13.94.57.155 - IPInfo

Basic Info

City: Central

Region: Central and Western District

Country: Hong Kong

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: Microsoft Corporation

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Dec 16 15:19:44 hcbbdb sshd\[19768\]: Invalid user uebbing from 13.94.57.155 Dec 16 15:19:44 hcbbdb sshd\[19768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Dec 16 15:19:45 hcbbdb sshd\[19768\]: Failed password for invalid user uebbing from 13.94.57.155 port 34696 ssh2 Dec 16 15:26:41 hcbbdb sshd\[20598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 user=root Dec 16 15:26:42 hcbbdb sshd\[20598\]: Failed password for root from 13.94.57.155 port 40310 ssh2	2019-12-16 23:44:36
attackbots	Dec 15 16:57:05 MK-Soft-VM3 sshd[32750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Dec 15 16:57:07 MK-Soft-VM3 sshd[32750]: Failed password for invalid user quiller from 13.94.57.155 port 58824 ssh2 ...	2019-12-16 01:14:35
attackspambots	Dec 15 08:08:12 cp sshd[20040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Dec 15 08:08:12 cp sshd[20040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155	2019-12-15 15:23:42
attack	<6 unauthorized SSH connections	2019-12-04 18:50:35
attack	Automatic report - Banned IP Access	2019-11-29 17:21:42
attackbotsspam	Automatic report - Banned IP Access	2019-10-23 22:55:48
attackspam	Oct 21 07:11:24 server sshd\[22801\]: Invalid user 12345qwertasdfg from 13.94.57.155 port 45984 Oct 21 07:11:24 server sshd\[22801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Oct 21 07:11:26 server sshd\[22801\]: Failed password for invalid user 12345qwertasdfg from 13.94.57.155 port 45984 ssh2 Oct 21 07:16:39 server sshd\[20621\]: Invalid user support!@\# from 13.94.57.155 port 58712 Oct 21 07:16:39 server sshd\[20621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155	2019-10-21 12:20:36
attackbotsspam	Oct 20 23:46:23 dedicated sshd[741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 user=root Oct 20 23:46:24 dedicated sshd[741]: Failed password for root from 13.94.57.155 port 60372 ssh2	2019-10-21 05:50:20
attackbots	Sep 27 09:34:13 DAAP sshd[29322]: Invalid user desdev from 13.94.57.155 port 33072 Sep 27 09:34:13 DAAP sshd[29322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Sep 27 09:34:13 DAAP sshd[29322]: Invalid user desdev from 13.94.57.155 port 33072 Sep 27 09:34:15 DAAP sshd[29322]: Failed password for invalid user desdev from 13.94.57.155 port 33072 ssh2 ...	2019-09-27 17:35:23
attackbotsspam	Sep 26 14:41:52 aiointranet sshd\[19391\]: Invalid user demo from 13.94.57.155 Sep 26 14:41:52 aiointranet sshd\[19391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Sep 26 14:41:54 aiointranet sshd\[19391\]: Failed password for invalid user demo from 13.94.57.155 port 33292 ssh2 Sep 26 14:47:11 aiointranet sshd\[19861\]: Invalid user vagrant3 from 13.94.57.155 Sep 26 14:47:11 aiointranet sshd\[19861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155	2019-09-27 08:47:41
attackbotsspam	Sep 12 05:44:42 web1 sshd\[28355\]: Invalid user ftpuser from 13.94.57.155 Sep 12 05:44:42 web1 sshd\[28355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Sep 12 05:44:44 web1 sshd\[28355\]: Failed password for invalid user ftpuser from 13.94.57.155 port 55110 ssh2 Sep 12 05:51:49 web1 sshd\[28979\]: Invalid user git from 13.94.57.155 Sep 12 05:51:49 web1 sshd\[28979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155	2019-09-13 05:43:27
attack	2019-09-09T12:59:17.258310enmeeting.mahidol.ac.th sshd\[12156\]: Invalid user ts3 from 13.94.57.155 port 54388 2019-09-09T12:59:17.271362enmeeting.mahidol.ac.th sshd\[12156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 2019-09-09T12:59:19.114756enmeeting.mahidol.ac.th sshd\[12156\]: Failed password for invalid user ts3 from 13.94.57.155 port 54388 ssh2 ...	2019-09-09 16:12:12
attack	Sep 2 21:43:40 mail sshd\[17460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 user=root Sep 2 21:43:42 mail sshd\[17460\]: Failed password for root from 13.94.57.155 port 38840 ssh2 Sep 2 21:48:53 mail sshd\[18150\]: Invalid user rpcuser from 13.94.57.155 port 57674 Sep 2 21:48:53 mail sshd\[18150\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Sep 2 21:48:55 mail sshd\[18150\]: Failed password for invalid user rpcuser from 13.94.57.155 port 57674 ssh2	2019-09-03 03:51:21
attackspambots	Sep 1 21:32:53 eventyay sshd[25019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Sep 1 21:32:55 eventyay sshd[25019]: Failed password for invalid user ubuntu from 13.94.57.155 port 50980 ssh2 Sep 1 21:37:59 eventyay sshd[26438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 ...	2019-09-02 03:50:11
attackspambots	Aug 24 18:23:42 tuxlinux sshd[30669]: Invalid user dwayne from 13.94.57.155 port 53708 Aug 24 18:23:42 tuxlinux sshd[30669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Aug 24 18:23:42 tuxlinux sshd[30669]: Invalid user dwayne from 13.94.57.155 port 53708 Aug 24 18:23:42 tuxlinux sshd[30669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Aug 24 18:23:42 tuxlinux sshd[30669]: Invalid user dwayne from 13.94.57.155 port 53708 Aug 24 18:23:42 tuxlinux sshd[30669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Aug 24 18:23:45 tuxlinux sshd[30669]: Failed password for invalid user dwayne from 13.94.57.155 port 53708 ssh2 ...	2019-08-25 03:45:38
attackspambots	...	2019-08-15 03:03:59

