145.255.5.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Ufanet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 145.255.5.55 to port 81 [T]	2020-05-09 02:19:43

Comments on same subnet:

IP	Type	Details	Datetime
145.255.5.101	attack	Honeypot attack, port: 445, PTR: 145.255.5.101.static.ufanet.ru.	2020-09-18 00:51:34
145.255.5.101	attackspambots	Honeypot attack, port: 445, PTR: 145.255.5.101.static.ufanet.ru.	2020-09-17 16:53:00
145.255.5.101	attack	Honeypot attack, port: 445, PTR: 145.255.5.101.static.ufanet.ru.	2020-09-17 07:58:34
145.255.5.53	attackbots	Unauthorized connection attempt detected from IP address 145.255.5.53 to port 8080 [T]	2020-01-20 07:07:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.255.5.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47932
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.255.5.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 06:45:43 CST 2019
;; MSG SIZE  rcvd: 116

Host info

55.5.255.145.in-addr.arpa domain name pointer 145.255.5.55.static.ufanet.ru.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
55.5.255.145.in-addr.arpa	name = 145.255.5.55.static.ufanet.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.128.113.173	attackbotsspam	smtp auth brute force	2020-01-14 07:15:48
222.186.30.187	attack	Jan 14 00:39:14 server2 sshd\[16824\]: User root from 222.186.30.187 not allowed because not listed in AllowUsers Jan 14 00:39:14 server2 sshd\[16826\]: User root from 222.186.30.187 not allowed because not listed in AllowUsers Jan 14 00:39:15 server2 sshd\[16828\]: User root from 222.186.30.187 not allowed because not listed in AllowUsers Jan 14 00:39:15 server2 sshd\[16829\]: User root from 222.186.30.187 not allowed because not listed in AllowUsers Jan 14 00:48:41 server2 sshd\[17497\]: User root from 222.186.30.187 not allowed because not listed in AllowUsers Jan 14 00:48:41 server2 sshd\[17495\]: User root from 222.186.30.187 not allowed because not listed in AllowUsers	2020-01-14 06:50:45
190.200.238.119	attackspam	SSH bruteforce	2020-01-14 07:23:51
2.139.209.78	attack	Unauthorized connection attempt detected from IP address 2.139.209.78 to port 2220 [J]	2020-01-14 07:17:28
185.176.27.254	attack	01/13/2020-18:07:28.977114 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-01-14 07:13:43
112.214.136.5	attackspam	Jan 13 12:52:09 sachi sshd\[3407\]: Invalid user ftp_user from 112.214.136.5 Jan 13 12:52:09 sachi sshd\[3407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.214.136.5 Jan 13 12:52:11 sachi sshd\[3407\]: Failed password for invalid user ftp_user from 112.214.136.5 port 52510 ssh2 Jan 13 12:55:20 sachi sshd\[3637\]: Invalid user cacti from 112.214.136.5 Jan 13 12:55:20 sachi sshd\[3637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.214.136.5	2020-01-14 06:57:36
123.122.48.247	attack	web-1 [ssh_2] SSH Attack	2020-01-14 07:19:51
217.182.194.95	attack	Jan 13 22:23:06 MK-Soft-VM7 sshd[16421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.194.95 Jan 13 22:23:07 MK-Soft-VM7 sshd[16421]: Failed password for invalid user office from 217.182.194.95 port 51516 ssh2 ...	2020-01-14 06:52:38
46.148.20.25	attack	Jan 13 21:13:39 XXX sshd[53102]: Invalid user test from 46.148.20.25 port 40358	2020-01-14 06:53:53
222.186.180.8	attackspam	2020-01-13T23:59:26.597770scmdmz1 sshd[18319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root 2020-01-13T23:59:28.152552scmdmz1 sshd[18319]: Failed password for root from 222.186.180.8 port 47428 ssh2 2020-01-13T23:59:32.003308scmdmz1 sshd[18319]: Failed password for root from 222.186.180.8 port 47428 ssh2 2020-01-13T23:59:26.597770scmdmz1 sshd[18319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root 2020-01-13T23:59:28.152552scmdmz1 sshd[18319]: Failed password for root from 222.186.180.8 port 47428 ssh2 2020-01-13T23:59:32.003308scmdmz1 sshd[18319]: Failed password for root from 222.186.180.8 port 47428 ssh2 2020-01-13T23:59:26.597770scmdmz1 sshd[18319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root 2020-01-13T23:59:28.152552scmdmz1 sshd[18319]: Failed password for root from 222.186.180.8 port 47428 ssh2 2020-01-1	2020-01-14 07:04:48
222.186.173.180	attackbots	$f2bV_matches	2020-01-14 06:55:03
47.144.133.54	attackspam	Unauthorized connection attempt detected from IP address 47.144.133.54 to port 22 [J]	2020-01-14 07:01:46
88.121.22.235	attackspambots	2020-01-13 23:07:21,130 fail2ban.actions: WARNING [ssh] Ban 88.121.22.235	2020-01-14 06:47:44
51.158.25.170	attack	13.01.2020 21:31:54 Connection to port 5080 blocked by firewall	2020-01-14 07:08:56
198.108.67.94	attackspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-14 06:51:25

Recently Reported IPs

186.16.103.220	187.108.213.111	121.242.170.190	57.238.107.169
62.12.86.150	62.16.44.37	77.243.183.16	163.181.98.200
75.186.115.244	81.242.120.155	185.177.151.34	159.228.138.225
118.25.192.84	45.136.144.249	186.178.61.140	67.189.50.76
68.183.151.169	153.36.233.244	211.194.203.190	147.116.208.125