112.111.2.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.111.249.31	attackspam	ssh brute force	2020-09-24 23:40:33
112.111.249.31	attackbots	ssh brute force	2020-09-24 15:27:36
112.111.249.31	attack	Sep 23 19:01:52 v22019038103785759 sshd\[12177\]: Invalid user app from 112.111.249.31 port 60062 Sep 23 19:01:52 v22019038103785759 sshd\[12177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Sep 23 19:01:55 v22019038103785759 sshd\[12177\]: Failed password for invalid user app from 112.111.249.31 port 60062 ssh2 Sep 23 19:06:59 v22019038103785759 sshd\[12609\]: Invalid user centos from 112.111.249.31 port 38430 Sep 23 19:06:59 v22019038103785759 sshd\[12609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 ...	2020-09-24 06:53:41
112.111.232.48	attackbotsspam	(ftpd) Failed FTP login from 112.111.232.48 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 26 19:12:10 ir1 pure-ftpd: (?@112.111.232.48) [WARNING] Authentication failed for user [anonymous]	2020-08-27 00:34:36
112.111.249.31	attackspambots	Aug 17 00:17:11 srv-ubuntu-dev3 sshd[34488]: Invalid user vsftpd from 112.111.249.31 Aug 17 00:17:11 srv-ubuntu-dev3 sshd[34488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Aug 17 00:17:11 srv-ubuntu-dev3 sshd[34488]: Invalid user vsftpd from 112.111.249.31 Aug 17 00:17:13 srv-ubuntu-dev3 sshd[34488]: Failed password for invalid user vsftpd from 112.111.249.31 port 57936 ssh2 Aug 17 00:20:30 srv-ubuntu-dev3 sshd[34845]: Invalid user oracle from 112.111.249.31 Aug 17 00:20:30 srv-ubuntu-dev3 sshd[34845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Aug 17 00:20:30 srv-ubuntu-dev3 sshd[34845]: Invalid user oracle from 112.111.249.31 Aug 17 00:20:31 srv-ubuntu-dev3 sshd[34845]: Failed password for invalid user oracle from 112.111.249.31 port 52096 ssh2 Aug 17 00:23:46 srv-ubuntu-dev3 sshd[35254]: Invalid user juan from 112.111.249.31 ...	2020-08-17 07:40:43
112.111.232.16	attackbots	Aug 15 01:29:36 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [anonymous] Aug 15 01:29:45 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www] Aug 15 01:30:04 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www] Aug 15 01:30:14 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www] Aug 15 01:30:21 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www]	2020-08-15 14:03:51
112.111.249.31	attackbotsspam	Aug 11 04:43:34 web1 sshd\[20284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 11 04:43:36 web1 sshd\[20284\]: Failed password for root from 112.111.249.31 port 45796 ssh2 Aug 11 04:45:17 web1 sshd\[20466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 11 04:45:19 web1 sshd\[20466\]: Failed password for root from 112.111.249.31 port 34902 ssh2 Aug 11 04:46:59 web1 sshd\[20583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root	2020-08-11 23:13:17
112.111.249.31	attack	Aug 6 03:14:29 web9 sshd\[9595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 6 03:14:32 web9 sshd\[9595\]: Failed password for root from 112.111.249.31 port 55282 ssh2 Aug 6 03:18:06 web9 sshd\[10079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 6 03:18:08 web9 sshd\[10079\]: Failed password for root from 112.111.249.31 port 38410 ssh2 Aug 6 03:21:39 web9 sshd\[10531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root	2020-08-07 02:15:31
112.111.249.31	attackspambots	Aug 5 08:20:38 powerpi2 sshd[3348]: Failed password for root from 112.111.249.31 port 54042 ssh2 Aug 5 08:23:38 powerpi2 sshd[3488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 5 08:23:40 powerpi2 sshd[3488]: Failed password for root from 112.111.249.31 port 34156 ssh2 ...	2020-08-05 19:47:21
112.111.249.31	attackbotsspam	SSH brute-force attempt	2020-08-05 01:18:21
112.111.249.31	attackspambots	Aug 2 13:48:32 mockhub sshd[28945]: Failed password for root from 112.111.249.31 port 43750 ssh2 ...	2020-08-03 04:53:53
112.111.249.31	attackbots	Jul 27 22:08:21 inter-technics sshd[2337]: Invalid user wxwang from 112.111.249.31 port 44440 Jul 27 22:08:21 inter-technics sshd[2337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Jul 27 22:08:21 inter-technics sshd[2337]: Invalid user wxwang from 112.111.249.31 port 44440 Jul 27 22:08:24 inter-technics sshd[2337]: Failed password for invalid user wxwang from 112.111.249.31 port 44440 ssh2 Jul 27 22:12:45 inter-technics sshd[2724]: Invalid user julio from 112.111.249.31 port 55172 ...	2020-07-28 05:45:35
112.111.248.36	attackspam	unauthorized connection attempt	2020-03-10 14:03:55
112.111.248.36	attackspam	DLink DSL Remote OS Command Injection Vulnerability	2020-03-10 00:31:22
