91.106.193.72 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Sweden

运营商(isp): City Network Hosting AB

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches	2020-09-03 20:51:58
attackspam	Sep 2 19:34:07 prod4 sshd\[8494\]: Invalid user contact from 91.106.193.72 Sep 2 19:34:09 prod4 sshd\[8494\]: Failed password for invalid user contact from 91.106.193.72 port 46622 ssh2 Sep 2 19:40:08 prod4 sshd\[11755\]: Invalid user user from 91.106.193.72 ...	2020-09-03 12:35:57
attack	Sep 2 19:34:07 prod4 sshd\[8494\]: Invalid user contact from 91.106.193.72 Sep 2 19:34:09 prod4 sshd\[8494\]: Failed password for invalid user contact from 91.106.193.72 port 46622 ssh2 Sep 2 19:40:08 prod4 sshd\[11755\]: Invalid user user from 91.106.193.72 ...	2020-09-03 04:54:15
attackspam	Aug 30 17:38:31 haigwepa sshd[3415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 Aug 30 17:38:33 haigwepa sshd[3415]: Failed password for invalid user alain from 91.106.193.72 port 41502 ssh2 ...	2020-08-31 00:58:15
attackspam	Aug 17 16:59:48 * sshd[28169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 Aug 17 16:59:50 * sshd[28169]: Failed password for invalid user e from 91.106.193.72 port 51640 ssh2	2020-08-17 23:25:48
attackbots	Aug 12 15:11:30 ajax sshd[9213]: Failed password for root from 91.106.193.72 port 42736 ssh2	2020-08-12 22:32:26
attackspambots	Aug 5 19:37:16 php1 sshd\[28165\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root Aug 5 19:37:18 php1 sshd\[28165\]: Failed password for root from 91.106.193.72 port 36474 ssh2 Aug 5 19:41:30 php1 sshd\[28771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root Aug 5 19:41:32 php1 sshd\[28771\]: Failed password for root from 91.106.193.72 port 48196 ssh2 Aug 5 19:45:40 php1 sshd\[29110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root	2020-08-06 13:48:24
attack	2020-07-04T05:20:11.122004n23.at sshd[2081190]: Failed password for invalid user orca from 91.106.193.72 port 55794 ssh2 2020-07-04T05:24:05.258714n23.at sshd[2084237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root 2020-07-04T05:24:07.072645n23.at sshd[2084237]: Failed password for root from 91.106.193.72 port 34056 ssh2 ...	2020-07-04 13:38:26
attack	...	2020-07-01 23:59:34
attackbots	2020-06-26T07:29:55.594743sorsha.thespaminator.com sshd[19906]: Invalid user openerp from 91.106.193.72 port 33000 2020-06-26T07:29:57.481530sorsha.thespaminator.com sshd[19906]: Failed password for invalid user openerp from 91.106.193.72 port 33000 ssh2 ...	2020-06-26 20:38:35
attack	2020-06-14 04:04:25.291799-0500 localhost sshd[21552]: Failed password for invalid user shashi from 91.106.193.72 port 49318 ssh2	2020-06-14 19:59:37
attackspambots	Jun 12 21:23:50 lnxmail61 sshd[31924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72	2020-06-13 04:06:48
attackspambots	$f2bV_matches	2020-06-09 17:36:50
attackspambots	Jun 8 06:47:39 vpn01 sshd[30790]: Failed password for root from 91.106.193.72 port 47488 ssh2 ...	2020-06-08 19:17:51
attackspam	Jun 6 04:30:41 web8 sshd\[28401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root Jun 6 04:30:43 web8 sshd\[28401\]: Failed password for root from 91.106.193.72 port 37842 ssh2 Jun 6 04:34:17 web8 sshd\[30175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root Jun 6 04:34:19 web8 sshd\[30175\]: Failed password for root from 91.106.193.72 port 40634 ssh2 Jun 6 04:37:57 web8 sshd\[32474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root	2020-06-06 12:43:28
attack	Jun 2 12:02:38 webhost01 sshd[10675]: Failed password for root from 91.106.193.72 port 37262 ssh2 ...	2020-06-02 13:50:28
attackbots	Invalid user ocean from 91.106.193.72 port 40702	2020-05-30 18:06:38
