13.70.7.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Jun 25 00:43:49 server2 sshd[24571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.70.7.22 user=r.r Jun 25 00:43:51 server2 sshd[24571]: Failed password for r.r from 13.70.7.22 port 28739 ssh2 Jun 25 00:43:51 server2 sshd[24571]: Received disconnect from 13.70.7.22: 11: Bye Bye [preauth] Jun 25 00:43:54 server2 sshd[24578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.70.7.22 user=r.r Jun 25 00:43:55 server2 sshd[24578]: Failed password for r.r from 13.70.7.22 port 40277 ssh2 Jun 25 00:43:55 server2 sshd[24578]: Received disconnect from 13.70.7.22: 11: Bye Bye [preauth] Jun 25 00:43:58 server2 sshd[24586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.70.7.22 user=r.r Jun 25 00:44:00 server2 sshd[24586]: Failed password for r.r from 13.70.7.22 port 48431 ssh2 Jun 25 00:44:00 server2 sshd[24586]: Received disconnect from 13.70.7.22: 1........ -------------------------------	2019-06-26 11:08:04

Type

Details

Datetime

attackspambots

Jun 25 00:43:49 server2 sshd[24571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.70.7.22  user=r.r
Jun 25 00:43:51 server2 sshd[24571]: Failed password for r.r from 13.70.7.22 port 28739 ssh2
Jun 25 00:43:51 server2 sshd[24571]: Received disconnect from 13.70.7.22: 11: Bye Bye [preauth]
Jun 25 00:43:54 server2 sshd[24578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.70.7.22  user=r.r
Jun 25 00:43:55 server2 sshd[24578]: Failed password for r.r from 13.70.7.22 port 40277 ssh2
Jun 25 00:43:55 server2 sshd[24578]: Received disconnect from 13.70.7.22: 11: Bye Bye [preauth]
Jun 25 00:43:58 server2 sshd[24586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.70.7.22  user=r.r
Jun 25 00:44:00 server2 sshd[24586]: Failed password for r.r from 13.70.7.22 port 48431 ssh2
Jun 25 00:44:00 server2 sshd[24586]: Received disconnect from 13.70.7.22: 1........
-------------------------------

2019-06-26 11:08:04

Comments on same subnet:

IP	Type	Details	Datetime
13.70.7.172	attackspam	Invalid user ubuntu from 13.70.7.172 port 46452	2019-12-11 01:51:01
13.70.7.172	attack	IP blocked	2019-12-07 14:01:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.70.7.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17233
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.70.7.22.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062502 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 26 11:07:58 CST 2019
;; MSG SIZE  rcvd: 114

