JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 13.60.105.89

13.60.105.89 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 86%: ?

86%

ISP	Amazon Data Services Sweden
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16509
Hostname(s)	ec2-13-60-105-89.eu-north-1.compute.amazonaws.com
Domain Name	amazon.com
Country	🇸🇪 Sweden
City	Stockholm, Stockholm

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 13.60.105.89

Whois 13.60.105.89

IP Abuse Reports for 13.60.105.89:

This IP address has been reported a total of 16 times from 15 distinct sources. 13.60.105.89 was first reported on June 17th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇿 Countryman	2026-06-18 06:36:12 (2 days ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
🇨🇿 Prcek	2026-06-18 05:55:43 (2 days ago)	PortScan:HOST=13.60.105.89,DPORTS=2078,2083,2087,2096	Port Scan
🇧🇷 SOC Blue Team	2026-06-18 05:25:48 (2 days ago)	IPs get by Hunting on SIEM	Phishing Web Spam Port Scan Hacking
🇩🇪 Justin F. \| AS204464	2026-06-18 05:16:38 (2 days ago)	Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2078 [45], 2087 [3] TCP Reported ... show more Honeypot [nx-infrastructure]: Empty payload (likely service probe); 2078 [45], 2087 [3] TCP Reported by: Justin F. show less	Port Scan
🇺🇸 xmission.com	2026-06-18 04:42:07 (2 days ago)	Blocked by UFW (TCP on 2096) Source port: 60256 TTL: 45 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 2096) Source port: 60256 TTL: 45 Packet length: 60 TOS: 0x08 This report (for 13.60.105.89) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇸🇬 drewf.ink	2026-06-18 03:33:39 (2 days ago)	[03:33] Port scanning. Port(s) scanned: TCP/2086, TCP/2087	Port Scan
🇺🇸 cwytech	2026-06-18 03:19:28 (2 days ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇦🇹 centurion	2026-06-18 03:11:12 (2 days ago)	Unauthorized attempt on cendev [2078/tcp] Source port: 58386 TTL: 55 Packet length: 60 TOS: 0x00 htt ... show more Unauthorized attempt on cendev [2078/tcp] Source port: 58386 TTL: 55 Packet length: 60 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 BIV	2026-06-18 02:49:11 (2 days ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 2077,2078,2083,2086,20 ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 2077,2078,2083,2086,2087,2095,2096. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
🇺🇸 MPL	2026-06-18 02:25:04 (2 days ago)	tcp port scan (14 or more attempts)	Port Scan
🇹🇭 Sawasdee	2026-06-18 01:22:51 (3 days ago)	Port Scan ...	Port Scan
🇫🇮 6kilowatti	2026-06-18 01:18:41 (3 days ago)	2026-06-18T04:18:41.198550+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18 ... show more 2026-06-18T04:18:41.198550+03:00 6kw kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3e:b6:e7:09:78:9a:18:bd:57:7e:08:00 SRC=13.60.105.89 DST=5.61.88.83 LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID=35230 DF PROTO=TCP SPT=38142 DPT=2078 WINDOW=62727 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇷🇸 Scan	2026-06-18 00:36:29 (3 days ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2026-06-18 00:10:00 (3 days ago)	tcp port scan (21 or more attempts)	Port Scan
🇷🇴 gtheo99	2026-06-17 22:31:30 (3 days ago)	13.60.105.89 (SE/Sweden/ec2-13-60-105-89.eu-north-1.compute.amazonaws.com), 3 distributed cpanel att ... show more 13.60.105.89 (SE/Sweden/ec2-13-60-105-89.eu-north-1.compute.amazonaws.com), 3 distributed cpanel attacks on account [root] in the last 900 secs show less	SSH Brute-Force Hacking

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.221.36.42

🇰🇷 211.198.128.124

🇦🇺 203.57.126.113

🇩🇿 193.194.91.218

🇧🇷 168.195.142.167

🇺🇸 157.245.12.72

🇫🇮 147.185.133.185

🇧🇷 138.121.246.116

🇮🇳 122.183.48.214

🇨🇦 104.234.135.32

🇬🇧 35.203.210.138

🇷🇺 31.25.29.163

🇬🇧 2a06:4880:8000::a4

🇷🇺 213.180.203.91

🇩🇪 167.94.145.26

🇺🇸 147.185.132.243

🇫🇷 78.116.127.149

🇫🇷 51.254.113.225

🇺🇸 47.251.243.210

🇳🇱 45.148.10.152