13.90.44.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 13.90.44.74 to port 3389	2020-04-26 21:30:03

Comments on same subnet:

IP	Type	Details	Datetime
13.90.44.92	attackbots	Brute forcing email accounts	2020-05-10 14:10:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.90.44.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42313
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.90.44.74.			IN	A

;; AUTHORITY SECTION:
.			500	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042600 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 26 21:29:58 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 74.44.90.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.44.90.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.69.87.151	attackbotsspam	Jun 15 09:49:55 h1745522 sshd[20438]: Invalid user lisa from 203.69.87.151 port 53198 Jun 15 09:49:55 h1745522 sshd[20438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.69.87.151 Jun 15 09:49:55 h1745522 sshd[20438]: Invalid user lisa from 203.69.87.151 port 53198 Jun 15 09:49:57 h1745522 sshd[20438]: Failed password for invalid user lisa from 203.69.87.151 port 53198 ssh2 Jun 15 09:52:17 h1745522 sshd[20520]: Invalid user norine from 203.69.87.151 port 62318 Jun 15 09:52:17 h1745522 sshd[20520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.69.87.151 Jun 15 09:52:17 h1745522 sshd[20520]: Invalid user norine from 203.69.87.151 port 62318 Jun 15 09:52:19 h1745522 sshd[20520]: Failed password for invalid user norine from 203.69.87.151 port 62318 ssh2 Jun 15 09:54:44 h1745522 sshd[20615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.69.87.151 user=ro ...	2020-06-15 16:06:39
223.206.242.176	attackspambots	xmlrpc attack	2020-06-15 15:47:23
141.98.9.160	attack	2020-06-15T07:19:34.322817abusebot-4.cloudsearch.cf sshd[19217]: Invalid user user from 141.98.9.160 port 39323 2020-06-15T07:19:34.332913abusebot-4.cloudsearch.cf sshd[19217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 2020-06-15T07:19:34.322817abusebot-4.cloudsearch.cf sshd[19217]: Invalid user user from 141.98.9.160 port 39323 2020-06-15T07:19:36.723007abusebot-4.cloudsearch.cf sshd[19217]: Failed password for invalid user user from 141.98.9.160 port 39323 ssh2 2020-06-15T07:19:57.607338abusebot-4.cloudsearch.cf sshd[19289]: Invalid user guest from 141.98.9.160 port 44725 2020-06-15T07:19:57.615783abusebot-4.cloudsearch.cf sshd[19289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.160 2020-06-15T07:19:57.607338abusebot-4.cloudsearch.cf sshd[19289]: Invalid user guest from 141.98.9.160 port 44725 2020-06-15T07:19:59.830058abusebot-4.cloudsearch.cf sshd[19289]: Failed password ...	2020-06-15 15:37:18
124.158.10.190	attack	2020-06-15T07:27:59.839213shield sshd\[13267\]: Invalid user r from 124.158.10.190 port 48184 2020-06-15T07:27:59.843489shield sshd\[13267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.datafirst.vn 2020-06-15T07:28:01.567630shield sshd\[13267\]: Failed password for invalid user r from 124.158.10.190 port 48184 ssh2 2020-06-15T07:31:50.644676shield sshd\[14295\]: Invalid user teresa from 124.158.10.190 port 48225 2020-06-15T07:31:50.648566shield sshd\[14295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.datafirst.vn	2020-06-15 15:41:15
79.7.80.86	attackbotsspam	Jun 15 05:53:02 ns41 sshd[11668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.7.80.86	2020-06-15 15:30:47
101.71.28.72	attack	Jun 15 05:14:31 ajax sshd[8656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.71.28.72 Jun 15 05:14:32 ajax sshd[8656]: Failed password for invalid user danny from 101.71.28.72 port 45461 ssh2	2020-06-15 15:59:41
203.148.20.254	attackspambots	Invalid user tomcat from 203.148.20.254 port 60793	2020-06-15 15:31:05
160.20.200.234	attackspam	Failed password for invalid user zb from 160.20.200.234 port 42610 ssh2	2020-06-15 15:32:39
183.95.84.34	attackbotsspam	Jun 15 10:46:41 ift sshd\[31394\]: Failed password for invalid user admin from 183.95.84.34 port 49162 ssh2Jun 15 10:49:45 ift sshd\[31646\]: Invalid user vlv from 183.95.84.34Jun 15 10:49:46 ift sshd\[31646\]: Failed password for invalid user vlv from 183.95.84.34 port 56607 ssh2Jun 15 10:52:49 ift sshd\[32205\]: Invalid user dhis from 183.95.84.34Jun 15 10:52:51 ift sshd\[32205\]: Failed password for invalid user dhis from 183.95.84.34 port 44067 ssh2 ...	2020-06-15 16:02:51
85.86.197.164	attack	Jun 15 10:38:37 hosting sshd[3361]: Invalid user pto from 85.86.197.164 port 36346 ...	2020-06-15 16:09:33
134.209.208.159	attackspambots	TCP (SYN) 134.209.208.159:46179 -> port 7425, len 44	2020-06-15 15:37:35
188.166.247.82	attackbotsspam	(sshd) Failed SSH login from 188.166.247.82 (SG/Singapore/-): 5 in the last 3600 secs	2020-06-15 16:03:39
198.27.82.182	attack	ssh brute force	2020-06-15 16:12:33
92.207.180.50	attackspambots	Jun 14 20:32:46 Tower sshd[7292]: refused connect from 103.45.161.100 (103.45.161.100) Jun 15 03:02:40 Tower sshd[7292]: Connection from 92.207.180.50 port 57062 on 192.168.10.220 port 22 rdomain "" Jun 15 03:02:40 Tower sshd[7292]: Invalid user user from 92.207.180.50 port 57062 Jun 15 03:02:40 Tower sshd[7292]: error: Could not get shadow information for NOUSER Jun 15 03:02:40 Tower sshd[7292]: Failed password for invalid user user from 92.207.180.50 port 57062 ssh2 Jun 15 03:02:41 Tower sshd[7292]: Received disconnect from 92.207.180.50 port 57062:11: Bye Bye [preauth] Jun 15 03:02:41 Tower sshd[7292]: Disconnected from invalid user user 92.207.180.50 port 57062 [preauth]	2020-06-15 15:41:37
90.103.251.36	attack	Jun 15 08:53:50 pve1 sshd[1383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.103.251.36 Jun 15 08:53:52 pve1 sshd[1383]: Failed password for invalid user no-reply from 90.103.251.36 port 38454 ssh2 ...	2020-06-15 15:42:09

Recently Reported IPs

188.239.199.104	185.97.118.227	232.156.216.175	148.66.21.58
37.119.83.255	154.122.161.159	104.248.53.168	95.90.203.59
84.236.132.55	58.211.185.11	45.76.174.159	132.145.155.196
185.202.1.10	176.197.86.74	159.65.233.68	138.68.237.52
136.232.113.122	119.96.241.163	252.52.27.130	104.248.166.61