attackspambots	May 28 17:51:01 nextcloud sshd\[19359\]: Invalid user admin from 91.106.193.72 May 28 17:51:01 nextcloud sshd\[19359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 May 28 17:51:03 nextcloud sshd\[19359\]: Failed password for invalid user admin from 91.106.193.72 port 41172 ssh2	2020-05-29 04:05:56
attack	May 16 04:27:41 vps639187 sshd\[11836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root May 16 04:27:43 vps639187 sshd\[11836\]: Failed password for root from 91.106.193.72 port 41858 ssh2 May 16 04:31:44 vps639187 sshd\[11895\]: Invalid user tbd from 91.106.193.72 port 51698 May 16 04:31:44 vps639187 sshd\[11895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 ...	2020-05-16 13:26:34
attackspambots	May 8 22:42:28 ny01 sshd[3460]: Failed password for root from 91.106.193.72 port 53820 ssh2 May 8 22:48:15 ny01 sshd[4277]: Failed password for root from 91.106.193.72 port 59038 ssh2 May 8 22:51:52 ny01 sshd[4812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72	2020-05-09 18:14:42
attackbots	(sshd) Failed SSH login from 91.106.193.72 (SE/Sweden/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 6 14:51:35 srv sshd[8522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root May 6 14:51:36 srv sshd[8522]: Failed password for root from 91.106.193.72 port 35586 ssh2 May 6 15:01:11 srv sshd[8751]: Invalid user prometheus from 91.106.193.72 port 33324 May 6 15:01:12 srv sshd[8751]: Failed password for invalid user prometheus from 91.106.193.72 port 33324 ssh2 May 6 15:04:56 srv sshd[8820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root	2020-05-06 20:08:34
attack	Repeated failed SSH attempt	2020-01-03 04:58:32
attack	Dec 31 15:42:35 game-panel sshd[1797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 Dec 31 15:42:37 game-panel sshd[1797]: Failed password for invalid user vesnauer from 91.106.193.72 port 46996 ssh2 Dec 31 15:45:15 game-panel sshd[1894]: Failed password for bin from 91.106.193.72 port 43892 ssh2	2019-12-31 23:58:54
attackspambots	Dec 29 14:17:38 web9 sshd\[23134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=mysql Dec 29 14:17:40 web9 sshd\[23134\]: Failed password for mysql from 91.106.193.72 port 41950 ssh2 Dec 29 14:20:40 web9 sshd\[23547\]: Invalid user carin from 91.106.193.72 Dec 29 14:20:40 web9 sshd\[23547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 Dec 29 14:20:42 web9 sshd\[23547\]: Failed password for invalid user carin from 91.106.193.72 port 44816 ssh2	2019-12-30 08:34:02
attackbots	Dec 28 16:39:44 localhost sshd[18261]: Failed password for root from 91.106.193.72 port 44954 ssh2 Dec 28 16:55:50 localhost sshd[19016]: Failed password for root from 91.106.193.72 port 57234 ssh2 Dec 28 16:58:47 localhost sshd[19172]: Failed password for invalid user http from 91.106.193.72 port 59428 ssh2	2019-12-29 00:33:35
attackbotsspam	SSH Brute Force, server-1 sshd[17865]: Failed password for invalid user db2admin from 91.106.193.72 port 46422 ssh2	2019-12-21 15:32:41
attackspam	Invalid user eugen from 91.106.193.72 port 54392	2019-12-14 05:51:30
attackspam	ssh failed login	2019-12-13 21:51:10
attackspam	Invalid user eugen from 91.106.193.72 port 54392	2019-12-13 06:30:57
attack	Dec 10 03:31:38 linuxvps sshd\[583\]: Invalid user QWE123ASD123 from 91.106.193.72 Dec 10 03:31:38 linuxvps sshd\[583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 Dec 10 03:31:39 linuxvps sshd\[583\]: Failed password for invalid user QWE123ASD123 from 91.106.193.72 port 55762 ssh2 Dec 10 03:37:27 linuxvps sshd\[4388\]: Invalid user abcdefghijklmnopqrs from 91.106.193.72 Dec 10 03:37:27 linuxvps sshd\[4388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72	2019-12-10 16:44:28

