13.127.120.248

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.127.120.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40009
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.127.120.248.			IN	A

;; AUTHORITY SECTION:
.			483	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 128 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:44:35 CST 2022
;; MSG SIZE  rcvd: 107

Host info

248.120.127.13.in-addr.arpa domain name pointer ec2-13-127-120-248.ap-south-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
248.120.127.13.in-addr.arpa	name = ec2-13-127-120-248.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.121.195.4	attackbotsspam	Aug 7 21:48:22 * sshd[32105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.121.195.4 Aug 7 21:48:25 * sshd[32105]: Failed password for invalid user matt from 103.121.195.4 port 44118 ssh2	2019-08-08 04:48:12
218.92.1.130	attack	SSH Brute Force, server-1 sshd[28600]: Failed password for root from 218.92.1.130 port 28529 ssh2	2019-08-08 05:14:51
223.220.159.78	attack	[ssh] SSH attack	2019-08-08 04:27:55
211.43.196.98	attack	211.43.196.98:61242 - - [02/Aug/2019:18:25:21 +0200] "HEAD /uc_server/admin.php?m=user&a=login&iframe=&sid= HTTP/1.1" 404 - 211.43.196.98:61242 - - [02/Aug/2019:18:25:21 +0200] "HEAD / HTTP/1.1" 200 - 211.43.196.98:57567 - - [02/Aug/2019:16:57:15 +0200] "HEAD /admin/left.asp HTTP/1.1" 404 - 211.43.196.98:57567 - - [02/Aug/2019:16:57:15 +0200] "HEAD /admin/review.asp?id=1%20union%20select%201,2,3,4,5,admin,7,8,9,password,11%20%20from%20cnhww HTTP/1.1" 404 - 211.43.196.98:57567 - - [02/Aug/2019:16:57:15 +0200] "HEAD /Data21293/NYIKUGY5434231.mdb HTTP/1.1" 404 - 211.43.196.98:57567 - - [02/Aug/2019:16:57:14 +0200] "HEAD /install/index.php?_m=frontpage&_a=setting&default_tpl=jixie-110118-a16 HTTP/1.1" 404 - 211.43.196.98:57567 - - [02/Aug/2019:16:57:13 +0200] "POST /index.php?_m=mod_email&_a=do_mail HTTP/1.1" 200 7424 211.43.196.98:57567 - - [02/Aug/2019:16:57:13 +0200] "HEAD /index.php?_m=mod_email&_a=do_mail HTTP/1.1" 200 -	2019-08-08 04:49:08
113.53.149.133	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-08 05:08:40
116.10.189.73	attackbots	SMB Server BruteForce Attack	2019-08-08 04:40:45
45.67.14.151	attackbots	firewall-block, port(s): 3005/tcp	2019-08-08 05:18:35
46.45.143.35	attackspambots	WordPress wp-login brute force :: 46.45.143.35 0.048 BYPASS [08/Aug/2019:03:40:46 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-08 04:42:33
83.48.42.223	attackspambots	$f2bV_matches	2019-08-08 04:57:26
110.93.219.92	attack	firewall-block, port(s): 445/tcp	2019-08-08 05:05:35
125.209.124.155	attack	leo_www	2019-08-08 05:14:23
213.202.211.200	attackspam	Aug 7 19:42:46 srv1 sshd[21376]: Address 213.202.211.200 maps to hosname9046.dus2.servdiscount-customer.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 7 19:42:46 srv1 sshd[21376]: Invalid user taiga from 213.202.211.200 Aug 7 19:42:46 srv1 sshd[21376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200 Aug 7 19:42:48 srv1 sshd[21376]: Failed password for invalid user taiga from 213.202.211.200 port 57212 ssh2 Aug 7 19:42:48 srv1 sshd[21376]: Received disconnect from 213.202.211.200: 11: Bye Bye [preauth] Aug 7 19:51:03 srv1 sshd[22082]: Address 213.202.211.200 maps to hosname9046.dus2.servdiscount-customer.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 7 19:51:03 srv1 sshd[22082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200 user=r.r Aug 7 19:51:05 srv1 sshd[22082]: Failed password for........ -------------------------------	2019-08-08 04:53:36
114.217.197.25	attack	Bad bot/spoofed identity	2019-08-08 04:36:40
185.220.101.69	attackbots	Aug 5 08:17:33 * sshd[19880]: Failed password for invalid user administrator from 185.220.101.69 port 32801 ssh2 Aug 5 08:17:39 * sshd[19886]: Failed password for invalid user NetLinx from 185.220.101.69 port 33836 ssh2 Aug 6 10:35:12 * sshd[15890]: Failed password for invalid user admin from 185.220.101.69 port 36436 ssh2 Aug 6 10:35:15 * sshd[15890]: Failed password for invalid user admin from 185.220.101.69 port 36436 ssh2 Aug 7 01:46:50 * sshd[5763]: Failed password for invalid user demo from 185.220.101.69 port 43597 ssh2 Aug 7 01:50:47 * sshd[5878]: Failed password for invalid user geosolutions from 185.220.101.69 port 39284 ssh2 Aug 7 01:50:53 *** sshd[5881]: Failed password for invalid user pyimagesearch from 185.220.101.69 port 39855 ssh2	2019-08-08 05:15:21
165.227.210.71	attackbotsspam	Aug 7 22:03:43 dedicated sshd[16958]: Invalid user try from 165.227.210.71 port 56436	2019-08-08 04:36:08

Recently Reported IPs

13.127.122.137	13.127.123.108	13.127.124.117	13.127.123.20
13.127.127.199	13.127.134.43	13.127.129.249	13.127.137.47
13.127.132.109	13.127.136.141	13.127.139.208	13.127.13.93
13.127.128.243	13.127.138.31	13.127.143.221	13.127.146.219
13.127.138.93	13.127.145.104	13.127.146.30	13.127.149.190