5.55.85.120 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Vodafone-Panafon Hellenic Telecommunications Company SA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Telnet Server BruteForce Attack	2019-07-31 13:50:46

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.55.85.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33824
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.55.85.120.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 13:50:35 CST 2019
;; MSG SIZE  rcvd: 115

Host info

120.85.55.5.in-addr.arpa domain name pointer ppp005055085120.access.hol.gr.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
120.85.55.5.in-addr.arpa	name = ppp005055085120.access.hol.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
20.53.9.27	attackbotsspam	Aug 27 23:30:56 lnxmail61 postfix/smtps/smtpd[15308]: warning: unknown[20.53.9.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 06:33:17
179.113.49.14	attackspam	Aug 26 14:45:39 xxxxxxx5185820 sshd[15805]: reveeclipse mapping checking getaddrinfo for 179-113-49-14.user.vivozap.com.br [179.113.49.14] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 26 14:45:39 xxxxxxx5185820 sshd[15805]: Invalid user cacheusr from 179.113.49.14 port 39117 Aug 26 14:45:39 xxxxxxx5185820 sshd[15805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.113.49.14 Aug 26 14:45:41 xxxxxxx5185820 sshd[15805]: Failed password for invalid user cacheusr from 179.113.49.14 port 39117 ssh2 Aug 26 14:45:42 xxxxxxx5185820 sshd[15805]: Received disconnect from 179.113.49.14 port 39117:11: Bye Bye [preauth] Aug 26 14:45:42 xxxxxxx5185820 sshd[15805]: Disconnected from 179.113.49.14 port 39117 [preauth] Aug 26 14:53:06 xxxxxxx5185820 sshd[16648]: reveeclipse mapping checking getaddrinfo for 179-113-49-14.user.vivozap.com.br [179.113.49.14] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 26 14:53:06 xxxxxxx5185820 sshd[16648]: Invalid user p........ -------------------------------	2020-08-28 06:21:54
222.186.180.41	attackspam	2020-08-28T00:13:32.751203ns386461 sshd\[25147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root 2020-08-28T00:13:34.080636ns386461 sshd\[25147\]: Failed password for root from 222.186.180.41 port 61196 ssh2 2020-08-28T00:13:37.703482ns386461 sshd\[25147\]: Failed password for root from 222.186.180.41 port 61196 ssh2 2020-08-28T00:13:40.758633ns386461 sshd\[25147\]: Failed password for root from 222.186.180.41 port 61196 ssh2 2020-08-28T00:13:44.206538ns386461 sshd\[25147\]: Failed password for root from 222.186.180.41 port 61196 ssh2 ...	2020-08-28 06:14:25
45.58.42.254	attackbotsspam	(pop3d) Failed POP3 login from 45.58.42.254 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 28 01:38:20 ir1 dovecot[3110802]: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.58.42.254, lip=5.63.12.44, session=	2020-08-28 06:02:37
222.186.175.215	attack	2020-08-27T04:04:56.250719correo.[domain] sshd[13751]: Failed password for root from 222.186.175.215 port 5836 ssh2 2020-08-27T04:04:59.575702correo.[domain] sshd[13751]: Failed password for root from 222.186.175.215 port 5836 ssh2 2020-08-27T04:05:03.904680correo.[domain] sshd[13751]: Failed password for root from 222.186.175.215 port 5836 ssh2 ...	2020-08-28 06:07:07
190.14.57.130	attackspambots	1598562484 - 08/27/2020 23:08:04 Host: 190.14.57.130/190.14.57.130 Port: 445 TCP Blocked	2020-08-28 06:21:25
63.83.74.18	attack	Postfix attempt blocked due to public blacklist entry	2020-08-28 06:26:46
179.0.160.21	attackspam	Invalid user test from 179.0.160.21 port 38704	2020-08-28 06:11:30
113.200.60.74	attack	Aug 27 23:50:49 [host] sshd[19930]: pam_unix(sshd: Aug 27 23:50:51 [host] sshd[19930]: Failed passwor Aug 27 23:53:22 [host] sshd[19985]: Invalid user d	2020-08-28 06:01:22
118.89.71.142	attack	Aug 28 00:09:52 server sshd[53128]: Failed password for root from 118.89.71.142 port 33132 ssh2 Aug 28 00:14:57 server sshd[55563]: Failed password for invalid user owncloud from 118.89.71.142 port 33040 ssh2 Aug 28 00:20:05 server sshd[58263]: Failed password for invalid user ypf from 118.89.71.142 port 32956 ssh2	2020-08-28 06:23:48
138.197.89.212	attack	Invalid user csserver from 138.197.89.212 port 37082	2020-08-28 06:04:41
89.187.0.3	attackbots	Aug 26 17:46:59 online-web-1 sshd[3023933]: Invalid user nagios from 89.187.0.3 port 44358 Aug 26 17:46:59 online-web-1 sshd[3023933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.187.0.3 Aug 26 17:47:01 online-web-1 sshd[3023933]: Failed password for invalid user nagios from 89.187.0.3 port 44358 ssh2 Aug 26 17:47:02 online-web-1 sshd[3023933]: Received disconnect from 89.187.0.3 port 44358:11: Bye Bye [preauth] Aug 26 17:47:02 online-web-1 sshd[3023933]: Disconnected from 89.187.0.3 port 44358 [preauth] Aug 26 17:51:59 online-web-1 sshd[3024261]: Received disconnect from 89.187.0.3 port 39956:11: Bye Bye [preauth] Aug 26 17:51:59 online-web-1 sshd[3024261]: Disconnected from 89.187.0.3 port 39956 [preauth] Aug 26 17:54:33 online-web-1 sshd[3025154]: Invalid user ebook from 89.187.0.3 port 52454 Aug 26 17:54:33 online-web-1 sshd[3025154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos........ -------------------------------	2020-08-28 06:29:46
196.52.43.99	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-28 06:25:32
91.229.112.3	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 77 - port: 7045 proto: tcp cat: Misc Attackbytes: 60	2020-08-28 06:09:39
138.197.25.187	attackspam	Aug 28 00:02:28 lnxmysql61 sshd[24253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.25.187 Aug 28 00:02:30 lnxmysql61 sshd[24253]: Failed password for invalid user cb from 138.197.25.187 port 34702 ssh2 Aug 28 00:06:08 lnxmysql61 sshd[20097]: Failed password for root from 138.197.25.187 port 41966 ssh2	2020-08-28 06:22:13

Recently Reported IPs

186.88.78.61	189.126.219.218	167.71.9.233	125.161.105.40
183.82.3.248	200.54.108.33	163.179.32.100	65.105.149.208
106.12.86.56	218.17.228.216	180.126.130.101	35.233.75.57
14.247.25.12	210.209.68.67	201.243.16.156	154.125.226.105
101.249.16.24	182.61.58.131	177.87.68.21	94.187.131.84