91.106.199.142

基本信息:

城市(city): Karlskrona

省份(region): Blekinge

国家(country): Sweden

运营商(isp): City Network Hosting AB

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Lines containing failures of 91.106.199.142 Feb 15 13:11:38 majoron sshd[21606]: Invalid user sah from 91.106.199.142 port 50822 Feb 15 13:11:38 majoron sshd[21606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.142 Feb 15 13:11:40 majoron sshd[21606]: Failed password for invalid user sah from 91.106.199.142 port 50822 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.106.199.142	2020-02-17 04:56:43

类型

评论内容

时间

attackspam

Lines containing failures of 91.106.199.142
Feb 15 13:11:38 majoron sshd[21606]: Invalid user sah from 91.106.199.142 port 50822
Feb 15 13:11:38 majoron sshd[21606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.142 
Feb 15 13:11:40 majoron sshd[21606]: Failed password for invalid user sah from 91.106.199.142 port 50822 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=91.106.199.142

2020-02-17 04:56:43

相同子网IP讨论:

IP	类型	评论内容	时间
91.106.199.101	attack	Invalid user reza from 91.106.199.101 port 50854	2020-09-22 23:01:42
91.106.199.101	attackbots	Sep 22 11:59:39 mx sshd[877552]: Failed password for root from 91.106.199.101 port 55022 ssh2 Sep 22 12:03:38 mx sshd[877631]: Invalid user arkserver from 91.106.199.101 port 36704 Sep 22 12:03:38 mx sshd[877631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 22 12:03:38 mx sshd[877631]: Invalid user arkserver from 91.106.199.101 port 36704 Sep 22 12:03:40 mx sshd[877631]: Failed password for invalid user arkserver from 91.106.199.101 port 36704 ssh2 ...	2020-09-22 15:05:42
91.106.199.101	attackbotsspam	Sep 21 23:03:34 vps639187 sshd\[1783\]: Invalid user reza from 91.106.199.101 port 53970 Sep 21 23:03:34 vps639187 sshd\[1783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 21 23:03:36 vps639187 sshd\[1783\]: Failed password for invalid user reza from 91.106.199.101 port 53970 ssh2 ...	2020-09-22 07:07:16
91.106.199.101	attack	Invalid user info5 from 91.106.199.101 port 59030	2020-09-16 01:01:12
91.106.199.101	attackspambots	Sep 2 19:44:13 l02a sshd[5397]: Invalid user vbox from 91.106.199.101 Sep 2 19:44:13 l02a sshd[5397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 2 19:44:13 l02a sshd[5397]: Invalid user vbox from 91.106.199.101 Sep 2 19:44:14 l02a sshd[5397]: Failed password for invalid user vbox from 91.106.199.101 port 50408 ssh2	2020-09-03 03:34:18
91.106.199.101	attackspam	Sep 2 12:38:30 haigwepa sshd[26266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Sep 2 12:38:33 haigwepa sshd[26266]: Failed password for invalid user sistemas from 91.106.199.101 port 33072 ssh2 ...	2020-09-02 19:12:21
