134.199.40.91 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.199.40.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52574
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.199.40.91.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 18:21:54 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

b'Host 91.40.199.134.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 134.199.40.91.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
87.250.224.72	attackspam	[Thu Apr 02 19:44:58.095210 2020] [:error] [pid 5760:tid 140149895538432] [client 87.250.224.72:61531] [client 87.250.224.72] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XoXeSlanmN60uHoq9Db38wAAAT0"] ...	2020-04-03 01:16:09
45.125.65.42	attackbotsspam	2020-04-02T17:24:33.729466MailD postfix/smtpd[10035]: warning: unknown[45.125.65.42]: SASL LOGIN authentication failed: authentication failure 2020-04-02T18:29:54.786945MailD postfix/smtpd[14526]: warning: unknown[45.125.65.42]: SASL LOGIN authentication failed: authentication failure 2020-04-02T19:35:55.068579MailD postfix/smtpd[19226]: warning: unknown[45.125.65.42]: SASL LOGIN authentication failed: authentication failure	2020-04-03 01:45:13
201.16.246.71	attackbots	Invalid user admin from 201.16.246.71 port 53974	2020-04-03 01:55:55
189.145.133.212	attackspambots	1585831476 - 04/02/2020 14:44:36 Host: 189.145.133.212/189.145.133.212 Port: 445 TCP Blocked	2020-04-03 01:32:48
104.168.190.136	attackbotsspam	Apr 2 03:57:32 our-server-hostname postfix/smtpd[13963]: connect from unknown[104.168.190.136] Apr x@x Apr 2 03:57:34 our-server-hostname postfix/smtpd[13963]: disconnect from unknown[104.168.190.136] Apr 2 03:57:35 our-server-hostname postfix/smtpd[14964]: connect from unknown[104.168.190.136] Apr x@x Apr 2 03:57:37 our-server-hostname postfix/smtpd[14964]: disconnect from unknown[104.168.190.136] Apr 2 03:58:36 our-server-hostname postfix/smtpd[13963]: connect from unknown[104.168.190.136] Apr x@x Apr 2 03:58:38 our-server-hostname postfix/smtpd[13963]: disconnect from unknown[104.168.190.136] Apr 2 03:58:43 our-server-hostname postfix/smtpd[15456]: connect from unknown[104.168.190.136] Apr x@x Apr 2 03:58:45 our-server-hostname postfix/smtpd[15456]: disconnect from unknown[104.168.190.136] Apr 2 04:00:21 our-server-hostname postfix/smtpd[14964]: connect from unknown[104.168.190.136] Apr x@x Apr 2 04:00:23 our-server-hostname postfix/smtpd[14964]: disconnect........ -------------------------------	2020-04-03 01:48:39
66.115.173.146	attack	66.115.173.146 was recorded 5 times by 2 hosts attempting to connect to the following ports: 6690,5160,6680. Incident counter (4h, 24h, all-time): 5, 8, 9	2020-04-03 01:16:26
123.206.51.192	attack	Apr 2 16:26:42 yesfletchmain sshd\[6054\]: User root from 123.206.51.192 not allowed because not listed in AllowUsers Apr 2 16:26:42 yesfletchmain sshd\[6054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.51.192 user=root Apr 2 16:26:44 yesfletchmain sshd\[6054\]: Failed password for invalid user root from 123.206.51.192 port 49462 ssh2 Apr 2 16:33:19 yesfletchmain sshd\[6229\]: Invalid user iz from 123.206.51.192 port 53718 Apr 2 16:33:19 yesfletchmain sshd\[6229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.51.192 ...	2020-04-03 01:28:48
111.93.156.74	attackbotsspam	Apr 2 17:08:41 ms-srv sshd[15473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.156.74 user=root Apr 2 17:08:42 ms-srv sshd[15473]: Failed password for invalid user root from 111.93.156.74 port 55380 ssh2	2020-04-03 01:47:46
102.66.104.204	attackbotsspam	webserver:80 [02/Apr/2020] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" 403 363 "-" "XTC BOTNET"	2020-04-03 01:25:40
211.23.44.58	attackbots	(sshd) Failed SSH login from 211.23.44.58 (TW/Taiwan/211-23-44-58.hinet-ip.hinet.net): 10 in the last 3600 secs	2020-04-03 01:55:28
106.75.100.18	attackspambots	Apr 2 14:36:11 vmd17057 sshd[12144]: Failed password for root from 106.75.100.18 port 41688 ssh2 ...	2020-04-03 01:48:09
113.141.70.199	attackbots	$f2bV_matches	2020-04-03 01:18:01
163.43.31.188	attackbots	Apr 2 15:57:46 legacy sshd[7949]: Failed password for root from 163.43.31.188 port 59354 ssh2 Apr 2 16:02:02 legacy sshd[8139]: Failed password for root from 163.43.31.188 port 42836 ssh2 ...	2020-04-03 02:03:17
141.8.183.90	attackbotsspam	[Thu Apr 02 19:44:22.728381 2020] [:error] [pid 5800:tid 140149912323840] [client 141.8.183.90:55215] [client 141.8.183.90] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XoXeJpA21zJ4xSE@kVtqMQAAAC0"] ...	2020-04-03 01:41:23
42.115.206.195	attackspambots	04/02/2020-08:44:03.862872 42.115.206.195 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-03 01:57:17

最近上报的IP列表

249.245.217.249	38.34.209.0	166.5.234.50	137.254.63.165
62.231.52.100	47.110.77.66	202.153.94.10	255.64.49.198
222.241.150.73	234.99.113.137	203.132.46.240	221.119.7.116
118.197.184.255	253.26.201.108	212.232.140.187	137.163.13.189
223.167.129.178	62.41.54.247	64.156.76.105	140.120.40.132