AbuseIPDB » 155.254.29.166

Check an IP Address, Domain Name, or Subnet

e.g. 18.208.126.232, microsoft.com, or 5.188.10.0/24

155.254.29.166 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 62%: ?

62%

ISP	Tier.Net Technologies LLC
Usage Type	Data Center/Web Hosting/Transit
Domain Name	tier.net
Country	United States of America
City	Charlotte, North Carolina

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 155.254.29.166

Whois 155.254.29.166

IP Abuse Reports for 155.254.29.166:

This IP address has been reported a total of 50 times from 21 distinct sources. 155.254.29.166 was first reported on July 14th 2021, and the most recent report was 3 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 3 weeks ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	Date	Comment	Categories
Aidar Kamalov	16 Jul 2022	Jul 16 13:31:56 sjc-sip-ulap-net /usr/sbin/kamailio[2156456]: NOTICE: {REGISTER 1 2 REGISTER e5f4a69 ... show moreJul 16 13:31:56 sjc-sip-ulap-net /usr/sbin/kamailio[2156456]: NOTICE: {REGISTER 1 2 REGISTER e5f4a690050697e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code: -3) fd=155.248.212.156, adu=sip:155.248.212.156:5060, aa=MD5, ar=155.248.212.156, au=446, ad=, aU=446, [email protected] Jul 16 13:31:56 sjc-sip-ulap-net /usr/sbin/kamailio[2156452]: NOTICE: {REGISTER 1 3 REGISTER e5f4a690050697e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code: -3) fd=155.248.212.156, adu=sip:155.248.212.156:5060, aa=MD5, ar=155.248.212.156, au=446, ad=, aU=446, [email protected] Jul 16 13:37:32 sjc-sip-ulap-net /usr/sbin/kamailio[2156458]: NOTICE: {REGISTER 1 1 REGISTER e5f4a879475071e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code: -5) fd=155.248.212.156, adu=<null>, aa=<null>, ar=<null>, au=<null>, ad=<null>, aU=<null>, [email protected] Jul 16 13:37:32 sjc-sip-ulap-net /usr/sbin/kamailio[2156455]: NOTICE: {REGISTER 1 2 REGISTER e5f4a879475071e4f7a} < ... show less	Fraud VoIP
Inaxas AG	16 Jul 2022	Inaxas Security for Asterisk banned IP after port scan/brute force register on Port 5060. Il ... show moreInaxas Security for Asterisk banned IP after port scan/brute force register on Port 5060. Ilegitimate register attempt: 3 times between: 16/07/2022 - 15:34 and 16/07/2022 - 15:44. Unauthorized dial attempt: 2 times between: 16/07/2022 - 15:35 and 16/07/2022 - 15:46. show less	Fraud VoIP Port Scan Brute-Force
www.rentelwifi.com	16 Jul 2022	VoIP Brute Force Attack	Fraud VoIP Brute-Force
Aidar Kamalov	16 Jul 2022	Jul 16 13:26:57 dubai /usr/sbin/kamailio[2279982]: NOTICE: {REGISTER 1 2 REGISTER e5f4a947127572e4f7 ... show moreJul 16 13:26:57 dubai /usr/sbin/kamailio[2279982]: NOTICE: {REGISTER 1 2 REGISTER e5f4a947127572e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code: -3) fd=139.185.36.153, adu=sip:139.185.36.153:5060, aa=MD5, ar=139.185.36.153, au=445, ad=, aU=445, [email protected] Jul 16 13:26:58 dubai /usr/sbin/kamailio[2279975]: NOTICE: {REGISTER 1 3 REGISTER e5f4a947127572e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code: -3) fd=139.185.36.153, adu=sip:139.185.36.153:5060, aa=MD5, ar=139.185.36.153, au=445, ad=, aU=445, [email protected] Jul 16 13:32:20 dubai /usr/sbin/kamailio[2279977]: NOTICE: {REGISTER 1 1 REGISTER e5f4a29713202e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code: -5) fd=139.185.36.153, adu=<null>, aa=<null>, ar=<null>, au=<null>, ad=<null>, aU=<null>, [email protected] Jul 16 13:32:20 dubai /usr/sbin/kamailio[2279978]: NOTICE: {REGISTER 1 2 REGISTER e5f4a29713202e4f7a} <script>: AUTH: REGISTER FAILED from 155.254.29.166 (code ... show less	Fraud VoIP
