5.55.0.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Vodafone-Panafon Hellenic Telecommunications Company SA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	DATE:2019-07-28 13:29:20, IP:5.55.0.12, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-28 21:12:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.55.0.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55026
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.55.0.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 28 21:12:02 CST 2019
;; MSG SIZE  rcvd: 113

Host info

12.0.55.5.in-addr.arpa domain name pointer ppp005055000012.access.hol.gr.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.0.55.5.in-addr.arpa	name = ppp005055000012.access.hol.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
199.187.120.60	attack	$f2bV_matches	2020-03-30 03:36:42
128.199.81.66	attackbotsspam	2020-03-29T19:28:30.260137upcloud.m0sh1x2.com sshd[26436]: Invalid user fdn from 128.199.81.66 port 52370	2020-03-30 03:42:12
80.17.244.2	attack	Mar 29 21:27:17 santamaria sshd\[3162\]: Invalid user jw from 80.17.244.2 Mar 29 21:27:17 santamaria sshd\[3162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.17.244.2 Mar 29 21:27:19 santamaria sshd\[3162\]: Failed password for invalid user jw from 80.17.244.2 port 60064 ssh2 ...	2020-03-30 04:01:40
88.247.111.58	attackbotsspam	20/3/29@08:42:26: FAIL: Alarm-Network address from=88.247.111.58 20/3/29@08:42:27: FAIL: Alarm-Network address from=88.247.111.58 ...	2020-03-30 04:03:29
80.211.13.167	attackbots	Mar 29 13:52:10 server1 sshd\[2893\]: Failed password for invalid user dyw from 80.211.13.167 port 35222 ssh2 Mar 29 13:57:06 server1 sshd\[4445\]: Invalid user gfl from 80.211.13.167 Mar 29 13:57:06 server1 sshd\[4445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.13.167 Mar 29 13:57:09 server1 sshd\[4445\]: Failed password for invalid user gfl from 80.211.13.167 port 47038 ssh2 Mar 29 14:02:04 server1 sshd\[6350\]: Invalid user yuanliang from 80.211.13.167 ...	2020-03-30 04:09:32
106.38.70.178	attackbots	" "	2020-03-30 03:47:22
52.83.181.192	attackbots	Mar 29 20:15:38 MainVPS sshd[10219]: Invalid user portugues from 52.83.181.192 port 34078 Mar 29 20:15:38 MainVPS sshd[10219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.83.181.192 Mar 29 20:15:38 MainVPS sshd[10219]: Invalid user portugues from 52.83.181.192 port 34078 Mar 29 20:15:40 MainVPS sshd[10219]: Failed password for invalid user portugues from 52.83.181.192 port 34078 ssh2 Mar 29 20:20:08 MainVPS sshd[19054]: Invalid user ycm from 52.83.181.192 port 56151 ...	2020-03-30 04:13:51
120.92.151.17	attackbotsspam	2020-03-29T19:41:55.618316homeassistant sshd[6825]: Invalid user virtual from 120.92.151.17 port 9630 2020-03-29T19:41:55.627257homeassistant sshd[6825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.151.17 ...	2020-03-30 03:44:10
194.150.68.145	attackbotsspam	k+ssh-bruteforce	2020-03-30 04:14:40
51.254.39.183	attack	(sshd) Failed SSH login from 51.254.39.183 (FR/France/-/-/183.ip-51-254-39.eu/[AS16276 OVH SAS]): 1 in the last 3600 secs	2020-03-30 03:55:10
185.177.10.12	attackspam	Mar 29 21:27:17 meumeu sshd[3367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.177.10.12 Mar 29 21:27:18 meumeu sshd[3367]: Failed password for invalid user vei from 185.177.10.12 port 32815 ssh2 Mar 29 21:31:13 meumeu sshd[3901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.177.10.12 ...	2020-03-30 03:47:58
35.181.103.139	attack	Brute force attack against VPN service	2020-03-30 03:35:22
51.38.131.254	attackbots	Mar 29 15:46:35 NPSTNNYC01T sshd[13083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.131.254 Mar 29 15:46:36 NPSTNNYC01T sshd[13083]: Failed password for invalid user mpc from 51.38.131.254 port 45054 ssh2 Mar 29 15:51:00 NPSTNNYC01T sshd[13360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.131.254 ...	2020-03-30 04:02:02
199.247.13.223	attack	Unauthorized SSH login attempts	2020-03-30 03:38:17
176.9.169.14	attackspambots	Invalid user gdl from 176.9.169.14 port 57092	2020-03-30 03:54:52

Recently Reported IPs

243.113.190.230	233.231.16.243	27.171.171.174	133.31.55.99
174.232.89.125	220.101.187.28	86.220.216.42	242.250.158.168
75.156.122.248	62.105.90.174	168.197.117.255	116.88.90.224
118.15.32.13	129.90.205.89	221.144.61.118	198.2.231.13
32.100.136.54	150.165.71.101	15.121.86.15	106.36.158.83