91.106.199.142

基本信息:

城市(city): Karlskrona

省份(region): Blekinge

国家(country): Sweden

运营商(isp): City Network Hosting AB

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Lines containing failures of 91.106.199.142 Feb 15 13:11:38 majoron sshd[21606]: Invalid user sah from 91.106.199.142 port 50822 Feb 15 13:11:38 majoron sshd[21606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.142 Feb 15 13:11:40 majoron sshd[21606]: Failed password for invalid user sah from 91.106.199.142 port 50822 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.106.199.142	2020-02-17 04:56:43

类型

评论内容

时间

attackspam

Lines containing failures of 91.106.199.142
Feb 15 13:11:38 majoron sshd[21606]: Invalid user sah from 91.106.199.142 port 50822
Feb 15 13:11:38 majoron sshd[21606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.142 
Feb 15 13:11:40 majoron sshd[21606]: Failed password for invalid user sah from 91.106.199.142 port 50822 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=91.106.199.142

2020-02-17 04:56:43

相同子网IP讨论:

IP	类型	评论内容	时间
91.106.199.101	attack	Invalid user reza from 91.106.199.101 port 50854	2020-09-22 23:01:42
91.106.199.101	attackbots	Sep 22 11:59:39 mx sshd[877552]: Failed password for root from 91.106.199.101 port 55022 ssh2 Sep 22 12:03:38 mx sshd[877631]: Invalid user arkserver from 91.106.199.101 port 36704 Sep 22 12:03:38 mx sshd[877631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 22 12:03:38 mx sshd[877631]: Invalid user arkserver from 91.106.199.101 port 36704 Sep 22 12:03:40 mx sshd[877631]: Failed password for invalid user arkserver from 91.106.199.101 port 36704 ssh2 ...	2020-09-22 15:05:42
91.106.199.101	attackbotsspam	Sep 21 23:03:34 vps639187 sshd\[1783\]: Invalid user reza from 91.106.199.101 port 53970 Sep 21 23:03:34 vps639187 sshd\[1783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 21 23:03:36 vps639187 sshd\[1783\]: Failed password for invalid user reza from 91.106.199.101 port 53970 ssh2 ...	2020-09-22 07:07:16
91.106.199.101	attack	Invalid user info5 from 91.106.199.101 port 59030	2020-09-16 01:01:12
91.106.199.101	attackspambots	Sep 2 19:44:13 l02a sshd[5397]: Invalid user vbox from 91.106.199.101 Sep 2 19:44:13 l02a sshd[5397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 2 19:44:13 l02a sshd[5397]: Invalid user vbox from 91.106.199.101 Sep 2 19:44:14 l02a sshd[5397]: Failed password for invalid user vbox from 91.106.199.101 port 50408 ssh2	2020-09-03 03:34:18
91.106.199.101	attackspam	Sep 2 12:38:30 haigwepa sshd[26266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 2 12:38:33 haigwepa sshd[26266]: Failed password for invalid user sistemas from 91.106.199.101 port 33072 ssh2 ...	2020-09-02 19:12:21
91.106.199.101	attackspambots	Aug 31 17:01:23 eventyay sshd[25085]: Failed password for root from 91.106.199.101 port 60536 ssh2 Aug 31 17:05:40 eventyay sshd[25114]: Failed password for root from 91.106.199.101 port 36948 ssh2 ...	2020-09-01 01:22:34
91.106.199.101	attack	Aug 28 16:37:39 vps639187 sshd\[9552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 user=root Aug 28 16:37:41 vps639187 sshd\[9552\]: Failed password for root from 91.106.199.101 port 60710 ssh2 Aug 28 16:41:26 vps639187 sshd\[9675\]: Invalid user test from 91.106.199.101 port 39292 Aug 28 16:41:26 vps639187 sshd\[9675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 ...	2020-08-29 00:59:55
91.106.199.101	attackbots	prod11 ...	2020-08-19 19:29:41
91.106.199.101	attackspambots	(sshd) Failed SSH login from 91.106.199.101 (SE/Sweden/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 17 14:49:35 s1 sshd[13812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 user=root Aug 17 14:49:36 s1 sshd[13812]: Failed password for root from 91.106.199.101 port 41204 ssh2 Aug 17 14:58:12 s1 sshd[14191]: Invalid user admin from 91.106.199.101 port 45610 Aug 17 14:58:14 s1 sshd[14191]: Failed password for invalid user admin from 91.106.199.101 port 45610 ssh2 Aug 17 15:02:05 s1 sshd[14576]: Invalid user mns from 91.106.199.101 port 54714	2020-08-18 01:56:42
91.106.199.101	attack	20 attempts against mh-ssh on echoip	2020-08-10 18:57:55
91.106.199.101	attackbots	Jul 28 14:38:31 meumeu sshd[342460]: Invalid user bdc from 91.106.199.101 port 58604 Jul 28 14:38:31 meumeu sshd[342460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 28 14:38:31 meumeu sshd[342460]: Invalid user bdc from 91.106.199.101 port 58604 Jul 28 14:38:33 meumeu sshd[342460]: Failed password for invalid user bdc from 91.106.199.101 port 58604 ssh2 Jul 28 14:42:28 meumeu sshd[342659]: Invalid user songlin from 91.106.199.101 port 42026 Jul 28 14:42:28 meumeu sshd[342659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 28 14:42:28 meumeu sshd[342659]: Invalid user songlin from 91.106.199.101 port 42026 Jul 28 14:42:31 meumeu sshd[342659]: Failed password for invalid user songlin from 91.106.199.101 port 42026 ssh2 Jul 28 14:46:23 meumeu sshd[342850]: Invalid user wuyan from 91.106.199.101 port 53680 ...	2020-07-28 21:00:08