Host info

Host 22.7.70.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 22.7.70.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.218.242.29	attackspam	May 3 14:06:59 vpn01 sshd[29963]: Failed password for root from 103.218.242.29 port 40362 ssh2 May 3 14:14:05 vpn01 sshd[30067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.242.29 ...	2020-05-03 22:01:49
112.85.42.176	attackbotsspam	May315:26:06server6sshd[1376]:refusedconnectfrom112.85.42.176$112.85.42.176$May315:26:06server6sshd[1375]:refusedconnectfrom112.85.42.176$112.85.42.176$May315:26:07server6sshd[1379]:refusedconnectfrom112.85.42.176$112.85.42.176$May315:59:57server6sshd[7306]:refusedconnectfrom112.85.42.176$112.85.42.176$May315:59:57server6sshd[7307]:refusedconnectfrom112.85.42.176$112.85.42.176$	2020-05-03 22:03:35
142.136.4.189	attackspam	May 3 15:36:35 mout sshd[18576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.136.4.189 user=root May 3 15:36:37 mout sshd[18576]: Failed password for root from 142.136.4.189 port 21014 ssh2	2020-05-03 21:51:45
222.249.235.237	attackspam	May 3 14:14:03 mout sshd[13002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.249.235.237 user=root May 3 14:14:05 mout sshd[13002]: Failed password for root from 222.249.235.237 port 39580 ssh2	2020-05-03 22:00:11
139.59.10.186	attackspam	$f2bV_matches	2020-05-03 21:58:28
216.10.241.191	attackspam	abcdata-sys.de:80 216.10.241.191 - - [03/May/2020:14:13:53 +0200] "POST /xmlrpc.php HTTP/1.1" 301 441 "-" "Windows Live Writter" www.goldgier.de 216.10.241.191 [03/May/2020:14:13:55 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4479 "-" "Windows Live Writter"	2020-05-03 22:09:06
150.109.149.170	attackbotsspam	May 3 09:10:38 dns1 sshd[7755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.149.170 May 3 09:10:40 dns1 sshd[7755]: Failed password for invalid user ub from 150.109.149.170 port 35048 ssh2 May 3 09:14:53 dns1 sshd[7943]: Failed password for root from 150.109.149.170 port 45648 ssh2	2020-05-03 21:30:58
101.109.83.202	attackspambots	Unauthorized IMAP connection attempt	2020-05-03 21:56:08
88.236.66.4	attackspam	1588508092 - 05/03/2020 14:14:52 Host: 88.236.66.4/88.236.66.4 Port: 445 TCP Blocked	2020-05-03 21:31:28
117.51.155.121	attackspambots	k+ssh-bruteforce	2020-05-03 22:09:59
112.85.42.173	attackbots	May 3 15:51:36 home sshd[19074]: Failed password for root from 112.85.42.173 port 41781 ssh2 May 3 15:51:52 home sshd[19074]: error: maximum authentication attempts exceeded for root from 112.85.42.173 port 41781 ssh2 [preauth] May 3 15:52:01 home sshd[19122]: Failed password for root from 112.85.42.173 port 15678 ssh2 ...	2020-05-03 21:59:06
213.202.255.78	attackbotsspam	May 3 14:01:46 nandi sshd[8463]: Failed password for r.r from 213.202.255.78 port 45264 ssh2 May 3 14:01:46 nandi sshd[8463]: Received disconnect from 213.202.255.78: 11: Bye Bye [preauth] May 3 14:11:16 nandi sshd[13150]: Invalid user rochelle from 213.202.255.78 May 3 14:11:18 nandi sshd[13150]: Failed password for invalid user rochelle from 213.202.255.78 port 51382 ssh2 May 3 14:11:18 nandi sshd[13150]: Received disconnect from 213.202.255.78: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.202.255.78	2020-05-03 22:10:24
86.93.157.111	attackspambots	SSH login attempts	2020-05-03 21:54:54
182.75.216.190	attackspambots	(sshd) Failed SSH login from 182.75.216.190 (IN/India/nsg-static-190.216.75.182-airtel.com): 5 in the last 3600 secs	2020-05-03 21:35:05
157.230.19.72	attackspam	2020-05-03T14:42:48.320255vps773228.ovh.net sshd[4440]: Failed password for root from 157.230.19.72 port 41416 ssh2 2020-05-03T14:46:44.977965vps773228.ovh.net sshd[4489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.19.72 user=root 2020-05-03T14:46:46.973091vps773228.ovh.net sshd[4489]: Failed password for root from 157.230.19.72 port 53190 ssh2 2020-05-03T14:50:44.387729vps773228.ovh.net sshd[4566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.19.72 user=root 2020-05-03T14:50:46.663494vps773228.ovh.net sshd[4566]: Failed password for root from 157.230.19.72 port 36732 ssh2 ...	2020-05-03 22:13:53

Recently Reported IPs

103.208.96.146	14.190.197.68	35.154.19.93	2600:1f14:b62:9e02:98cd:90b0:3077:68fa
172.24.94.101	42.117.176.164	201.145.221.138	201.141.84.138
128.199.111.176	162.158.155.96	187.17.166.155	202.28.78.25
116.104.92.142	178.184.119.86	35.231.123.62	177.154.72.67
148.251.237.147	91.189.82.74	5.62.39.239	191.53.252.243