113.53.41.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: TOT Public Company Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Sep 4 18:52:29 rotator sshd\[7172\]: Invalid user admin from 113.53.41.55Sep 4 18:52:32 rotator sshd\[7172\]: Failed password for invalid user admin from 113.53.41.55 port 44707 ssh2Sep 4 18:52:35 rotator sshd\[7174\]: Invalid user admin from 113.53.41.55Sep 4 18:52:37 rotator sshd\[7174\]: Failed password for invalid user admin from 113.53.41.55 port 44845 ssh2Sep 4 18:52:40 rotator sshd\[7176\]: Invalid user admin from 113.53.41.55Sep 4 18:52:42 rotator sshd\[7176\]: Failed password for invalid user admin from 113.53.41.55 port 44964 ssh2 ...	2020-09-05 21:15:33
attackspam	Sep 4 18:52:29 rotator sshd\[7172\]: Invalid user admin from 113.53.41.55Sep 4 18:52:32 rotator sshd\[7172\]: Failed password for invalid user admin from 113.53.41.55 port 44707 ssh2Sep 4 18:52:35 rotator sshd\[7174\]: Invalid user admin from 113.53.41.55Sep 4 18:52:37 rotator sshd\[7174\]: Failed password for invalid user admin from 113.53.41.55 port 44845 ssh2Sep 4 18:52:40 rotator sshd\[7176\]: Invalid user admin from 113.53.41.55Sep 4 18:52:42 rotator sshd\[7176\]: Failed password for invalid user admin from 113.53.41.55 port 44964 ssh2 ...	2020-09-05 12:50:57
attackspam	Sep 4 18:52:29 rotator sshd\[7172\]: Invalid user admin from 113.53.41.55Sep 4 18:52:32 rotator sshd\[7172\]: Failed password for invalid user admin from 113.53.41.55 port 44707 ssh2Sep 4 18:52:35 rotator sshd\[7174\]: Invalid user admin from 113.53.41.55Sep 4 18:52:37 rotator sshd\[7174\]: Failed password for invalid user admin from 113.53.41.55 port 44845 ssh2Sep 4 18:52:40 rotator sshd\[7176\]: Invalid user admin from 113.53.41.55Sep 4 18:52:42 rotator sshd\[7176\]: Failed password for invalid user admin from 113.53.41.55 port 44964 ssh2 ...	2020-09-05 05:39:03

Type

Details

Datetime

attackspam

Sep  4 18:52:29 rotator sshd\[7172\]: Invalid user admin from 113.53.41.55Sep  4 18:52:32 rotator sshd\[7172\]: Failed password for invalid user admin from 113.53.41.55 port 44707 ssh2Sep  4 18:52:35 rotator sshd\[7174\]: Invalid user admin from 113.53.41.55Sep  4 18:52:37 rotator sshd\[7174\]: Failed password for invalid user admin from 113.53.41.55 port 44845 ssh2Sep  4 18:52:40 rotator sshd\[7176\]: Invalid user admin from 113.53.41.55Sep  4 18:52:42 rotator sshd\[7176\]: Failed password for invalid user admin from 113.53.41.55 port 44964 ssh2
...

2020-09-05 21:15:33

attackspam

Sep  4 18:52:29 rotator sshd\[7172\]: Invalid user admin from 113.53.41.55Sep  4 18:52:32 rotator sshd\[7172\]: Failed password for invalid user admin from 113.53.41.55 port 44707 ssh2Sep  4 18:52:35 rotator sshd\[7174\]: Invalid user admin from 113.53.41.55Sep  4 18:52:37 rotator sshd\[7174\]: Failed password for invalid user admin from 113.53.41.55 port 44845 ssh2Sep  4 18:52:40 rotator sshd\[7176\]: Invalid user admin from 113.53.41.55Sep  4 18:52:42 rotator sshd\[7176\]: Failed password for invalid user admin from 113.53.41.55 port 44964 ssh2
...

2020-09-05 12:50:57

attackspam

Sep  4 18:52:29 rotator sshd\[7172\]: Invalid user admin from 113.53.41.55Sep  4 18:52:32 rotator sshd\[7172\]: Failed password for invalid user admin from 113.53.41.55 port 44707 ssh2Sep  4 18:52:35 rotator sshd\[7174\]: Invalid user admin from 113.53.41.55Sep  4 18:52:37 rotator sshd\[7174\]: Failed password for invalid user admin from 113.53.41.55 port 44845 ssh2Sep  4 18:52:40 rotator sshd\[7176\]: Invalid user admin from 113.53.41.55Sep  4 18:52:42 rotator sshd\[7176\]: Failed password for invalid user admin from 113.53.41.55 port 44964 ssh2
...

