1.55.14.212 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.55.142.12	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 21:39:03
1.55.142.12	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 13:16:12
1.55.142.12	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 06:02:28
1.55.14.10	attackbots	Unauthorized connection attempt from IP address 1.55.14.10 on Port 445(SMB)	2020-08-27 17:58:42
1.55.142.60	attackspambots	Automated report (2020-08-20T11:47:57+08:00). Referrer spam originating from this address detected (anti-crisis-seo.com).	2020-08-20 19:20:48
1.55.14.249	attackbots	1591502164 - 06/07/2020 05:56:04 Host: 1.55.14.249/1.55.14.249 Port: 445 TCP Blocked	2020-06-07 14:17:35
1.55.142.3	attackbotsspam	Attempted connection to port 445.	2020-05-31 19:56:04
1.55.142.99	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 12-03-2020 03:50:08.	2020-03-12 17:03:02
1.55.141.203	attackbots	Port probing on unauthorized port 26	2020-03-09 16:37:36
1.55.145.15	attack	suspicious action Sun, 08 Mar 2020 18:31:16 -0300	2020-03-09 08:21:19
1.55.142.110	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-07 22:24:56
1.55.142.212	attackspambots	Unauthorized connection attempt from IP address 1.55.142.212 on Port 445(SMB)	2020-03-07 00:44:44
1.55.140.83	attackspambots	trying to access non-authorized port	2020-02-24 06:46:21
1.55.140.83	attackbotsspam	Fail2Ban Ban Triggered	2020-02-22 20:24:21
1.55.140.161	attackspambots	Automatic report - Port Scan Attack	2020-02-19 14:37:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.55.14.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13932
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.55.14.212.			IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 12:36:19 CST 2022
;; MSG SIZE  rcvd: 104

