119.55.57.205 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Jilin Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorised access (Sep 28) SRC=119.55.57.205 LEN=40 TTL=49 ID=60844 TCP DPT=8080 WINDOW=28422 SYN Unauthorised access (Sep 27) SRC=119.55.57.205 LEN=40 TTL=49 ID=14056 TCP DPT=8080 WINDOW=28422 SYN	2019-09-29 06:24:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.55.57.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42431
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.55.57.205.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092801 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 06:24:09 CST 2019
;; MSG SIZE  rcvd: 117

Host info

205.57.55.119.in-addr.arpa domain name pointer 205.57.55.119.adsl-pool.jlccptt.net.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
205.57.55.119.in-addr.arpa	name = 205.57.55.119.adsl-pool.jlccptt.net.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.109.11.209	attackspam	Jul 23 17:42:39 areeb-Workstation sshd\[5692\]: Invalid user east from 89.109.11.209 Jul 23 17:42:39 areeb-Workstation sshd\[5692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.109.11.209 Jul 23 17:42:40 areeb-Workstation sshd\[5692\]: Failed password for invalid user east from 89.109.11.209 port 43950 ssh2 ...	2019-07-23 20:21:12
165.22.122.13	attackspambots	Sql/code injection probe	2019-07-23 20:45:05
189.21.98.168	attack	Jul 23 14:31:33 OPSO sshd\[22598\]: Invalid user student1 from 189.21.98.168 port 46546 Jul 23 14:31:33 OPSO sshd\[22598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.21.98.168 Jul 23 14:31:35 OPSO sshd\[22598\]: Failed password for invalid user student1 from 189.21.98.168 port 46546 ssh2 Jul 23 14:37:09 OPSO sshd\[23574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.21.98.168 user=backup Jul 23 14:37:11 OPSO sshd\[23574\]: Failed password for backup from 189.21.98.168 port 42932 ssh2	2019-07-23 20:40:32
27.254.137.144	attackspam	Jul 23 07:48:33 vps200512 sshd\[29458\]: Invalid user me from 27.254.137.144 Jul 23 07:48:33 vps200512 sshd\[29458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 Jul 23 07:48:35 vps200512 sshd\[29458\]: Failed password for invalid user me from 27.254.137.144 port 55866 ssh2 Jul 23 07:54:28 vps200512 sshd\[29588\]: Invalid user a from 27.254.137.144 Jul 23 07:54:28 vps200512 sshd\[29588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144	2019-07-23 20:48:43
118.70.4.13	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 22:55:34,864 INFO [shellcode_manager] (118.70.4.13) no match, writing hexdump (0a0b7dfd4562305b9e54750672f8aaa7 :2351958) - MS17010 (EternalBlue)	2019-07-23 20:28:13
94.101.81.197	attackspam	www.ft-1848-basketball.de 94.101.81.197 \[23/Jul/2019:11:18:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.ft-1848-basketball.de 94.101.81.197 \[23/Jul/2019:11:18:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 2143 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-23 20:26:42
46.101.242.117	attack	Jul 23 12:38:54 localhost sshd\[5788\]: Invalid user wuhao from 46.101.242.117 port 51018 Jul 23 12:38:54 localhost sshd\[5788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.242.117 Jul 23 12:38:56 localhost sshd\[5788\]: Failed password for invalid user wuhao from 46.101.242.117 port 51018 ssh2 Jul 23 12:43:32 localhost sshd\[5999\]: Invalid user nadim from 46.101.242.117 port 45162 Jul 23 12:43:32 localhost sshd\[5999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.242.117 ...	2019-07-23 20:49:26
190.221.50.90	attack	Jul 23 13:09:50 debian sshd\[31054\]: Invalid user mysql from 190.221.50.90 port 43379 Jul 23 13:09:50 debian sshd\[31054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.50.90 ...	2019-07-23 20:23:52
104.196.16.112	attackbots	Jul 23 14:47:38 herz-der-gamer sshd[28142]: Failed password for invalid user zabbix from 104.196.16.112 port 46732 ssh2 ...	2019-07-23 21:16:05
115.159.86.75	attack	Jul 23 14:46:46 vps691689 sshd[28028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.86.75 Jul 23 14:46:48 vps691689 sshd[28028]: Failed password for invalid user ms from 115.159.86.75 port 34722 ssh2 ...	2019-07-23 20:52:59
157.230.36.189	attackbots	Jul 23 14:19:49 tuxlinux sshd[24432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.36.189 user=root ...	2019-07-23 20:33:13
104.237.208.115	attackspam	Jul 23 15:46:09 yabzik sshd[18540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.237.208.115 Jul 23 15:46:11 yabzik sshd[18540]: Failed password for invalid user git from 104.237.208.115 port 42880 ssh2 Jul 23 15:51:01 yabzik sshd[20029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.237.208.115	2019-07-23 21:02:45
136.243.146.212	attack	page=9%20or%20(1,2)=(select*from(select%20name_const(CHAR(111,108,111,108,111,115,104,101,114),1),name_const(CHAR(111,108,111,108,111,115,104,101,114),1))a)%20--%20and%201%3D1 Yes	2019-07-23 20:35:01
59.4.29.177	attack	Telnetd brute force attack detected by fail2ban	2019-07-23 20:39:59
51.255.174.215	attack	Jul 23 14:10:20 srv03 sshd\[7115\]: Invalid user ftp_test from 51.255.174.215 port 59986 Jul 23 14:10:20 srv03 sshd\[7115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.174.215 Jul 23 14:10:22 srv03 sshd\[7115\]: Failed password for invalid user ftp_test from 51.255.174.215 port 59986 ssh2	2019-07-23 20:37:15

Recently Reported IPs

247.167.144.253	197.240.56.140	207.16.97.97	100.7.14.186
170.3.58.62	138.42.250.148	206.207.101.99	82.124.217.243
252.38.113.237	84.219.45.162	95.38.76.22	82.254.239.88
51.77.230.23	130.184.78.213	126.44.178.115	53.58.103.175
125.234.88.71	175.235.72.12	6.76.18.178	140.16.144.105