198.149.242.38

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 198.149.242.38
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45686
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;198.149.242.38.			IN	A

;; AUTHORITY SECTION:
.			354	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011200 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 12 21:37:52 CST 2022
;; MSG SIZE  rcvd: 107

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 198.149.242.38.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.8.132.9	attackspambots	[Sat Feb 29 14:56:42.035661 2020] [:error] [pid 29110:tid 139674565330688] [client 141.8.132.9:43321] [client 141.8.132.9] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XloZOpx7NO9kbZBSNHkZEwAAAHA"] ...	2020-02-29 21:07:20
79.104.39.6	attack	Feb 29 08:03:44 ns382633 sshd\[2340\]: Invalid user bpadmin from 79.104.39.6 port 37770 Feb 29 08:03:44 ns382633 sshd\[2340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.104.39.6 Feb 29 08:03:46 ns382633 sshd\[2340\]: Failed password for invalid user bpadmin from 79.104.39.6 port 37770 ssh2 Feb 29 08:36:32 ns382633 sshd\[7908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.104.39.6 user=root Feb 29 08:36:33 ns382633 sshd\[7908\]: Failed password for root from 79.104.39.6 port 42950 ssh2	2020-02-29 20:34:59
103.11.82.197	attack	Unauthorised access (Feb 29) SRC=103.11.82.197 LEN=52 TTL=117 ID=18520 DF TCP DPT=445 WINDOW=8192 SYN	2020-02-29 21:09:47
46.166.143.104	attackbotsspam	Probing sign-up form.	2020-02-29 20:58:00
60.2.26.206	attackbots	Unauthorized connection attempt detected from IP address 60.2.26.206 to port 1433 [J]	2020-02-29 20:44:09
190.8.80.42	attack	Feb 29 19:43:49 webhost01 sshd[19929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.8.80.42 Feb 29 19:43:51 webhost01 sshd[19929]: Failed password for invalid user serverpilot from 190.8.80.42 port 57832 ssh2 ...	2020-02-29 20:49:51
103.91.181.25	attackbotsspam	Feb 29 12:59:21 ns381471 sshd[30942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.91.181.25 Feb 29 12:59:23 ns381471 sshd[30942]: Failed password for invalid user info from 103.91.181.25 port 36082 ssh2	2020-02-29 20:33:48
180.76.152.32	attackbotsspam	Feb 29 11:16:24 sd-53420 sshd\[1613\]: Invalid user splunk from 180.76.152.32 Feb 29 11:16:24 sd-53420 sshd\[1613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.152.32 Feb 29 11:16:25 sd-53420 sshd\[1613\]: Failed password for invalid user splunk from 180.76.152.32 port 37398 ssh2 Feb 29 11:20:11 sd-53420 sshd\[1948\]: Invalid user ubuntu from 180.76.152.32 Feb 29 11:20:11 sd-53420 sshd\[1948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.152.32 ...	2020-02-29 21:08:25
104.236.224.69	attackspam	SSH bruteforce	2020-02-29 20:48:16
190.234.163.35	attackspam	1582954675 - 02/29/2020 06:37:55 Host: 190.234.163.35/190.234.163.35 Port: 445 TCP Blocked	2020-02-29 21:14:36
110.35.175.153	attackspambots	Unauthorized connection attempt detected from IP address 110.35.175.153 to port 23 [J]	2020-02-29 20:47:59
146.120.97.55	attackbots	Feb 29 14:25:56 gw1 sshd[6095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.120.97.55 Feb 29 14:25:58 gw1 sshd[6095]: Failed password for invalid user yuchen from 146.120.97.55 port 47742 ssh2 ...	2020-02-29 20:53:10
110.248.244.56	attackspambots	Portscan detected	2020-02-29 20:50:22
58.225.75.147	attackspambots	02/29/2020-06:16:43.746964 58.225.75.147 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-29 20:44:22
110.248.253.231	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 20:49:11

Recently Reported IPs

118.131.174.35	16.16.76.212	81.175.170.255	41.135.114.140
242.142.14.18	211.96.113.228	98.226.28.126	229.141.170.144
45.147.232.197	197.79.36.86	192.64.49.133	109.216.112.0
85.43.225.185	37.49.37.35	25.224.203.141	242.54.26.175
178.102.140.32	63.191.149.158	247.155.245.213	40.83.117.25