13.249.38.114 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.249.38.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.249.38.114.			IN	A

;; AUTHORITY SECTION:
.			135	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:20:05 CST 2022
;; MSG SIZE  rcvd: 106

Host info

114.38.249.13.in-addr.arpa domain name pointer server-13-249-38-114.iad89.r.cloudfront.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
114.38.249.13.in-addr.arpa	name = server-13-249-38-114.iad89.r.cloudfront.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.211.61.213	attack	Lines containing failures of 120.211.61.213 (max 1000) Sep 28 08:34:15 UTC__SANYALnet-Labs__cac12 sshd[29562]: Connection from 120.211.61.213 port 50562 on 64.137.176.96 port 22 Sep 28 08:34:36 UTC__SANYALnet-Labs__cac12 sshd[29562]: Invalid user user from 120.211.61.213 port 50562 Sep 28 08:34:36 UTC__SANYALnet-Labs__cac12 sshd[29562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.211.61.213 Sep 28 08:34:38 UTC__SANYALnet-Labs__cac12 sshd[29562]: Failed password for invalid user user from 120.211.61.213 port 50562 ssh2 Sep 28 08:34:38 UTC__SANYALnet-Labs__cac12 sshd[29562]: Received disconnect from 120.211.61.213 port 50562:11: Bye Bye [preauth] Sep 28 08:34:38 UTC__SANYALnet-Labs__cac12 sshd[29562]: Disconnected from 120.211.61.213 port 50562 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=120.211.61.213	2020-09-29 17:40:08
27.194.114.87	attackbotsspam	Icarus honeypot on github	2020-09-29 17:06:20
39.72.180.34	attackspambots	DATE:2020-09-28 22:32:17, IP:39.72.180.34, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-29 17:29:18
190.151.37.21	attackspambots	Invalid user lisi from 190.151.37.21 port 57818	2020-09-29 17:47:06
193.106.29.66	attackbots	RDP Brute-Force (Grieskirchen RZ1)	2020-09-29 17:34:19
49.235.148.116	attack	(sshd) Failed SSH login from 49.235.148.116 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 29 01:53:44 server4 sshd[17905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.148.116 user=root Sep 29 01:53:46 server4 sshd[17905]: Failed password for root from 49.235.148.116 port 48552 ssh2 Sep 29 02:00:09 server4 sshd[21534]: Invalid user kibana from 49.235.148.116 Sep 29 02:00:09 server4 sshd[21534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.148.116 Sep 29 02:00:12 server4 sshd[21534]: Failed password for invalid user kibana from 49.235.148.116 port 49780 ssh2	2020-09-29 17:18:05
154.86.2.141	attackbots	SIP/5060 Probe, BF, Hack -	2020-09-29 17:28:59
40.117.253.222	attackbots	...	2020-09-29 17:22:37
190.160.156.7	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-09-29 17:04:36
154.8.151.81	attack	$f2bV_matches	2020-09-29 17:44:38
106.52.140.195	attackbotsspam	Sep 29 03:19:31 mail sshd\[29812\]: Invalid user nagios from 106.52.140.195 Sep 29 03:19:31 mail sshd\[29812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.140.195 ...	2020-09-29 17:05:03
3.23.248.78	attackspam	Sep 29 11:44:03 pve1 sshd[7921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.23.248.78 Sep 29 11:44:05 pve1 sshd[7921]: Failed password for invalid user test from 3.23.248.78 port 45628 ssh2 ...	2020-09-29 17:48:57
91.134.241.90	attackbotsspam	2020-09-29T11:32:21+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-09-29 17:41:00
103.243.164.251	attackspam	Sep 29 11:17:14 OPSO sshd\[13581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.164.251 user=root Sep 29 11:17:16 OPSO sshd\[13581\]: Failed password for root from 103.243.164.251 port 35664 ssh2 Sep 29 11:21:13 OPSO sshd\[14080\]: Invalid user oracle from 103.243.164.251 port 44114 Sep 29 11:21:13 OPSO sshd\[14080\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.164.251 Sep 29 11:21:15 OPSO sshd\[14080\]: Failed password for invalid user oracle from 103.243.164.251 port 44114 ssh2	2020-09-29 17:25:36
96.43.180.119	attackbots	Sep 28 22:34:38 mellenthin postfix/smtpd[8990]: NOQUEUE: reject: RCPT from unknown[96.43.180.119]: 554 5.7.1 Service unavailable; Client host [96.43.180.119] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/96.43.180.119; from= to= proto=ESMTP helo=<[96.43.180.119]>	2020-09-29 17:28:23

Recently Reported IPs

13.249.38.119	13.249.38.124	13.249.38.122	13.249.38.121
13.249.38.127	13.249.38.129	13.249.38.125	13.249.38.17
13.249.38.14	13.249.38.20	13.249.38.22	13.249.38.27
13.249.38.24	13.249.38.3	13.249.38.34	13.249.38.21
13.249.38.28	13.249.38.39	13.249.38.37	13.249.38.4