JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.140.25.189

13.140.25.189 was found in our database!

This IP was reported 155 times. Confidence of Abuse is 100%: ?

100%

ISP	DA International Group Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS203380
Domain Name	dagroup.bg
Country	🇩🇪 Germany
City	Nuremberg, Bavaria

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.140.25.189

Whois 13.140.25.189

IP Abuse Reports for 13.140.25.189:

This IP address has been reported a total of 155 times from 132 distinct sources. 13.140.25.189 was first reported on June 9th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 George0phile	2026-06-15 18:00:27 (1 week ago)	SSH brute force on port 22 -- 3 attempts, 1 successful. Credentials: admin:P, orangepi:admin. Active ... show more SSH brute force on port 22 -- 3 attempts, 1 successful. Credentials: admin:P, orangepi:admin. Active: 2026-06-11T19:42 to 2026-06-11T19:44. Post-login: /usr/sbin/sshd -D -R; ausearch -i -k command --checkpoint /var/lib/honeypot/audit_; ausearch -i -m USER_LOGIN,USER_START --checkpoint /var/lib/h. Malware: trojan (critical); miner (critical); botnet (high). Source: AS203380 DA International Group Ltd. (Nuremberg, DE). Data from SSH honeypot — not a production system. show less	Brute-Force SSH IoT Targeted
🇮🇱 spd.co.il	2026-06-13 09:01:25 (1 week ago)	Unauthorized access attempts on ports: 22	Brute-Force SSH
🇮🇹 alph44	2026-06-12 02:29:27 (1 week ago)	SSH brute force attack detected: 5 failed attempts	Brute-Force
🇩🇪 Thomas Dilts	2026-06-12 02:27:05 (1 week ago)	2026-06-12T02:27:02.967602+00:00 zamarapp.com sshd[3173623]: pam_unix(sshd:auth): authentication fai ... show more 2026-06-12T02:27:02.967602+00:00 zamarapp.com sshd[3173623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 2026-06-12T02:27:05.294678+00:00 zamarapp.com sshd[3173623]: Failed password for invalid user admin from 13.140.25.189 port 34248 ssh2 ... show less	Brute-Force SSH
🇳🇱 Selckie	2026-06-12 02:26:53 (1 week ago)	fail2ban: SSH Brute-Force	SSH Brute-Force
🇫🇮 Voluna	2026-06-12 01:04:40 (1 week ago)	2026-06-12T01:04:37.197961+00:00 MailServer-Slave sshd[876171]: pam_unix(sshd:auth): authentication ... show more 2026-06-12T01:04:37.197961+00:00 MailServer-Slave sshd[876171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 2026-06-12T01:04:39.330510+00:00 MailServer-Slave sshd[876171]: Failed password for invalid user admin from 13.140.25.189 port 54730 ssh2 ... show less	Brute-Force SSH
🇩🇪 dirkey	2026-06-12 01:04:02 (1 week ago)	2026-06-12T03:03:56.772365+02:00 froxlor sshd[2025546]: pam_unix(sshd:auth): authentication failure; ... show more 2026-06-12T03:03:56.772365+02:00 froxlor sshd[2025546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 user=root 2026-06-12T03:03:58.608131+02:00 froxlor sshd[2025546]: Failed password for root from 13.140.25.189 port 50674 ssh2 2026-06-12T03:03:59.123473+02:00 froxlor sshd[2025548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 user=root 2026-06-12T03:04:01.370990+02:00 froxlor sshd[2025548]: Failed password for root from 13.140.25.189 port 33236 ssh2 2026-06-12T03:04:01.455482+02:00 froxlor sshd[2025550]: Invalid user hadoop from 13.140.25.189 port 33246 ... show less	SSH
🇩🇪 IloGus	2026-06-12 01:03:22 (1 week ago)	2026-06-12T02:03:17.955809+01:00 rahona.network sshd-session[60595]: Failed password for root from 1 ... show more 2026-06-12T02:03:17.955809+01:00 rahona.network sshd-session[60595]: Failed password for root from 13.140.25.189 port 48386 ssh2 2026-06-12T02:03:19.891116+01:00 rahona.network sshd-session[60630]: Connection from 13.140.25.189 port 50090 on 178.63.185.182 port 22 rdomain "" 2026-06-12T02:03:20.213004+01:00 rahona.network sshd-session[60630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 user=root 2026-06-12T02:03:22.117360+01:00 rahona.network sshd-session[60630]: Failed password for root from 13.140.25.189 port 50090 ssh2 show less	Brute-Force SSH
🇬🇧 andypiper	2026-06-12 01:00:34 (1 week ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇩🇪 ghostwarriors	2026-06-12 00:50:19 (1 week ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 TostHost	2026-06-12 00:49:46 (1 week ago)	Fail2Ban detected SSH brute-force attack	Brute-Force SSH
🇩🇪 XICTRON	2026-06-12 00:40:05 (1 week ago)	SSH brute-force attempt detected by Fail2Ban	SSH
🇩🇪 vcis.de	2026-06-12 00:36:43 (1 week ago)	SSH brute force attack detected from [13.140.25.189]	SSH Brute-Force
🇩🇪 updown.io	2026-06-12 00:35:18 (1 week ago)	2026-06-12T02:35:11.486039+02:00 db3.updn.io sshd[336725]: pam_unix(sshd:auth): authentication failu ... show more 2026-06-12T02:35:11.486039+02:00 db3.updn.io sshd[336725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 user=root 2026-06-12T02:35:14.179497+02:00 db3.updn.io sshd[336725]: Failed password for root from 13.140.25.189 port 51724 ssh2 2026-06-12T02:35:14.418976+02:00 db3.updn.io sshd[336731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 user=root 2026-06-12T02:35:16.189521+02:00 db3.updn.io sshd[336731]: Failed password for root from 13.140.25.189 port 51730 ssh2 2026-06-12T02:35:17.344824+02:00 db3.updn.io sshd[336740]: Invalid user hadoop from 13.140.25.189 port 51742 ... show less	Brute-Force SSH
Anonymous	2026-06-12 00:33:55 (1 week ago)	2026-06-12T02:33:52.049823+02:00 PRACSNew sshd-session[507155]: Failed password for invalid user dev ... show more 2026-06-12T02:33:52.049823+02:00 PRACSNew sshd-session[507155]: Failed password for invalid user dev from 13.140.25.189 port 40294 ssh2 2026-06-12T02:33:52.364000+02:00 PRACSNew sshd-session[507160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.140.25.189 user=root 2026-06-12T02:33:53.975461+02:00 PRACSNew sshd-session[507160]: Failed password for root from 13.140.25.189 port 40296 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 155 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇰 103.99.135.173

🇮🇩 202.145.0.61

🇺🇸 192.169.202.129

🇲🇾 101.99.80.140

🇷🇴 80.94.92.171

🇫🇷 51.91.156.22

🇺🇸 50.46.141.125

🇦🇺 45.132.224.115

🇺🇸 34.171.78.118

🇸🇪 81.25.159.170

🇺🇸 34.138.226.253

🇺🇸 18.211.150.95

🇮🇩 206.237.109.12

🇪🇨 193.30.14.164

🇨🇳 183.56.216.153

🇨🇳 116.232.37.185

🇳🇱 91.92.40.36

🇺🇸 67.215.227.141

🇺🇸 162.216.150.230

🇨🇳 106.75.141.181