13.64.93.10 - IPInfo

基本信息:

城市(city): San Jose

省份(region): California

国家(country): United States

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): Microsoft Corporation

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Mar 12 02:17:26 yesfletchmain sshd\[21548\]: Invalid user couchdb from 13.64.93.10 port 39872 Mar 12 02:17:26 yesfletchmain sshd\[21548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.93.10 Mar 12 02:17:28 yesfletchmain sshd\[21548\]: Failed password for invalid user couchdb from 13.64.93.10 port 39872 ssh2 Mar 12 02:22:31 yesfletchmain sshd\[21657\]: Invalid user victor from 13.64.93.10 port 39872 Mar 12 02:22:31 yesfletchmain sshd\[21657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.93.10 ...	2019-12-23 23:10:50
attackspambots	Brute force SMTP login attempted. ...	2019-08-10 08:37:47

类型

评论内容

时间

attackspam

Mar 12 02:17:26 yesfletchmain sshd\[21548\]: Invalid user couchdb from 13.64.93.10 port 39872
Mar 12 02:17:26 yesfletchmain sshd\[21548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.93.10
Mar 12 02:17:28 yesfletchmain sshd\[21548\]: Failed password for invalid user couchdb from 13.64.93.10 port 39872 ssh2
Mar 12 02:22:31 yesfletchmain sshd\[21657\]: Invalid user victor from 13.64.93.10 port 39872
Mar 12 02:22:31 yesfletchmain sshd\[21657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.64.93.10
...

2019-12-23 23:10:50

attackspambots

Brute force SMTP login attempted.
...

2019-08-10 08:37:47

相同子网IP讨论:

IP	类型	评论内容	时间
13.64.93.136	attack	Mass mailinglist subscriptions with fake email addresses	2020-05-23 00:39:08

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.64.93.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21231
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.64.93.10.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Mar 31 07:33:09 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 10.93.64.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 10.93.64.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.231.222.7	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-30 20:51:13
49.235.46.18	attackbotsspam	Invalid user a from 49.235.46.18 port 34212	2020-04-30 20:11:30
51.159.2.73	attack	123/udp 123/udp [2020-04-30]2pkt	2020-04-30 20:18:28
118.69.66.93	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-30 20:40:38
177.137.58.82	attack	Honeypot attack, port: 81, PTR: 82-58-137-177.dynamic-fiber.empiretelecom.com.br.	2020-04-30 20:29:58
203.162.54.247	attack	Apr 30 12:24:17 game-panel sshd[19903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.162.54.247 Apr 30 12:24:18 game-panel sshd[19903]: Failed password for invalid user docker from 203.162.54.247 port 35808 ssh2 Apr 30 12:28:29 game-panel sshd[20073]: Failed password for root from 203.162.54.247 port 40524 ssh2	2020-04-30 20:36:07
156.252.236.198	attack	Invalid user mathew from 156.252.236.198 port 41458	2020-04-30 20:22:43
37.59.125.163	attackspam	Invalid user production from 37.59.125.163 port 54770	2020-04-30 20:27:16
61.31.230.4	attackspambots	20 attempts against mh-ssh on mist	2020-04-30 20:14:08
222.186.175.202	attackspam	2020-04-30T08:41:10.411388xentho-1 sshd[295782]: Failed password for root from 222.186.175.202 port 22628 ssh2 2020-04-30T08:41:03.492853xentho-1 sshd[295782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root 2020-04-30T08:41:05.696226xentho-1 sshd[295782]: Failed password for root from 222.186.175.202 port 22628 ssh2 2020-04-30T08:41:10.411388xentho-1 sshd[295782]: Failed password for root from 222.186.175.202 port 22628 ssh2 2020-04-30T08:41:14.720725xentho-1 sshd[295782]: Failed password for root from 222.186.175.202 port 22628 ssh2 2020-04-30T08:41:03.492853xentho-1 sshd[295782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root 2020-04-30T08:41:05.696226xentho-1 sshd[295782]: Failed password for root from 222.186.175.202 port 22628 ssh2 2020-04-30T08:41:10.411388xentho-1 sshd[295782]: Failed password for root from 222.186.175.202 port 22628 ssh2 2020-0 ...	2020-04-30 20:48:20
222.186.31.166	attackspambots	Apr 30 07:49:47 debian sshd[13208]: Unable to negotiate with 222.186.31.166 port 62718: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Apr 30 08:17:08 debian sshd[14406]: Unable to negotiate with 222.186.31.166 port 62284: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-04-30 20:17:30
159.65.8.65	attackbotsspam	Apr 30 14:28:12 plex sshd[13856]: Invalid user ali from 159.65.8.65 port 47564	2020-04-30 20:55:28
46.38.144.32	attackspam	Apr 30 14:04:16 relay postfix/smtpd\[10835\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 14:04:31 relay postfix/smtpd\[7940\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 14:05:40 relay postfix/smtpd\[11326\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 14:05:53 relay postfix/smtpd\[4327\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 30 14:07:04 relay postfix/smtpd\[11326\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-30 20:11:53
36.48.144.246	attackbotsspam	Apr 29 18:17:57 wbs sshd\[27614\]: Invalid user git from 36.48.144.246 Apr 29 18:17:57 wbs sshd\[27614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.48.144.246 Apr 29 18:17:59 wbs sshd\[27614\]: Failed password for invalid user git from 36.48.144.246 port 1655 ssh2 Apr 29 18:22:10 wbs sshd\[27953\]: Invalid user james from 36.48.144.246 Apr 29 18:22:10 wbs sshd\[27953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.48.144.246	2020-04-30 20:27:54
89.210.29.173	attack	Unauthorised access (Apr 30) SRC=89.210.29.173 LEN=40 TTL=54 ID=28836 TCP DPT=8080 WINDOW=60948 SYN	2020-04-30 20:30:22

最近上报的IP列表

40.121.194.233	51.255.197.18	193.112.46.94	51.38.128.30
193.32.161.55	70.54.86.138	37.126.186.76	115.55.70.235
14.152.92.70	128.199.103.93	149.202.65.173	78.188.112.212
212.129.128.249	58.177.231.178	118.24.63.24	95.167.39.12
177.66.189.146	192.241.201.182	122.226.181.167	183.157.173.47