112.111.2.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.111.249.31	attackspam	ssh brute force	2020-09-24 23:40:33
112.111.249.31	attackbots	ssh brute force	2020-09-24 15:27:36
112.111.249.31	attack	Sep 23 19:01:52 v22019038103785759 sshd\[12177\]: Invalid user app from 112.111.249.31 port 60062 Sep 23 19:01:52 v22019038103785759 sshd\[12177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Sep 23 19:01:55 v22019038103785759 sshd\[12177\]: Failed password for invalid user app from 112.111.249.31 port 60062 ssh2 Sep 23 19:06:59 v22019038103785759 sshd\[12609\]: Invalid user centos from 112.111.249.31 port 38430 Sep 23 19:06:59 v22019038103785759 sshd\[12609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 ...	2020-09-24 06:53:41
112.111.232.48	attackbotsspam	(ftpd) Failed FTP login from 112.111.232.48 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 26 19:12:10 ir1 pure-ftpd: (?@112.111.232.48) [WARNING] Authentication failed for user [anonymous]	2020-08-27 00:34:36
112.111.249.31	attackspambots	Aug 17 00:17:11 srv-ubuntu-dev3 sshd[34488]: Invalid user vsftpd from 112.111.249.31 Aug 17 00:17:11 srv-ubuntu-dev3 sshd[34488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Aug 17 00:17:11 srv-ubuntu-dev3 sshd[34488]: Invalid user vsftpd from 112.111.249.31 Aug 17 00:17:13 srv-ubuntu-dev3 sshd[34488]: Failed password for invalid user vsftpd from 112.111.249.31 port 57936 ssh2 Aug 17 00:20:30 srv-ubuntu-dev3 sshd[34845]: Invalid user oracle from 112.111.249.31 Aug 17 00:20:30 srv-ubuntu-dev3 sshd[34845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Aug 17 00:20:30 srv-ubuntu-dev3 sshd[34845]: Invalid user oracle from 112.111.249.31 Aug 17 00:20:31 srv-ubuntu-dev3 sshd[34845]: Failed password for invalid user oracle from 112.111.249.31 port 52096 ssh2 Aug 17 00:23:46 srv-ubuntu-dev3 sshd[35254]: Invalid user juan from 112.111.249.31 ...	2020-08-17 07:40:43
112.111.232.16	attackbots	Aug 15 01:29:36 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [anonymous] Aug 15 01:29:45 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www] Aug 15 01:30:04 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www] Aug 15 01:30:14 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www] Aug 15 01:30:21 web01.agentur-b-2.de pure-ftpd: (?@112.111.232.16) [WARNING] Authentication failed for user [www]	2020-08-15 14:03:51
112.111.249.31	attackbotsspam	Aug 11 04:43:34 web1 sshd\[20284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 11 04:43:36 web1 sshd\[20284\]: Failed password for root from 112.111.249.31 port 45796 ssh2 Aug 11 04:45:17 web1 sshd\[20466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 11 04:45:19 web1 sshd\[20466\]: Failed password for root from 112.111.249.31 port 34902 ssh2 Aug 11 04:46:59 web1 sshd\[20583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root	2020-08-11 23:13:17
112.111.249.31	attack	Aug 6 03:14:29 web9 sshd\[9595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 6 03:14:32 web9 sshd\[9595\]: Failed password for root from 112.111.249.31 port 55282 ssh2 Aug 6 03:18:06 web9 sshd\[10079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 6 03:18:08 web9 sshd\[10079\]: Failed password for root from 112.111.249.31 port 38410 ssh2 Aug 6 03:21:39 web9 sshd\[10531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root	2020-08-07 02:15:31
112.111.249.31	attackspambots	Aug 5 08:20:38 powerpi2 sshd[3348]: Failed password for root from 112.111.249.31 port 54042 ssh2 Aug 5 08:23:38 powerpi2 sshd[3488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 user=root Aug 5 08:23:40 powerpi2 sshd[3488]: Failed password for root from 112.111.249.31 port 34156 ssh2 ...	2020-08-05 19:47:21
112.111.249.31	attackbotsspam	SSH brute-force attempt	2020-08-05 01:18:21
