13.92.195.99 - IPInfo

Basic Info

City: Washington

Region: Virginia

Country: United States

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: Microsoft Corporation

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	2020-01-15T06:13:28.410701shield sshd\[18887\]: Invalid user zimbra from 13.92.195.99 port 35034 2020-01-15T06:13:28.416247shield sshd\[18887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.195.99 2020-01-15T06:13:30.633252shield sshd\[18887\]: Failed password for invalid user zimbra from 13.92.195.99 port 35034 ssh2 2020-01-15T06:16:39.801237shield sshd\[20112\]: Invalid user nadim from 13.92.195.99 port 34868 2020-01-15T06:16:39.805547shield sshd\[20112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.195.99	2020-01-15 16:00:51

Type

Details

Datetime

attackbots

2020-01-15T06:13:28.410701shield sshd\[18887\]: Invalid user zimbra from 13.92.195.99 port 35034
2020-01-15T06:13:28.416247shield sshd\[18887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.195.99
2020-01-15T06:13:30.633252shield sshd\[18887\]: Failed password for invalid user zimbra from 13.92.195.99 port 35034 ssh2
2020-01-15T06:16:39.801237shield sshd\[20112\]: Invalid user nadim from 13.92.195.99 port 34868
2020-01-15T06:16:39.805547shield sshd\[20112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.195.99