Comments on same subnet:

IP	Type	Details	Datetime
13.94.57.205	attackspam	Apr 22 05:49:59 DAAP sshd[24657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 user=root Apr 22 05:50:01 DAAP sshd[24657]: Failed password for root from 13.94.57.205 port 49924 ssh2 Apr 22 05:52:41 DAAP sshd[24760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 user=root Apr 22 05:52:43 DAAP sshd[24760]: Failed password for root from 13.94.57.205 port 37510 ssh2 Apr 22 05:54:48 DAAP sshd[24818]: Invalid user m from 13.94.57.205 port 45484 ...	2020-04-22 14:38:13
13.94.57.205	attackspam	Apr 19 16:01:09 r.ca sshd[25382]: Failed password for invalid user postgres from 13.94.57.205 port 36944 ssh2	2020-04-20 04:33:44
13.94.57.205	attackbots	Apr 18 05:07:05 mockhub sshd[23020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 Apr 18 05:07:07 mockhub sshd[23020]: Failed password for invalid user admin from 13.94.57.205 port 60938 ssh2 ...	2020-04-18 22:19:17
13.94.57.205	attack	Apr 18 07:05:44 game-panel sshd[28798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 Apr 18 07:05:46 game-panel sshd[28798]: Failed password for invalid user git from 13.94.57.205 port 60272 ssh2 Apr 18 07:06:45 game-panel sshd[28841]: Failed password for root from 13.94.57.205 port 44464 ssh2	2020-04-18 17:42:53
13.94.57.205	attackbots	Mar 21 11:16:45 ws12vmsma01 sshd[37427]: Invalid user jira from 13.94.57.205 Mar 21 11:16:47 ws12vmsma01 sshd[37427]: Failed password for invalid user jira from 13.94.57.205 port 42012 ssh2 Mar 21 11:24:08 ws12vmsma01 sshd[38602]: Invalid user plex from 13.94.57.205 ...	2020-03-21 22:32:17
13.94.57.205	attackbotsspam	SSH Brute Force	2020-03-20 21:53:32
13.94.57.55	attackbots	SpamScore above: 10.0	2020-03-05 23:41:47
13.94.57.205	attack	Lines containing failures of 13.94.57.205 Feb 25 19:00:12 MAKserver05 sshd[27597]: Invalid user ghostnamelab-runner from 13.94.57.205 port 44208 Feb 25 19:00:12 MAKserver05 sshd[27597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 Feb 25 19:00:14 MAKserver05 sshd[27597]: Failed password for invalid user ghostnamelab-runner from 13.94.57.205 port 44208 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=13.94.57.205	2020-03-01 21:27:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.94.57.155
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64889
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.94.57.155.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 15 03:03:54 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 155.57.94.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 155.57.94.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.25.18.87	attackspambots	TCP (SYN) 114.25.18.87:63730 -> port 23, len 44	2020-07-01 15:52:17
182.61.146.33	attackspam	portscan	2020-07-01 16:04:48
104.131.189.185	attackspam	...	2020-07-01 15:29:33
185.173.35.9	attack	TCP (SYN) 185.173.35.9:57379 -> port 995, len 44	2020-07-01 16:04:21
197.14.49.131	attack	IP 197.14.49.131 attacked honeypot on port: 23 at 6/30/2020 10:36:53 AM	2020-07-01 15:54:26
190.1.148.98	attackspambots	Unauthorized connection attempt detected from IP address 190.1.148.98 to port 23	2020-07-01 15:41:46
148.70.93.108	attack	attempt to hack sp-login.php	2020-07-01 15:44:41
27.78.221.26	attackspambots	81/tcp [2020-06-28]1pkt	2020-07-01 15:22:29
200.233.88.228	attack	Unauthorized connection attempt detected from IP address 200.233.88.228 to port 8080	2020-07-01 15:49:44
49.128.174.248	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-07-01 15:33:59
64.91.246.167	attack	Automatic report - XMLRPC Attack	2020-07-01 15:39:06
211.222.252.174	attackbots	Honeypot attack, port: 81, PTR: PTR record not found	2020-07-01 15:30:56
103.66.79.240	attackbotsspam	TCP (SYN) 103.66.79.240:19355 -> port 445, len 52	2020-07-01 15:48:18
181.168.137.94	attack	Zyxel NAS devices command injection attempt Source IP address: 181.168.137.94 (94-137-168-181.fibertel.com.ar)	2020-07-01 16:05:06
61.51.95.234	attackspambots	Fail2Ban Ban Triggered	2020-07-01 16:01:07

Recently Reported IPs

68.101.5.66	27.166.196.181	13.248.97.23	41.214.150.225
195.54.201.12	44.241.235.233	159.154.128.228	208.246.14.211
165.134.159.75	95.173.149.96	196.250.200.13	154.249.57.131
80.203.138.142	208.26.8.44	133.29.103.27	119.114.252.194
49.1.20.248	184.161.157.178	131.154.199.91	86.57.22.32