45.13.39.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: Bunea Telecom SRL

Hostname: unknown

Organization: Feo Prest SRL

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack		2019-06-25 02:00:12

Comments on same subnet:

IP	Type	Details	Datetime
45.13.39.150	attackspam	Exceeded maximum number of incorrect SMTP login attempts	2019-09-03 22:53:29
45.13.39.140	attack	Exceeded maximum number of incorrect SMTP login attempts	2019-09-03 22:44:35
45.13.39.123	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-08-03 07:47:53
45.13.39.167	attackbotsspam	Jul 29 18:04:29 web1 postfix/smtpd[14352]: warning: unknown[45.13.39.167]: SASL LOGIN authentication failed: authentication failure ...	2019-07-30 06:04:44
45.13.39.123	attackbotsspam	Jun 18 15:39:04 mercury smtpd[1174]: 1aa6badc56aebfd3 smtp event=failed-command address=45.13.39.123 host=45.13.39.123 command="AUTH LOGIN" result="503 5.5.1 Invalid command: Command not supported" ...	2019-07-30 05:50:04
45.13.39.12	attackbotsspam	Jul 28 14:08:57 mail postfix/smtpd\[753\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 14:09:49 mail postfix/smtpd\[30971\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 14:10:45 mail postfix/smtpd\[753\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-28 20:24:42
45.13.39.12	attackbotsspam	Jul 28 06:22:01 mail postfix/smtpd\[24317\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 06:22:54 mail postfix/smtpd\[25964\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 06:23:49 mail postfix/smtpd\[25964\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-28 12:34:44
45.13.39.115	attackbots	imap or smtp brute force	2019-07-25 21:04:00
45.13.39.12	attackbotsspam	Jul 25 07:58:53 mail postfix/smtpd\[14708\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 25 08:29:16 mail postfix/smtpd\[17228\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 25 08:30:10 mail postfix/smtpd\[15624\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 25 08:31:03 mail postfix/smtpd\[17091\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-25 16:04:58
45.13.39.167	attackbotsspam	Jul 24 23:21:37 mail postfix/smtpd\[26415\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 24 23:52:09 mail postfix/smtpd\[27633\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 24 23:52:44 mail postfix/smtpd\[28095\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 24 23:53:22 mail postfix/smtpd\[28113\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-25 05:52:05
45.13.39.123	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-25 03:13:42
45.13.39.126	attackbotsspam	2019-07-23T04:14:25.821185ns1.unifynetsol.net postfix/smtpd\[11671\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:15:26.338524ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:16:29.533593ns1.unifynetsol.net postfix/smtpd\[11671\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:17:32.496194ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:18:34.273440ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure	2019-07-23 07:05:33
45.13.39.167	attackbots	Jul 22 13:05:59 marvibiene postfix/smtpd[4836]: warning: unknown[45.13.39.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 13:06:46 marvibiene postfix/smtpd[4211]: warning: unknown[45.13.39.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-22 22:31:44
45.13.39.115	attackspam	Jul 22 09:26:53 mailserver postfix/smtps/smtpd[20376]: warning: unknown[45.13.39.115]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 09:27:05 mailserver postfix/smtps/smtpd[20376]: lost connection after AUTH from unknown[45.13.39.115] Jul 22 09:27:05 mailserver postfix/smtps/smtpd[20376]: disconnect from unknown[45.13.39.115] Jul 22 10:28:00 mailserver postfix/smtps/smtpd[21040]: connect from unknown[45.13.39.115] Jul 22 10:29:33 mailserver dovecot: auth-worker(21045): sql([hidden],45.13.39.115): unknown user Jul 22 10:29:35 mailserver postfix/smtps/smtpd[21040]: warning: unknown[45.13.39.115]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 10:29:47 mailserver postfix/smtps/smtpd[21040]: lost connection after AUTH from unknown[45.13.39.115] Jul 22 10:29:47 mailserver postfix/smtps/smtpd[21040]: disconnect from unknown[45.13.39.115] Jul 22 10:29:57 mailserver postfix/smtps/smtpd[21040]: connect from unknown[45.13.39.115] Jul 22 10:31:32 mailserver dovecot: auth-worker(21069): sql([hidden],45.13.	2019-07-22 17:05:58
45.13.39.167	attackbotsspam	Jul 22 07:26:30 mail postfix/smtpd\[29980\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 07:27:04 mail postfix/smtpd\[29671\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 07:27:51 mail postfix/smtpd\[30068\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 07:58:32 mail postfix/smtpd\[31966\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-22 14:04:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.13.39.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.13.39.129.			IN	A