相同子网IP讨论:

IP	类型	评论内容	时间
91.106.193.7	attackspam	SSH login attempts with user root.	2019-11-30 04:37:15

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.106.193.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55161
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.106.193.72.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 07 18:07:43 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 72.193.106.91.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 72.193.106.91.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
51.77.109.98	attackspambots	Sep 30 21:35:04 vps01 sshd[20377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.109.98 Sep 30 21:35:05 vps01 sshd[20377]: Failed password for invalid user laura from 51.77.109.98 port 45072 ssh2	2019-10-01 03:41:56
116.210.116.229	attack	Automated reporting of FTP Brute Force	2019-10-01 03:19:01
45.249.111.40	attack	Sep 30 11:00:18 mail sshd\[9246\]: Invalid user Juhana from 45.249.111.40 ...	2019-10-01 03:51:59
36.234.125.114	attack	2323/tcp [2019-09-30]1pkt	2019-10-01 03:11:31
198.58.107.53	attack	Sep 30 12:10:43 thevastnessof sshd[2495]: Failed password for root from 198.58.107.53 port 41142 ssh2 ...	2019-10-01 03:21:02
183.136.236.43	attack	Bruteforce on SSH Honeypot	2019-10-01 03:37:21
54.38.185.87	attackbotsspam	Sep 30 17:41:00 areeb-Workstation sshd[25620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.185.87 Sep 30 17:41:01 areeb-Workstation sshd[25620]: Failed password for invalid user jrun from 54.38.185.87 port 57008 ssh2 ...	2019-10-01 03:27:40
58.57.4.238	attackbotsspam	Sep 30 14:44:59 web1 postfix/smtpd[23565]: warning: unknown[58.57.4.238]: SASL LOGIN authentication failed: authentication failure ...	2019-10-01 03:48:39
156.223.98.82	attack	23/tcp [2019-09-30]1pkt	2019-10-01 03:41:30
177.220.173.118	attackbotsspam	Sep 30 14:25:55 venus sshd\[28771\]: Invalid user admin from 177.220.173.118 port 54462 Sep 30 14:25:55 venus sshd\[28771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.220.173.118 Sep 30 14:25:57 venus sshd\[28771\]: Failed password for invalid user admin from 177.220.173.118 port 54462 ssh2 ...	2019-10-01 03:22:52
42.91.182.93	attackspam	Automated reporting of FTP Brute Force	2019-10-01 03:28:06
50.239.143.100	attackbotsspam	v+ssh-bruteforce	2019-10-01 03:38:40
212.129.35.92	attackspam	2019-10-01T01:18:35.271632enmeeting.mahidol.ac.th sshd\[10685\]: Invalid user pi from 212.129.35.92 port 36954 2019-10-01T01:18:35.286336enmeeting.mahidol.ac.th sshd\[10685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.35.92 2019-10-01T01:18:36.896955enmeeting.mahidol.ac.th sshd\[10685\]: Failed password for invalid user pi from 212.129.35.92 port 36954 ssh2 ...	2019-10-01 03:14:49
222.124.16.227	attackspambots	Sep 30 21:19:13 MK-Soft-Root1 sshd[2539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.16.227 Sep 30 21:19:15 MK-Soft-Root1 sshd[2539]: Failed password for invalid user www from 222.124.16.227 port 56906 ssh2 ...	2019-10-01 03:24:17
156.206.42.143	attackbots	Telnet/23 MH Probe, BF, Hack -	2019-10-01 03:52:19

最近上报的IP列表

124.133.107.116	91.187.103.61	94.233.0.79	112.85.12.104
144.0.227.80	114.39.114.181	118.4.200.149	74.199.110.243
133.242.228.107	14.204.105.144	159.224.52.97	177.85.142.157
170.80.227.243	178.27.249.231	84.166.181.8	197.1.195.181
188.254.181.220	162.56.105.229	177.21.128.89	201.56.55.93