1.55.18.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Broadband Service

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 1.55.18.58 on Port 445(SMB)	2020-02-14 02:39:30

Comments on same subnet:

IP	Type	Details	Datetime
1.55.187.180	attack	Unauthorized connection attempt detected from IP address 1.55.187.180 to port 23 [J]	2020-02-23 20:14:00
1.55.183.255	attackspam	1582204835 - 02/20/2020 14:20:35 Host: 1.55.183.255/1.55.183.255 Port: 445 TCP Blocked	2020-02-21 05:07:47
1.55.188.248	attackbots	Unauthorized connection attempt detected from IP address 1.55.188.248 to port 23 [J]	2020-02-02 08:18:38
1.55.187.136	attack	unauthorized connection attempt	2020-01-17 16:32:56
1.55.18.228	attackbots	Unauthorized connection attempt from IP address 1.55.18.228 on Port 445(SMB)	2020-01-13 19:18:22
1.55.182.205	attackspambots	Jan 10 05:54:25 grey postfix/smtpd\[29272\]: NOQUEUE: reject: RCPT from unknown\[1.55.182.205\]: 554 5.7.1 Service unavailable\; Client host \[1.55.182.205\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[1.55.182.205\]\; from=\ to=\ proto=ESMTP helo=\<\[1.55.182.205\]\> ...	2020-01-10 15:47:21
1.55.183.7	attack	20/1/10@02:08:13: FAIL: Alarm-Network address from=1.55.183.7 ...	2020-01-10 15:45:49
1.55.18.211	attack	Unauthorized connection attempt from IP address 1.55.18.211 on Port 445(SMB)	2019-12-24 19:56:10
1.55.187.141	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-22 23:11:24
1.55.180.27	attackspambots	Sun, 21 Jul 2019 18:26:55 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 09:36:58
1.55.183.144	attack	Sun, 21 Jul 2019 07:35:33 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 00:49:25
1.55.185.128	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 08:19:21,641 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.55.185.128)	2019-07-18 23:26:35
1.55.187.46	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=14600)(06240931)	2019-06-25 04:40:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.55.18.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.55.18.58.			IN	A

;; AUTHORITY SECTION:
.			344	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021300 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 02:39:23 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 58.18.55.1.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 58.18.55.1.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.134.144.131	attackbotsspam	$f2bV_matches	2020-04-21 05:26:17
112.116.155.205	attackspambots	2020-04-20T20:22:54.525449shield sshd\[25318\]: Invalid user ic from 112.116.155.205 port 9889 2020-04-20T20:22:54.529967shield sshd\[25318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.116.155.205 2020-04-20T20:22:55.816040shield sshd\[25318\]: Failed password for invalid user ic from 112.116.155.205 port 9889 ssh2 2020-04-20T20:26:32.306362shield sshd\[26064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.116.155.205 user=root 2020-04-20T20:26:34.520750shield sshd\[26064\]: Failed password for root from 112.116.155.205 port 25549 ssh2	2020-04-21 05:32:15
124.158.163.17	attackspambots	Apr 20 19:56:02 localhost sshd\[12533\]: Invalid user ftpadmin from 124.158.163.17 port 37260 Apr 20 19:56:02 localhost sshd\[12533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.163.17 Apr 20 19:56:04 localhost sshd\[12533\]: Failed password for invalid user ftpadmin from 124.158.163.17 port 37260 ssh2 ...	2020-04-21 05:43:29
115.236.100.114	attackspambots	2020-04-20T22:53:31.451153centos sshd[27397]: Invalid user munge from 115.236.100.114 port 43562 2020-04-20T22:53:32.934579centos sshd[27397]: Failed password for invalid user munge from 115.236.100.114 port 43562 ssh2 2020-04-20T22:57:44.149524centos sshd[27671]: Invalid user firefart from 115.236.100.114 port 10468 ...	2020-04-21 05:30:28
221.3.106.121	attack	$f2bV_matches	2020-04-21 05:28:40
134.122.16.152	attackbotsspam	Apr 21 02:15:20 gw1 sshd[23544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.16.152 Apr 21 02:15:22 gw1 sshd[23544]: Failed password for invalid user sg from 134.122.16.152 port 35416 ssh2 ...	2020-04-21 05:29:00
122.176.73.206	attack	04/20/2020-15:56:32.218466 122.176.73.206 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-21 05:19:52
125.137.191.215	attackspam	SSH Invalid Login	2020-04-21 05:54:26
45.149.206.194	attackbots	ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak	2020-04-21 05:40:19
103.131.71.166	attackspam	(mod_security) mod_security (id:210730) triggered by 103.131.71.166 (VN/Vietnam/bot-103-131-71-166.coccoc.com): 5 in the last 3600 secs	2020-04-21 05:35:42
159.89.154.87	attack	Fail2Ban Ban Triggered	2020-04-21 05:23:18
177.11.55.217	attackbotsspam	Received: from 10.197.36.76 (EHLO valvusau-mx-17.valvuladesaude.we.bs) (177.11.55.217) http://valvuladesaude.we.bs http://ad.zanox.com zayo.com means.net mr.net zayo.com zayoms.com https://www.bostonmedicalgroup.com.br alog.com.br	2020-04-21 05:24:21
222.186.15.10	attack	2020-04-20T23:23:38.441580sd-86998 sshd[14380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root 2020-04-20T23:23:40.319455sd-86998 sshd[14380]: Failed password for root from 222.186.15.10 port 24441 ssh2 2020-04-20T23:23:43.106469sd-86998 sshd[14380]: Failed password for root from 222.186.15.10 port 24441 ssh2 2020-04-20T23:23:38.441580sd-86998 sshd[14380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root 2020-04-20T23:23:40.319455sd-86998 sshd[14380]: Failed password for root from 222.186.15.10 port 24441 ssh2 2020-04-20T23:23:43.106469sd-86998 sshd[14380]: Failed password for root from 222.186.15.10 port 24441 ssh2 2020-04-20T23:23:38.441580sd-86998 sshd[14380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root 2020-04-20T23:23:40.319455sd-86998 sshd[14380]: Failed password for root from 222.186 ...	2020-04-21 05:27:25
58.211.191.20	attackspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-04-21 05:54:55
34.92.31.13	attackspam	Apr 20 23:08:15 ns381471 sshd[28126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.92.31.13 Apr 20 23:08:17 ns381471 sshd[28126]: Failed password for invalid user admin from 34.92.31.13 port 39766 ssh2	2020-04-21 05:34:59

Recently Reported IPs

122.53.82.189	52.49.18.99	62.203.224.23	103.29.117.63
195.34.115.20	200.39.254.136	110.164.139.210	86.150.141.205
197.94.239.247	186.90.210.132	61.0.137.134	14.165.211.78
43.245.47.114	187.174.228.2	128.201.57.180	80.250.82.160
79.79.14.184	197.210.71.254	118.163.197.27	13.92.178.16