91.106.199.101	attackspambots	Aug 31 17:01:23 eventyay sshd[25085]: Failed password for root from 91.106.199.101 port 60536 ssh2 Aug 31 17:05:40 eventyay sshd[25114]: Failed password for root from 91.106.199.101 port 36948 ssh2 ...	2020-09-01 01:22:34
91.106.199.101	attack	Aug 28 16:37:39 vps639187 sshd\[9552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 user=root Aug 28 16:37:41 vps639187 sshd\[9552\]: Failed password for root from 91.106.199.101 port 60710 ssh2 Aug 28 16:41:26 vps639187 sshd\[9675\]: Invalid user test from 91.106.199.101 port 39292 Aug 28 16:41:26 vps639187 sshd\[9675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 ...	2020-08-29 00:59:55
91.106.199.101	attackbots	prod11 ...	2020-08-19 19:29:41
91.106.199.101	attackspambots	(sshd) Failed SSH login from 91.106.199.101 (SE/Sweden/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 17 14:49:35 s1 sshd[13812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 user=root Aug 17 14:49:36 s1 sshd[13812]: Failed password for root from 91.106.199.101 port 41204 ssh2 Aug 17 14:58:12 s1 sshd[14191]: Invalid user admin from 91.106.199.101 port 45610 Aug 17 14:58:14 s1 sshd[14191]: Failed password for invalid user admin from 91.106.199.101 port 45610 ssh2 Aug 17 15:02:05 s1 sshd[14576]: Invalid user mns from 91.106.199.101 port 54714	2020-08-18 01:56:42
91.106.199.101	attack	20 attempts against mh-ssh on echoip	2020-08-10 18:57:55
91.106.199.101	attackbots	Jul 28 14:38:31 meumeu sshd[342460]: Invalid user bdc from 91.106.199.101 port 58604 Jul 28 14:38:31 meumeu sshd[342460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 28 14:38:31 meumeu sshd[342460]: Invalid user bdc from 91.106.199.101 port 58604 Jul 28 14:38:33 meumeu sshd[342460]: Failed password for invalid user bdc from 91.106.199.101 port 58604 ssh2 Jul 28 14:42:28 meumeu sshd[342659]: Invalid user songlin from 91.106.199.101 port 42026 Jul 28 14:42:28 meumeu sshd[342659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 28 14:42:28 meumeu sshd[342659]: Invalid user songlin from 91.106.199.101 port 42026 Jul 28 14:42:31 meumeu sshd[342659]: Failed password for invalid user songlin from 91.106.199.101 port 42026 ssh2 Jul 28 14:46:23 meumeu sshd[342850]: Invalid user wuyan from 91.106.199.101 port 53680 ...	2020-07-28 21:00:08
91.106.199.101	attackbotsspam	Brute force attempt	2020-07-27 02:19:07
91.106.199.101	attack	Brute-force attempt banned	2020-07-26 16:26:54
91.106.199.101	attack	Jul 23 02:03:20 * sshd[12631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.199.101 Jul 23 02:03:22 * sshd[12631]: Failed password for invalid user lynch from 91.106.199.101 port 38942 ssh2	2020-07-23 08:30:23

