114.226.52.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	IP reached maximum auth failures	2020-05-13 21:47:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.226.52.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23538
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.226.52.55.			IN	A

;; AUTHORITY SECTION:
.			218	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051300 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 21:47:06 CST 2020
;; MSG SIZE  rcvd: 117

Host info

55.52.226.114.in-addr.arpa domain name pointer 55.52.226.114.broad.cz.js.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.52.226.114.in-addr.arpa	name = 55.52.226.114.broad.cz.js.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.123.93.123	attackbotsspam	04/14/2020-23:53:22.474896 125.123.93.123 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-15 18:41:38
36.155.115.72	attack	2020-04-15T04:35:28.8977301495-001 sshd[34802]: Invalid user R00T from 36.155.115.72 port 37650 2020-04-15T04:35:28.9057071495-001 sshd[34802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.72 2020-04-15T04:35:28.8977301495-001 sshd[34802]: Invalid user R00T from 36.155.115.72 port 37650 2020-04-15T04:35:31.3541851495-001 sshd[34802]: Failed password for invalid user R00T from 36.155.115.72 port 37650 ssh2 2020-04-15T04:39:28.5452491495-001 sshd[34934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.72 user=root 2020-04-15T04:39:30.6075261495-001 sshd[34934]: Failed password for root from 36.155.115.72 port 58329 ssh2 ...	2020-04-15 18:41:51
106.54.86.242	attackbots	Apr 15 12:21:29 legacy sshd[25982]: Failed password for root from 106.54.86.242 port 33210 ssh2 Apr 15 12:24:23 legacy sshd[26081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.86.242 Apr 15 12:24:26 legacy sshd[26081]: Failed password for invalid user user1 from 106.54.86.242 port 46876 ssh2 ...	2020-04-15 18:34:34
51.79.73.171	attackspam	Unauthorized connection attempt detected from IP address 51.79.73.171 to port 665	2020-04-15 18:46:36
103.57.80.51	attack	postfix	2020-04-15 18:27:16
93.188.2.5	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-04-15 18:31:59
182.52.90.164	attackbots	(sshd) Failed SSH login from 182.52.90.164 (TH/Thailand/node-hwk.pool-182-52.dynamic.totinternet.net): 5 in the last 3600 secs	2020-04-15 18:47:26
85.209.0.244	attackspambots	firewall-block, port(s): 3128/tcp	2020-04-15 18:14:29
106.52.119.91	attack	$f2bV_matches	2020-04-15 18:42:38
95.85.20.81	attackspam	Bruteforce detected by fail2ban	2020-04-15 18:44:01
43.225.194.75	attackspambots	Apr 15 10:41:29 web8 sshd\[26318\]: Invalid user developer from 43.225.194.75 Apr 15 10:41:29 web8 sshd\[26318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.194.75 Apr 15 10:41:31 web8 sshd\[26318\]: Failed password for invalid user developer from 43.225.194.75 port 52540 ssh2 Apr 15 10:45:17 web8 sshd\[28324\]: Invalid user netscape from 43.225.194.75 Apr 15 10:45:17 web8 sshd\[28324\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.225.194.75	2020-04-15 18:49:19
45.116.115.130	attack	Apr 15 12:36:24 Ubuntu-1404-trusty-64-minimal sshd\[26593\]: Invalid user minecraft from 45.116.115.130 Apr 15 12:36:24 Ubuntu-1404-trusty-64-minimal sshd\[26593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.116.115.130 Apr 15 12:36:26 Ubuntu-1404-trusty-64-minimal sshd\[26593\]: Failed password for invalid user minecraft from 45.116.115.130 port 60920 ssh2 Apr 15 12:39:14 Ubuntu-1404-trusty-64-minimal sshd\[27580\]: Invalid user navi from 45.116.115.130 Apr 15 12:39:14 Ubuntu-1404-trusty-64-minimal sshd\[27580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.116.115.130	2020-04-15 18:48:02
80.211.177.243	attackspam	Apr 15 15:27:22 itv-usvr-01 sshd[1323]: Invalid user helpdesk from 80.211.177.243 Apr 15 15:27:22 itv-usvr-01 sshd[1323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.177.243 Apr 15 15:27:22 itv-usvr-01 sshd[1323]: Invalid user helpdesk from 80.211.177.243 Apr 15 15:27:24 itv-usvr-01 sshd[1323]: Failed password for invalid user helpdesk from 80.211.177.243 port 33502 ssh2 Apr 15 15:32:34 itv-usvr-01 sshd[2035]: Invalid user wildfly from 80.211.177.243	2020-04-15 18:37:53
185.79.115.147	attackspambots	WordPress XMLRPC scan :: 185.79.115.147 0.072 BYPASS [15/Apr/2020:09:48:11 0000] [censored_2] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-15 18:16:39
5.196.65.74	attackbots	CMS (WordPress or Joomla) login attempt.	2020-04-15 18:16:57

Recently Reported IPs

46.50.122.41	193.124.115.68	132.148.200.129	196.171.47.75
151.62.88.181	49.73.4.124	67.205.42.196	180.65.131.11
137.117.170.24	198.211.96.226	187.167.71.83	128.199.145.14
75.38.216.58	189.99.32.201	49.233.152.245	162.243.144.160
162.243.144.245	41.80.40.160	84.200.229.42	66.176.210.163