81.91.136.3 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Iran (Islamic Republic of)

运营商(isp): Datak Internet Engineering Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Jul 9 04:07:13 raspberrypi sshd[17737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 Jul 9 04:07:15 raspberrypi sshd[17737]: Failed password for invalid user miaohaoran from 81.91.136.3 port 42986 ssh2 Jul 9 04:10:31 raspberrypi sshd[18158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 ...	2020-07-09 18:24:37
attackspam	May 10 23:45:24 vserver sshd\[4407\]: Invalid user test from 81.91.136.3May 10 23:45:26 vserver sshd\[4407\]: Failed password for invalid user test from 81.91.136.3 port 55134 ssh2May 10 23:48:34 vserver sshd\[4459\]: Failed password for root from 81.91.136.3 port 48844 ssh2May 10 23:51:57 vserver sshd\[4515\]: Invalid user ts from 81.91.136.3 ...	2020-05-11 06:31:12
attackspambots	May 6 08:53:54 mail sshd[3679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 May 6 08:53:56 mail sshd[3679]: Failed password for invalid user oracle from 81.91.136.3 port 59556 ssh2 ...	2020-05-06 15:46:05
attack	May 2 06:59:29 server sshd[28383]: Failed password for root from 81.91.136.3 port 40422 ssh2 May 2 07:03:43 server sshd[28815]: Failed password for invalid user ftp from 81.91.136.3 port 43854 ssh2 May 2 07:08:06 server sshd[29270]: Failed password for root from 81.91.136.3 port 47266 ssh2	2020-05-02 14:08:13
attackbots	"fail2ban match"	2020-04-27 17:39:38
attackspam	Invalid user ftpuser from 81.91.136.3 port 52778	2020-04-21 14:21:20
attackspambots	5x Failed Password	2020-04-16 02:05:46
attackspambots	Apr 13 05:38:30 Ubuntu-1404-trusty-64-minimal sshd\[23595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 user=root Apr 13 05:38:32 Ubuntu-1404-trusty-64-minimal sshd\[23595\]: Failed password for root from 81.91.136.3 port 33036 ssh2 Apr 13 05:50:08 Ubuntu-1404-trusty-64-minimal sshd\[29819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 user=root Apr 13 05:50:10 Ubuntu-1404-trusty-64-minimal sshd\[29819\]: Failed password for root from 81.91.136.3 port 45672 ssh2 Apr 13 05:53:52 Ubuntu-1404-trusty-64-minimal sshd\[32292\]: Invalid user teamspeak3 from 81.91.136.3 Apr 13 05:53:52 Ubuntu-1404-trusty-64-minimal sshd\[32292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3	2020-04-13 16:29:57
attackspam	Mar 13 21:21:35 santamaria sshd\[10454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 user=mysql Mar 13 21:21:37 santamaria sshd\[10454\]: Failed password for mysql from 81.91.136.3 port 37546 ssh2 Mar 13 21:25:50 santamaria sshd\[10497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 user=root ...	2020-03-14 04:29:48
attackspam	Feb 25 14:20:44 localhost sshd\[22747\]: Invalid user guest from 81.91.136.3 port 39558 Feb 25 14:20:44 localhost sshd\[22747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.91.136.3 Feb 25 14:20:46 localhost sshd\[22747\]: Failed password for invalid user guest from 81.91.136.3 port 39558 ssh2	2020-02-25 21:33:08

相同子网IP讨论:

IP	类型	评论内容	时间
81.91.136.134	attackbots	IR Iran - Hits: 11	2019-12-31 15:58:21
81.91.136.83	attack	Fail2Ban Ban Triggered	2019-12-09 01:52:39
81.91.136.82	attackspam	Port probe and connect to SMTP:25.	2019-09-22 21:17:58
81.91.136.82	attack	Bruteforce on SSH Honeypot	2019-07-17 09:37:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.91.136.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47194
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.91.136.3.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 21:33:02 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 3.136.91.81.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.136.91.81.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
45.79.34.93	attackspambots	1566619436 - 08/24/2019 06:03:56 Host: li1133-93.members.linode.com/45.79.34.93 Port: 11211 UDP Blocked	2019-08-24 13:42:34
179.106.81.234	attack	Port Scan: TCP/23	2019-08-24 13:54:17
83.110.158.4	attackbots	Port Scan: TCP/8080	2019-08-24 14:25:55
96.224.232.132	attackspambots	Port Scan: UDP/80	2019-08-24 14:02:41
51.68.227.49	attack	Aug 24 04:41:08 DAAP sshd[19184]: Invalid user downloader from 51.68.227.49 port 39584 Aug 24 04:41:08 DAAP sshd[19184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.227.49 Aug 24 04:41:08 DAAP sshd[19184]: Invalid user downloader from 51.68.227.49 port 39584 Aug 24 04:41:11 DAAP sshd[19184]: Failed password for invalid user downloader from 51.68.227.49 port 39584 ssh2 Aug 24 04:44:57 DAAP sshd[19217]: Invalid user noc from 51.68.227.49 port 57246 ...	2019-08-24 13:42:09
179.179.228.247	attackbots	Port Scan: UDP/137	2019-08-24 13:21:42
113.252.242.253	attack	Port Scan: TCP/445	2019-08-24 14:00:17
175.161.1.191	attack	Port Scan: TCP/60001	2019-08-24 13:22:44
142.4.216.11	attack	Port Scan: TCP/445	2019-08-24 13:24:23
142.196.28.228	attackspam	Port Scan: TCP/5270	2019-08-24 13:23:57
1.160.72.108	attack	Port Scan: TCP/23	2019-08-24 13:13:15
111.255.12.125	attackbots	Port Scan: TCP/23	2019-08-24 13:28:29
23.83.90.216	attack	Port Scan: TCP/443	2019-08-24 13:45:34
1.162.165.70	attackbotsspam	Port Scan: TCP/23	2019-08-24 14:16:34
113.141.189.247	attackbotsspam	SMB Server BruteForce Attack	2019-08-24 14:24:42

最近上报的IP列表

54.232.144.222	175.176.50.191	22.172.212.21	223.32.20.23
127.58.173.22	252.171.46.34	246.67.245.136	139.6.219.94
184.31.121.220	175.176.49.161	175.176.49.61	133.155.150.135
157.251.69.169	190.217.4.66	10.95.129.25	213.37.33.185
99.75.125.100	55.160.150.177	15.107.231.223	117.220.110.248