112.111.249.30	attackspambots	2019-11-03T14:28:17.907594homeassistant sshd[4136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.30 user=root 2019-11-03T14:28:20.204396homeassistant sshd[4136]: Failed password for root from 112.111.249.30 port 37038 ssh2 ...	2019-11-04 05:52:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.111.2.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59418
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.111.2.55.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 05:46:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 55.2.111.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.2.111.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
39.64.230.251	attackbotsspam	Mar 30 06:56:25 www5 sshd\[27503\]: Invalid user pi from 39.64.230.251 Mar 30 06:56:25 www5 sshd\[27501\]: Invalid user pi from 39.64.230.251 Mar 30 06:56:25 www5 sshd\[27503\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.64.230.251 ...	2020-03-30 12:41:51
54.38.70.93	attackbots	Mar 30 05:56:35 vpn01 sshd[3490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.70.93 Mar 30 05:56:37 vpn01 sshd[3490]: Failed password for invalid user mcedit from 54.38.70.93 port 54258 ssh2 ...	2020-03-30 12:33:06
200.52.80.34	attack	Mar 30 05:56:55 vpn01 sshd[3510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.52.80.34 Mar 30 05:56:57 vpn01 sshd[3510]: Failed password for invalid user rwf from 200.52.80.34 port 37460 ssh2 ...	2020-03-30 12:12:21
72.253.108.147	attackbotsspam	US_Hawaiian_<177>1585540593 [1:2403416:56306] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 59 [Classification: Misc Attack] [Priority: 2]: {TCP} 72.253.108.147:32065	2020-03-30 12:34:17
122.51.255.162	attackspam	k+ssh-bruteforce	2020-03-30 12:34:45
89.142.195.65	attack	2020-03-30T05:56:29.586120jannga.de sshd[2927]: Invalid user hlo from 89.142.195.65 port 47911 2020-03-30T05:56:31.627035jannga.de sshd[2927]: Failed password for invalid user hlo from 89.142.195.65 port 47911 ssh2 ...	2020-03-30 12:40:00
27.106.39.98	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-30 12:30:08
180.164.126.13	attack	Mar 30 06:24:49 ewelt sshd[6832]: Invalid user qql from 180.164.126.13 port 43708 Mar 30 06:24:49 ewelt sshd[6832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.164.126.13 Mar 30 06:24:49 ewelt sshd[6832]: Invalid user qql from 180.164.126.13 port 43708 Mar 30 06:24:51 ewelt sshd[6832]: Failed password for invalid user qql from 180.164.126.13 port 43708 ssh2 ...	2020-03-30 12:29:37
49.236.203.163	attackspambots	Mar 30 06:28:41 haigwepa sshd[6952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.203.163 Mar 30 06:28:43 haigwepa sshd[6952]: Failed password for invalid user satu from 49.236.203.163 port 43992 ssh2 ...	2020-03-30 12:49:54
54.37.68.191	attackbotsspam	$f2bV_matches	2020-03-30 12:07:48
46.101.57.196	attackspam	46.101.57.196 - - [30/Mar/2020:05:56:12 +0200] "GET /wp-login.php HTTP/1.1" 200 5688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.57.196 - - [30/Mar/2020:05:56:16 +0200] "POST /wp-login.php HTTP/1.1" 200 6587 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.57.196 - - [30/Mar/2020:05:56:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-30 12:47:34
2606:4700:3034::681b:be53	attack	Spamvertised Website http://i9q.cn/4HpseC 203.195.186.176 server_redirect temporary http://k7njjrcwnhi4vyc.ru/ 104.27.191.83 104.27.190.83 2606:4700:3034::681b:be53 2606:4700:3030::681b:bf53 server_redirect temporary http://k7njjrcwnhi4vyc.ru/uNzu2C/ Received: from 217.78.61.143 (HELO 182.22.12.247) (217.78.61.143) Return-Path: From: "vohrals@gxususwhtbucgoyfu.jp" Subject: 本物を確認したいあなたにお届けします X-Mailer: Microsoft Outlook, Build 10.0.2616	2020-03-30 12:50:38
93.103.96.24	attack	Honeypot attack, port: 5555, PTR: 93-103-96-24.dynamic.t-2.net.	2020-03-30 12:20:56
27.67.133.19	attackspam	Honeypot attack, port: 445, PTR: localhost.	2020-03-30 12:43:42
54.39.98.253	attackspam	2020-03-30T05:47:58.222620librenms sshd[20362]: Invalid user gvw from 54.39.98.253 port 48786 2020-03-30T05:48:00.214603librenms sshd[20362]: Failed password for invalid user gvw from 54.39.98.253 port 48786 ssh2 2020-03-30T06:02:21.667593librenms sshd[21862]: Invalid user paullin from 54.39.98.253 port 48606 ...	2020-03-30 12:11:59

Recently Reported IPs

112.109.82.9	112.11.156.76	112.11.246.121	112.11.39.98
112.111.49.35	112.111.54.8	112.111.60.102	112.111.55.133
112.112.228.86	112.112.83.124	112.112.202.42	112.112.83.164
112.112.83.238	112.113.124.40	112.113.59.116	112.113.25.231
112.114.93.207	112.113.59.163	112.115.192.173	112.115.139.39