13.92.136.239 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	SSH Brute-Forcing (ownc)	2019-09-02 17:07:06
attack	Aug 31 07:44:28 h2177944 sshd\[646\]: Invalid user andy from 13.92.136.239 port 40246 Aug 31 07:44:28 h2177944 sshd\[646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.136.239 Aug 31 07:44:30 h2177944 sshd\[646\]: Failed password for invalid user andy from 13.92.136.239 port 40246 ssh2 Aug 31 07:49:20 h2177944 sshd\[803\]: Invalid user cyp from 13.92.136.239 port 57820 Aug 31 07:49:20 h2177944 sshd\[803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.136.239 ...	2019-08-31 14:22:35
attackbotsspam	Invalid user daniele from 13.92.136.239 port 60212	2019-08-29 06:22:19

类型

评论内容

时间

attackspambots

SSH Brute-Forcing (ownc)

2019-09-02 17:07:06

attack

Aug 31 07:44:28 h2177944 sshd\[646\]: Invalid user andy from 13.92.136.239 port 40246
Aug 31 07:44:28 h2177944 sshd\[646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.136.239
Aug 31 07:44:30 h2177944 sshd\[646\]: Failed password for invalid user andy from 13.92.136.239 port 40246 ssh2
Aug 31 07:49:20 h2177944 sshd\[803\]: Invalid user cyp from 13.92.136.239 port 57820
Aug 31 07:49:20 h2177944 sshd\[803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.136.239
...

2019-08-31 14:22:35

attackbotsspam

Invalid user daniele from 13.92.136.239 port 60212

2019-08-29 06:22:19

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.92.136.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21127
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.92.136.239.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082802 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 29 06:22:13 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 239.136.92.13.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 239.136.92.13.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.208.56.229	attackbotsspam	TCP (SYN) 87.208.56.229:53048 -> port 22, len 44	2020-08-01 01:37:18
103.84.71.238	attack	Jul 31 18:12:16 v22019038103785759 sshd\[30034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.84.71.238 user=root Jul 31 18:12:18 v22019038103785759 sshd\[30034\]: Failed password for root from 103.84.71.238 port 36170 ssh2 Jul 31 18:17:13 v22019038103785759 sshd\[30135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.84.71.238 user=root Jul 31 18:17:15 v22019038103785759 sshd\[30135\]: Failed password for root from 103.84.71.238 port 41974 ssh2 Jul 31 18:22:10 v22019038103785759 sshd\[30224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.84.71.238 user=root ...	2020-08-01 01:51:04
114.69.249.194	attack	Jul 31 19:03:38 vpn01 sshd[20213]: Failed password for root from 114.69.249.194 port 36679 ssh2 ...	2020-08-01 01:26:19
51.104.242.17	attack	Jul 31 14:18:53 fhem-rasp sshd[30646]: Failed password for root from 51.104.242.17 port 52902 ssh2 Jul 31 14:18:53 fhem-rasp sshd[30646]: Disconnected from authenticating user root 51.104.242.17 port 52902 [preauth] ...	2020-08-01 01:15:17
80.82.64.124	attackspam	Invalid user gns3 from 80.82.64.124 port 51707	2020-08-01 01:40:29
119.29.136.114	attackbotsspam	Jul 31 13:45:31 sip sshd[14666]: Failed password for root from 119.29.136.114 port 46404 ssh2 Jul 31 13:59:24 sip sshd[19836]: Failed password for root from 119.29.136.114 port 41970 ssh2	2020-08-01 01:35:28
123.125.194.150	attack	Jul 31 12:52:20 localhost sshd[122872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.194.150 user=root Jul 31 12:52:22 localhost sshd[122872]: Failed password for root from 123.125.194.150 port 57132 ssh2 Jul 31 12:57:19 localhost sshd[123409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.194.150 user=root Jul 31 12:57:21 localhost sshd[123409]: Failed password for root from 123.125.194.150 port 36466 ssh2 Jul 31 13:02:09 localhost sshd[123943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.194.150 user=root Jul 31 13:02:11 localhost sshd[123943]: Failed password for root from 123.125.194.150 port 44030 ssh2 ...	2020-08-01 01:34:09
180.101.248.148	attackspam	Brute-force attempt banned	2020-08-01 01:14:23
39.156.9.133	attack	Failed password for root from 39.156.9.133 port 53184 ssh2	2020-08-01 01:45:57
96.114.71.147	attackbots	Jul 31 18:39:59 vpn01 sshd[19976]: Failed password for root from 96.114.71.147 port 48042 ssh2 ...	2020-08-01 01:48:08
218.77.105.226	attack	Jul 31 16:14:35 jane sshd[26689]: Failed password for root from 218.77.105.226 port 40310 ssh2 ...	2020-08-01 01:09:34
45.163.134.214	attack	Portscan detected	2020-08-01 01:49:43
14.136.245.194	attackspam	Jul 31 08:04:10 mail sshd\[7642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.136.245.194 user=root ...	2020-08-01 01:33:11
122.114.183.18	attack	Jul 31 16:54:25 vps sshd[7321]: Failed password for root from 122.114.183.18 port 53374 ssh2 Jul 31 17:03:45 vps sshd[7852]: Failed password for root from 122.114.183.18 port 47108 ssh2 ...	2020-08-01 01:11:52
125.110.217.156	attack	Jul3114:03:03server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[anonymous]Jul3114:03:22server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]Jul3114:03:32server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]Jul3114:03:38server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]Jul3114:03:45server2pure-ftpd:\(\?@125.110.217.156\)[WARNING]Authenticationfailedforuser[www]	2020-08-01 01:50:19

最近上报的IP列表

106.2.12.96	88.99.33.187	103.109.53.2	122.52.24.238
198.252.206.25	117.82.41.79	42.232.18.45	189.58.154.72
5.3.188.60	104.149.216.154	180.126.237.152	52.162.35.147
42.228.197.121	93.57.92.99	185.70.186.139	159.77.150.4
28.27.6.149	44.193.9.209	210.12.232.109	176.104.115.9