13.94.57.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SpamScore above: 10.0	2020-03-05 23:41:47

Comments on same subnet:

IP	Type	Details	Datetime
13.94.57.205	attackspam	Apr 22 05:49:59 DAAP sshd[24657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 user=root Apr 22 05:50:01 DAAP sshd[24657]: Failed password for root from 13.94.57.205 port 49924 ssh2 Apr 22 05:52:41 DAAP sshd[24760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 user=root Apr 22 05:52:43 DAAP sshd[24760]: Failed password for root from 13.94.57.205 port 37510 ssh2 Apr 22 05:54:48 DAAP sshd[24818]: Invalid user m from 13.94.57.205 port 45484 ...	2020-04-22 14:38:13
13.94.57.205	attackspam	Apr 19 16:01:09 r.ca sshd[25382]: Failed password for invalid user postgres from 13.94.57.205 port 36944 ssh2	2020-04-20 04:33:44
13.94.57.205	attackbots	Apr 18 05:07:05 mockhub sshd[23020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 Apr 18 05:07:07 mockhub sshd[23020]: Failed password for invalid user admin from 13.94.57.205 port 60938 ssh2 ...	2020-04-18 22:19:17
13.94.57.205	attack	Apr 18 07:05:44 game-panel sshd[28798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 Apr 18 07:05:46 game-panel sshd[28798]: Failed password for invalid user git from 13.94.57.205 port 60272 ssh2 Apr 18 07:06:45 game-panel sshd[28841]: Failed password for root from 13.94.57.205 port 44464 ssh2	2020-04-18 17:42:53
13.94.57.205	attackbots	Mar 21 11:16:45 ws12vmsma01 sshd[37427]: Invalid user jira from 13.94.57.205 Mar 21 11:16:47 ws12vmsma01 sshd[37427]: Failed password for invalid user jira from 13.94.57.205 port 42012 ssh2 Mar 21 11:24:08 ws12vmsma01 sshd[38602]: Invalid user plex from 13.94.57.205 ...	2020-03-21 22:32:17
13.94.57.205	attackbotsspam	SSH Brute Force	2020-03-20 21:53:32
13.94.57.205	attack	Lines containing failures of 13.94.57.205 Feb 25 19:00:12 MAKserver05 sshd[27597]: Invalid user ghostnamelab-runner from 13.94.57.205 port 44208 Feb 25 19:00:12 MAKserver05 sshd[27597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.205 Feb 25 19:00:14 MAKserver05 sshd[27597]: Failed password for invalid user ghostnamelab-runner from 13.94.57.205 port 44208 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=13.94.57.205	2020-03-01 21:27:44
13.94.57.155	attackspam	Dec 16 15:19:44 hcbbdb sshd\[19768\]: Invalid user uebbing from 13.94.57.155 Dec 16 15:19:44 hcbbdb sshd\[19768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Dec 16 15:19:45 hcbbdb sshd\[19768\]: Failed password for invalid user uebbing from 13.94.57.155 port 34696 ssh2 Dec 16 15:26:41 hcbbdb sshd\[20598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 user=root Dec 16 15:26:42 hcbbdb sshd\[20598\]: Failed password for root from 13.94.57.155 port 40310 ssh2	2019-12-16 23:44:36
13.94.57.155	attackbots	Dec 15 16:57:05 MK-Soft-VM3 sshd[32750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Dec 15 16:57:07 MK-Soft-VM3 sshd[32750]: Failed password for invalid user quiller from 13.94.57.155 port 58824 ssh2 ...	2019-12-16 01:14:35
13.94.57.155	attackspambots	Dec 15 08:08:12 cp sshd[20040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Dec 15 08:08:12 cp sshd[20040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155	2019-12-15 15:23:42
13.94.57.155	attack	<6 unauthorized SSH connections	2019-12-04 18:50:35
13.94.57.155	attack	Automatic report - Banned IP Access	2019-11-29 17:21:42
13.94.57.155	attackbotsspam	Automatic report - Banned IP Access	2019-10-23 22:55:48
13.94.57.155	attackspam	Oct 21 07:11:24 server sshd\[22801\]: Invalid user 12345qwertasdfg from 13.94.57.155 port 45984 Oct 21 07:11:24 server sshd\[22801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 Oct 21 07:11:26 server sshd\[22801\]: Failed password for invalid user 12345qwertasdfg from 13.94.57.155 port 45984 ssh2 Oct 21 07:16:39 server sshd\[20621\]: Invalid user support!@\# from 13.94.57.155 port 58712 Oct 21 07:16:39 server sshd\[20621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155	2019-10-21 12:20:36
13.94.57.155	attackbotsspam	Oct 20 23:46:23 dedicated sshd[741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.94.57.155 user=root Oct 20 23:46:24 dedicated sshd[741]: Failed password for root from 13.94.57.155 port 60372 ssh2	2019-10-21 05:50:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.94.57.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59657
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.94.57.55.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030500 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 23:41:36 CST 2020
;; MSG SIZE  rcvd: 115