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 1.55.14.212.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.144.218.143	attack	2020-07-31T00:53:38.877086billing sshd[12096]: Invalid user lodwin from 192.144.218.143 port 42018 2020-07-31T00:53:41.064402billing sshd[12096]: Failed password for invalid user lodwin from 192.144.218.143 port 42018 ssh2 2020-07-31T01:00:39.504289billing sshd[27480]: Invalid user lasse from 192.144.218.143 port 57200 ...	2020-07-31 02:43:44
122.51.109.222	attack	Failed password for invalid user shr from 122.51.109.222 port 50934 ssh2	2020-07-31 02:38:30
103.217.255.42	attackbots	2020-07-29 13:34:55 server sshd[18849]: Failed password for invalid user zhanghao from 103.217.255.42 port 45492 ssh2	2020-07-31 02:10:26
189.209.250.139	attack	Port scan on 1 port(s): 23	2020-07-31 02:11:37
151.236.99.12	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-07-31 02:13:45
36.48.68.153	attackspambots	Jul 30 16:04:51 pornomens sshd\[13936\]: Invalid user sdven from 36.48.68.153 port 56552 Jul 30 16:04:51 pornomens sshd\[13936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.48.68.153 Jul 30 16:04:54 pornomens sshd\[13936\]: Failed password for invalid user sdven from 36.48.68.153 port 56552 ssh2 ...	2020-07-31 02:14:31
103.117.163.209	attack	eintrachtkultkellerfulda.de 103.117.163.209 [30/Jul/2020:14:04:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 408 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" eintrachtkultkellerfulda.de 103.117.163.209 [30/Jul/2020:14:04:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 408 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-31 02:45:58
51.254.120.159	attackspambots	Jul 30 14:31:42 buvik sshd[10370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.120.159 Jul 30 14:31:44 buvik sshd[10370]: Failed password for invalid user haoliyang from 51.254.120.159 port 42304 ssh2 Jul 30 14:35:40 buvik sshd[10915]: Invalid user liaohaoran from 51.254.120.159 ...	2020-07-31 02:28:06
178.128.125.10	attack	Jul 30 16:08:45 rotator sshd\[6252\]: Invalid user xucaixin from 178.128.125.10Jul 30 16:08:46 rotator sshd\[6252\]: Failed password for invalid user xucaixin from 178.128.125.10 port 6009 ssh2Jul 30 16:13:20 rotator sshd\[7076\]: Invalid user wangxu from 178.128.125.10Jul 30 16:13:23 rotator sshd\[7076\]: Failed password for invalid user wangxu from 178.128.125.10 port 9568 ssh2Jul 30 16:18:07 rotator sshd\[7863\]: Invalid user gk from 178.128.125.10Jul 30 16:18:09 rotator sshd\[7863\]: Failed password for invalid user gk from 178.128.125.10 port 13127 ssh2 ...	2020-07-31 02:15:35
201.182.53.125	attackspam	Jul 30 19:48:16 our-server-hostname postfix/smtpd[23518]: connect from unknown[201.182.53.125] Jul 30 19:48:16 our-server-hostname postfix/smtpd[23518]: lost connection after EHLO from unknown[201.182.53.125] Jul 30 19:48:16 our-server-hostname postfix/smtpd[23518]: disconnect from unknown[201.182.53.125] Jul 30 19:48:17 our-server-hostname postfix/smtpd[23545]: connect from unknown[201.182.53.125] Jul x@x Jul 30 19:48:24 our-server-hostname postfix/smtpd[23545]: disconnect from unknown[201.182.53.125] Jul 30 19:51:13 our-server-hostname postfix/smtpd[25774]: connect from unknown[201.182.53.125] Jul x@x Jul 30 19:51:22 our-server-hostname postfix/smtpd[25774]: disconnect from unknown[201.182.53.125] Jul 30 19:54:29 our-server-hostname postfix/smtpd[23545]: connect from unknown[201.182.53.125] Jul x@x Jul x@x Jul x@x Jul 30 19:54:33 our-server-hostname postfix/smtpd[21744]: connect from unknown[201.182.53.125] Jul 30 19:54:34 our-server-hostname postfix/smtpd[21744]: los........ -------------------------------	2020-07-31 02:22:22
39.101.141.116	attackbotsspam	Invalid user zookeeper from 39.101.141.116 port 57954	2020-07-31 02:11:15
111.231.94.138	attackbotsspam	Jul 30 15:51:00 localhost sshd[94770]: Invalid user asr from 111.231.94.138 port 57524 Jul 30 15:51:00 localhost sshd[94770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.94.138 Jul 30 15:51:00 localhost sshd[94770]: Invalid user asr from 111.231.94.138 port 57524 Jul 30 15:51:02 localhost sshd[94770]: Failed password for invalid user asr from 111.231.94.138 port 57524 ssh2 Jul 30 15:58:10 localhost sshd[95539]: Invalid user zhuxiaopei from 111.231.94.138 port 50244 ...	2020-07-31 02:32:51
209.97.138.179	attack	Jul 30 20:09:43 sip sshd[1135086]: Invalid user ladev from 209.97.138.179 port 48974 Jul 30 20:09:45 sip sshd[1135086]: Failed password for invalid user ladev from 209.97.138.179 port 48974 ssh2 Jul 30 20:13:58 sip sshd[1135131]: Invalid user rinko from 209.97.138.179 port 41742 ...	2020-07-31 02:42:58
134.209.148.107	attackspam	Port Scan ...	2020-07-31 02:31:26
151.236.95.11	attackspambots	ICMP MH Probe, Scan /Distributed -	2020-07-31 02:44:25

Recently Reported IPs

1.55.109.250	1.55.181.33	1.55.171.106	1.55.189.9
1.55.167.108	1.55.163.173	1.55.23.155	1.56.140.124
1.55.227.166	1.56.224.166	1.61.118.236	1.56.181.66
1.55.39.49	1.65.164.241	1.71.185.43	1.55.40.68
1.55.86.40	1.64.230.126	1.80.117.71	1.80.167.56