103.145.13.9 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Cinty EU Web Solutions

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	35070/udp 6052/udp 5074/udp... [2020-08-13/09-01]129pkt,44pt.(udp)	2020-09-02 21:19:02
attack	Fail2Ban Ban Triggered	2020-09-02 06:15:25
attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-31 20:48:12
attack	UDP 103.145.13.9:5065 -> port 5080, len 655	2020-08-28 00:43:35
attack	Multiple Scan.Generic.PortScan.UDP attack.	2020-04-27 16:52:21
attackbots	firewall-block, port(s): 5061/tcp	2020-04-27 12:46:50

Comments on same subnet:

IP	Type	Details	Datetime
103.145.13.88	attack	Port Scan	2022-08-18 13:44:23
103.145.13.10	attack	TCP ports : 443	2020-11-06 18:32:07
103.145.13.149	attack	Severity: Medium TypeMisc: Attack Category: Dshield Source: 103.145.13.149 : 42748	2020-10-21 16:53:33
103.145.13.124	attackspambots	ET DROP Dshield Block Listed Source group 1 - port: 5060 proto: sip cat: Misc Attackbytes: 452	2020-10-14 05:18:15
103.145.13.229	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 5060 proto: sip cat: Misc Attackbytes: 461	2020-10-14 04:59:54
103.145.13.58	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 5038 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 20:33:43
103.145.13.58	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 5038 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 12:05:57
103.145.13.58	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 95 - port: 5038 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 04:55:55
103.145.13.229	attackspam	103.145.13.229 was recorded 6 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 6, 33, 646	2020-10-13 00:41:48
103.145.13.229	attackspambots	ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 462	2020-10-12 16:06:39
103.145.13.193	attackbotsspam	Trying ports that it shouldn't be.	2020-10-10 05:42:03
103.145.13.193	attackbotsspam	UDP 103.145.13.193:5140 -> port 5060, len 417	2020-10-09 21:47:36
103.145.13.193	attack	Port scan denied	2020-10-09 13:37:25
103.145.13.124	attackbotsspam	UDP port : 5060	2020-10-09 04:44:22
103.145.13.124	attackbots	UDP port : 5060	2020-10-08 20:54:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.145.13.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13863
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.145.13.9.			IN	A

;; AUTHORITY SECTION:
.			490	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042601 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 27 12:46:46 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 9.13.145.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 9.13.145.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.79.19.159	attackbotsspam	(country_code/South/-) SMTP Bruteforcing attempts	2020-06-05 15:06:21
41.79.19.24	attackspam	(country_code/South/-) SMTP Bruteforcing attempts	2020-06-05 15:00:20
45.118.32.77	attack	(IN/India/-) SMTP Bruteforcing attempts	2020-06-05 14:43:29
103.139.44.210	attackspam	Unauthorized connection attempt detected from IP address 103.139.44.210 to port 25	2020-06-05 14:56:40
193.70.13.31	attackbotsspam	2020-06-05T06:31:34.160498abusebot-8.cloudsearch.cf sshd[30973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3061803.ip-193-70-13.eu user=sshd 2020-06-05T06:31:36.696019abusebot-8.cloudsearch.cf sshd[30973]: Failed password for sshd from 193.70.13.31 port 59360 ssh2 2020-06-05T06:31:39.015694abusebot-8.cloudsearch.cf sshd[30973]: Failed password for sshd from 193.70.13.31 port 59360 ssh2 2020-06-05T06:31:34.160498abusebot-8.cloudsearch.cf sshd[30973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3061803.ip-193-70-13.eu user=sshd 2020-06-05T06:31:36.696019abusebot-8.cloudsearch.cf sshd[30973]: Failed password for sshd from 193.70.13.31 port 59360 ssh2 2020-06-05T06:31:39.015694abusebot-8.cloudsearch.cf sshd[30973]: Failed password for sshd from 193.70.13.31 port 59360 ssh2 2020-06-05T06:31:34.160498abusebot-8.cloudsearch.cf sshd[30973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ...	2020-06-05 14:59:06
106.12.55.57	attackspambots	2020-06-05 07:48:49,392 fail2ban.actions: WARNING [ssh] Ban 106.12.55.57	2020-06-05 15:06:57
177.154.133.67	attackbotsspam	Jun 5 16:41:37 localhost sshd[510025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.154.133.67 user=root Jun 5 16:41:39 localhost sshd[510025]: Failed password for root from 177.154.133.67 port 23215 ssh2 ...	2020-06-05 14:55:19
222.186.42.155	attackspambots	Jun 5 08:28:14 vmi345603 sshd[2631]: Failed password for root from 222.186.42.155 port 24062 ssh2 Jun 5 08:28:16 vmi345603 sshd[2631]: Failed password for root from 222.186.42.155 port 24062 ssh2 ...	2020-06-05 14:38:38
66.249.64.119	attackbotsspam	MYH,DEF GET /news/wp-content/plugins/custom-background/uploadify/uploadify.php	2020-06-05 15:05:25
198.98.54.28	attack	Jun 5 08:33:51 pve1 sshd[15549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.98.54.28 Jun 5 08:33:53 pve1 sshd[15549]: Failed password for invalid user ubnt from 198.98.54.28 port 57342 ssh2 ...	2020-06-05 14:54:46
218.92.0.200	attackspambots	Jun 5 08:15:13 sip sshd[547412]: Failed password for root from 218.92.0.200 port 24674 ssh2 Jun 5 08:16:03 sip sshd[547418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.200 user=root Jun 5 08:16:06 sip sshd[547418]: Failed password for root from 218.92.0.200 port 47041 ssh2 ...	2020-06-05 15:10:50
191.32.218.21	attack	Jun 5 06:57:20 localhost sshd\[16170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 user=root Jun 5 06:57:23 localhost sshd\[16170\]: Failed password for root from 191.32.218.21 port 54756 ssh2 Jun 5 07:00:55 localhost sshd\[16406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 user=root Jun 5 07:00:58 localhost sshd\[16406\]: Failed password for root from 191.32.218.21 port 46736 ssh2 Jun 5 07:04:32 localhost sshd\[16565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 user=root ...	2020-06-05 15:04:53
157.245.125.187	attackbots	Unauthorized connection attempt detected from IP address 157.245.125.187 to port 2567	2020-06-05 15:03:19
142.93.34.237	attackspam	Jun 5 10:06:06 gw1 sshd[4477]: Failed password for root from 142.93.34.237 port 39450 ssh2 ...	2020-06-05 14:37:15
41.78.223.59	attack	(country_code/South/-) SMTP Bruteforcing attempts	2020-06-05 15:16:05

Recently Reported IPs

193.168.231.169	128.199.84.221	193.218.39.97	49.49.235.215
87.70.103.93	14.247.4.107	111.119.252.23	124.156.112.181
45.11.99.172	143.178.76.223	1.202.119.69	52.147.32.241
92.147.254.243	254.183.21.114	123.126.106.88	20.94.213.213
14.160.37.174	213.166.68.106	58.57.182.34	122.160.114.4