112.111.249.31	attackspambots	Aug 2 13:48:32 mockhub sshd[28945]: Failed password for root from 112.111.249.31 port 43750 ssh2 ...	2020-08-03 04:53:53
112.111.249.31	attackbots	Jul 27 22:08:21 inter-technics sshd[2337]: Invalid user wxwang from 112.111.249.31 port 44440 Jul 27 22:08:21 inter-technics sshd[2337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.31 Jul 27 22:08:21 inter-technics sshd[2337]: Invalid user wxwang from 112.111.249.31 port 44440 Jul 27 22:08:24 inter-technics sshd[2337]: Failed password for invalid user wxwang from 112.111.249.31 port 44440 ssh2 Jul 27 22:12:45 inter-technics sshd[2724]: Invalid user julio from 112.111.249.31 port 55172 ...	2020-07-28 05:45:35
112.111.248.36	attackspam	unauthorized connection attempt	2020-03-10 14:03:55
112.111.248.36	attackspam	DLink DSL Remote OS Command Injection Vulnerability	2020-03-10 00:31:22
112.111.249.30	attackspambots	2019-11-03T14:28:17.907594homeassistant sshd[4136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.111.249.30 user=root 2019-11-03T14:28:20.204396homeassistant sshd[4136]: Failed password for root from 112.111.249.30 port 37038 ssh2 ...	2019-11-04 05:52:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.111.2.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59418
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.111.2.55.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 05:46:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 55.2.111.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.2.111.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.236.218.135	attackbotsspam	Aug 2 17:52:48 archiv sshd[21978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.236.218.135 user=r.r Aug 2 17:52:49 archiv sshd[21978]: Failed password for r.r from 114.236.218.135 port 16104 ssh2 Aug 2 17:52:53 archiv sshd[21978]: Failed password for r.r from 114.236.218.135 port 16104 ssh2 Aug 2 17:52:56 archiv sshd[21978]: Failed password for r.r from 114.236.218.135 port 16104 ssh2 Aug 2 17:52:59 archiv sshd[21978]: Failed password for r.r from 114.236.218.135 port 16104 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.236.218.135	2019-08-03 00:57:06
125.62.194.242	attackbotsspam	firewall-block, port(s): 445/tcp	2019-08-03 00:52:40
157.230.174.159	attackbots	157.230.174.159 - - [02/Aug/2019:17:56:52 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.174.159 - - [02/Aug/2019:17:56:57 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.174.159 - - [02/Aug/2019:17:57:00 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.174.159 - - [02/Aug/2019:17:57:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.174.159 - - [02/Aug/2019:17:57:06 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.230.174.159 - - [02/Aug/2019:17:57:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1683 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-08-03 00:27:27
185.164.72.179	attackspambots	RDP Scan	2019-08-03 00:40:12
106.75.86.217	attackbotsspam	2019-08-02T17:05:07.669774 sshd[19363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.86.217 user=root 2019-08-02T17:05:09.675166 sshd[19363]: Failed password for root from 106.75.86.217 port 37378 ssh2 2019-08-02T17:10:41.224425 sshd[19405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.86.217 user=root 2019-08-02T17:10:43.415422 sshd[19405]: Failed password for root from 106.75.86.217 port 37724 ssh2 2019-08-02T17:16:19.360999 sshd[19479]: Invalid user aman from 106.75.86.217 port 37988 ...	2019-08-03 00:08:43
222.252.91.57	attackspambots	Chat Spam	2019-08-03 00:04:56
