13.115.109.245

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.115.109.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.115.109.245.			IN	A

;; AUTHORITY SECTION:
.			299	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 198 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:42:04 CST 2022
;; MSG SIZE  rcvd: 107

Host info

245.109.115.13.in-addr.arpa domain name pointer ec2-13-115-109-245.ap-northeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.109.115.13.in-addr.arpa	name = ec2-13-115-109-245.ap-northeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.185.218.69	attack	May 27 01:38:41 mxgate1 postfix/postscreen[17236]: CONNECT from [138.185.218.69]:52386 to [176.31.12.44]:25 May 27 01:38:42 mxgate1 postfix/dnsblog[17239]: addr 138.185.218.69 listed by domain zen.spamhaus.org as 127.0.0.3 May 27 01:38:42 mxgate1 postfix/dnsblog[17239]: addr 138.185.218.69 listed by domain zen.spamhaus.org as 127.0.0.4 May 27 01:38:42 mxgate1 postfix/dnsblog[17239]: addr 138.185.218.69 listed by domain zen.spamhaus.org as 127.0.0.11 May 27 01:38:42 mxgate1 postfix/dnsblog[17241]: addr 138.185.218.69 listed by domain cbl.abuseat.org as 127.0.0.2 May 27 01:38:42 mxgate1 postfix/dnsblog[17238]: addr 138.185.218.69 listed by domain b.barracudacentral.org as 127.0.0.2 May 27 01:38:47 mxgate1 postfix/postscreen[17236]: DNSBL rank 4 for [138.185.218.69]:52386 May x@x May 27 01:38:48 mxgate1 postfix/postscreen[17236]: HANGUP after 1.1 from [138.185.218.69]:52386 in tests after SMTP handshake May 27 01:38:48 mxgate1 postfix/postscreen[17236]: DISCONNECT [138.185........ -------------------------------	2020-05-27 08:03:18
123.235.15.8	attack	Unauthorised access (May 27) SRC=123.235.15.8 LEN=40 TTL=47 ID=5921 TCP DPT=23 WINDOW=51117 SYN	2020-05-27 08:09:51
193.70.38.187	attack	May 27 01:35:40 ns381471 sshd[1338]: Failed password for root from 193.70.38.187 port 59890 ssh2	2020-05-27 07:55:46
121.7.127.92	attackspam	May 27 01:45:30 nas sshd[14777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.7.127.92 user=admin May 27 01:45:32 nas sshd[14777]: Failed password for invalid user admin from 121.7.127.92 port 49834 ssh2 May 27 01:48:40 nas sshd[15515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.7.127.92 ...	2020-05-27 07:53:11
13.93.25.161	attackbotsspam	bad bad bot	2020-05-27 07:36:47
179.222.96.70	attackspam	May 27 01:41:34 [host] sshd[14377]: Invalid user u May 27 01:41:34 [host] sshd[14377]: pam_unix(sshd: May 27 01:41:36 [host] sshd[14377]: Failed passwor	2020-05-27 08:06:32
187.189.51.117	attackbots	May 27 02:04:23 eventyay sshd[29694]: Failed password for root from 187.189.51.117 port 57608 ssh2 May 27 02:07:00 eventyay sshd[29792]: Failed password for root from 187.189.51.117 port 45647 ssh2 May 27 02:09:35 eventyay sshd[29906]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.189.51.117 ...	2020-05-27 08:13:15
217.153.229.226	attackbots	Invalid user wzx from 217.153.229.226 port 59716	2020-05-27 07:41:29
182.151.3.137	attack	(sshd) Failed SSH login from 182.151.3.137 (CN/China/-): 5 in the last 3600 secs	2020-05-27 08:04:05
35.236.102.130	attack	Lines containing failures of 35.236.102.130 May 25 09:54:11 www sshd[11126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.236.102.130 user=r.r May 25 09:54:13 www sshd[11126]: Failed password for r.r from 35.236.102.130 port 57746 ssh2 May 25 09:54:13 www sshd[11126]: Received disconnect from 35.236.102.130 port 57746:11: Bye Bye [preauth] May 25 09:54:13 www sshd[11126]: Disconnected from authenticating user r.r 35.236.102.130 port 57746 [preauth] May 25 10:03:30 www sshd[12899]: Invalid user studienplatz from 35.236.102.130 port 37748 May 25 10:03:30 www sshd[12899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.236.102.130 May 25 10:03:33 www sshd[12899]: Failed password for invalid user studienplatz from 35.236.102.130 port 37748 ssh2 May 25 10:03:33 www sshd[12899]: Received disconnect from 35.236.102.130 port 37748:11: Bye Bye [preauth] May 25 10:03:33 www sshd[12899]: Disco........ ------------------------------	2020-05-27 07:34:52
63.83.75.174	attack	May 27 01:29:55 web01.agentur-b-2.de postfix/smtpd[23831]: NOQUEUE: reject: RCPT from unknown[63.83.75.174]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 27 01:29:55 web01.agentur-b-2.de postfix/smtpd[21085]: NOQUEUE: reject: RCPT from unknown[63.83.75.174]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 27 01:32:29 web01.agentur-b-2.de postfix/smtpd[21085]: NOQUEUE: reject: RCPT from unknown[63.83.75.174]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 27 01:36:36 web01.agentur-b-2.de postfix/smtpd[23831]: NOQUEUE: reject: RCPT from unknown[63.83.75.174]: 450 4.7.1	2020-05-27 07:48:28
193.35.48.18	attackbotsspam	Brute force attack to crack SMTP password (port 25 / 587)	2020-05-27 07:45:27
45.142.195.15	attackbotsspam	May 27 01:18:30 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:19:20 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:20:12 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:21:07 websrv1.aknwsrv.net postfix/smtpd[1279036]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:21:53 websrv1.aknwsrv.net postfix/smtpd[1278845]: warning: unknown[45.142.195.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-05-27 07:49:23
45.142.195.9	attackspam	May 27 01:48:37 srv01 postfix/smtpd\[4403\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:48:57 srv01 postfix/smtpd\[4403\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:48:58 srv01 postfix/smtpd\[3033\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:49:08 srv01 postfix/smtpd\[4627\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 27 01:49:13 srv01 postfix/smtpd\[4646\]: warning: unknown\[45.142.195.9\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-27 07:49:43
185.85.191.201	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-05-27 07:56:29

Recently Reported IPs

13.115.109.221	13.115.13.204	13.115.123.159	13.115.118.0
13.115.13.146	13.115.144.160	13.115.134.219	13.115.143.173
13.115.137.11	13.115.147.132	13.115.166.62	13.115.154.168
13.115.17.75	13.115.171.140	13.115.174.97	13.115.173.142
13.115.177.24	13.115.179.194	13.115.183.140	13.115.216.69