Host info

55.57.94.13.in-addr.arpa domain name pointer smtp140.dingyiedm.com.

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
55.57.94.13.in-addr.arpa	name = smtp140.dingyiedm.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.58.138.234	attack	LGS,WP GET /wp-login.php	2019-07-27 03:47:44
181.111.226.131	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 19:01:23,079 INFO [amun_request_handler] PortScan Detected on Port: 445 (181.111.226.131)	2019-07-27 04:10:29
142.93.195.189	attackbots	Jul 26 11:55:41 ArkNodeAT sshd\[23011\]: Invalid user vbox from 142.93.195.189 Jul 26 11:55:41 ArkNodeAT sshd\[23011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.195.189 Jul 26 11:55:43 ArkNodeAT sshd\[23011\]: Failed password for invalid user vbox from 142.93.195.189 port 34542 ssh2	2019-07-27 03:40:20
182.38.204.57	attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-27 03:46:17
74.118.138.24	attackbots	Jul 26 21:40:19 mail sshd[26823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.118.138.24 user=root Jul 26 21:40:21 mail sshd[26823]: Failed password for root from 74.118.138.24 port 60502 ssh2 Jul 26 21:48:36 mail sshd[27777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.118.138.24 user=root Jul 26 21:48:39 mail sshd[27777]: Failed password for root from 74.118.138.24 port 39986 ssh2 Jul 26 21:53:11 mail sshd[28362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.118.138.24 user=root Jul 26 21:53:13 mail sshd[28362]: Failed password for root from 74.118.138.24 port 35966 ssh2 ...	2019-07-27 04:08:30
37.46.226.210	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-25 17:21:19,608 INFO [shellcode_manager] (37.46.226.210) no match, writing hexdump (2c08cfbe06f758f8cd55f7eac8e21d24 :2172274) - MS17010 (EternalBlue)	2019-07-27 04:09:17
114.7.164.26	attackspam	Jul 27 00:44:54 areeb-Workstation sshd\[25748\]: Invalid user g from 114.7.164.26 Jul 27 00:44:54 areeb-Workstation sshd\[25748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.164.26 Jul 27 00:44:56 areeb-Workstation sshd\[25748\]: Failed password for invalid user g from 114.7.164.26 port 41211 ssh2 ...	2019-07-27 03:39:44
47.92.231.109	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-27 04:19:25
113.160.147.3	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 18:59:04,568 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.160.147.3)	2019-07-27 04:17:23
118.163.149.163	attack	Invalid user git from 118.163.149.163 port 35906	2019-07-27 04:11:23
113.175.130.72	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 18:59:13,589 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.175.130.72)	2019-07-27 04:14:12
159.192.142.89	attack	Jul 26 21:37:21 vps sshd[21415]: Failed password for root from 159.192.142.89 port 55454 ssh2 Jul 26 21:47:49 vps sshd[21846]: Failed password for root from 159.192.142.89 port 37690 ssh2 ...	2019-07-27 04:15:24
27.254.137.144	attackbotsspam	2019-07-26T19:53:10.480889abusebot-8.cloudsearch.cf sshd\[19748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 user=root	2019-07-27 04:11:57
223.17.250.11	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-26 19:02:05,591 INFO [amun_request_handler] PortScan Detected on Port: 445 (223.17.250.11)	2019-07-27 03:57:04
217.91.85.166	attack	20 attempts against mh-ssh on cold.magehost.pro	2019-07-27 03:56:07

Recently Reported IPs

171.248.189.27	78.39.252.96	193.140.225.65	182.124.14.63
83.31.243.31	171.100.18.251	79.107.117.227	78.186.63.220
38.89.252.144	13.57.120.92	211.0.2.172	195.224.28.123
143.72.237.44	59.139.22.6	198.83.7.230	192.241.230.169
211.131.51.236	192.241.211.5	191.189.161.185	91.135.181.69