13.92.132.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-07-15T12:16:49.950696ks3355764 sshd[20328]: Invalid user admin from 13.92.132.22 port 59642 2020-07-15T12:16:51.480548ks3355764 sshd[20328]: Failed password for invalid user admin from 13.92.132.22 port 59642 ssh2 ...	2020-07-15 18:16:56
attack	2020-07-14T23:13:45.974187vps773228.ovh.net sshd[13168]: Invalid user admin from 13.92.132.22 port 20744 2020-07-14T23:13:45.991433vps773228.ovh.net sshd[13168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.132.22 2020-07-14T23:13:45.974187vps773228.ovh.net sshd[13168]: Invalid user admin from 13.92.132.22 port 20744 2020-07-14T23:13:48.083786vps773228.ovh.net sshd[13168]: Failed password for invalid user admin from 13.92.132.22 port 20744 ssh2 2020-07-15T09:39:38.237295vps773228.ovh.net sshd[19718]: Invalid user admin from 13.92.132.22 port 48901 ...	2020-07-15 15:46:19
attackspam	Jul 14 13:27:40 s158375 sshd[26981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.132.22	2020-07-15 04:16:37
attack	$f2bV_matches	2020-07-15 01:56:37

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.92.132.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59104
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.92.132.22.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071401 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 15 01:56:32 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 22.132.92.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 22.132.92.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.203.189.152	attackspam	prod3 ...	2020-05-01 03:53:53
34.92.46.217	attackspambots	2020-04-30T19:21:18.959909shield sshd\[29099\]: Invalid user alban from 34.92.46.217 port 35360 2020-04-30T19:21:18.965984shield sshd\[29099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.46.92.34.bc.googleusercontent.com 2020-04-30T19:21:20.693873shield sshd\[29099\]: Failed password for invalid user alban from 34.92.46.217 port 35360 ssh2 2020-04-30T19:25:26.768680shield sshd\[29714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.46.92.34.bc.googleusercontent.com user=root 2020-04-30T19:25:28.875930shield sshd\[29714\]: Failed password for root from 34.92.46.217 port 56274 ssh2	2020-05-01 03:32:54
185.143.74.108	attackspam	Apr 30 21:29:16 mail postfix/smtpd\[14020\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 30 22:00:19 mail postfix/smtpd\[15161\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 30 22:01:27 mail postfix/smtpd\[15355\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Apr 30 22:02:33 mail postfix/smtpd\[15161\]: warning: unknown\[185.143.74.108\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-05-01 04:04:27
182.61.1.203	attack	Apr 30 15:08:44 plex sshd[15283]: Invalid user clinton from 182.61.1.203 port 49552	2020-05-01 04:04:41
106.12.192.129	attackspambots	$f2bV_matches	2020-05-01 03:43:10
93.104.211.117	attackbots	Apr 30 12:15:12 host sshd[21441]: User r.r from 93.104.211.117 not allowed because none of user's groups are listed in AllowGroups Apr 30 12:15:12 host sshd[21441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.104.211.117 user=r.r Apr 30 12:15:14 host sshd[21441]: Failed password for invalid user r.r from 93.104.211.117 port 37922 ssh2 Apr 30 12:15:14 host sshd[21441]: Received disconnect from 93.104.211.117 port 37922:11: Bye Bye [preauth] Apr 30 12:15:14 host sshd[21441]: Disconnected from invalid user r.r 93.104.211.117 port 37922 [preauth] Apr 30 12:27:22 host sshd[24228]: User backup from 93.104.211.117 not allowed because none of user's groups are listed in AllowGroups Apr 30 12:27:22 host sshd[24228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.104.211.117 user=backup Apr 30 12:27:24 host sshd[24228]: Failed password for invalid user backup from 93.104.211.117 port 4815........ -------------------------------	2020-05-01 03:58:03
165.227.210.114	attack	Port Scan detected from 165.227.210.114 (US/United States/New Jersey/Clifton/billing.onlinecer.com). 4 hits in the last 266 seconds	2020-05-01 03:36:51
24.111.88.74	attackspam	Honeypot attack, port: 445, PTR: 24-111-88-74-static.midco.net.	2020-05-01 04:00:42
111.231.71.157	attackbots	Apr 30 15:51:41 meumeu sshd[14679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 Apr 30 15:51:43 meumeu sshd[14679]: Failed password for invalid user navarrete from 111.231.71.157 port 54586 ssh2 Apr 30 15:55:16 meumeu sshd[15130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 ...	2020-05-01 03:55:36
200.54.113.58	attackbots	2020-04-30T19:18:58.080298sd-86998 sshd[5986]: Invalid user testuser from 200.54.113.58 port 55684 2020-04-30T19:18:58.085210sd-86998 sshd[5986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.113.58 2020-04-30T19:18:58.080298sd-86998 sshd[5986]: Invalid user testuser from 200.54.113.58 port 55684 2020-04-30T19:19:00.139937sd-86998 sshd[5986]: Failed password for invalid user testuser from 200.54.113.58 port 55684 ssh2 2020-04-30T19:24:33.983495sd-86998 sshd[6440]: Invalid user fwinter from 200.54.113.58 port 57996 ...	2020-05-01 03:40:12
46.101.81.132	attackbots	46.101.81.132 - - [30/Apr/2020:14:24:57 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.81.132 - - [30/Apr/2020:14:24:58 +0200] "POST /wp-login.php HTTP/1.1" 200 5953 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.81.132 - - [30/Apr/2020:14:24:58 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-01 03:49:50
213.231.12.172	attackbots	Honeypot attack, port: 5555, PTR: 213.231.12.172.pool.breezein.net.	2020-05-01 03:47:15
77.42.121.37	attack	Automatic report - Port Scan Attack	2020-05-01 04:02:44
221.226.28.82	attackbots	SSH Brute-Force Attack	2020-05-01 04:07:08
51.140.203.77	attackspambots	Repeated RDP login failures. Last user: janine	2020-05-01 03:39:25

最近上报的IP列表

120.7.180.9	52.163.120.20	185.143.73.142	104.43.217.180
49.213.180.211	52.188.114.163	31.148.162.70	183.178.128.231
106.83.87.169	93.142.246.116	220.135.243.47	37.120.203.75
210.209.170.48	187.62.203.245	194.186.13.78	181.117.124.55
220.134.172.196	187.11.237.244	178.128.52.226	222.90.31.186