116.55.1.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.55.103.37	attackspam	Unauthorized connection attempt from IP address 116.55.103.37 on Port 445(SMB)	2020-09-02 14:59:40
116.55.103.37	attackspambots	Unauthorized connection attempt from IP address 116.55.103.37 on Port 445(SMB)	2020-09-02 08:01:01
116.55.103.37	attackbots	1598616344 - 08/28/2020 14:05:44 Host: 116.55.103.37/116.55.103.37 Port: 445 TCP Blocked	2020-08-29 00:31:42
116.55.130.16	attackspam	06/06/2020-16:45:13.959114 116.55.130.16 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-07 06:05:52
116.55.103.37	attackbotsspam	Unauthorized connection attempt detected from IP address 116.55.103.37 to port 445	2020-05-31 03:41:31
116.55.140.149	attack	Automatic report - Banned IP Access	2020-03-14 01:26:09
116.55.121.82	attackbotsspam	Honeypot attack, port: 5555, PTR: 82.121.55.116.broad.km.yn.dynamic.163data.com.cn.	2020-03-01 13:12:48
116.55.101.26	attackspam	Unauthorized connection attempt from IP address 116.55.101.26 on Port 445(SMB)	2019-12-25 21:38:38
116.55.140.245	attack	badbot	2019-11-20 19:11:28
116.55.117.32	attackspambots	Unauthorised access (Oct 11) SRC=116.55.117.32 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=1054 TCP DPT=8080 WINDOW=9228 SYN Unauthorised access (Oct 10) SRC=116.55.117.32 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=37808 TCP DPT=8080 WINDOW=21783 SYN Unauthorised access (Oct 9) SRC=116.55.117.32 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=42657 TCP DPT=8080 WINDOW=10500 SYN Unauthorised access (Oct 9) SRC=116.55.117.32 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=61520 TCP DPT=8080 WINDOW=10500 SYN	2019-10-11 15:11:32
116.55.197.54	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/116.55.197.54/ CN - 1H : (516) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 116.55.197.54 CIDR : 116.55.192.0/19 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 13 3H - 32 6H - 59 12H - 115 24H - 217 DateTime : 2019-10-09 15:06:38 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 21:23:04
116.55.123.190	attackbots	firewall-block, port(s): 5555/tcp	2019-07-07 10:33:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.55.1.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10536
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.55.1.5.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:22:59 CST 2022
;; MSG SIZE  rcvd: 103

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 116.55.1.5.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.184.22	attack	May 29 07:52:38 onepixel sshd[2132610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.184.22 May 29 07:52:38 onepixel sshd[2132610]: Invalid user sonny from 106.13.184.22 port 41094 May 29 07:52:41 onepixel sshd[2132610]: Failed password for invalid user sonny from 106.13.184.22 port 41094 ssh2 May 29 07:56:16 onepixel sshd[2133089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.184.22 user=root May 29 07:56:18 onepixel sshd[2133089]: Failed password for root from 106.13.184.22 port 58586 ssh2	2020-05-29 16:08:57
180.76.165.254	attackbots	May 28 22:26:28 web1 sshd\[18309\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.165.254 user=root May 28 22:26:30 web1 sshd\[18309\]: Failed password for root from 180.76.165.254 port 47042 ssh2 May 28 22:31:03 web1 sshd\[18810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.165.254 user=root May 28 22:31:05 web1 sshd\[18810\]: Failed password for root from 180.76.165.254 port 46298 ssh2 May 28 22:35:22 web1 sshd\[19288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.165.254 user=root	2020-05-29 16:39:17
115.213.234.86	attackspambots	(CN/China/-) SMTP Bruteforcing attempts	2020-05-29 16:03:34
190.85.54.158	attackbots	May 29 06:17:43 ns382633 sshd\[12369\]: Invalid user addict from 190.85.54.158 port 47677 May 29 06:17:43 ns382633 sshd\[12369\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.54.158 May 29 06:17:45 ns382633 sshd\[12369\]: Failed password for invalid user addict from 190.85.54.158 port 47677 ssh2 May 29 06:24:55 ns382633 sshd\[13561\]: Invalid user sean from 190.85.54.158 port 36268 May 29 06:24:55 ns382633 sshd\[13561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.54.158	2020-05-29 16:23:36
126.64.226.220	attackspam	firewall-block, port(s): 23/tcp	2020-05-29 16:33:13
45.14.150.51	attack	<6 unauthorized SSH connections	2020-05-29 16:38:15
61.79.72.39	attack	Automatic report - XMLRPC Attack	2020-05-29 16:14:26
37.18.40.167	attack	Invalid user djones from 37.18.40.167 port 53470	2020-05-29 16:43:02
110.224.40.187	attack	Email rejected due to spam filtering	2020-05-29 16:20:19
112.85.42.181	attackspambots	2020-05-29T11:13:31.209884afi-git.jinr.ru sshd[17554]: Failed password for root from 112.85.42.181 port 43391 ssh2 2020-05-29T11:13:34.852766afi-git.jinr.ru sshd[17554]: Failed password for root from 112.85.42.181 port 43391 ssh2 2020-05-29T11:13:38.710685afi-git.jinr.ru sshd[17554]: Failed password for root from 112.85.42.181 port 43391 ssh2 2020-05-29T11:13:38.710853afi-git.jinr.ru sshd[17554]: error: maximum authentication attempts exceeded for root from 112.85.42.181 port 43391 ssh2 [preauth] 2020-05-29T11:13:38.710867afi-git.jinr.ru sshd[17554]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-29 16:13:51
127.0.0.1	attackbotsspam	Test Connectivity	2020-05-29 16:25:59
182.23.104.231	attack	2020-05-29T10:19:07.646826amanda2.illicoweb.com sshd\[8462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.104.231 user=root 2020-05-29T10:19:09.890018amanda2.illicoweb.com sshd\[8462\]: Failed password for root from 182.23.104.231 port 36230 ssh2 2020-05-29T10:23:13.388546amanda2.illicoweb.com sshd\[8676\]: Invalid user ching from 182.23.104.231 port 42240 2020-05-29T10:23:13.393480amanda2.illicoweb.com sshd\[8676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.104.231 2020-05-29T10:23:15.406047amanda2.illicoweb.com sshd\[8676\]: Failed password for invalid user ching from 182.23.104.231 port 42240 ssh2 ...	2020-05-29 16:26:44
171.244.84.60	attackbots	Port probing on unauthorized port 445	2020-05-29 16:36:55
93.39.116.254	attackbotsspam	k+ssh-bruteforce	2020-05-29 16:26:16
182.18.59.187	attackbots	May 29 05:51:59 debian-2gb-nbg1-2 kernel: \[12983106.550447\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=182.18.59.187 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=40861 PROTO=TCP SPT=59807 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-29 16:18:06

Recently Reported IPs

116.54.98.69	116.54.98.54	116.54.98.93	116.55.246.163
116.55.13.36	116.74.157.13	116.74.126.78	116.74.18.161
116.74.134.141	116.74.254.196	116.74.18.35	116.74.125.185
116.74.27.246	116.74.20.72	116.74.32.164	116.74.33.160
116.74.22.36	116.74.34.195	116.74.59.209	116.74.47.244