13.229.107.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
13.229.107.217	attack	13.229.107.217 - - \[11/Mar/2020:20:15:21 +0100\] "POST /wp-login.php HTTP/1.0" 200 7680 "-" "-" 13.229.107.217 - - \[11/Mar/2020:20:15:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 7680 "-" "-" 13.229.107.217 - - \[11/Mar/2020:20:15:52 +0100\] "POST /wp-login.php HTTP/1.0" 200 7680 "-" "-"	2020-03-12 06:12:05

Type

Details

Datetime

13.229.107.217

attack

13.229.107.217 - - \[11/Mar/2020:20:15:21 +0100\] "POST /wp-login.php HTTP/1.0" 200 7680 "-" "-"
13.229.107.217 - - \[11/Mar/2020:20:15:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 7680 "-" "-"
13.229.107.217 - - \[11/Mar/2020:20:15:52 +0100\] "POST /wp-login.php HTTP/1.0" 200 7680 "-" "-"

2020-03-12 06:12:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.229.107.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34941
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.229.107.45.			IN	A

;; AUTHORITY SECTION:
.			208	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:53:53 CST 2022
;; MSG SIZE  rcvd: 106

Host info

45.107.229.13.in-addr.arpa domain name pointer ec2-13-229-107-45.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.107.229.13.in-addr.arpa	name = ec2-13-229-107-45.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.203.29	attackspam	Automatic report - XMLRPC Attack	2020-08-05 12:30:46
192.99.168.9	attackbots	ssh brute force	2020-08-05 13:00:55
210.126.1.35	attack	Aug 5 04:07:08 web8 sshd\[3621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.126.1.35 user=root Aug 5 04:07:10 web8 sshd\[3621\]: Failed password for root from 210.126.1.35 port 48898 ssh2 Aug 5 04:08:58 web8 sshd\[4549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.126.1.35 user=root Aug 5 04:08:59 web8 sshd\[4549\]: Failed password for root from 210.126.1.35 port 48200 ssh2 Aug 5 04:10:50 web8 sshd\[5683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.126.1.35 user=root	2020-08-05 12:38:59
62.234.78.233	attack	Aug 5 05:42:20 rocket sshd[5619]: Failed password for root from 62.234.78.233 port 55978 ssh2 Aug 5 05:48:05 rocket sshd[6413]: Failed password for root from 62.234.78.233 port 57956 ssh2 ...	2020-08-05 13:01:48
212.70.149.82	attackspambots	2020-08-05 07:02:57 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=bidget@no-server.de\) 2020-08-05 07:02:57 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=bidget@no-server.de\) 2020-08-05 07:03:05 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=bidget@no-server.de\) 2020-08-05 07:03:07 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=bidget@no-server.de\) 2020-08-05 07:03:25 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=bihari@no-server.de\) 2020-08-05 07:03:25 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=bihari@no-server.de\) 2020-08-05 07:03:32 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 5 ...	2020-08-05 13:05:49
85.133.143.35	attack	Dovecot Invalid User Login Attempt.	2020-08-05 12:34:16
93.153.173.99	attackspambots	Aug 5 05:48:30 marvibiene sshd[18649]: Failed password for root from 93.153.173.99 port 40704 ssh2 Aug 5 05:52:31 marvibiene sshd[18837]: Failed password for root from 93.153.173.99 port 51976 ssh2	2020-08-05 12:29:17
112.85.42.174	attackbotsspam	2020-08-05T06:20:54.237002 sshd[90973]: Unable to negotiate with 112.85.42.174 port 38403: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-08-05T06:20:54.265170 sshd[90975]: Unable to negotiate with 112.85.42.174 port 16327: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-08-05T06:28:16.060502 sshd[101990]: Unable to negotiate with 112.85.42.174 port 43642: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-08-05T06:28:16.097499 sshd[101992]: Unable to negotiate with 112.85.42.174 port 1205: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]	2020-08-05 12:28:31
111.161.74.106	attackspam	(sshd) Failed SSH login from 111.161.74.106 (CN/China/dns106.online.tj.cn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 5 07:17:52 s1 sshd[9403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.106 user=root Aug 5 07:17:54 s1 sshd[9403]: Failed password for root from 111.161.74.106 port 41993 ssh2 Aug 5 07:25:59 s1 sshd[9635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.106 user=root Aug 5 07:26:01 s1 sshd[9635]: Failed password for root from 111.161.74.106 port 33514 ssh2 Aug 5 07:30:32 s1 sshd[9745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.106 user=root	2020-08-05 12:56:55
222.186.175.163	attackspam	Aug 5 07:07:03 nextcloud sshd\[16197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Aug 5 07:07:05 nextcloud sshd\[16197\]: Failed password for root from 222.186.175.163 port 45270 ssh2 Aug 5 07:07:16 nextcloud sshd\[16197\]: Failed password for root from 222.186.175.163 port 45270 ssh2	2020-08-05 13:09:37
201.182.211.214	attack	Automatic report - Port Scan Attack	2020-08-05 12:37:08
118.89.108.152	attack	Aug 5 03:57:08 vlre-nyc-1 sshd\[3615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.152 user=root Aug 5 03:57:11 vlre-nyc-1 sshd\[3615\]: Failed password for root from 118.89.108.152 port 57766 ssh2 Aug 5 04:00:22 vlre-nyc-1 sshd\[3695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.152 user=root Aug 5 04:00:23 vlre-nyc-1 sshd\[3695\]: Failed password for root from 118.89.108.152 port 40788 ssh2 Aug 5 04:03:38 vlre-nyc-1 sshd\[3771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.108.152 user=root ...	2020-08-05 12:36:04
103.76.24.202	attack	1596599745 - 08/05/2020 05:55:45 Host: 103.76.24.202/103.76.24.202 Port: 445 TCP Blocked ...	2020-08-05 13:06:54
61.175.121.76	attack	Aug 5 05:53:39 * sshd[25459]: Failed password for root from 61.175.121.76 port 24026 ssh2	2020-08-05 12:47:27
135.181.41.4	attack	IDS admin	2020-08-05 12:23:52

Recently Reported IPs

13.229.108.219	13.229.108.115	13.229.108.56	13.229.107.251
13.229.108.8	13.229.108.39	13.229.108.93	13.229.108.140
13.229.109.1	13.229.109.228	13.229.109.101	13.229.109.26
13.229.109.62	13.229.110.138	13.229.109.30	13.229.110.142
13.229.110.101	13.229.109.59	13.229.109.133	13.229.110.180