1.55.18.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Broadband Service

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 1.55.18.58 on Port 445(SMB)	2020-02-14 02:39:30

Comments on same subnet:

IP	Type	Details	Datetime
1.55.187.180	attack	Unauthorized connection attempt detected from IP address 1.55.187.180 to port 23 [J]	2020-02-23 20:14:00
1.55.183.255	attackspam	1582204835 - 02/20/2020 14:20:35 Host: 1.55.183.255/1.55.183.255 Port: 445 TCP Blocked	2020-02-21 05:07:47
1.55.188.248	attackbots	Unauthorized connection attempt detected from IP address 1.55.188.248 to port 23 [J]	2020-02-02 08:18:38
1.55.187.136	attack	unauthorized connection attempt	2020-01-17 16:32:56
1.55.18.228	attackbots	Unauthorized connection attempt from IP address 1.55.18.228 on Port 445(SMB)	2020-01-13 19:18:22
1.55.182.205	attackspambots	Jan 10 05:54:25 grey postfix/smtpd\[29272\]: NOQUEUE: reject: RCPT from unknown\[1.55.182.205\]: 554 5.7.1 Service unavailable\; Client host \[1.55.182.205\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[1.55.182.205\]\; from=\ to=\ proto=ESMTP helo=\<\[1.55.182.205\]\> ...	2020-01-10 15:47:21
1.55.183.7	attack	20/1/10@02:08:13: FAIL: Alarm-Network address from=1.55.183.7 ...	2020-01-10 15:45:49
1.55.18.211	attack	Unauthorized connection attempt from IP address 1.55.18.211 on Port 445(SMB)	2019-12-24 19:56:10
1.55.187.141	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-22 23:11:24
1.55.180.27	attackspambots	Sun, 21 Jul 2019 18:26:55 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 09:36:58
1.55.183.144	attack	Sun, 21 Jul 2019 07:35:33 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 00:49:25
1.55.185.128	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 08:19:21,641 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.55.185.128)	2019-07-18 23:26:35
1.55.187.46	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=14600)(06240931)	2019-06-25 04:40:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.55.18.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.55.18.58.			IN	A

;; AUTHORITY SECTION:
.			344	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021300 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 02:39:23 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 58.18.55.1.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 58.18.55.1.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.108.66.81	attack	trying to access non-authorized port	2020-03-30 05:37:06
112.252.28.246	attackspambots	Cross Site Scripting - /?a=fetch&templateFile=public/index&prefix=''&content=file_put_contents('hmseo.php','hmseo')	2020-03-30 05:33:11
49.88.112.67	attackbots	Mar 29 23:04:02 v22018053744266470 sshd[1264]: Failed password for root from 49.88.112.67 port 32721 ssh2 Mar 29 23:05:06 v22018053744266470 sshd[1341]: Failed password for root from 49.88.112.67 port 30659 ssh2 ...	2020-03-30 05:17:39
114.67.81.251	attackspam	SSH Login Bruteforce	2020-03-30 05:39:36
122.14.228.229	attackspambots	Mar 29 19:24:03 icinga sshd[10512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.14.228.229 Mar 29 19:24:05 icinga sshd[10512]: Failed password for invalid user Tlhua from 122.14.228.229 port 36506 ssh2 Mar 29 19:33:22 icinga sshd[25360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.14.228.229 ...	2020-03-30 05:32:57
112.85.42.188	attackspambots	03/29/2020-17:51:24.176381 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-30 05:52:41
51.255.173.222	attackspambots	2020-03-29T17:34:19.905097sorsha.thespaminator.com sshd[21590]: Invalid user gsu from 51.255.173.222 port 34772 2020-03-29T17:34:22.212992sorsha.thespaminator.com sshd[21590]: Failed password for invalid user gsu from 51.255.173.222 port 34772 ssh2 ...	2020-03-30 05:35:13
113.42.142.197	attackspam	29.03.2020 21:34:23 Recursive DNS scan	2020-03-30 05:34:29
106.13.81.162	attackbotsspam	Mar 29 22:24:53 vps58358 sshd\[25914\]: Invalid user dmm from 106.13.81.162Mar 29 22:24:56 vps58358 sshd\[25914\]: Failed password for invalid user dmm from 106.13.81.162 port 54770 ssh2Mar 29 22:29:32 vps58358 sshd\[25979\]: Invalid user pfq from 106.13.81.162Mar 29 22:29:34 vps58358 sshd\[25979\]: Failed password for invalid user pfq from 106.13.81.162 port 57728 ssh2Mar 29 22:34:11 vps58358 sshd\[26030\]: Invalid user wbd from 106.13.81.162Mar 29 22:34:12 vps58358 sshd\[26030\]: Failed password for invalid user wbd from 106.13.81.162 port 60702 ssh2 ...	2020-03-30 05:43:15
89.118.196.74	attackspambots	Mar 29 22:38:37 jane sshd[27517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.118.196.74 Mar 29 22:38:39 jane sshd[27517]: Failed password for invalid user ujx from 89.118.196.74 port 36008 ssh2 ...	2020-03-30 05:28:45
106.12.166.166	attackbots	Mar 29 15:30:20 server1 sshd\[2954\]: Invalid user lainey from 106.12.166.166 Mar 29 15:30:20 server1 sshd\[2954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 Mar 29 15:30:23 server1 sshd\[2954\]: Failed password for invalid user lainey from 106.12.166.166 port 34286 ssh2 Mar 29 15:33:57 server1 sshd\[4184\]: Invalid user kzq from 106.12.166.166 Mar 29 15:33:57 server1 sshd\[4184\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.166.166 ...	2020-03-30 05:53:30
118.27.6.66	attack	Mar 29 21:17:14 vmd17057 sshd[29817]: Failed password for root from 118.27.6.66 port 51638 ssh2 ...	2020-03-30 05:31:14
218.66.71.5	attackbots	Mar 29 23:30:24 OPSO sshd\[1750\]: Invalid user szd from 218.66.71.5 port 39366 Mar 29 23:30:24 OPSO sshd\[1750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.66.71.5 Mar 29 23:30:26 OPSO sshd\[1750\]: Failed password for invalid user szd from 218.66.71.5 port 39366 ssh2 Mar 29 23:34:13 OPSO sshd\[2098\]: Invalid user rosine from 218.66.71.5 port 44306 Mar 29 23:34:13 OPSO sshd\[2098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.66.71.5	2020-03-30 05:41:57
128.199.212.82	attack	xmlrpc attack	2020-03-30 05:43:27
159.203.124.234	attack	Mar 29 23:29:11 localhost sshd\[5443\]: Invalid user gad from 159.203.124.234 Mar 29 23:29:11 localhost sshd\[5443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.124.234 Mar 29 23:29:12 localhost sshd\[5443\]: Failed password for invalid user gad from 159.203.124.234 port 59254 ssh2 Mar 29 23:34:06 localhost sshd\[5708\]: Invalid user leilah from 159.203.124.234 Mar 29 23:34:06 localhost sshd\[5708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.124.234 ...	2020-03-30 05:46:28

Recently Reported IPs

122.53.82.189	52.49.18.99	62.203.224.23	103.29.117.63
195.34.115.20	200.39.254.136	110.164.139.210	86.150.141.205
197.94.239.247	186.90.210.132	61.0.137.134	14.165.211.78
43.245.47.114	187.174.228.2	128.201.57.180	80.250.82.160
79.79.14.184	197.210.71.254	118.163.197.27	13.92.178.16