185.55.2.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
185.55.242.31	attackbotsspam	Lines containing failures of 185.55.242.31 Oct 6 18:15:18 srv02 postfix/smtpd[23160]: connect from unknown[185.55.242.31] Oct x@x Oct 6 18:15:18 srv02 postfix/smtpd[23160]: disconnect from unknown[185.55.242.31] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Oct 6 22:36:52 srv02 postfix/smtpd[7817]: connect from unknown[185.55.242.31] Oct x@x Oct 6 22:36:52 srv02 postfix/smtpd[7817]: disconnect from unknown[185.55.242.31] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Oct 6 22:36:56 srv02 postfix/smtpd[7817]: connect from unknown[185.55.242.31] Oct x@x Oct 6 22:36:56 srv02 postfix/smtpd[7817]: disconnect from unknown[185.55.242.31] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Oct 6 22:36:58 srv02 postfix/smtpd[7817]: connect from unknown[185.55.242.31] Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.55.242.31	2020-10-08 00:38:32
185.55.224.121	attackspambots	Spam from accdeptfedminagric.*	2020-08-29 02:08:37
185.55.24.71	attack	Jun 20 00:33:41 UTC__SANYALnet-Labs__cac14 sshd[22342]: Connection from 185.55.24.71 port 35464 on 64.137.176.112 port 22 Jun 20 00:33:42 UTC__SANYALnet-Labs__cac14 sshd[22342]: User r.r from 185.55.24.71 not allowed because not listed in AllowUsers Jun 20 00:33:42 UTC__SANYALnet-Labs__cac14 sshd[22342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.24.71 user=r.r Jun 20 00:33:44 UTC__SANYALnet-Labs__cac14 sshd[22342]: Failed password for invalid user r.r from 185.55.24.71 port 35464 ssh2 Jun 20 00:33:44 UTC__SANYALnet-Labs__cac14 sshd[22342]: Received disconnect from 185.55.24.71: 11: Bye Bye [preauth] Jun 20 00:41:27 UTC__SANYALnet-Labs__cac14 sshd[22488]: Connection from 185.55.24.71 port 58746 on 64.137.176.112 port 22 Jun 20 00:41:28 UTC__SANYALnet-Labs__cac14 sshd[22488]: Invalid user ghostnamelab from 185.55.24.71 Jun 20 00:41:28 UTC__SANYALnet-Labs__cac14 sshd[22488]: pam_unix(sshd:auth): authentication failure; ........ -------------------------------	2020-06-21 12:56:48
185.55.24.71	attackspambots	Jun 20 12:13:22 server sshd[1103]: Failed password for root from 185.55.24.71 port 33044 ssh2 Jun 20 12:15:54 server sshd[1329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.24.71 Jun 20 12:15:56 server sshd[1329]: Failed password for invalid user bruce from 185.55.24.71 port 49538 ssh2 ...	2020-06-20 18:38:57
185.55.242.61	attackspambots	scan z	2020-04-13 19:04:00
185.55.242.61	attackspam	20/4/13@00:00:00: FAIL: Alarm-Intrusion address from=185.55.242.61 ...	2020-04-13 12:03:02
185.55.226.123	attackspam	Nov 14 21:36:45 vps01 sshd[15988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 Nov 14 21:36:48 vps01 sshd[15988]: Failed password for invalid user csap from 185.55.226.123 port 53162 ssh2	2019-11-15 04:48:23
185.55.226.123	attackbots	Oct 29 15:58:54 server sshd\[23109\]: Invalid user ethan from 185.55.226.123 Oct 29 15:58:54 server sshd\[23109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 Oct 29 15:58:56 server sshd\[23109\]: Failed password for invalid user ethan from 185.55.226.123 port 57594 ssh2 Oct 29 16:15:56 server sshd\[27392\]: Invalid user flux from 185.55.226.123 Oct 29 16:15:56 server sshd\[27392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 ...	2019-10-30 01:22:52
