5.55.0.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Vodafone-Panafon Hellenic Telecommunications Company SA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	DATE:2019-07-28 13:29:20, IP:5.55.0.12, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-28 21:12:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.55.0.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55026
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.55.0.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 28 21:12:02 CST 2019
;; MSG SIZE  rcvd: 113

Host info

12.0.55.5.in-addr.arpa domain name pointer ppp005055000012.access.hol.gr.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.0.55.5.in-addr.arpa	name = ppp005055000012.access.hol.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.254.0.160	attack	Oct 5 15:38:30 MK-Soft-VM5 sshd[9867]: Failed password for root from 188.254.0.160 port 42178 ssh2 ...	2019-10-06 00:52:52
80.58.157.231	attackspam	Oct 5 05:56:51 web9 sshd\[8517\]: Invalid user !q@w\#e\$r from 80.58.157.231 Oct 5 05:56:51 web9 sshd\[8517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.58.157.231 Oct 5 05:56:53 web9 sshd\[8517\]: Failed password for invalid user !q@w\#e\$r from 80.58.157.231 port 11045 ssh2 Oct 5 06:01:15 web9 sshd\[9120\]: Invalid user Lion1@3 from 80.58.157.231 Oct 5 06:01:15 web9 sshd\[9120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.58.157.231	2019-10-06 00:47:07
89.40.122.128	attackbots	DATE:2019-10-05 13:33:10,IP:89.40.122.128,MATCHES:10,PORT:ssh	2019-10-06 00:59:52
207.148.127.239	attackbotsspam	WordPress wp-login brute force :: 207.148.127.239 0.040 BYPASS [05/Oct/2019:21:33:57 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-06 00:35:08
61.12.38.162	attack	2019-10-05T10:12:38.0913411495-001 sshd\[23035\]: Failed password for root from 61.12.38.162 port 40060 ssh2 2019-10-05T10:23:04.5365381495-001 sshd\[23677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.38.162 user=root 2019-10-05T10:23:06.6171411495-001 sshd\[23677\]: Failed password for root from 61.12.38.162 port 34386 ssh2 2019-10-05T10:28:16.4588721495-001 sshd\[24045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.38.162 user=root 2019-10-05T10:28:18.7052861495-001 sshd\[24045\]: Failed password for root from 61.12.38.162 port 45664 ssh2 2019-10-05T10:33:26.9053431495-001 sshd\[24399\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.38.162 user=root ...	2019-10-06 01:12:38
92.222.69.186	attackspambots	Oct 5 18:10:56 pkdns2 sshd\[40850\]: Invalid user admin from 92.222.69.186Oct 5 18:10:58 pkdns2 sshd\[40850\]: Failed password for invalid user admin from 92.222.69.186 port 39990 ssh2Oct 5 18:11:01 pkdns2 sshd\[40852\]: Invalid user admin from 92.222.69.186Oct 5 18:11:03 pkdns2 sshd\[40852\]: Failed password for invalid user admin from 92.222.69.186 port 42260 ssh2Oct 5 18:11:05 pkdns2 sshd\[40876\]: Invalid user admin from 92.222.69.186Oct 5 18:11:07 pkdns2 sshd\[40876\]: Failed password for invalid user admin from 92.222.69.186 port 44528 ssh2 ...	2019-10-06 01:07:45
49.88.112.113	attackspambots	Oct 5 07:07:48 web9 sshd\[19126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 5 07:07:50 web9 sshd\[19126\]: Failed password for root from 49.88.112.113 port 59865 ssh2 Oct 5 07:08:19 web9 sshd\[19197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 5 07:08:21 web9 sshd\[19197\]: Failed password for root from 49.88.112.113 port 17855 ssh2 Oct 5 07:08:23 web9 sshd\[19197\]: Failed password for root from 49.88.112.113 port 17855 ssh2	2019-10-06 01:10:13
106.12.11.160	attackbots	Oct 5 18:58:20 ns3110291 sshd\[30074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.11.160 user=root Oct 5 18:58:22 ns3110291 sshd\[30074\]: Failed password for root from 106.12.11.160 port 46278 ssh2 Oct 5 19:02:57 ns3110291 sshd\[30381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.11.160 user=root Oct 5 19:03:00 ns3110291 sshd\[30381\]: Failed password for root from 106.12.11.160 port 54000 ssh2 Oct 5 19:07:46 ns3110291 sshd\[30522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.11.160 user=root ...	2019-10-06 01:13:36
52.233.166.76	attackbotsspam	Oct 5 06:10:06 kapalua sshd\[23820\]: Failed password for invalid user P4ssw0rd12 from 52.233.166.76 port 43012 ssh2 Oct 5 06:14:57 kapalua sshd\[24407\]: Invalid user Santos_123 from 52.233.166.76 Oct 5 06:14:57 kapalua sshd\[24407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.233.166.76 Oct 5 06:14:59 kapalua sshd\[24407\]: Failed password for invalid user Santos_123 from 52.233.166.76 port 56552 ssh2 Oct 5 06:19:50 kapalua sshd\[24874\]: Invalid user Joker123 from 52.233.166.76	2019-10-06 00:54:04
109.98.94.89	attack	DATE:2019-10-05 13:34:00, IP:109.98.94.89, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-10-06 00:33:55
23.94.16.72	attackspambots	Triggered by Fail2Ban at Vostok web server	2019-10-06 00:46:43
129.204.58.180	attackspambots	Oct 5 12:56:59 plusreed sshd[18883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.58.180 user=root Oct 5 12:57:01 plusreed sshd[18883]: Failed password for root from 129.204.58.180 port 34976 ssh2 ...	2019-10-06 00:58:45
45.124.4.98	attackbotsspam	Unauthorized connection attempt from IP address 45.124.4.98 on Port 445(SMB)	2019-10-06 01:11:34
218.92.0.208	attackspam	Oct 5 18:28:14 eventyay sshd[15716]: Failed password for root from 218.92.0.208 port 11810 ssh2 Oct 5 18:28:53 eventyay sshd[15740]: Failed password for root from 218.92.0.208 port 23887 ssh2 Oct 5 18:28:55 eventyay sshd[15740]: Failed password for root from 218.92.0.208 port 23887 ssh2 ...	2019-10-06 00:36:43
86.188.246.2	attackspambots	Oct 5 05:55:17 sachi sshd\[12623\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.188.246.2 user=root Oct 5 05:55:19 sachi sshd\[12623\]: Failed password for root from 86.188.246.2 port 44082 ssh2 Oct 5 05:59:23 sachi sshd\[12962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.188.246.2 user=root Oct 5 05:59:25 sachi sshd\[12962\]: Failed password for root from 86.188.246.2 port 35849 ssh2 Oct 5 06:03:28 sachi sshd\[13304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.188.246.2 user=root	2019-10-06 00:45:55

Recently Reported IPs

243.113.190.230	233.231.16.243	27.171.171.174	133.31.55.99
174.232.89.125	220.101.187.28	86.220.216.42	242.250.158.168
75.156.122.248	62.105.90.174	168.197.117.255	116.88.90.224
118.15.32.13	129.90.205.89	221.144.61.118	198.2.231.13
32.100.136.54	150.165.71.101	15.121.86.15	106.36.158.83