5.55.0.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Vodafone-Panafon Hellenic Telecommunications Company SA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	DATE:2019-07-28 13:29:20, IP:5.55.0.12, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-28 21:12:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.55.0.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55026
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.55.0.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 28 21:12:02 CST 2019
;; MSG SIZE  rcvd: 113

Host info

12.0.55.5.in-addr.arpa domain name pointer ppp005055000012.access.hol.gr.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.0.55.5.in-addr.arpa	name = ppp005055000012.access.hol.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.114.177.239	attack	Jan 24 16:17:52 sd-53420 sshd\[13511\]: Invalid user test101 from 122.114.177.239 Jan 24 16:17:52 sd-53420 sshd\[13511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.177.239 Jan 24 16:17:54 sd-53420 sshd\[13511\]: Failed password for invalid user test101 from 122.114.177.239 port 42217 ssh2 Jan 24 16:23:19 sd-53420 sshd\[14407\]: User ftp from 122.114.177.239 not allowed because none of user's groups are listed in AllowGroups Jan 24 16:23:19 sd-53420 sshd\[14407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.177.239 user=ftp ...	2020-01-24 23:45:06
188.170.219.222	attackbots	Unauthorized connection attempt from IP address 188.170.219.222 on Port 445(SMB)	2020-01-24 23:11:10
42.188.163.140	attackspambots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-01-24 23:28:29
139.215.136.79	attack	13002/udp [2020-01-23]1pkt	2020-01-24 23:11:58
46.182.32.190	attackbotsspam	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-01-24 23:13:16
81.171.107.196	attackspambots	[2020-01-24 10:17:05] NOTICE[1148] chan_sip.c: Registration from '' failed for '81.171.107.196:59466' - Wrong password [2020-01-24 10:17:05] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-24T10:17:05.252-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="584",SessionID="0x7fd82c3e18a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.107.196/59466",Challenge="0ce3b4b1",ReceivedChallenge="0ce3b4b1",ReceivedHash="e7acbb15f73af2bdd73b5abb4bf2819d" [2020-01-24 10:17:37] NOTICE[1148] chan_sip.c: Registration from '' failed for '81.171.107.196:55351' - Wrong password [2020-01-24 10:17:37] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-24T10:17:37.990-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="9106",SessionID="0x7fd82c1014f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/81.171.107.1 ...	2020-01-24 23:30:52
202.141.231.13	attackspam	Unauthorized connection attempt from IP address 202.141.231.13 on Port 445(SMB)	2020-01-24 23:14:55
157.245.151.94	attack	Invalid user temp from 157.245.151.94 port 42050	2020-01-24 23:43:29
116.105.35.204	attackspam	Unauthorized connection attempt from IP address 116.105.35.204 on Port 445(SMB)	2020-01-24 23:19:38
138.197.171.149	attack	2020-01-25T01:46:21.558465luisaranguren sshd[1148923]: Invalid user mehdi from 138.197.171.149 port 46558 2020-01-25T01:46:24.315196luisaranguren sshd[1148923]: Failed password for invalid user mehdi from 138.197.171.149 port 46558 ssh2 ...	2020-01-24 23:40:02
118.200.116.76	attackspambots	445/tcp [2020-01-24]1pkt	2020-01-24 23:22:03
123.160.246.55	attack	Jan 24 16:31:28 localhost sshd\[2407\]: Invalid user ttttt from 123.160.246.55 port 57460 Jan 24 16:31:28 localhost sshd\[2407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.160.246.55 Jan 24 16:31:31 localhost sshd\[2407\]: Failed password for invalid user ttttt from 123.160.246.55 port 57460 ssh2	2020-01-24 23:44:47
181.14.220.7	attack	Jan 24 13:31:10 uapps sshd[4940]: Failed password for invalid user web from 181.14.220.7 port 5218 ssh2 Jan 24 13:31:11 uapps sshd[4940]: Received disconnect from 181.14.220.7: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.14.220.7	2020-01-24 23:34:54
187.103.250.111	attack	Unauthorized connection attempt from IP address 187.103.250.111 on Port 445(SMB)	2020-01-24 23:23:49
51.15.187.49	attack	Jan 24 14:48:09 OPSO sshd\[7918\]: Invalid user username from 51.15.187.49 port 44380 Jan 24 14:48:09 OPSO sshd\[7918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.187.49 Jan 24 14:48:10 OPSO sshd\[7918\]: Failed password for invalid user username from 51.15.187.49 port 44380 ssh2 Jan 24 14:49:29 OPSO sshd\[8103\]: Invalid user user from 51.15.187.49 port 56566 Jan 24 14:49:29 OPSO sshd\[8103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.187.49	2020-01-24 23:37:24

Recently Reported IPs

243.113.190.230	233.231.16.243	27.171.171.174	133.31.55.99
174.232.89.125	220.101.187.28	86.220.216.42	242.250.158.168
75.156.122.248	62.105.90.174	168.197.117.255	116.88.90.224
118.15.32.13	129.90.205.89	221.144.61.118	198.2.231.13
32.100.136.54	150.165.71.101	15.121.86.15	106.36.158.83