;; AUTHORITY SECTION:
.			231	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062400 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 25 00:54:10 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 129.39.13.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.39.13.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.110.125	attackspambots	\[2019-09-19 15:33:07\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-19T15:33:07.648-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="224000001148243625001",SessionID="0x7fcd8c0e1918",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.125/51376",ACLName="no_extension_match" \[2019-09-19 15:34:03\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-19T15:34:03.569-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="24000001148443071002",SessionID="0x7fcd8c3a6b08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.125/65011",ACLName="no_extension_match" \[2019-09-19 15:34:32\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-19T15:34:32.568-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="225000001148243625001",SessionID="0x7fcd8c0b7678",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.125/53	2019-09-20 03:42:13
114.31.240.50	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 11:45:59.	2019-09-20 03:29:28
45.91.65.245	attackspambots	Spam	2019-09-20 03:31:23
222.186.42.241	attackbots	Sep 19 21:26:48 dev0-dcde-rnet sshd[5542]: Failed password for root from 222.186.42.241 port 27194 ssh2 Sep 19 21:33:02 dev0-dcde-rnet sshd[5553]: Failed password for root from 222.186.42.241 port 22332 ssh2	2019-09-20 03:48:29
46.101.206.205	attackbots	Sep 19 09:09:12 tdfoods sshd\[29343\]: Invalid user akkermans from 46.101.206.205 Sep 19 09:09:12 tdfoods sshd\[29343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.206.205 Sep 19 09:09:14 tdfoods sshd\[29343\]: Failed password for invalid user akkermans from 46.101.206.205 port 41782 ssh2 Sep 19 09:14:38 tdfoods sshd\[29806\]: Invalid user cristina from 46.101.206.205 Sep 19 09:14:38 tdfoods sshd\[29806\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.206.205	2019-09-20 03:24:33
72.52.133.231	attack	Spam	2019-09-20 03:20:52
49.234.238.65	attack	2019-09-19T19:35:56.166707abusebot-3.cloudsearch.cf sshd\[19436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.238.65 user=ftp	2019-09-20 03:42:35
203.95.212.41	attack	Invalid user tc from 203.95.212.41 port 18458	2019-09-20 03:31:40
114.33.80.4	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-09-20 03:41:48
51.75.215.82	attackspambots	Sep 19 21:42:37 SilenceServices sshd[31080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.215.82 Sep 19 21:42:39 SilenceServices sshd[31080]: Failed password for invalid user admin from 51.75.215.82 port 43930 ssh2 Sep 19 21:46:34 SilenceServices sshd[1591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.215.82	2019-09-20 03:47:38
70.88.209.53	attackspambots	Spam	2019-09-20 03:21:36
66.215.7.118	attackbotsspam	Unauthorized connection attempt from IP address 66.215.7.118 on Port 445(SMB)	2019-09-20 03:28:40
45.146.202.118	attack	2019-09-19T21:35:30.687548stark.klein-stark.info postfix/smtpd\[19814\]: NOQUEUE: reject: RCPT from woman.krcsf.com\[45.146.202.118\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-09-20 03:58:08
104.42.30.9	attackspambots	Automatic report - Banned IP Access	2019-09-20 03:55:44
140.143.63.24	attack	Sep 19 11:44:55 dallas01 sshd[14632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.63.24 Sep 19 11:44:56 dallas01 sshd[14632]: Failed password for invalid user pq from 140.143.63.24 port 48970 ssh2 Sep 19 11:49:23 dallas01 sshd[15424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.63.24	2019-09-20 03:32:32

Recently Reported IPs

187.120.133.107	68.183.189.1	42.39.253.244	196.48.206.229
201.150.89.130	72.41.110.90	71.241.109.130	2.63.186.140
137.68.137.172	191.53.59.211	169.61.97.115	190.206.223.226
187.6.249.142	82.97.250.36	172.240.59.165	132.71.98.129
91.193.130.66	46.54.211.23	2402:1f00:8101:1d8::	108.33.90.175