13.212.92.57 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.212.92.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16708
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.212.92.57.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:52:25 CST 2022
;; MSG SIZE  rcvd: 105

Host info

57.92.212.13.in-addr.arpa domain name pointer ec2-13-212-92-57.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
57.92.212.13.in-addr.arpa	name = ec2-13-212-92-57.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.119.190.122	attack	Dec 29 13:13:06 [host] sshd[23332]: Invalid user junnanho from 190.119.190.122 Dec 29 13:13:06 [host] sshd[23332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.119.190.122 Dec 29 13:13:08 [host] sshd[23332]: Failed password for invalid user junnanho from 190.119.190.122 port 55426 ssh2	2019-12-29 20:16:50
185.175.93.103	attack	12/29/2019-12:38:55.686176 185.175.93.103 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-29 20:11:39
192.3.255.141	attack	Port Scan	2019-12-29 20:22:15
194.26.69.102	attackbotsspam	12/29/2019-07:20:19.708558 194.26.69.102 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-29 20:21:58
157.97.92.54	attackbotsspam	Automatic report - Port Scan Attack	2019-12-29 20:08:41
124.254.1.234	attack	Dec 29 12:20:36 zeus sshd[11256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.254.1.234 Dec 29 12:20:37 zeus sshd[11256]: Failed password for invalid user apass from 124.254.1.234 port 42599 ssh2 Dec 29 12:29:04 zeus sshd[11534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.254.1.234 Dec 29 12:29:06 zeus sshd[11534]: Failed password for invalid user coughenour from 124.254.1.234 port 32220 ssh2	2019-12-29 20:32:55
218.92.0.191	attackspam	12/29/2019-05:49:02.378673 218.92.0.191 Protocol: 6 ET SCAN Potential SSH Scan	2019-12-29 20:20:44
222.186.175.148	attack	Dec 29 13:18:40 ns381471 sshd[17694]: Failed password for root from 222.186.175.148 port 20008 ssh2 Dec 29 13:18:52 ns381471 sshd[17694]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 20008 ssh2 [preauth]	2019-12-29 20:35:43
185.143.221.85	attackbotsspam	Unauthorized connection attempt detected from IP address 185.143.221.85 to port 443	2019-12-29 20:12:10
52.36.131.219	attackspam	12/29/2019-13:14:02.852908 52.36.131.219 Protocol: 6 SURICATA TLS invalid record/traffic	2019-12-29 20:31:53
188.166.54.199	attackbotsspam	Port Scan detected from 188.166.54.199 (NL/Netherlands/-). 4 hits in the last 240 seconds	2019-12-29 20:03:08
104.243.41.97	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-12-29 20:04:29
106.13.83.251	attackbots	Dec 29 13:08:06 ncomp sshd[15743]: User mysql from 106.13.83.251 not allowed because none of user's groups are listed in AllowGroups Dec 29 13:08:06 ncomp sshd[15743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.83.251 user=mysql Dec 29 13:08:06 ncomp sshd[15743]: User mysql from 106.13.83.251 not allowed because none of user's groups are listed in AllowGroups Dec 29 13:08:08 ncomp sshd[15743]: Failed password for invalid user mysql from 106.13.83.251 port 33566 ssh2	2019-12-29 20:26:37
198.211.110.178	attack	198.211.110.178 - - \[29/Dec/2019:07:26:31 +0100\] "POST /wp-login.php HTTP/1.0" 200 7612 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.211.110.178 - - \[29/Dec/2019:07:26:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 7437 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.211.110.178 - - \[29/Dec/2019:07:26:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 7432 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-29 20:40:34
120.237.17.130	attackspam	29.12.2019 11:34:25 Connection to port 9200 blocked by firewall	2019-12-29 20:23:18

Recently Reported IPs

13.212.92.3	13.212.92.52	13.212.92.37	13.212.92.58
13.212.93.15	13.212.92.62	13.212.92.60	13.212.92.83
72.219.143.120	13.212.93.200	13.212.93.180	13.212.93.206
13.212.92.92	13.212.93.212	13.212.93.150	13.212.93.118
13.212.93.217	13.212.93.226	13.212.95.115	13.212.95.107