JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 200.10.29.236

200.10.29.236 was found in our database!

This IP was reported 694 times. Confidence of Abuse is 100%: ?

100%

ISP	SUPER REDES S.A.S
Usage Type	Fixed Line ISP
ASN	AS270075
Hostname(s)	static-p4-200-10-29-236.superredes.net
Domain Name	superredes.co
Country	🇨🇴 Colombia
City	Villavicencio, Meta Department

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 200.10.29.236

Whois 200.10.29.236

IP Abuse Reports for 200.10.29.236:

This IP address has been reported a total of 694 times from 371 distinct sources. 200.10.29.236 was first reported on April 26th 2026, and the most recent report was 49 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 psh-ack	2026-05-14 15:12:13 (2 weeks ago)	brute-forced three credential pairs using libssh 0.9.6: 345gs5662d34/345gs5662d34, root/3245gs5662d3 ... show more brute-forced three credential pairs using libssh 0.9.6: 345gs5662d34/345gs5662d34, root/3245gs5662d34, root/gc$gL0b@l. Gained shell access and executed SSH key-based persistence: removed existing .ssh directory, created new one, and injected public key (RSA AAAAB3NzaC1yc2EAAAABJQAAAQEArDp4cun2lhr4KUhBGE7VvAcwdli2a8dbnrTOrbMz1+5O73fcBOx8NVbUT0bUanUV9tJ2/9p7+vD0EpZ3Tz/+0kX34uAx1RV/75GVOmNx+9EuWOnvNoaJe0QXx). Secondary command attempted to remove immutable file attributes using chattr -ia on .ssh directory, followed by lockr command execution—lockr is a credential-stealing trojan commonly deployed post-compromise for harvesting SSH keys and authorized_keys files. Attack chain shows standard persistence layer setup followed by attempted malware execution. Three-session span (2.8 seconds) indicates automated scripted attack. No lateral movement or exfiltration observed in captured session data. show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-05-14 15:10:15 (2 weeks ago)	May 14 09:08:34 b146-50 sshd[1407989]: Failed password for root from 200.10.29.236 port 46452 ssh2 M ... show more May 14 09:08:34 b146-50 sshd[1407989]: Failed password for root from 200.10.29.236 port 46452 ssh2 May 14 09:10:13 b146-50 sshd[1408058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 09:10:14 b146-50 sshd[1408058]: Failed password for root from 200.10.29.236 port 46928 ssh2 ... show less	Brute-Force SSH
🇩🇪 ipcop.net	2026-05-14 14:57:14 (2 weeks ago)	2026-05-14T16:51:44.932015+02:00 router01.bongen-auto.de sshd[1102863]: Disconnected from authentica ... show more 2026-05-14T16:51:44.932015+02:00 router01.bongen-auto.de sshd[1102863]: Disconnected from authenticating user root 200.10.29.236 port 33390 [preauth] 2026-05-14T16:53:09.151690+02:00 router01.bongen-auto.de sshd[1157462]: Disconnected from authenticating user root 200.10.29.236 port 51078 [preauth] 2026-05-14T16:54:30.072147+02:00 router01.bongen-auto.de sshd[1157621]: Disconnected from authenticating user root 200.10.29.236 port 55706 [preauth] 2026-05-14T16:55:50.872727+02:00 router01.bongen-auto.de sshd[1157820]: Disconnected from authenticating user root 200.10.29.236 port 39452 [preauth] 2026-05-14T16:57:13.328681+02:00 router01.bongen-auto.de sshd[1158055]: Disconnected from authenticating user root 200.10.29.236 port 53974 [preauth] show less	Brute-Force
🇳🇱 b4shnhawx	2026-05-14 14:55:19 (2 weeks ago)	2026-05-14T14:53:56.780226+00:00 r4ym0nd sshd-session[3503466]: pam_unix(sshd:auth): authentication ... show more 2026-05-14T14:53:56.780226+00:00 r4ym0nd sshd-session[3503466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root 2026-05-14T14:53:59.276941+00:00 r4ym0nd sshd-session[3503466]: Failed password for root from 200.10.29.236 port 33438 ssh2 2026-05-14T14:55:16.702005+00:00 r4ym0nd sshd-session[3503535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root 2026-05-14T14:55:18.642126+00:00 r4ym0nd sshd-session[3503535]: Failed password for root from 200.10.29.236 port 56252 ssh2 ... show less	Brute-Force SSH
🇺🇸 paradoxnetworks	2026-05-14 13:35:03 (2 weeks ago)	2026-05-14T13:34:25.869290+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1049523]: Failed password for ro ... show more 2026-05-14T13:34:25.869290+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1049523]: Failed password for root from 200.10.29.236 port 44728 ssh2 2026-05-14T13:35:01.188446+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1049616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root 2026-05-14T13:35:02.954516+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1049616]: Failed password for root from 200.10.29.236 port 35364 ssh2 ... show less	Brute-Force SSH