91.106.199.101	attackbotsspam	Brute force attempt	2020-07-27 02:19:07
91.106.199.101	attack	Brute-force attempt banned	2020-07-26 16:26:54
91.106.199.101	attack	Jul 23 02:03:20 * sshd[12631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 23 02:03:22 * sshd[12631]: Failed password for invalid user lynch from 91.106.199.101 port 38942 ssh2	2020-07-23 08:30:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.106.199.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18846
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.106.199.142.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 04:56:39 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 142.199.106.91.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.199.106.91.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
101.187.39.74	attackspambots	$f2bV_matches	2019-12-06 04:43:03
185.85.190.132	attackspam	WordPress login Brute force / Web App Attack on client site.	2019-12-06 05:24:21
111.40.160.218	attackspam	2019-12-05T20:58:06.410973shield sshd\[15431\]: Invalid user pasek from 111.40.160.218 port 43457 2019-12-05T20:58:06.415536shield sshd\[15431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.40.160.218 2019-12-05T20:58:08.158704shield sshd\[15431\]: Failed password for invalid user pasek from 111.40.160.218 port 43457 ssh2 2019-12-05T21:04:07.944808shield sshd\[16528\]: Invalid user aschim from 111.40.160.218 port 34836 2019-12-05T21:04:07.949447shield sshd\[16528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.40.160.218	2019-12-06 05:21:18
203.162.230.150	attackspam	$f2bV_matches	2019-12-06 05:17:39
79.137.35.70	attack	2019-12-05T20:45:01.069365shield sshd\[11323\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.ip-79-137-35.eu user=root 2019-12-05T20:45:03.055113shield sshd\[11323\]: Failed password for root from 79.137.35.70 port 37314 ssh2 2019-12-05T20:50:13.989662shield sshd\[12864\]: Invalid user singham from 79.137.35.70 port 47814 2019-12-05T20:50:13.994082shield sshd\[12864\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.ip-79-137-35.eu 2019-12-05T20:50:16.142115shield sshd\[12864\]: Failed password for invalid user singham from 79.137.35.70 port 47814 ssh2	2019-12-06 04:52:22
139.59.26.106	attackbotsspam	Dec 5 15:19:24 TORMINT sshd\[11896\]: Invalid user sjlee from 139.59.26.106 Dec 5 15:19:24 TORMINT sshd\[11896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.26.106 Dec 5 15:19:26 TORMINT sshd\[11896\]: Failed password for invalid user sjlee from 139.59.26.106 port 40028 ssh2 ...	2019-12-06 04:41:29
91.121.16.153	attackspam	$f2bV_matches	2019-12-06 04:53:24
129.213.18.41	attackspam	Dec 5 11:15:09 hanapaa sshd\[16959\]: Invalid user fanget from 129.213.18.41 Dec 5 11:15:09 hanapaa sshd\[16959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.18.41 Dec 5 11:15:11 hanapaa sshd\[16959\]: Failed password for invalid user fanget from 129.213.18.41 port 57343 ssh2 Dec 5 11:20:50 hanapaa sshd\[17457\]: Invalid user zb from 129.213.18.41 Dec 5 11:20:50 hanapaa sshd\[17457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.18.41	2019-12-06 05:23:13
159.89.134.199	attack	Dec 5 21:31:44 fr01 sshd[28690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 user=nobody Dec 5 21:31:46 fr01 sshd[28690]: Failed password for nobody from 159.89.134.199 port 45118 ssh2 Dec 5 21:37:03 fr01 sshd[29598]: Invalid user lucky from 159.89.134.199 ...	2019-12-06 05:07:10
54.37.158.218	attackbots	Dec 5 21:27:56 * sshd[17641]: Failed password for root from 54.37.158.218 port 44687 ssh2	2019-12-06 04:47:40
206.189.184.81	attackspambots	2019-12-05T21:04:11.143785abusebot-8.cloudsearch.cf sshd\[7974\]: Invalid user pass from 206.189.184.81 port 54446	2019-12-06 05:15:19
150.109.170.73	attackbotsspam	1575557979 - 12/05/2019 15:59:39 Host: 150.109.170.73/150.109.170.73 Port: 512 TCP Blocked	2019-12-06 04:56:14
46.101.88.10	attack	Dec 5 22:04:16 * sshd[22285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.88.10 Dec 5 22:04:18 * sshd[22285]: Failed password for invalid user user from 46.101.88.10 port 18777 ssh2	2019-12-06 05:08:41
180.127.108.150	attackbotsspam	Dec 5 15:59:41 grey postfix/smtpd\[31244\]: NOQUEUE: reject: RCPT from unknown\[180.127.108.150\]: 554 5.7.1 Service unavailable\; Client host \[180.127.108.150\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=180.127.108.150\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-06 04:54:50
104.244.77.107	attackbotsspam	Dec 5 21:11:29 ns381471 sshd[22776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.77.107 Dec 5 21:11:31 ns381471 sshd[22776]: Failed password for invalid user kollandsrud from 104.244.77.107 port 58032 ssh2	2019-12-06 04:48:55

最近上报的IP列表

178.176.193.55	52.0.64.81	184.103.253.123	113.108.125.228
147.231.140.28	149.111.140.161	126.9.154.193	172.99.173.226
98.234.54.4	123.244.13.56	177.165.207.124	60.250.152.137
134.169.241.244	219.5.176.15	58.152.1.158	184.75.227.158
169.2.65.52	73.121.75.191	194.88.90.29	208.237.25.4