185.55.226.123	attackspam	Oct 29 01:12:45 php1 sshd\[17168\]: Invalid user julien from 185.55.226.123 Oct 29 01:12:45 php1 sshd\[17168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 Oct 29 01:12:47 php1 sshd\[17168\]: Failed password for invalid user julien from 185.55.226.123 port 52622 ssh2 Oct 29 01:17:09 php1 sshd\[17675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 user=root Oct 29 01:17:11 php1 sshd\[17675\]: Failed password for root from 185.55.226.123 port 34620 ssh2	2019-10-29 19:28:10
185.55.226.123	attackspambots	$f2bV_matches	2019-10-26 23:45:30
185.55.226.123	attackspam	Oct 19 11:13:50 php1 sshd\[9494\]: Invalid user kjx from 185.55.226.123 Oct 19 11:13:50 php1 sshd\[9494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 Oct 19 11:13:51 php1 sshd\[9494\]: Failed password for invalid user kjx from 185.55.226.123 port 51774 ssh2 Oct 19 11:18:15 php1 sshd\[9958\]: Invalid user GIT from 185.55.226.123 Oct 19 11:18:15 php1 sshd\[9958\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123	2019-10-20 05:28:50
185.55.226.123	attack	Oct 9 13:58:59 core sshd[22780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 user=root Oct 9 13:59:01 core sshd[22780]: Failed password for root from 185.55.226.123 port 44240 ssh2 ...	2019-10-09 20:02:04
185.55.226.123	attack	Oct 5 15:36:07 mail sshd\[2104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 user=root Oct 5 15:36:09 mail sshd\[2104\]: Failed password for root from 185.55.226.123 port 46916 ssh2 Oct 5 15:40:35 mail sshd\[2565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 user=root Oct 5 15:40:37 mail sshd\[2565\]: Failed password for root from 185.55.226.123 port 58114 ssh2 Oct 5 15:44:54 mail sshd\[2934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 user=root	2019-10-05 21:58:06
185.55.226.123	attackbotsspam	Sep 25 03:29:15 php1 sshd\[24818\]: Invalid user user from 185.55.226.123 Sep 25 03:29:15 php1 sshd\[24818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123 Sep 25 03:29:17 php1 sshd\[24818\]: Failed password for invalid user user from 185.55.226.123 port 47576 ssh2 Sep 25 03:33:52 php1 sshd\[25163\]: Invalid user nm-openconnect from 185.55.226.123 Sep 25 03:33:52 php1 sshd\[25163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.55.226.123	2019-09-25 21:42:54
185.55.225.182	attackspambots	Sep 23 06:32:08 xb3 sshd[19450]: Address 185.55.225.182 maps to hosted-by.serverpars.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 23 06:32:10 xb3 sshd[19450]: Failed password for invalid user stone from 185.55.225.182 port 32958 ssh2 Sep 23 06:32:11 xb3 sshd[19450]: Received disconnect from 185.55.225.182: 11: Bye Bye [preauth] Sep 23 06:39:38 xb3 sshd[26207]: Address 185.55.225.182 maps to hosted-by.serverpars.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 23 06:39:40 xb3 sshd[26207]: Failed password for invalid user ewald from 185.55.225.182 port 34244 ssh2 Sep 23 06:39:40 xb3 sshd[26207]: Received disconnect from 185.55.225.182: 11: Bye Bye [preauth] Sep 23 06:49:41 xb3 sshd[27960]: Address 185.55.225.182 maps to hosted-by.serverpars.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 23 06:49:43 xb3 sshd[27960]: Failed password for invalid user lnx from 185.55.225.182 por........ -------------------------------	2019-09-25 19:05:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 185.55.2.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30918
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;185.55.2.214.			IN	A

;; AUTHORITY SECTION:
