103.145.13.159

Basic Info

City: unknown

Region: unknown

Country: Estonia

Internet Service Provider: Cinty EU Web Solutions

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Listed on zen-spamhaus also abuseat.org / proto=17 . srcport=5061 . dstport=5060 . (2851)	2020-09-20 01:26:40
attackbots	Listed on zen-spamhaus also abuseat.org / proto=17 . srcport=5061 . dstport=5060 . (2851)	2020-09-19 17:15:31

Comments on same subnet:

IP	Type	Details	Datetime
103.145.13.88	attack	Port Scan	2022-08-18 13:44:23
103.145.13.10	attack	TCP ports : 443	2020-11-06 18:32:07
103.145.13.149	attack	Severity: Medium TypeMisc: Attack Category: Dshield Source: 103.145.13.149 : 42748	2020-10-21 16:53:33
103.145.13.124	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 5060 proto: sip cat: Misc Attackbytes: 452	2020-10-14 05:18:15
103.145.13.229	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 5060 proto: sip cat: Misc Attackbytes: 461	2020-10-14 04:59:54
103.145.13.58	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 5038 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 20:33:43
103.145.13.58	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 5038 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 12:05:57
103.145.13.58	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 95 - port: 5038 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 04:55:55
103.145.13.229	attackspam	103.145.13.229 was recorded 6 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 6, 33, 646	2020-10-13 00:41:48
103.145.13.229	attackspambots	ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 462	2020-10-12 16:06:39
103.145.13.193	attackbotsspam	Trying ports that it shouldn't be.	2020-10-10 05:42:03
103.145.13.193	attackbotsspam	UDP 103.145.13.193:5140 -> port 5060, len 417	2020-10-09 21:47:36
103.145.13.193	attack	Port scan denied	2020-10-09 13:37:25
103.145.13.124	attackbotsspam	UDP port : 5060	2020-10-09 04:44:22
103.145.13.124	attackbots	UDP port : 5060	2020-10-08 20:54:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.145.13.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21577
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.145.13.159.			IN	A

;; AUTHORITY SECTION:
.			297	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091802 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 19 17:15:21 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 159.13.145.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 159.13.145.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.67.181.187	attackspam	Jul 6 04:54:10 OPSO sshd\[7849\]: Invalid user cu from 82.67.181.187 port 38711 Jul 6 04:54:10 OPSO sshd\[7849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.67.181.187 Jul 6 04:54:12 OPSO sshd\[7849\]: Failed password for invalid user cu from 82.67.181.187 port 38711 ssh2 Jul 6 04:59:05 OPSO sshd\[8308\]: Invalid user elena from 82.67.181.187 port 50632 Jul 6 04:59:05 OPSO sshd\[8308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.67.181.187	2019-07-06 11:03:31
89.248.172.90	attackbotsspam	[05/Jul/2019:17:16:44 +0000] "\x04\x01\x00P\xC0c\xF660\x00" 400 150 "-" "-" "-" - IP: 89.248.172.90 Vulnerability scan	2019-07-06 10:27:06
185.66.131.248	attackspam	failed_logins	2019-07-06 10:36:10
103.16.202.90	attackspam	2019-07-06T02:59:04.923313abusebot-8.cloudsearch.cf sshd\[10790\]: Invalid user yj from 103.16.202.90 port 55636	2019-07-06 11:04:28
54.250.171.154	attack	3389BruteforceFW23	2019-07-06 10:38:29
1.172.53.79	attack	firewall-block, port(s): 23/tcp	2019-07-06 10:33:52
153.36.242.143	attackspam	Jul 6 04:58:52 v22018076622670303 sshd\[17519\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Jul 6 04:58:54 v22018076622670303 sshd\[17519\]: Failed password for root from 153.36.242.143 port 36785 ssh2 Jul 6 04:58:56 v22018076622670303 sshd\[17519\]: Failed password for root from 153.36.242.143 port 36785 ssh2 ...	2019-07-06 11:06:14
148.72.212.161	attackspambots	Invalid user bot2 from 148.72.212.161 port 38904 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.212.161 Failed password for invalid user bot2 from 148.72.212.161 port 38904 ssh2 Invalid user mattl from 148.72.212.161 port 36262 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.212.161	2019-07-06 11:10:33
144.217.84.129	attackbotsspam	Jul 6 04:58:49 ArkNodeAT sshd\[11684\]: Invalid user tecnici from 144.217.84.129 Jul 6 04:58:49 ArkNodeAT sshd\[11684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.84.129 Jul 6 04:58:50 ArkNodeAT sshd\[11684\]: Failed password for invalid user tecnici from 144.217.84.129 port 33114 ssh2	2019-07-06 11:08:08
201.161.58.229	attackspam	Jul 6 04:59:01 ns41 sshd[5352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.161.58.229 Jul 6 04:59:01 ns41 sshd[5352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.161.58.229	2019-07-06 11:05:14
62.219.150.129	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 02:22:48,764 INFO [amun_request_handler] PortScan Detected on Port: 445 (62.219.150.129)	2019-07-06 11:09:02
177.74.128.247	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:04:35,163 INFO [amun_request_handler] PortScan Detected on Port: 445 (177.74.128.247)	2019-07-06 10:40:30
109.120.149.188	attackspam	2019-07-06 00:49:33,895 fail2ban.actions [589]: NOTICE [portsentry] Ban 109.120.149.188 ...	2019-07-06 10:42:33
31.220.0.225	attack	leo_www	2019-07-06 10:51:14
45.248.133.36	attackspambots	Jul 5 22:04:49 MK-Soft-VM3 sshd\[20479\]: Invalid user alfreda from 45.248.133.36 port 55657 Jul 5 22:04:49 MK-Soft-VM3 sshd\[20479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.248.133.36 Jul 5 22:04:51 MK-Soft-VM3 sshd\[20479\]: Failed password for invalid user alfreda from 45.248.133.36 port 55657 ssh2 ...	2019-07-06 10:31:01

Recently Reported IPs

185.39.11.109	113.239.5.99	125.69.82.14	23.225.240.242
218.29.188.169	182.111.244.16	216.38.195.204	63.143.42.242
64.225.38.92	144.172.91.3	118.99.110.11	123.14.193.239
37.120.205.221	23.96.3.40	103.130.213.150	180.241.134.18
115.96.127.237	188.0.120.53	178.184.73.161	128.199.249.19