113.59.74.55 - IPInfo

Basic Info

City: unknown

Region: Hainan

Country: China

Internet Service Provider: China Unicom Hainan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-12-12T05:08:38.001300shield sshd\[5140\]: Invalid user djamila from 113.59.74.55 port 59986 2019-12-12T05:08:38.005926shield sshd\[5140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55 2019-12-12T05:08:39.877297shield sshd\[5140\]: Failed password for invalid user djamila from 113.59.74.55 port 59986 ssh2 2019-12-12T05:13:04.974066shield sshd\[6580\]: Invalid user gdm from 113.59.74.55 port 53557 2019-12-12T05:13:04.978547shield sshd\[6580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55	2019-12-12 13:27:56
attackbots	Dec 11 12:49:25 vibhu-HP-Z238-Microtower-Workstation sshd\[28792\]: Invalid user liu99999 from 113.59.74.55 Dec 11 12:49:25 vibhu-HP-Z238-Microtower-Workstation sshd\[28792\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55 Dec 11 12:49:27 vibhu-HP-Z238-Microtower-Workstation sshd\[28792\]: Failed password for invalid user liu99999 from 113.59.74.55 port 54126 ssh2 Dec 11 12:56:00 vibhu-HP-Z238-Microtower-Workstation sshd\[29270\]: Invalid user pplivetj\)@$ from 113.59.74.55 Dec 11 12:56:00 vibhu-HP-Z238-Microtower-Workstation sshd\[29270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55 ...	2019-12-11 15:33:38
attack	[ssh] SSH attack	2019-12-11 04:58:56
attackbots	Nov 18 17:36:42 * sshd[28186]: Invalid user wingo from 113.59.74.55 Nov 18 17:36:42 * sshd[28186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55 Nov 18 17:36:44 * sshd[28186]: Failed password for invalid user wingo from 113.59.74.55 port 35387 ssh2 Nov 18 17:36:44 * sshd[28186]: Received disconnect from 113.59.74.55: 11: Bye Bye [preauth] Nov 18 17:43:20 * sshd[28612]: Invalid user guest from 113.59.74.55 Nov 18 17:43:20 * sshd[28612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.59.74.55 Nov 18 17:43:23 * sshd[28612]: Failed password for invalid user guest from 113.59.74.55 port 58275 ssh2 Nov 18 17:43:23 * sshd[28612]: Received disconnect from 113.59.74.55: 11: Bye Bye [preauth] Nov 18 17:47:56 * sshd[28939]: Invalid user upload from 113.59.74.55 Nov 18 17:47:56 * sshd[28939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty........ -------------------------------	2019-11-19 05:53:13
attack	Nov 1 21:14:53 xeon sshd[27876]: Failed password for invalid user adda from 113.59.74.55 port 55566 ssh2	2019-11-02 04:21:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.59.74.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51647
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.59.74.55.			IN	A

