164.107.18.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.107.18.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51885
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.107.18.13.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 23:23:49 CST 2019
;; MSG SIZE  rcvd: 117

Host info

13.18.107.164.in-addr.arpa domain name pointer tnc-013.physfac.ohio-state.edu.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
13.18.107.164.in-addr.arpa	name = tnc-013.physfac.ohio-state.edu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.168.46.172	attackbotsspam	wp xmlrpc attack	2019-08-10 22:37:40
178.255.126.198	attackspambots	DATE:2019-08-10 14:13:43, IP:178.255.126.198, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-08-10 23:45:39
193.171.202.150	attack	Aug 10 13:27:38 MK-Soft-VM6 sshd\[10421\]: Invalid user Administrator from 193.171.202.150 port 58072 Aug 10 13:27:38 MK-Soft-VM6 sshd\[10421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.171.202.150 Aug 10 13:27:40 MK-Soft-VM6 sshd\[10421\]: Failed password for invalid user Administrator from 193.171.202.150 port 58072 ssh2 ...	2019-08-10 23:49:20
139.99.168.152	attack	Feb 25 12:48:36 motanud sshd\[21775\]: Invalid user oracle from 139.99.168.152 port 39060 Feb 25 12:48:36 motanud sshd\[21775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.168.152 Feb 25 12:48:38 motanud sshd\[21775\]: Failed password for invalid user oracle from 139.99.168.152 port 39060 ssh2	2019-08-10 22:43:16
164.132.119.83	attack	164.132.119.83 - - [10/Aug/2019:14:20:29 0200] "GET / HTTP/1.1" 301 237 "-" "Mozilla/5.0 (compatible; Googlebot/2.1; http://www.google.com/bot.html)"	2019-08-10 22:50:21
61.147.57.186	attackspambots	ssh failed login	2019-08-10 23:16:08
81.22.45.254	attack	Aug 10 16:51:36 h2177944 kernel: \[3772491.540137\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=5379 PROTO=TCP SPT=42556 DPT=17865 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 16:51:41 h2177944 kernel: \[3772496.326149\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=42682 PROTO=TCP SPT=42556 DPT=28140 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 16:58:14 h2177944 kernel: \[3772889.692029\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=17595 PROTO=TCP SPT=42556 DPT=4044 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 17:00:55 h2177944 kernel: \[3773050.330284\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=26692 PROTO=TCP SPT=42556 DPT=63150 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 17:01:29 h2177944 kernel: \[3773083.990034\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LE	2019-08-10 23:31:13
106.12.108.90	attackspambots	Aug 10 16:19:48 * sshd[24524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.90 Aug 10 16:19:50 * sshd[24524]: Failed password for invalid user kid from 106.12.108.90 port 53034 ssh2	2019-08-10 22:41:26
185.30.233.132	attackspam	firewall-block, port(s): 123/udp	2019-08-10 23:23:41
68.183.224.118	attackspam	Aug 10 07:12:17 dallas01 sshd[12267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.224.118 Aug 10 07:12:19 dallas01 sshd[12267]: Failed password for invalid user jc from 68.183.224.118 port 53258 ssh2 Aug 10 07:19:06 dallas01 sshd[13504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.224.118	2019-08-10 23:44:10
189.232.43.176	attack	Aug 10 13:49:53 seraph sshd[30738]: Invalid user admin from 189.232.43.176 Aug 10 13:49:53 seraph sshd[30738]: pam_unix(sshd:auth): authentication fai= lure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D189.232.43.176 Aug 10 13:49:55 seraph sshd[30738]: Failed password for invalid user admin = from 189.232.43.176 port 49146 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=189.232.43.176	2019-08-10 22:53:00
183.2.101.185	attack	Aug 10 13:49:46 delaware postfix/smtpd[42387]: connect from unknown[183.2.101.185] Aug 10 13:49:49 delaware postfix/smtpd[42388]: connect from unknown[183.2.101.185] Aug 10 13:49:52 delaware postfix/smtpd[42388]: warning: unknown[183.2.101.185]: SASL LOGIN authentication failed: authentication failure Aug 10 13:49:53 delaware postfix/smtpd[42388]: lost connection after AUTH from unknown[183.2.101.185] Aug 10 13:49:53 delaware postfix/smtpd[42388]: disconnect from unknown[183.2.101.185] ehlo=1 auth=0/1 commands=1/2 Aug 10 13:49:55 delaware postfix/smtpd[42388]: connect from unknown[183.2.101.185] Aug 10 13:50:02 delaware postfix/smtpd[42388]: warning: unknown[183.2.101.185]: SASL LOGIN authentication failed: authentication failure Aug 10 13:50:05 delaware postfix/smtpd[42388]: lost connection after AUTH from unknown[183.2.101.185] Aug 10 13:50:05 delaware postfix/smtpd[42388]: disconnect from unknown[183.2.101.185] ehlo=1 auth=0/1 commands=1/2 Aug 10 13:50:06 delaware po........ -------------------------------	2019-08-10 22:57:03
87.98.150.12	attack	Aug 10 14:19:06 vps65 sshd\[25016\]: Invalid user coin from 87.98.150.12 port 33152 Aug 10 14:19:06 vps65 sshd\[25016\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.98.150.12 ...	2019-08-10 23:51:01
188.17.91.117	attackspam	Aug 10 14:00:45 keyhelp sshd[31759]: Invalid user admin from 188.17.91.117 Aug 10 14:00:45 keyhelp sshd[31759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.17.91.117 Aug 10 14:00:47 keyhelp sshd[31759]: Failed password for invalid user admin from 188.17.91.117 port 56576 ssh2 Aug 10 14:00:47 keyhelp sshd[31759]: Connection closed by 188.17.91.117 port 56576 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=188.17.91.117	2019-08-10 23:40:27
182.72.104.106	attackspambots	SSH Brute Force	2019-08-10 23:25:06

Recently Reported IPs

91.59.200.86	182.185.13.52	5.255.89.45	200.98.200.62
113.7.197.26	175.132.110.7	165.22.71.243	191.53.254.67
164.4.140.61	178.32.202.101	110.150.72.82	56.120.172.120
49.173.2.85	27.217.44.175	51.83.126.24	2.137.49.65
51.142.184.167	137.74.59.196	148.103.114.213	212.253.112.228