mc4bbs	16 Jul 2022	[2022-07-16 09:32:15] NOTICE[1232] chan_sip.c: Registration from '<sip:[email protected]:5060>& ... show more[2022-07-16 09:32:15] NOTICE[1232] chan_sip.c: Registration from '<sip:[email protected]:5060>' failed for '155.254.29.166:64877' - Wrong password [2022-07-16 09:32:15] SECURITY[1266] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-16T09:32:15.140-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="446",SessionID="0x7f4d34047bf0",LocalAddress="IPV4/UDP/72.80.100.10/5060",RemoteAddress="IPV4/UDP/155.254.29.166/64877",Challenge="4e82fda5",ReceivedChallenge="4e82fda5",ReceivedHash="06114edb3bab5c0423d1f299d86d4cea" [2022-07-16 09:37:48] NOTICE[1232] chan_sip.c: Registration from '<sip:[email protected]:5060>' failed for '155.254.29.166:54093' - Wrong password [2022-07-16 09:37:48] SECURITY[1266] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-16T09:37:48.638-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="447",SessionID="0x7f4d34026120",LocalAddress="IPV4/UDP/72.80.100.10/5060",RemoteAddress="IPV4/UDP/155.254.29.166/5 ... show less	Fraud VoIP Hacking
sgofferj	16 Jul 2022	Attack attempt on SIP server	Fraud VoIP Hacking Brute-Force
MindSolve	16 Jul 2022	2022-07-16 15:32:02.637055 [WARNING] sofia_reg.c:1798 SIP auth challenge (REGISTER) on sofia profile ... show more2022-07-16 15:32:02.637055 [WARNING] sofia_reg.c:1798 SIP auth challenge (REGISTER) on sofia profile 'internal' for [[email protected]] from ip 155.254.29.166 show less	Fraud VoIP Hacking Brute-Force
ip.dilenatech.com	16 Jul 2022	2022-07-16 15:31:21,048 fail2ban.actions [1097]: NOTICE [asterisk-challenge] Ban 155.254.29. ... show more2022-07-16 15:31:21,048 fail2ban.actions [1097]: NOTICE [asterisk-challenge] Ban 155.254.29.166 ... show less	Brute-Force SSH
Sklurk	05 Jul 2022		Web App Attack
10dencehispahard SL	05 Jul 2022	Suspicious activity detected by Modsecurity [Application attack SQLI]	SQL Injection Web App Attack
mc4bbs	03 Jul 2022	[2022-07-03 13:06:14] NOTICE[1206] chan_sip.c: Registration from '<sip:[email protected]:5060> ... show more[2022-07-03 13:06:14] NOTICE[1206] chan_sip.c: Registration from '<sip:[email protected]:5060>' failed for '155.254.29.166:53262' - Wrong password [2022-07-03 13:06:14] SECURITY[1249] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T13:06:14.894-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2347",SessionID="0x7f1708154930",LocalAddress="IPV4/UDP/72.80.100.10/5060",RemoteAddress="IPV4/UDP/155.254.29.166/53262",Challenge="02be4505",ReceivedChallenge="02be4505",ReceivedHash="7619bd0ef047fdbfa78418c8a7439019" [2022-07-03 13:13:20] NOTICE[1206] chan_sip.c: Registration from '<sip:[email protected]:5060>' failed for '155.254.29.166:54705' - Wrong password [2022-07-03 13:13:20] SECURITY[1249] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T13:13:20.569-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2348",SessionID="0x7f1708041090",LocalAddress="IPV4/UDP/72.80.100.10/5060",RemoteAddress="IPV4/UDP/155.254.29.1 ... show less	Fraud VoIP Hacking
