145.249.251.13

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: 2Day Telecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-19 18:27:18
attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/145.249.251.13/ KZ - 1H : (4) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KZ NAME ASN : ASN21299 IP : 145.249.251.13 CIDR : 145.249.251.0/24 PREFIX COUNT : 1019 UNIQUE IP COUNT : 358912 ATTACKS DETECTED ASN21299 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-11 09:48:07 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-11-11 19:16:07

Type

Details

Datetime

attackspambots

MultiHost/MultiPort Probe, Scan, Hack -

2019-11-19 18:27:18

attackspambots

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/145.249.251.13/ 
 
 KZ - 1H : (4)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : KZ 
 NAME ASN : ASN21299 
 
 IP : 145.249.251.13 
 
 CIDR : 145.249.251.0/24 
 
 PREFIX COUNT : 1019 
 
 UNIQUE IP COUNT : 358912 
 
 
 ATTACKS DETECTED ASN21299 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 1 
 
 DateTime : 2019-11-11 09:48:07 
 
 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN  - data recovery

2019-11-11 19:16:07

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.249.251.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35132
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;145.249.251.13.			IN	A

;; AUTHORITY SECTION:
.			500	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111100 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 19:15:58 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 13.251.249.145.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 13.251.249.145.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.25.197.154	attack	Automatic report - Banned IP Access	2019-11-02 16:08:37
62.133.162.235	attackspam	Chat Spam	2019-11-02 15:56:53
149.56.89.123	attack	Nov 2 05:18:49 www sshd\[3513\]: Invalid user admin from 149.56.89.123 port 47340 ...	2019-11-02 16:02:06
45.146.202.242	attackspam	Postfix DNSBL listed. Trying to send SPAM.	2019-11-02 15:40:26
60.182.177.255	attackbots	$f2bV_matches	2019-11-02 15:54:21
171.125.52.218	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/171.125.52.218/ CN - 1H : (670) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 171.125.52.218 CIDR : 171.120.0.0/13 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 17 3H - 39 6H - 61 12H - 126 24H - 253 DateTime : 2019-11-02 04:48:56 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-02 16:07:14
46.212.139.38	attackspam	Nov 2 07:00:28 meumeu sshd[15245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.212.139.38 Nov 2 07:00:30 meumeu sshd[15245]: Failed password for invalid user emma from 46.212.139.38 port 35526 ssh2 Nov 2 07:06:15 meumeu sshd[15940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.212.139.38 ...	2019-11-02 15:51:17
157.245.53.83	attackbots	SSH bruteforce	2019-11-02 15:45:08
59.25.197.158	attackspam	Invalid user training from 59.25.197.158 port 34372	2019-11-02 16:04:30
62.210.202.26	attack	Nov 2 04:19:15 core sshd\[8631\]: Invalid user 321 from 62.210.202.26 Nov 2 04:19:16 core sshd\[8634\]: Invalid user wpadmin from 62.210.202.26 Nov 2 04:19:17 core sshd\[8636\]: Invalid user wpadmin123 from 62.210.202.26 Nov 2 04:19:19 core sshd\[8638\]: Invalid user wproot@!@ from 62.210.202.26 Nov 2 04:19:20 core sshd\[8641\]: Invalid user webmail from 62.210.202.26 ...	2019-11-02 15:57:52
45.45.45.45	attackspambots	02.11.2019 05:02:59 Recursive DNS scan	2019-11-02 15:43:15
159.89.169.137	attackspam	Nov 2 04:44:22 tux-35-217 sshd\[31630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 user=root Nov 2 04:44:24 tux-35-217 sshd\[31630\]: Failed password for root from 159.89.169.137 port 40468 ssh2 Nov 2 04:48:47 tux-35-217 sshd\[31653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 user=root Nov 2 04:48:50 tux-35-217 sshd\[31653\]: Failed password for root from 159.89.169.137 port 50210 ssh2 ...	2019-11-02 16:11:06
101.91.160.243	attack	Nov 1 18:04:10 web1 sshd\[18764\]: Invalid user commercial from 101.91.160.243 Nov 1 18:04:10 web1 sshd\[18764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.160.243 Nov 1 18:04:13 web1 sshd\[18764\]: Failed password for invalid user commercial from 101.91.160.243 port 41052 ssh2 Nov 1 18:09:10 web1 sshd\[19261\]: Invalid user password from 101.91.160.243 Nov 1 18:09:10 web1 sshd\[19261\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.160.243	2019-11-02 15:39:01
118.24.23.164	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-02 16:05:43
202.75.62.168	attack	wp bruteforce	2019-11-02 15:50:45

Recently Reported IPs

118.136.42.250	183.47.3.72	104.161.66.143	5.178.217.227
86.244.96.101	72.223.168.78	142.93.14.190	41.141.64.115
118.97.15.185	81.28.107.123	182.61.12.58	84.54.78.248
95.84.45.146	34.76.225.49	139.59.78.179	47.93.11.251
2.132.84.155	170.82.5.245	155.133.43.184	171.91.157.135