171.6.91.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): Triple T Internet PCL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 81, PTR: mx-ll-171.6.91-139.dynamic.3bb.in.th.	2020-02-08 00:24:36

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 171.6.91.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26291
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;171.6.91.139.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020700 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 00:24:24 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

139.91.6.171.in-addr.arpa domain name pointer mx-ll-171.6.91-139.dynamic.3bb.co.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.91.6.171.in-addr.arpa	name = mx-ll-171.6.91-139.dynamic.3bb.in.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.78.25.78	attackspam	Unauthorized connection attempt from IP address 190.78.25.78 on Port 445(SMB)	2020-03-25 03:14:48
81.218.130.49	attackbots	Mar 24 14:22:21 ny01 sshd[31362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.218.130.49 Mar 24 14:22:23 ny01 sshd[31362]: Failed password for invalid user m from 81.218.130.49 port 48924 ssh2 Mar 24 14:32:05 ny01 sshd[3787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.218.130.49	2020-03-25 02:45:47
190.103.181.215	attack	Mar 24 19:32:03 cloud sshd[5642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.103.181.215 Mar 24 19:32:04 cloud sshd[5642]: Failed password for invalid user informix from 190.103.181.215 port 58880 ssh2	2020-03-25 02:46:26
41.139.133.163	attack	Unauthorized connection attempt from IP address 41.139.133.163 on Port 445(SMB)	2020-03-25 03:03:03
94.23.26.6	attackspambots	2020-03-24T18:58:33.723420shield sshd\[9614\]: Invalid user zara from 94.23.26.6 port 46010 2020-03-24T18:58:33.731074shield sshd\[9614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns367460.ip-94-23-26.eu 2020-03-24T18:58:35.422845shield sshd\[9614\]: Failed password for invalid user zara from 94.23.26.6 port 46010 ssh2 2020-03-24T19:02:03.258120shield sshd\[10497\]: Invalid user jn from 94.23.26.6 port 33410 2020-03-24T19:02:03.268111shield sshd\[10497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns367460.ip-94-23-26.eu	2020-03-25 03:06:14
117.0.33.174	attackspam	Unauthorized connection attempt from IP address 117.0.33.174 on Port 445(SMB)	2020-03-25 02:58:26
92.118.38.42	attack	Mar 24 20:04:09 v22019058497090703 postfix/smtpd[11721]: warning: unknown[92.118.38.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 24 20:04:49 v22019058497090703 postfix/smtpd[11721]: warning: unknown[92.118.38.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 24 20:05:11 v22019058497090703 postfix/smtpd[11721]: warning: unknown[92.118.38.42]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-25 03:07:07
196.43.155.209	attack	(sshd) Failed SSH login from 196.43.155.209 (UG/Uganda/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 24 14:17:48 localhost sshd[12638]: Invalid user la from 196.43.155.209 port 56142 Mar 24 14:17:50 localhost sshd[12638]: Failed password for invalid user la from 196.43.155.209 port 56142 ssh2 Mar 24 14:27:45 localhost sshd[13293]: Invalid user sysadmin from 196.43.155.209 port 58886 Mar 24 14:27:47 localhost sshd[13293]: Failed password for invalid user sysadmin from 196.43.155.209 port 58886 ssh2 Mar 24 14:31:28 localhost sshd[13518]: Invalid user izi from 196.43.155.209 port 46618	2020-03-25 03:24:06
42.188.230.182	attack	port scan and connect, tcp 80 (http)	2020-03-25 02:51:09
103.35.64.73	attack	Mar 24 19:26:24 meumeu sshd[1373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.64.73 Mar 24 19:26:25 meumeu sshd[1373]: Failed password for invalid user schedule from 103.35.64.73 port 55848 ssh2 Mar 24 19:30:29 meumeu sshd[1922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.35.64.73 ...	2020-03-25 02:45:21
51.15.58.168	attackspambots	2020-03-24T18:58:52.098056shield sshd\[9672\]: Invalid user saito from 51.15.58.168 port 34166 2020-03-24T18:58:52.103692shield sshd\[9672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.58.168 2020-03-24T18:58:54.067814shield sshd\[9672\]: Failed password for invalid user saito from 51.15.58.168 port 34166 ssh2 2020-03-24T19:02:47.011153shield sshd\[10667\]: Invalid user bran from 51.15.58.168 port 50810 2020-03-24T19:02:47.021414shield sshd\[10667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.58.168	2020-03-25 03:06:43
37.193.108.101	attackspambots	DATE:2020-03-24 20:12:42, IP:37.193.108.101, PORT:ssh SSH brute force auth (docker-dc)	2020-03-25 03:21:17
1.4.188.72	attackspambots	Port probing on unauthorized port 23	2020-03-25 02:55:54
106.13.213.76	attackspam	Mar 24 19:30:09 h1745522 sshd[7855]: Invalid user lambert from 106.13.213.76 port 57110 Mar 24 19:30:09 h1745522 sshd[7855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.213.76 Mar 24 19:30:09 h1745522 sshd[7855]: Invalid user lambert from 106.13.213.76 port 57110 Mar 24 19:30:12 h1745522 sshd[7855]: Failed password for invalid user lambert from 106.13.213.76 port 57110 ssh2 Mar 24 19:33:18 h1745522 sshd[8042]: Invalid user bit_users from 106.13.213.76 port 36594 Mar 24 19:33:18 h1745522 sshd[8042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.213.76 Mar 24 19:33:18 h1745522 sshd[8042]: Invalid user bit_users from 106.13.213.76 port 36594 Mar 24 19:33:20 h1745522 sshd[8042]: Failed password for invalid user bit_users from 106.13.213.76 port 36594 ssh2 Mar 24 19:36:05 h1745522 sshd[8199]: Invalid user vnc from 106.13.213.76 port 41330 ...	2020-03-25 03:00:49
89.216.47.154	attack	Mar 24 20:03:31 [host] sshd[8157]: Invalid user de Mar 24 20:03:31 [host] sshd[8157]: pam_unix(sshd:a Mar 24 20:03:34 [host] sshd[8157]: Failed password	2020-03-25 03:24:23

最近上报的IP列表

162.14.8.62	160.202.162.71	123.21.239.159	113.163.247.96
188.148.186.160	187.109.171.248	184.21.69.47	48.135.223.85
70.110.47.215	113.162.178.18	186.113.133.155	203.101.253.59
27.147.183.49	17.231.172.31	63.219.186.241	162.14.8.44
36.38.147.217	122.27.66.130	96.192.106.231	138.12.16.188