6GNet.pl	03 Jul 2022	[2022-07-03 17:14:22] SECURITY[3681] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="20 ... show more[2022-07-03 17:14:22] SECURITY[3681] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T17:14:22.779+0200",Severity="Error",Service="SIP",EventVersion="2",AccountID="2331",SessionID="0x7fad402f3030",LocalAddress="IPV4/UDP/64.18.129.55/5060",RemoteAddress="IPV4/UDP/155.254.29.166/51526",Challenge="57570976",ReceivedChallenge="57570976",ReceivedHash="8986ce082541744d5e44844faa3ab791" [2022-07-03 17:21:27] SECURITY[3681] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T17:21:27.828+0200",Severity="Error",Service="SIP",EventVersion="2",AccountID="2332",SessionID="0x7fad4019ab80",LocalAddress="IPV4/UDP/64.18.129.55/5060",RemoteAddress="IPV4/UDP/155.254.29.166/54300",Challenge="088ba13c",ReceivedChallenge="088ba13c",ReceivedHash="fba75a9563f0e93ebca54e09e4638797" [2022-07-03 17:28:32] SECURITY[3681] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T17:28:32.213+0200",Severity="Error",Service="SIP",EventVersion="2",AccountID="2 ... show less	Fraud VoIP Brute-Force
daru ittek	03 Jul 2022	[Jul 3 22:12:04] NOTICE[3259175] chan_sip.c: Registration from '<sip:[email protected]>' f ... show more[Jul 3 22:12:04] NOTICE[3259175] chan_sip.c: Registration from '<sip:[email protected]>' failed for '155.254.29.166:64305' - Wrong password [Jul 3 22:12:04] SECURITY[3259185] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T22:12:04.415+0700",Severity="Error",Service="SIP",EventVersion="2",AccountID="2330",SessionID="0x7f22f034a2a0",LocalAddress="IPV4/UDP/202.10.57.3/5060",RemoteAddress="IPV4/UDP/155.254.29.166/64305",Challenge="3a74c95d",ReceivedChallenge="3a74c95d",ReceivedHash="3a858e7631a52ead773eeba0930898b6" [Jul 3 22:19:09] NOTICE[3259175] chan_sip.c: Registration from '<sip:[email protected]>' failed for '155.254.29.166:62599' - Wrong password [Jul 3 22:19:09] SECURITY[3259185] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T22:19:09.744+0700",Severity="Error",Service="SIP",EventVersion="2",AccountID="2331",SessionID="0x7f22f001ac50",LocalAddress="IPV4/UDP/202.10.57.3/5060",RemoteAddress="IPV4/UDP/155.254.29.166/62599",Challenge= ... show less	Brute-Force SSH
Anonymous	03 Jul 2022	Brute force attempt on PBX	Brute-Force Web App Attack
mc4bbs	03 Jul 2022	[2022-07-03 11:13:24] NOTICE[1206] chan_sip.c: Registration from '<sip:[email protected]:5060> ... show more[2022-07-03 11:13:24] NOTICE[1206] chan_sip.c: Registration from '<sip:[email protected]:5060>' failed for '155.254.29.166:53323' - Wrong password [2022-07-03 11:13:24] SECURITY[1249] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T11:13:24.468-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2331",SessionID="0x7f1708041090",LocalAddress="IPV4/UDP/72.80.100.10/5060",RemoteAddress="IPV4/UDP/155.254.29.166/53323",Challenge="50258a22",ReceivedChallenge="50258a22",ReceivedHash="9ae2eb8dc9e65311d2ecbd217d850018" [2022-07-03 11:20:29] NOTICE[1206] chan_sip.c: Registration from '<sip:[email protected]:5060>' failed for '155.254.29.166:56000' - Wrong password [2022-07-03 11:20:29] SECURITY[1249] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2022-07-03T11:20:29.236-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2332",SessionID="0x7f1708160e80",LocalAddress="IPV4/UDP/72.80.100.10/5060",RemoteAddress="IPV4/UDP/155.254.29.1 ... show less	Fraud VoIP Hacking