2020-09-05 05:39:03

Comments on same subnet:

IP	Type	Details	Datetime
113.53.41.11	attackspam	unauthorized connection attempt	2020-02-16 16:01:21
113.53.41.162	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=59189)(11190859)	2019-11-19 20:22:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.53.41.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42221
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.53.41.55.			IN	A

;; AUTHORITY SECTION:
.			200	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090401 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 05 05:39:00 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 55.41.53.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.41.53.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
18.221.6.250	attackbotsspam	Automatically reported by fail2ban report script (mx1)	2020-02-21 16:16:22
41.58.181.234	attack	Invalid user user9 from 41.58.181.234 port 47012	2020-02-21 16:25:25
138.68.93.14	attackbots	Feb 21 03:01:37 ny01 sshd[2872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.93.14 Feb 21 03:01:39 ny01 sshd[2872]: Failed password for invalid user lihuanhuan from 138.68.93.14 port 52712 ssh2 Feb 21 03:03:21 ny01 sshd[3591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.93.14	2020-02-21 16:26:55
107.170.109.82	attackspam	Feb 21 10:12:51 server sshd\[20930\]: Invalid user ec2-user from 107.170.109.82 Feb 21 10:12:51 server sshd\[20930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.109.82 Feb 21 10:12:53 server sshd\[20930\]: Failed password for invalid user ec2-user from 107.170.109.82 port 60033 ssh2 Feb 21 10:26:12 server sshd\[23360\]: Invalid user www-data from 107.170.109.82 Feb 21 10:26:12 server sshd\[23360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.109.82 ...	2020-02-21 16:19:45
5.196.74.190	attackbotsspam	Feb 21 13:08:31 gw1 sshd[25977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.74.190 Feb 21 13:08:33 gw1 sshd[25977]: Failed password for invalid user home123 from 5.196.74.190 port 58955 ssh2 ...	2020-02-21 16:29:44
104.244.79.241	attack	Invalid user password from 104.244.79.241 port 39418	2020-02-21 16:45:11
192.241.212.239	attackspambots	5351/udp 9160/tcp 2638/tcp... [2020-02-16/21]7pkt,6pt.(tcp),1pt.(udp)	2020-02-21 16:37:27
93.174.93.195	attackspam	93.174.93.195 was recorded 23 times by 12 hosts attempting to connect to the following ports: 41110,41109,41107. Incident counter (4h, 24h, all-time): 23, 143, 5803	2020-02-21 16:40:38
156.239.156.151	attack	Feb 21 05:50:36 sd-53420 sshd\[17864\]: Invalid user dev from 156.239.156.151 Feb 21 05:50:36 sd-53420 sshd\[17864\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.239.156.151 Feb 21 05:50:38 sd-53420 sshd\[17864\]: Failed password for invalid user dev from 156.239.156.151 port 55704 ssh2 Feb 21 05:53:49 sd-53420 sshd\[18137\]: Invalid user cpanelconnecttrack from 156.239.156.151 Feb 21 05:53:49 sd-53420 sshd\[18137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.239.156.151 ...	2020-02-21 16:47:42
95.6.17.30	attackspambots	Automatic report - Port Scan Attack	2020-02-21 16:33:57
120.50.8.46	attackbots	Invalid user prueba from 120.50.8.46 port 47128	2020-02-21 16:18:29
185.147.212.8	attack	[2020-02-21 02:48:39] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.212.8:61365' - Wrong password [2020-02-21 02:48:39] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-21T02:48:39.801-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="9104",SessionID="0x7fd82cf77db8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8/61365",Challenge="08b6f02d",ReceivedChallenge="08b6f02d",ReceivedHash="0046ce0b75cfd4caff8acd59d657af99" [2020-02-21 02:49:06] NOTICE[1148] chan_sip.c: Registration from '' failed for '185.147.212.8:54899' - Wrong password [2020-02-21 02:49:06] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-21T02:49:06.167-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="2641",SessionID="0x7fd82c4c0778",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8 ...	2020-02-21 16:07:19
179.33.137.117	attackspam	$f2bV_matches	2020-02-21 16:30:16
154.238.110.89	attackspam	Telnetd brute force attack detected by fail2ban	2020-02-21 16:42:29
122.51.130.21	attackbotsspam	20 attempts against mh-ssh on cloud	2020-02-21 16:35:58

Recently Reported IPs

186.156.109.244	201.108.213.246	87.98.241.242	1.55.142.12
190.175.7.89	37.59.54.36	201.208.54.75	201.108.186.53
221.231.55.44	190.72.39.166	182.185.107.30	88.99.240.38
85.71.235.129	189.229.94.38	159.203.184.19	107.189.11.78
42.98.238.169	126.4.17.60	189.253.67.214	178.86.210.81