;; AUTHORITY SECTION:
.			134	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110101 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 04:21:13 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 55.74.59.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.74.59.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.68.253.149	attackspam	(sshd) Failed SSH login from 138.68.253.149 (US/United States/-): 5 in the last 3600 secs	2020-05-15 22:48:44
141.98.81.81	attackbotsspam	2020-05-15T14:37:59.407366abusebot-3.cloudsearch.cf sshd[11109]: Invalid user 1234 from 141.98.81.81 port 53926 2020-05-15T14:37:59.412770abusebot-3.cloudsearch.cf sshd[11109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.81 2020-05-15T14:37:59.407366abusebot-3.cloudsearch.cf sshd[11109]: Invalid user 1234 from 141.98.81.81 port 53926 2020-05-15T14:38:00.682568abusebot-3.cloudsearch.cf sshd[11109]: Failed password for invalid user 1234 from 141.98.81.81 port 53926 ssh2 2020-05-15T14:38:34.004131abusebot-3.cloudsearch.cf sshd[11199]: Invalid user user from 141.98.81.81 port 41364 2020-05-15T14:38:34.012432abusebot-3.cloudsearch.cf sshd[11199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.81 2020-05-15T14:38:34.004131abusebot-3.cloudsearch.cf sshd[11199]: Invalid user user from 141.98.81.81 port 41364 2020-05-15T14:38:35.753989abusebot-3.cloudsearch.cf sshd[11199]: Failed password fo ...	2020-05-15 22:47:55
37.49.226.157	attack	May 13 07:28:27 netserv300 sshd[26228]: Connection from 37.49.226.157 port 38678 on 178.63.236.22 port 22 May 13 07:28:34 netserv300 sshd[26236]: Connection from 37.49.226.157 port 42060 on 178.63.236.22 port 22 May 13 07:28:48 netserv300 sshd[26250]: Connection from 37.49.226.157 port 45128 on 178.63.236.22 port 22 May 13 07:29:03 netserv300 sshd[26270]: Connection from 37.49.226.157 port 47844 on 178.63.236.22 port 22 May 13 07:29:16 netserv300 sshd[26287]: Connection from 37.49.226.157 port 50472 on 178.63.236.22 port 22 May 13 07:29:28 netserv300 sshd[26303]: Connection from 37.49.226.157 port 53244 on 178.63.236.22 port 22 May 13 07:29:40 netserv300 sshd[26328]: Connection from 37.49.226.157 port 56032 on 178.63.236.22 port 22 May 13 07:29:52 netserv300 sshd[26346]: Connection from 37.49.226.157 port 58854 on 178.63.236.22 port 22 May 13 07:30:03 netserv300 sshd[26408]: Connection from 37.49.226.157 port 33392 on 178.63.236.22 port 22 May 13 07:30:15 netserv300 sshd........ ------------------------------	2020-05-15 22:43:35
220.127.148.8	attackbotsspam	$f2bV_matches	2020-05-15 22:25:20
103.72.11.134	attackbots	20/5/15@08:26:26: FAIL: Alarm-Network address from=103.72.11.134 20/5/15@08:26:26: FAIL: Alarm-Network address from=103.72.11.134 ...	2020-05-15 22:34:03
47.75.177.195	attack	47.75.177.195 - - [15/May/2020:02:16:42 +0200] "GET /xmlrpc.php HTTP/1.1"	2020-05-15 22:12:17
181.143.172.106	attack	2020-05-15T07:29:36.357549linuxbox-skyline sshd[23040]: Invalid user cod2server from 181.143.172.106 port 17586 ...	2020-05-15 22:26:11
82.62.153.15	attackbotsspam	May 15 16:11:33 h1745522 sshd[21889]: Invalid user aqjava from 82.62.153.15 port 60381 May 15 16:11:33 h1745522 sshd[21889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.62.153.15 May 15 16:11:33 h1745522 sshd[21889]: Invalid user aqjava from 82.62.153.15 port 60381 May 15 16:11:36 h1745522 sshd[21889]: Failed password for invalid user aqjava from 82.62.153.15 port 60381 ssh2 May 15 16:14:26 h1745522 sshd[22049]: Invalid user server from 82.62.153.15 port 55106 May 15 16:14:26 h1745522 sshd[22049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.62.153.15 May 15 16:14:26 h1745522 sshd[22049]: Invalid user server from 82.62.153.15 port 55106 May 15 16:14:28 h1745522 sshd[22049]: Failed password for invalid user server from 82.62.153.15 port 55106 ssh2 May 15 16:17:22 h1745522 sshd[22140]: Invalid user anonymous from 82.62.153.15 port 53853 ...	2020-05-15 22:27:55
106.12.56.126	attack	May 15 19:24:44 itv-usvr-02 sshd[13073]: Invalid user robo from 106.12.56.126 port 37328 May 15 19:24:44 itv-usvr-02 sshd[13073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.126 May 15 19:24:44 itv-usvr-02 sshd[13073]: Invalid user robo from 106.12.56.126 port 37328 May 15 19:24:46 itv-usvr-02 sshd[13073]: Failed password for invalid user robo from 106.12.56.126 port 37328 ssh2 May 15 19:27:00 itv-usvr-02 sshd[13138]: Invalid user test from 106.12.56.126 port 32816	2020-05-15 22:04:18
202.137.155.218	attackspambots	"Account brute force using dictionary attack against Exchange Online"	2020-05-15 22:14:48
116.100.230.90	attack	Automatic report - Port Scan Attack	2020-05-15 22:22:03
192.3.255.139	attackbotsspam	May 15 14:24:33 vps sshd[29754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.255.139 May 15 14:24:34 vps sshd[29754]: Failed password for invalid user an from 192.3.255.139 port 42408 ssh2 May 15 14:29:27 vps sshd[29991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.3.255.139 ...	2020-05-15 22:08:11
180.76.152.157	attack	$f2bV_matches	2020-05-15 22:38:35
102.45.149.12	attackbots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-15 22:22:31
131.100.149.86	attackspambots	May 13 05:17:53 tux postfix/smtpd[5084]: connect from unknown[131.100.149.86] May x@x May 13 05:17:57 tux postfix/smtpd[5084]: lost connection after RCPT from unknown[131.100.149.86] May 13 05:17:57 tux postfix/smtpd[5084]: disconnect from unknown[131.100.149.86] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=131.100.149.86	2020-05-15 22:28:59

Recently Reported IPs

88.98.48.46	194.206.105.127	126.144.4.216	137.33.142.88
180.92.77.85	154.217.172.88	201.209.146.104	31.152.19.181
45.247.197.97	95.13.235.53	137.62.45.111	80.136.95.62
24.39.28.221	181.120.233.4	163.4.236.61	230.70.115.46
78.153.102.202	2.74.5.27	174.144.177.27	52.191.228.111