13.92.133.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Invalid user 163 from 13.92.133.6 port 10361	2020-09-28 00:38:29
attack	2020-09-27T03:28:45.582636dreamphreak.com sshd[431551]: Invalid user 13.125.230.29 from 13.92.133.6 port 40561 2020-09-27T03:28:47.553600dreamphreak.com sshd[431551]: Failed password for invalid user 13.125.230.29 from 13.92.133.6 port 40561 ssh2 ...	2020-09-27 16:40:38
attackspambots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-26T12:05:52Z	2020-09-26 21:30:14
attackspambots	Sep 26 06:51:46 ns3164893 sshd[6494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.133.6 Sep 26 06:51:48 ns3164893 sshd[6494]: Failed password for invalid user admin from 13.92.133.6 port 40453 ssh2 ...	2020-09-26 13:12:27

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.92.133.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35568
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.92.133.6.			IN	A

;; AUTHORITY SECTION:
.			301	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092502 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 26 13:12:23 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 6.133.92.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.133.92.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.154.23.144	attack	SMB Server BruteForce Attack	2019-09-06 20:35:26
138.94.160.58	attackspambots	Sep 6 17:37:57 lcl-usvr-01 sshd[18326]: Invalid user ansible from 138.94.160.58 Sep 6 17:37:57 lcl-usvr-01 sshd[18326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.160.58 Sep 6 17:37:57 lcl-usvr-01 sshd[18326]: Invalid user ansible from 138.94.160.58 Sep 6 17:37:59 lcl-usvr-01 sshd[18326]: Failed password for invalid user ansible from 138.94.160.58 port 45710 ssh2 Sep 6 17:43:06 lcl-usvr-01 sshd[20033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.160.58 user=ubuntu Sep 6 17:43:08 lcl-usvr-01 sshd[20033]: Failed password for ubuntu from 138.94.160.58 port 33240 ssh2	2019-09-06 20:52:34
193.32.160.140	attack	Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.142\]\> Sep 6 13:12:50 relay postfix/smtpd\[12991\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.140\]: 554 5.7.1 \: Relay access denied\; from=\ to=\	2019-09-06 20:23:21
191.53.197.113	attackbotsspam	SASL Brute Force	2019-09-06 20:01:59
61.12.80.106	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 02:13:08,892 INFO [amun_request_handler] PortScan Detected on Port: 445 (61.12.80.106)	2019-09-06 20:08:09
51.158.101.121	attackspam	Sep 6 01:41:09 lcdev sshd\[15868\]: Invalid user odoo from 51.158.101.121 Sep 6 01:41:09 lcdev sshd\[15868\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.101.121 Sep 6 01:41:12 lcdev sshd\[15868\]: Failed password for invalid user odoo from 51.158.101.121 port 56322 ssh2 Sep 6 01:45:45 lcdev sshd\[16234\]: Invalid user support from 51.158.101.121 Sep 6 01:45:45 lcdev sshd\[16234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.101.121	2019-09-06 20:16:22
106.12.7.173	attack	Sep 6 06:49:53 bouncer sshd\[11124\]: Invalid user 1234 from 106.12.7.173 port 51954 Sep 6 06:49:53 bouncer sshd\[11124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.7.173 Sep 6 06:49:56 bouncer sshd\[11124\]: Failed password for invalid user 1234 from 106.12.7.173 port 51954 ssh2 ...	2019-09-06 20:28:09