185.17.123.155	attackspambots	Aug 2 16:31:22 vibhu-HP-Z238-Microtower-Workstation sshd\[18531\]: Invalid user emma from 185.17.123.155 Aug 2 16:31:22 vibhu-HP-Z238-Microtower-Workstation sshd\[18531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.17.123.155 Aug 2 16:31:24 vibhu-HP-Z238-Microtower-Workstation sshd\[18531\]: Failed password for invalid user emma from 185.17.123.155 port 44178 ssh2 Aug 2 16:37:25 vibhu-HP-Z238-Microtower-Workstation sshd\[18698\]: Invalid user train1 from 185.17.123.155 Aug 2 16:37:25 vibhu-HP-Z238-Microtower-Workstation sshd\[18698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.17.123.155 ...	2019-08-02 23:43:06
122.144.12.212	attackbotsspam	Aug 2 15:59:33 MK-Soft-VM6 sshd\[19124\]: Invalid user vivian from 122.144.12.212 port 50282 Aug 2 15:59:33 MK-Soft-VM6 sshd\[19124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.144.12.212 Aug 2 15:59:35 MK-Soft-VM6 sshd\[19124\]: Failed password for invalid user vivian from 122.144.12.212 port 50282 ssh2 ...	2019-08-03 00:15:12
60.250.79.229	attackspambots	Automatic report - SSH Brute-Force Attack	2019-08-02 23:42:14
138.97.66.142	attackspambots	Chat Spam	2019-08-03 00:34:04
131.108.48.151	attack	2019-08-02T10:41:52.322126stark.klein-stark.info sshd\[891\]: Invalid user admin from 131.108.48.151 port 64388 2019-08-02T10:41:52.326900stark.klein-stark.info sshd\[891\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151-48-108-131.pronetse.com.br 2019-08-02T10:41:55.074245stark.klein-stark.info sshd\[891\]: Failed password for invalid user admin from 131.108.48.151 port 64388 ssh2 ...	2019-08-02 23:45:42
185.220.101.50	attackspambots	Aug 2 17:26:52 MainVPS sshd[19776]: Invalid user NetLinx from 185.220.101.50 port 43947 Aug 2 17:26:52 MainVPS sshd[19776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.50 Aug 2 17:26:52 MainVPS sshd[19776]: Invalid user NetLinx from 185.220.101.50 port 43947 Aug 2 17:26:55 MainVPS sshd[19776]: Failed password for invalid user NetLinx from 185.220.101.50 port 43947 ssh2 Aug 2 17:26:52 MainVPS sshd[19776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.50 Aug 2 17:26:52 MainVPS sshd[19776]: Invalid user NetLinx from 185.220.101.50 port 43947 Aug 2 17:26:55 MainVPS sshd[19776]: Failed password for invalid user NetLinx from 185.220.101.50 port 43947 ssh2 Aug 2 17:26:55 MainVPS sshd[19776]: Disconnecting invalid user NetLinx 185.220.101.50 port 43947: Change of username or service not allowed: (NetLinx,ssh-connection) -> (administrator,ssh-connection [preauth] ...	2019-08-02 23:56:44
46.229.168.148	attackbots	Malicious Traffic/Form Submission	2019-08-02 23:33:06
151.24.28.254	attack	Jul 31 20:02:08 server2 sshd[28298]: reveeclipse mapping checking getaddrinfo for ppp-254-28.24-151.wind.hostname [151.24.28.254] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 31 20:02:08 server2 sshd[28298]: Invalid user rakesh from 151.24.28.254 Jul 31 20:02:08 server2 sshd[28298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.24.28.254 Jul 31 20:02:11 server2 sshd[28298]: Failed password for invalid user rakesh from 151.24.28.254 port 49598 ssh2 Jul 31 20:02:11 server2 sshd[28298]: Received disconnect from 151.24.28.254: 11: Bye Bye [preauth] Jul 31 20:08:36 server2 sshd[717]: reveeclipse mapping checking getaddrinfo for ppp-254-28.24-151.wind.hostname [151.24.28.254] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 31 20:08:36 server2 sshd[717]: Invalid user peter from 151.24.28.254 Jul 31 20:08:36 server2 sshd[717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.24.28.254 ........ ---------------------------------------------	2019-08-03 01:07:06
185.175.93.18	attack	Port scan on 4 port(s): 73 5473 5973 6393	2019-08-03 00:49:51

Recently Reported IPs

112.109.82.9	112.11.156.76	112.11.246.121	112.11.39.98
112.111.49.35	112.111.54.8	112.111.60.102	112.111.55.133
112.112.228.86	112.112.83.124	112.112.202.42	112.112.83.164
112.112.83.238	112.113.124.40	112.113.59.116	112.113.25.231
112.114.93.207	112.113.59.163	112.115.192.173	112.115.139.39