13.125.253.145

Basic Info

City: Incheon

Region: Incheon

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.125.253.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44848
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.125.253.145.			IN	A

;; AUTHORITY SECTION:
.			454	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070103 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 02 08:42:52 CST 2020
;; MSG SIZE  rcvd: 118

Host info

145.253.125.13.in-addr.arpa domain name pointer ec2-13-125-253-145.ap-northeast-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.253.125.13.in-addr.arpa	name = ec2-13-125-253-145.ap-northeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.98.228.54	attackspam	$f2bV_matches	2019-07-07 10:21:33
106.245.255.19	attack	Tried sshing with brute force.	2019-07-07 10:05:58
121.153.12.239	attack	Probing for vulnerable services	2019-07-07 09:57:58
114.124.161.0	attackbots	Autoban 114.124.161.0 AUTH/CONNECT	2019-07-07 09:54:59
111.45.123.117	attack	ssh default account attempted login	2019-07-07 10:08:39
159.65.194.168	attackbots	techno.ws 159.65.194.168 \[07/Jul/2019:01:10:21 +0200\] "POST /wp-login.php HTTP/1.1" 200 5605 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" techno.ws 159.65.194.168 \[07/Jul/2019:01:10:21 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4071 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-07 10:25:06
39.97.49.62	attackspam	techno.ws 39.97.49.62 \[07/Jul/2019:01:10:32 +0200\] "POST /wp-login.php HTTP/1.1" 200 5605 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" techno.ws 39.97.49.62 \[07/Jul/2019:01:10:34 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4071 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-07 10:14:31
14.63.167.192	attack	Jul 7 03:10:09 giegler sshd[19580]: Invalid user osm from 14.63.167.192 port 50550 Jul 7 03:10:09 giegler sshd[19580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.167.192 Jul 7 03:10:09 giegler sshd[19580]: Invalid user osm from 14.63.167.192 port 50550 Jul 7 03:10:11 giegler sshd[19580]: Failed password for invalid user osm from 14.63.167.192 port 50550 ssh2 Jul 7 03:12:39 giegler sshd[19594]: Invalid user hub from 14.63.167.192 port 46786	2019-07-07 09:57:22
142.93.237.233	attackspambots	Invalid user silas from 142.93.237.233 port 44572 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.233 Failed password for invalid user silas from 142.93.237.233 port 44572 ssh2 Invalid user crv from 142.93.237.233 port 43922 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.237.233	2019-07-07 10:03:21
114.124.161.28	attack	Autoban 114.124.161.28 AUTH/CONNECT	2019-07-07 09:59:19
158.255.23.146	attackbots	2019-07-06 18:10:18 H=(158-255-23-146.lir.beskydnet.cz) [158.255.23.146]:56903 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-06 18:10:18 H=(158-255-23-146.lir.beskydnet.cz) [158.255.23.146]:56903 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-06 18:10:19 H=(158-255-23-146.lir.beskydnet.cz) [158.255.23.146]:56903 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-07-07 10:27:46
13.67.88.233	attackbots	web-1 [ssh] SSH Attack	2019-07-07 10:37:15
51.77.222.140	attackbots	Jul 7 03:12:20 apollo sshd\[8069\]: Invalid user rp from 51.77.222.140Jul 7 03:12:23 apollo sshd\[8069\]: Failed password for invalid user rp from 51.77.222.140 port 43042 ssh2Jul 7 03:14:28 apollo sshd\[8084\]: Invalid user mustafa from 51.77.222.140 ...	2019-07-07 10:02:06
191.5.130.69	attackspam	Jul 6 23:10:03 unicornsoft sshd\[6875\]: Invalid user co from 191.5.130.69 Jul 6 23:10:03 unicornsoft sshd\[6875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.5.130.69 Jul 6 23:10:05 unicornsoft sshd\[6875\]: Failed password for invalid user co from 191.5.130.69 port 46686 ssh2	2019-07-07 10:35:06
129.211.24.70	attackspam	2019-07-07T02:16:26.052948hub.schaetter.us sshd\[14175\]: Invalid user erpnext from 129.211.24.70 2019-07-07T02:16:26.087401hub.schaetter.us sshd\[14175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.70 2019-07-07T02:16:27.887224hub.schaetter.us sshd\[14175\]: Failed password for invalid user erpnext from 129.211.24.70 port 51296 ssh2 2019-07-07T02:23:09.635628hub.schaetter.us sshd\[14211\]: Invalid user red5 from 129.211.24.70 2019-07-07T02:23:09.668145hub.schaetter.us sshd\[14211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.70 ...	2019-07-07 10:42:55

Recently Reported IPs

90.36.229.26	187.170.239.184	71.91.202.173	149.199.90.223
82.254.157.120	44.195.118.17	109.111.140.28	118.102.96.206
106.110.238.83	123.69.127.35	95.186.52.182	217.192.86.246
99.122.174.99	181.202.185.72	72.223.89.94	173.0.17.39
106.75.236.46	55.241.141.12	162.184.238.132	240.107.153.189