212.176.114.10	attack	Sep 6 07:18:49 ip-172-31-62-245 sshd\[16458\]: Invalid user deployer from 212.176.114.10\ Sep 6 07:18:51 ip-172-31-62-245 sshd\[16458\]: Failed password for invalid user deployer from 212.176.114.10 port 46937 ssh2\ Sep 6 07:23:20 ip-172-31-62-245 sshd\[16497\]: Invalid user sinusbot from 212.176.114.10\ Sep 6 07:23:21 ip-172-31-62-245 sshd\[16497\]: Failed password for invalid user sinusbot from 212.176.114.10 port 39873 ssh2\ Sep 6 07:28:06 ip-172-31-62-245 sshd\[16533\]: Invalid user radio from 212.176.114.10\	2019-09-06 20:15:00
139.99.112.107	attackbotsspam	Sep 6 11:59:45 SilenceServices sshd[6897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.112.107 Sep 6 11:59:47 SilenceServices sshd[6897]: Failed password for invalid user test from 139.99.112.107 port 54302 ssh2 Sep 6 12:04:51 SilenceServices sshd[8918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.112.107	2019-09-06 20:17:42
93.119.178.118	attackspambots	Sep 6 13:20:27 microserver sshd[22488]: Invalid user hadoopuser from 93.119.178.118 port 50396 Sep 6 13:20:27 microserver sshd[22488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.119.178.118 Sep 6 13:20:29 microserver sshd[22488]: Failed password for invalid user hadoopuser from 93.119.178.118 port 50396 ssh2 Sep 6 13:24:43 microserver sshd[22705]: Invalid user postgres from 93.119.178.118 port 45724 Sep 6 13:24:43 microserver sshd[22705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.119.178.118 Sep 6 13:37:20 microserver sshd[24583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.119.178.118 user=www-data Sep 6 13:37:22 microserver sshd[24583]: Failed password for www-data from 93.119.178.118 port 57446 ssh2 Sep 6 13:41:41 microserver sshd[25216]: Invalid user administrator from 93.119.178.118 port 50264 Sep 6 13:41:41 microserver sshd[25216]: pam_unix(sshd:auth):	2019-09-06 20:21:52
213.202.211.200	attackspam	Sep 6 14:34:01 localhost sshd\[15291\]: Invalid user gitolite from 213.202.211.200 port 55350 Sep 6 14:34:01 localhost sshd\[15291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.211.200 Sep 6 14:34:04 localhost sshd\[15291\]: Failed password for invalid user gitolite from 213.202.211.200 port 55350 ssh2	2019-09-06 20:41:42
164.52.12.210	attack	Sep 6 05:48:25 pornomens sshd\[21105\]: Invalid user mailserver from 164.52.12.210 port 33143 Sep 6 05:48:25 pornomens sshd\[21105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.52.12.210 Sep 6 05:48:27 pornomens sshd\[21105\]: Failed password for invalid user mailserver from 164.52.12.210 port 33143 ssh2 ...	2019-09-06 20:26:52
129.211.1.224	attackspam	Sep 5 22:36:13 hcbb sshd\[30106\]: Invalid user teamspeak1 from 129.211.1.224 Sep 5 22:36:13 hcbb sshd\[30106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.1.224 Sep 5 22:36:15 hcbb sshd\[30106\]: Failed password for invalid user teamspeak1 from 129.211.1.224 port 46048 ssh2 Sep 5 22:42:19 hcbb sshd\[30674\]: Invalid user 1 from 129.211.1.224 Sep 5 22:42:19 hcbb sshd\[30674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.1.224	2019-09-06 20:37:33
4.16.253.7	attack	Automated report - ssh fail2ban: Sep 6 12:53:10 authentication failure Sep 6 12:53:12 wrong password, user=owncloud, port=43404, ssh2 Sep 6 13:20:54 authentication failure	2019-09-06 20:46:18
23.251.128.200	attackspambots	" "	2019-09-06 20:51:40

最近上报的IP列表

102.238.45.184	99.149.211.207	142.106.58.187	100.113.208.74
70.153.252.34	195.52.165.58	159.75.44.169	187.91.7.196
203.143.213.130	133.198.174.248	169.15.84.253	187.165.238.153
5.210.190.109	66.69.132.56	200.164.11.35	37.166.53.115
25.104.93.61	187.152.152.4	49.12.118.79	117.222.235.164