP DPT=8080 WINDOW=26470 SYN Unauthorised access (Oct 4) SRC=101.140.53.220 LEN=40 TTL=53 ID=57628 TCP DPT=8080 WINDOW=26470 SYN Unauthorised access (Oct 3) SRC=101.140.53.220 LEN=40 TTL=53 ID=4496 TCP DPT=8080 WINDOW=26470 SYN Unauthorised access (Oct 1) SRC=101.140.53.220 LEN=40 TTL=53 ID=42773 TCP DPT=8080 WINDOW=26470 SYN	2019-10-05 08:16:11
103.59.200.14	attack	SPAM Delivery Attempt	2019-10-05 12:07:39
129.204.58.180	attackspambots	Oct 4 14:21:08 php1 sshd\[18651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.58.180 user=root Oct 4 14:21:10 php1 sshd\[18651\]: Failed password for root from 129.204.58.180 port 34609 ssh2 Oct 4 14:25:45 php1 sshd\[19216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.58.180 user=root Oct 4 14:25:46 php1 sshd\[19216\]: Failed password for root from 129.204.58.180 port 54483 ssh2 Oct 4 14:30:12 php1 sshd\[19764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.58.180 user=root	2019-10-05 08:35:01
206.41.177.53	attack	Looking for resource vulnerabilities	2019-10-05 12:10:46
172.105.219.236	attackbots	119/tcp 119/tcp 119/tcp... [2019-08-04/10-04]78pkt,1pt.(tcp)	2019-10-05 08:32:57
117.50.94.229	attack	Oct 4 17:50:37 kapalua sshd\[14619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 4 17:50:38 kapalua sshd\[14619\]: Failed password for root from 117.50.94.229 port 17994 ssh2 Oct 4 17:53:58 kapalua sshd\[14948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root Oct 4 17:54:00 kapalua sshd\[14948\]: Failed password for root from 117.50.94.229 port 44510 ssh2 Oct 4 17:57:12 kapalua sshd\[15209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.94.229 user=root	2019-10-05 12:02:55
118.140.117.59	attack	Oct 5 05:56:57 vps647732 sshd[32102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.140.117.59 Oct 5 05:56:59 vps647732 sshd[32102]: Failed password for invalid user Motdepasse123$ from 118.140.117.59 port 44324 ssh2 ...	2019-10-05 12:11:02
185.143.221.39	attack	Port scan	2019-10-05 08:18:11
118.89.48.251	attack	Oct 5 00:03:36 venus sshd\[21386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.48.251 user=root Oct 5 00:03:38 venus sshd\[21386\]: Failed password for root from 118.89.48.251 port 33786 ssh2 Oct 5 00:07:45 venus sshd\[21430\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.48.251 user=root ...	2019-10-05 08:18:41
35.240.143.198	attack	WordPress wp-login brute force :: 35.240.143.198 0.132 BYPASS [05/Oct/2019:13:57:11 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-05 12:05:34
77.247.110.17	attackbots	\[2019-10-04 23:57:00\] NOTICE\[1948\] chan_sip.c: Registration from '"350" \' failed for '77.247.110.17:5114' - Wrong password \[2019-10-04 23:57:00\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-04T23:57:00.384-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="350",SessionID="0x7f1e1cbe03b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.17/5114",Challenge="2dbb3155",ReceivedChallenge="2dbb3155",ReceivedHash="139cc10be3bc73b453cab5d490fabc28" \[2019-10-04 23:57:00\] NOTICE\[1948\] chan_sip.c: Registration from '"350" \' failed for '77.247.110.17:5114' - Wrong password \[2019-10-04 23:57:00\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-04T23:57:00.495-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="350",SessionID="0x7f1e1c3aac08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.2	2019-10-05 12:08:33
106.12.27.11	attackbotsspam	Oct 5 01:47:57 SilenceServices sshd[2832]: Failed password for root from 106.12.27.11 port 54206 ssh2 Oct 5 01:51:27 SilenceServices sshd[3824]: Failed password for root from 106.12.27.11 port 56928 ssh2	2019-10-05 08:19:45
111.231.138.136	attack	Oct 5 05:39:34 areeb-Workstation sshd[6538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.138.136 Oct 5 05:39:36 areeb-Workstation sshd[6538]: Failed password for invalid user Contrasena1qaz from 111.231.138.136 port 33034 ssh2 ...	2019-10-05 08:14:07
162.62.16.102	attackbotsspam	514/tcp 9030/tcp 119/tcp... [2019-08-06/10-04]13pkt,12pt.(tcp),1pt.(udp)	2019-10-05 08:26:09

Recently Reported IPs

245.173.126.135	140.143.157.236	162.243.139.196	47.139.75.243
27.61.103.48	14.237.10.28	1.35.179.93	223.9.97.215
14.167.243.208	59.42.6.112	165.22.205.192	185.107.83.71
54.201.133.209	123.56.71.182	217.112.101.86	27.2.72.23
14.102.126.154	172.105.125.236	103.108.79.6	54.36.166.190