.			386	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:58:19 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 214.2.55.185.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 214.2.55.185.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.207.185.52	attack	Aug 2 15:42:59 hosting sshd[23483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.185.52 user=root Aug 2 15:43:01 hosting sshd[23483]: Failed password for root from 49.207.185.52 port 48235 ssh2 ...	2020-08-02 22:17:46
95.0.107.165	attackspambots	TCP src-port=18403 dst-port=25 Listed on abuseat-org barracuda zen-spamhaus (Project Honey Pot rated Suspicious) (32)	2020-08-02 22:25:02
14.215.165.133	attack	SSH brute-force attempt	2020-08-02 22:27:23
118.24.99.161	attackspam	SSH BruteForce Attack	2020-08-02 22:05:37
106.13.175.233	attack	2020-08-02T14:11:59+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-02 22:20:12
159.203.30.50	attack	scans once in preceeding hours on the ports (in chronological order) 19137 resulting in total of 1 scans from 159.203.0.0/16 block.	2020-08-02 22:46:37
49.88.112.69	attackbotsspam	Aug 2 15:48:26 vps sshd[341669]: Failed password for root from 49.88.112.69 port 58318 ssh2 Aug 2 15:48:27 vps sshd[341669]: Failed password for root from 49.88.112.69 port 58318 ssh2 Aug 2 15:50:00 vps sshd[347150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.69 user=root Aug 2 15:50:02 vps sshd[347150]: Failed password for root from 49.88.112.69 port 42232 ssh2 Aug 2 15:50:04 vps sshd[347150]: Failed password for root from 49.88.112.69 port 42232 ssh2 ...	2020-08-02 22:10:45
159.65.30.66	attackbotsspam	Aug 2 14:06:44 sip sshd[1168021]: Failed password for root from 159.65.30.66 port 52824 ssh2 Aug 2 14:11:28 sip sshd[1168067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.30.66 user=root Aug 2 14:11:30 sip sshd[1168067]: Failed password for root from 159.65.30.66 port 37392 ssh2 ...	2020-08-02 22:37:23
198.35.47.13	attack	Aug 2 14:09:36 server sshd[55142]: Failed password for root from 198.35.47.13 port 49142 ssh2 Aug 2 14:11:08 server sshd[55637]: Failed password for root from 198.35.47.13 port 53124 ssh2 Aug 2 14:11:49 server sshd[55787]: Failed password for root from 198.35.47.13 port 56206 ssh2	2020-08-02 22:23:50
144.172.91.177	attackspambots	TCP src-port=59906 dst-port=25 Listed on dnsbl-sorbs spamcop zen-spamhaus (27)	2020-08-02 22:39:44
87.246.7.12	attackspambots	Multiple failed SASL logins	2020-08-02 22:11:43
200.27.38.106	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-02 22:27:50
183.66.41.26	attack	20 attempts against mh-ssh on ice	2020-08-02 22:19:21
139.59.3.114	attackspam	2020-08-02T15:14:07.424152vps751288.ovh.net sshd\[25180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.114 user=root 2020-08-02T15:14:09.554445vps751288.ovh.net sshd\[25180\]: Failed password for root from 139.59.3.114 port 33777 ssh2 2020-08-02T15:18:47.799779vps751288.ovh.net sshd\[25202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.114 user=root 2020-08-02T15:18:49.704061vps751288.ovh.net sshd\[25202\]: Failed password for root from 139.59.3.114 port 38989 ssh2 2020-08-02T15:23:21.248097vps751288.ovh.net sshd\[25214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.114 user=root	2020-08-02 22:28:06
109.70.100.32	attackspambots	(mod_security) mod_security (id:210492) triggered by 109.70.100.32 (AT/Austria/tor-exit-anonymizer.appliedprivacy.net): 5 in the last 3600 secs	2020-08-02 22:24:10

Recently Reported IPs

188.149.64.144	39.185.195.139	190.171.158.139	94.75.131.78
180.105.224.14	108.62.116.171	58.96.153.140	187.163.88.11
186.185.50.227	115.212.188.8	79.25.102.242	208.30.100.29
122.160.13.231	178.135.244.221	188.6.95.222	116.72.27.44
116.109.184.218	162.158.198.84	77.43.128.188	35.87.174.107