13.76.44.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
13.76.44.73	attackspam	Apr 12 05:58:04 debian-2gb-nbg1-2 kernel: \[8922884.956919\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=13.76.44.73 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=1217 PROTO=TCP SPT=48713 DPT=3379 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-12 12:41:56
13.76.44.138	attack	18.02.2020 23:01:42 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2020-02-19 07:13:02

Type

Details

Datetime

13.76.44.73

attackspam

Apr 12 05:58:04 debian-2gb-nbg1-2 kernel: \[8922884.956919\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=13.76.44.73 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=235 ID=1217 PROTO=TCP SPT=48713 DPT=3379 WINDOW=1024 RES=0x00 SYN URGP=0

2020-04-12 12:41:56

13.76.44.138

attack

18.02.2020 23:01:42 - RDP Login Fail Detected by 
https://www.elinox.de/RDP-Wächter

2020-02-19 07:13:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.76.44.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50604
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.76.44.139.			IN	A

;; AUTHORITY SECTION:
.			72	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:28:15 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 139.44.76.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.44.76.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.139.214.205	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 17:05:15
201.242.45.126	attackbotsspam	Brute forcing RDP port 3389	2020-09-02 17:05:38
125.27.211.120	attackbotsspam	1598978616 - 09/01/2020 18:43:36 Host: 125.27.211.120/125.27.211.120 Port: 445 TCP Blocked	2020-09-02 16:52:47
159.203.85.196	attack	Port scanning [2 denied]	2020-09-02 16:51:03
93.185.30.167	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 16:57:56
188.246.88.92	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 16:45:55
151.20.112.185	attack	Automatic report - Port Scan Attack	2020-09-02 16:55:38
212.64.14.185	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-02T05:27:53Z and 2020-09-02T05:37:25Z	2020-09-02 17:19:21
189.18.203.217	attackspambots	Unauthorised access (Sep 1) SRC=189.18.203.217 LEN=52 TOS=0x10 PREC=0x40 TTL=113 ID=17882 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-02 16:44:59
212.83.163.170	attackbots	[2020-09-02 04:25:24] NOTICE[1185] chan_sip.c: Registration from '"508"' failed for '212.83.163.170:6870' - Wrong password [2020-09-02 04:25:24] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-02T04:25:24.194-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="508",SessionID="0x7f10c4989438",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.163.170/6870",Challenge="004a8a63",ReceivedChallenge="004a8a63",ReceivedHash="4d5d5625bfb745c840c980dd2bfa1ae7" [2020-09-02 04:26:55] NOTICE[1185] chan_sip.c: Registration from '"503"' failed for '212.83.163.170:6610' - Wrong password [2020-09-02 04:26:55] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-02T04:26:55.944-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="503",SessionID="0x7f10c4539a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83. ...	2020-09-02 16:41:43
197.39.95.168	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 17:17:08
218.92.0.171	attackspam	Sep 2 10:40:41 santamaria sshd\[8778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root Sep 2 10:40:42 santamaria sshd\[8778\]: Failed password for root from 218.92.0.171 port 57310 ssh2 Sep 2 10:41:00 santamaria sshd\[8780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root ...	2020-09-02 16:58:43
54.38.156.63	attack	<6 unauthorized SSH connections	2020-09-02 17:08:47
142.4.211.222	attackspambots	142.4.211.222 - - \[02/Sep/2020:09:42:51 +0200\] "POST /wp-login.php HTTP/1.0" 200 6185 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.4.211.222 - - \[02/Sep/2020:09:42:53 +0200\] "POST /wp-login.php HTTP/1.0" 200 5998 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.4.211.222 - - \[02/Sep/2020:09:42:54 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-02 17:02:50
5.136.188.225	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 17:08:06

Recently Reported IPs

13.76.255.185	13.76.47.221	13.76.87.192	13.76.46.55
13.77.156.64	13.76.85.56	13.76.88.65	13.77.0.187
13.77.160.237	13.77.177.182	13.77.161.179	13.77.207.121
13.77.179.136	13.77.59.207	13.77.50.96	13.77.6.12
13.77.50.98	13.78.106.101	13.77.83.246	13.78.12.125