🇺🇸 Ukn0w1t	2026-05-14 13:34:18 (2 weeks ago)	2026-05-14T13:33:39.022798+00:00 edge-mini sshd[252063]: Failed password for root from 200.10.29.236 ... show more 2026-05-14T13:33:39.022798+00:00 edge-mini sshd[252063]: Failed password for root from 200.10.29.236 port 37716 ssh2 2026-05-14T13:34:15.575504+00:00 edge-mini sshd[252073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root 2026-05-14T13:34:17.497013+00:00 edge-mini sshd[252073]: Failed password for root from 200.10.29.236 port 41396 ssh2 ... show less	Brute-Force SSH
🇩🇪 groupnet.at	2026-05-14 12:56:15 (2 weeks ago)	May 14 14:54:09 routing0302 sshd[1699511]: Failed password for root from 200.10.29.236 port 57162 ss ... show more May 14 14:54:09 routing0302 sshd[1699511]: Failed password for root from 200.10.29.236 port 57162 ssh2 May 14 14:56:12 routing0302 sshd[1700088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 14:56:14 routing0302 sshd[1700088]: Failed password for root from 200.10.29.236 port 42398 ssh2 ... show less	Brute-Force SSH
🇩🇪 groupnet.at	2026-05-14 12:40:05 (2 weeks ago)	May 14 14:38:05 routing0302 sshd[1697662]: pam_unix(sshd:auth): authentication failure; logname= uid ... show more May 14 14:38:05 routing0302 sshd[1697662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 14:38:07 routing0302 sshd[1697662]: Failed password for root from 200.10.29.236 port 38524 ssh2 May 14 14:40:05 routing0302 sshd[1697934]: Invalid user linux from 200.10.29.236 port 35854 ... show less	Brute-Force SSH
🇻🇳 haduybaochau	2026-05-14 12:33:52 (2 weeks ago)	May 14 12:31:49 gencloud-1771673419 sshd[3542229]: pam_unix(sshd:auth): authentication failure; logn ... show more May 14 12:31:49 gencloud-1771673419 sshd[3542229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 12:31:51 gencloud-1771673419 sshd[3542229]: Failed password for root from 200.10.29.236 port 52680 ssh2 May 14 12:33:48 gencloud-1771673419 sshd[3542232]: Invalid user pakchoi from 200.10.29.236 port 55182 May 14 12:33:48 gencloud-1771673419 sshd[3542232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 May 14 12:33:50 gencloud-1771673419 sshd[3542232]: Failed password for invalid user pakchoi from 200.10.29.236 port 55182 ssh2 ... show less	Brute-Force SSH Port Scan
🇫🇷 binner	2026-05-14 12:25:15 (2 weeks ago)	SSH brute-force attack detected by Fail2ban	Brute-Force SSH
🇩🇪 groupnet.at	2026-05-14 12:24:09 (2 weeks ago)	May 14 14:22:07 routing0302 sshd[1695797]: Failed password for root from 200.10.29.236 port 58198 ss ... show more May 14 14:22:07 routing0302 sshd[1695797]: Failed password for root from 200.10.29.236 port 58198 ssh2 May 14 14:24:06 routing0302 sshd[1695805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 14:24:08 routing0302 sshd[1695805]: Failed password for root from 200.10.29.236 port 49802 ssh2 ... show less	Brute-Force SSH
🇩🇪 Onno Achterndiek	2026-05-14 12:23:26 (2 weeks ago)	2026-05-14T14:21:21.882178+02:00 web3 sshd-session[142727]: pam_unix(sshd:auth): authentication fail ... show more 2026-05-14T14:21:21.882178+02:00 web3 sshd-session[142727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root 2026-05-14T14:21:23.710647+02:00 web3 sshd-session[142727]: Failed password for root from 200.10.29.236 port 39982 ssh2 2026-05-14T14:23:22.054506+02:00 web3 sshd-session[142757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root 2026-05-14T14:23:24.328648+02:00 web3 sshd-session[142757]: Failed password for root from 200.10.29.236 port 54728 ssh2 show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-14 12:21:32 (2 weeks ago)	(sshd) Failed SSH login from 200.10.29.236 (CO/-/static-p4-200-10-29-236.superredes.net): 5 in the l ... show more (sshd) Failed SSH login from 200.10.29.236 (CO/-/static-p4-200-10-29-236.superredes.net): 5 in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_SSHD; Logs: May 14 07:16:44 15292 sshd[24406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 07:16:45 15292 sshd[24406]: Failed password for root from 200.10.29.236 port 48400 ssh2 May 14 07:19:22 15292 sshd[24860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root May 14 07:19:24 15292 sshd[24860]: Failed password for root from 200.10.29.236 port 40138 ssh2 May 14 07:21:22 15292 sshd[25173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.10.29.236 user=root show less	Brute-Force SSH
🇺🇸 FherdezSoft-TechMX	2026-05-14 11:59:01 (2 weeks ago)	Invalid user linux from 200.10.29.236 port 37768	Brute-Force SSH
🇺🇸 FherdezSoft-TechMX	2026-05-14 11:59:01 (2 weeks ago)	Invalid user linux from 200.10.29.236 port 37768	Brute-Force SSH

Showing 646 to 660 of 694 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.172.190.116

🇺🇸 216.75.132.181

🇳🇱 172.94.9.136

🇻🇳 116.101.79.249

🇺🇸 103.203.57.17

🇮🇳 103.38.182.49

🇵🇱 89.67.246.166

🇬🇧 51.75.161.33

🇪🇸 46.24.47.94

🇬🇧 35.203.211.107

🇺🇸 216.25.89.156

🇨🇳 203.110.233.225

🇹🇼 198.235.24.36

🇮🇹 185.77.50.215

🇩🇪 167.94.145.29

🇻🇪 154.59.56.184

🇰🇷 125.139.87.30

🇨🇳 101.249.62.5

🇺🇸 96.78.175.41

🇱🇹 81.30.98.144