2020-01-15 16:00:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.92.195.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33273
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.92.195.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 01 03:30:44 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 99.195.92.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 99.195.92.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.128.242.166	attackspambots	Oct 9 09:11:15 MK-Soft-VM7 sshd[23115]: Failed password for root from 203.128.242.166 port 60553 ssh2 ...	2019-10-09 15:42:30
186.103.223.10	attackbots	Oct 9 02:47:43 xtremcommunity sshd\[334912\]: Invalid user Mexico2017 from 186.103.223.10 port 35119 Oct 9 02:47:43 xtremcommunity sshd\[334912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.103.223.10 Oct 9 02:47:45 xtremcommunity sshd\[334912\]: Failed password for invalid user Mexico2017 from 186.103.223.10 port 35119 ssh2 Oct 9 02:52:54 xtremcommunity sshd\[335035\]: Invalid user P@SSW0RD123!@\# from 186.103.223.10 port 54992 Oct 9 02:52:54 xtremcommunity sshd\[335035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.103.223.10 ...	2019-10-09 16:16:38
162.243.14.185	attackbotsspam	Jul 15 06:25:47 server sshd\[95335\]: Invalid user web from 162.243.14.185 Jul 15 06:25:47 server sshd\[95335\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.14.185 Jul 15 06:25:48 server sshd\[95335\]: Failed password for invalid user web from 162.243.14.185 port 47262 ssh2 ...	2019-10-09 16:20:01
151.80.217.219	attack	Oct 8 21:34:44 php1 sshd\[18320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.217.219 user=root Oct 8 21:34:46 php1 sshd\[18320\]: Failed password for root from 151.80.217.219 port 55506 ssh2 Oct 8 21:38:38 php1 sshd\[18660\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.217.219 user=root Oct 8 21:38:40 php1 sshd\[18660\]: Failed password for root from 151.80.217.219 port 52464 ssh2 Oct 8 21:42:33 php1 sshd\[19090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.217.219 user=root	2019-10-09 15:54:03
162.243.58.222	attackspambots	Oct 9 09:23:19 herz-der-gamer sshd[3548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.58.222 user=root Oct 9 09:23:22 herz-der-gamer sshd[3548]: Failed password for root from 162.243.58.222 port 35112 ssh2 ...	2019-10-09 16:12:05
162.243.253.67	attackbots	2019-10-09 00:57:48,248 fail2ban.actions [1838]: NOTICE [sshd] Ban 162.243.253.67	2019-10-09 16:15:38
207.244.70.35	attackbotsspam	2019-10-09T07:41:05.177698abusebot.cloudsearch.cf sshd\[14015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.244.70.35 user=root	2019-10-09 15:52:43
101.71.51.192	attackspam	Oct 9 06:49:31 www sshd\[48668\]: Invalid user Asd@12345 from 101.71.51.192Oct 9 06:49:32 www sshd\[48668\]: Failed password for invalid user Asd@12345 from 101.71.51.192 port 56355 ssh2Oct 9 06:53:54 www sshd\[48863\]: Invalid user Antibes from 101.71.51.192 ...	2019-10-09 16:23:44
180.128.1.5	attackbots	Oct 8 22:50:19 mailman postfix/smtpd[15990]: NOQUEUE: reject: RCPT from unknown[180.128.1.5]: 554 5.7.1 Service unavailable; Client host [180.128.1.5] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/180.128.1.5 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[180.183.136.89]> Oct 8 22:54:25 mailman postfix/smtpd[16024]: NOQUEUE: reject: RCPT from unknown[180.128.1.5]: 554 5.7.1 Service unavailable; Client host [180.128.1.5] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/180.128.1.5 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[180.183.136.89]>	2019-10-09 15:53:04
162.243.158.198	attackbots	Jun 18 03:15:13 server sshd\[132552\]: Invalid user nashida from 162.243.158.198 Jun 18 03:15:13 server sshd\[132552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.158.198 Jun 18 03:15:15 server sshd\[132552\]: Failed password for invalid user nashida from 162.243.158.198 port 51984 ssh2 ...	2019-10-09 16:18:13
211.20.181.186	attackbotsspam	$f2bV_matches	2019-10-09 16:15:10
118.24.234.176	attackspambots	Oct 8 22:01:37 wbs sshd\[15369\]: Invalid user Qaz@12345 from 118.24.234.176 Oct 8 22:01:37 wbs sshd\[15369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.234.176 Oct 8 22:01:40 wbs sshd\[15369\]: Failed password for invalid user Qaz@12345 from 118.24.234.176 port 57738 ssh2 Oct 8 22:05:50 wbs sshd\[15720\]: Invalid user Qaz@12345 from 118.24.234.176 Oct 8 22:05:50 wbs sshd\[15720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.234.176	2019-10-09 16:21:57
159.203.7.104	attackbots	Oct 6 12:25:42 kmh-wsh-001-nbg03 sshd[30860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.7.104 user=r.r Oct 6 12:25:44 kmh-wsh-001-nbg03 sshd[30860]: Failed password for r.r from 159.203.7.104 port 51410 ssh2 Oct 6 12:25:44 kmh-wsh-001-nbg03 sshd[30860]: Received disconnect from 159.203.7.104 port 51410:11: Bye Bye [preauth] Oct 6 12:25:44 kmh-wsh-001-nbg03 sshd[30860]: Disconnected from 159.203.7.104 port 51410 [preauth] Oct 6 12:34:26 kmh-wsh-001-nbg03 sshd[31139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.7.104 user=r.r Oct 6 12:34:28 kmh-wsh-001-nbg03 sshd[31139]: Failed password for r.r from 159.203.7.104 port 35972 ssh2 Oct 6 12:34:29 kmh-wsh-001-nbg03 sshd[31139]: Received disconnect from 159.203.7.104 port 35972:11: Bye Bye [preauth] Oct 6 12:34:29 kmh-wsh-001-nbg03 sshd[31139]: Disconnected from 159.203.7.104 port 35972 [preauth] Oct 6 12:38:10 ........ -------------------------------	2019-10-09 15:51:18
164.132.205.21	attackspambots	Oct 9 07:54:31 pornomens sshd\[16488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.205.21 user=root Oct 9 07:54:34 pornomens sshd\[16488\]: Failed password for root from 164.132.205.21 port 49860 ssh2 Oct 9 07:58:28 pornomens sshd\[16492\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.205.21 user=root ...	2019-10-09 16:17:46
91.121.110.50	attackbotsspam	Oct 9 09:03:26 microserver sshd[44932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:03:28 microserver sshd[44932]: Failed password for root from 91.121.110.50 port 48983 ssh2 Oct 9 09:07:25 microserver sshd[45529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:07:27 microserver sshd[45529]: Failed password for root from 91.121.110.50 port 40630 ssh2 Oct 9 09:11:33 microserver sshd[46132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:23:18 microserver sshd[47504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.110.50 user=root Oct 9 09:23:21 microserver sshd[47504]: Failed password for root from 91.121.110.50 port 35444 ssh2 Oct 9 09:27:09 microserver sshd[48077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid	2019-10-09 16:12:30

Recently Reported IPs

40.198.88.50	102.82.113.95	218.81.240.169	99.201.57.68
124.156.245.248	195.97.184.209	77.76.161.38	27.196.101.211
67.148.114.97	31.74.192.138	128.77.41.24	45.119.215.136
1.161.6.111	1.92.183.65	156.202.78.81	104.128.106.127
175.230.166.141	177.76.20.145	145.98.23.76	193.16.17.178