14.98.75.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Tata Teleservices Ltd

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	TCP port 445 (SMB) attempt blocked by firewall. [2019-06-25 12:10:32]	2019-06-25 20:06:29

Comments on same subnet:

IP	Type	Details	Datetime
14.98.75.9	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-06 00:33:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.98.75.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51203
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.98.75.13.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062500 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 25 20:06:19 CST 2019
;; MSG SIZE  rcvd: 115

Host info

13.75.98.14.in-addr.arpa domain name pointer xchange.nepl.co.in.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
13.75.98.14.in-addr.arpa	name = xchange.nepl.co.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.254	attackspam	Aug 10 05:46:24 h2177944 kernel: \[3732586.468424\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=595 PROTO=TCP SPT=42556 DPT=22202 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 05:50:07 h2177944 kernel: \[3732809.656050\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=30961 PROTO=TCP SPT=42556 DPT=59297 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 05:52:37 h2177944 kernel: \[3732959.196298\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=55493 PROTO=TCP SPT=42556 DPT=13266 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 05:53:21 h2177944 kernel: \[3733003.593165\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=16764 PROTO=TCP SPT=42556 DPT=63434 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 10 05:55:36 h2177944 kernel: \[3733138.182009\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.254 DST=85.214.117.9 LE	2019-08-10 13:16:45
125.161.129.235	attackspam	Caught in portsentry honeypot	2019-08-10 12:50:14
157.122.179.121	attack	Aug 10 02:42:22 MK-Soft-VM6 sshd\[6481\]: Invalid user carter from 157.122.179.121 port 46811 Aug 10 02:42:22 MK-Soft-VM6 sshd\[6481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.122.179.121 Aug 10 02:42:24 MK-Soft-VM6 sshd\[6481\]: Failed password for invalid user carter from 157.122.179.121 port 46811 ssh2 ...	2019-08-10 12:52:39
218.92.0.212	attack	Aug 10 07:04:15 jane sshd\[31777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Aug 10 07:04:17 jane sshd\[31777\]: Failed password for root from 218.92.0.212 port 64610 ssh2 Aug 10 07:04:20 jane sshd\[31777\]: Failed password for root from 218.92.0.212 port 64610 ssh2 ...	2019-08-10 13:28:42
59.39.142.213	attack	Aug 10 06:27:23 icinga sshd[18419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.39.142.213 Aug 10 06:27:25 icinga sshd[18419]: Failed password for invalid user game from 59.39.142.213 port 31717 ssh2 ...	2019-08-10 13:18:14
157.230.129.73	attackbotsspam	Repeated brute force against a port	2019-08-10 12:54:33
193.29.15.127	attackbots	firewall-block, port(s): 389/udp	2019-08-10 13:40:02
170.244.37.225	attackbots	Automatic report - Port Scan Attack	2019-08-10 12:42:45
203.118.57.21	attack	Automatic report - Banned IP Access	2019-08-10 13:09:59
92.118.37.95	attackbotsspam	Aug 10 02:39:55 TCP Attack: SRC=92.118.37.95 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=246 PROTO=TCP SPT=53561 DPT=47474 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-10 13:07:40
194.61.26.34	attackspambots	2019-08-10T03:26:45.821317abusebot-4.cloudsearch.cf sshd\[19158\]: Invalid user admin from 194.61.26.34 port 28280	2019-08-10 13:10:15
42.114.140.16	attack	Unauthorised access (Aug 10) SRC=42.114.140.16 LEN=52 TTL=109 ID=22848 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-10 13:22:49
177.1.213.19	attackbotsspam	Aug 10 01:23:29 xtremcommunity sshd\[19349\]: Invalid user raphaello from 177.1.213.19 port 13930 Aug 10 01:23:29 xtremcommunity sshd\[19349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 Aug 10 01:23:31 xtremcommunity sshd\[19349\]: Failed password for invalid user raphaello from 177.1.213.19 port 13930 ssh2 Aug 10 01:29:08 xtremcommunity sshd\[19492\]: Invalid user legal1 from 177.1.213.19 port 1832 Aug 10 01:29:08 xtremcommunity sshd\[19492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.1.213.19 ...	2019-08-10 13:38:38
98.210.48.44	attackspam	SSH invalid-user multiple login attempts	2019-08-10 13:16:16
195.154.38.177	attackbots	Aug 10 05:42:50 server01 sshd\[28239\]: Invalid user abacus from 195.154.38.177 Aug 10 05:42:50 server01 sshd\[28239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.38.177 Aug 10 05:42:52 server01 sshd\[28239\]: Failed password for invalid user abacus from 195.154.38.177 port 35252 ssh2 ...	2019-08-10 12:41:09

Recently Reported IPs

51.184.254.28	191.53.220.243	91.207.174.75	215.210.67.126
27.186.176.62	1.1.202.228	117.59.178.116	54.36.149.89
182.71.130.10	7.5.147.74	34.214.136.130	5.62.20.29
2.219.175.42	191.53.251.112	120.138.110.214	46.101.41.101
109.173.79.31	187.87.3.7	42.112.81.82	135.207.217.188