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.106.199.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18846
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.106.199.142.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 04:56:39 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 142.199.106.91.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.199.106.91.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
114.113.126.163	attackbotsspam	Dec 4 17:06:29 vpn01 sshd[23993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.113.126.163 Dec 4 17:06:31 vpn01 sshd[23993]: Failed password for invalid user faulk from 114.113.126.163 port 55244 ssh2 ...	2019-12-05 00:50:51
117.35.118.42	attackbotsspam	Dec 3 11:43:03 newdogma sshd[24570]: Invalid user gradle from 117.35.118.42 port 43363 Dec 3 11:43:03 newdogma sshd[24570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.35.118.42 Dec 3 11:43:05 newdogma sshd[24570]: Failed password for invalid user gradle from 117.35.118.42 port 43363 ssh2 Dec 3 11:43:05 newdogma sshd[24570]: Received disconnect from 117.35.118.42 port 43363:11: Bye Bye [preauth] Dec 3 11:43:05 newdogma sshd[24570]: Disconnected from 117.35.118.42 port 43363 [preauth] Dec 3 11:56:32 newdogma sshd[24674]: Invalid user vercaigne from 117.35.118.42 port 55811 Dec 3 11:56:32 newdogma sshd[24674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.35.118.42 Dec 3 11:56:35 newdogma sshd[24674]: Failed password for invalid user vercaigne from 117.35.118.42 port 55811 ssh2 Dec 3 11:56:35 newdogma sshd[24674]: Received disconnect from 117.35.118.42 port 55811:11: Bye........ -------------------------------	2019-12-05 01:24:02
118.70.52.188	attack	Unauthorized connection attempt from IP address 118.70.52.188 on Port 445(SMB)	2019-12-05 00:49:42
49.233.91.133	attackbotsspam	$f2bV_matches	2019-12-05 01:05:35
103.56.114.212	attack	Wordpress XMLRPC attack	2019-12-05 01:09:18
138.68.4.198	attackspambots	Dec 4 14:51:02 vps666546 sshd\[7870\]: Invalid user electrum from 138.68.4.198 port 51038 Dec 4 14:51:02 vps666546 sshd\[7870\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.198 Dec 4 14:51:05 vps666546 sshd\[7870\]: Failed password for invalid user electrum from 138.68.4.198 port 51038 ssh2 Dec 4 14:57:09 vps666546 sshd\[8134\]: Invalid user mysql from 138.68.4.198 port 33594 Dec 4 14:57:09 vps666546 sshd\[8134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.198 ...	2019-12-05 01:07:42
180.250.124.227	attackspam	Dec 4 05:10:25 sachi sshd\[7369\]: Invalid user little from 180.250.124.227 Dec 4 05:10:25 sachi sshd\[7369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=swift.id Dec 4 05:10:28 sachi sshd\[7369\]: Failed password for invalid user little from 180.250.124.227 port 53210 ssh2 Dec 4 05:17:17 sachi sshd\[8073\]: Invalid user anders from 180.250.124.227 Dec 4 05:17:17 sachi sshd\[8073\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=swift.id	2019-12-05 01:20:48
27.128.233.104	attackbots	Dec 4 17:08:45 v22018086721571380 sshd[27045]: Failed password for invalid user lempereur from 27.128.233.104 port 43568 ssh2	2019-12-05 00:49:09
118.70.170.159	attackbots	Unauthorized connection attempt from IP address 118.70.170.159 on Port 445(SMB)	2019-12-05 01:20:17
211.35.76.241	attack	Dec 4 15:09:14 microserver sshd[41364]: Invalid user guest from 211.35.76.241 port 59740 Dec 4 15:09:14 microserver sshd[41364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 Dec 4 15:09:16 microserver sshd[41364]: Failed password for invalid user guest from 211.35.76.241 port 59740 ssh2 Dec 4 15:15:51 microserver sshd[42610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 user=root Dec 4 15:15:53 microserver sshd[42610]: Failed password for root from 211.35.76.241 port 59147 ssh2 Dec 4 15:28:57 microserver sshd[44357]: Invalid user buckthal from 211.35.76.241 port 57964 Dec 4 15:28:57 microserver sshd[44357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 Dec 4 15:28:59 microserver sshd[44357]: Failed password for invalid user buckthal from 211.35.76.241 port 57964 ssh2 Dec 4 15:35:35 microserver sshd[45575]: pam_unix(sshd:auth): authe	2019-12-05 01:22:19
157.245.198.25	attackbotsspam	Unauthorized SSH login attempts	2019-12-05 00:53:00
5.89.10.81	attackspambots	Dec 4 04:06:59 home sshd[22660]: Invalid user nicko from 5.89.10.81 port 40606 Dec 4 04:06:59 home sshd[22660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 Dec 4 04:06:59 home sshd[22660]: Invalid user nicko from 5.89.10.81 port 40606 Dec 4 04:07:02 home sshd[22660]: Failed password for invalid user nicko from 5.89.10.81 port 40606 ssh2 Dec 4 04:19:27 home sshd[22789]: Invalid user tit0nich from 5.89.10.81 port 47150 Dec 4 04:19:27 home sshd[22789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 Dec 4 04:19:27 home sshd[22789]: Invalid user tit0nich from 5.89.10.81 port 47150 Dec 4 04:19:28 home sshd[22789]: Failed password for invalid user tit0nich from 5.89.10.81 port 47150 ssh2 Dec 4 04:27:50 home sshd[22891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 user=uucp Dec 4 04:27:52 home sshd[22891]: Failed password for uucp from 5.89.10.81	2019-12-05 01:00:30
111.68.105.29	attack	Unauthorized connection attempt from IP address 111.68.105.29 on Port 445(SMB)	2019-12-05 00:53:56
112.78.37.38	attackspambots	Unauthorized connection attempt from IP address 112.78.37.38 on Port 445(SMB)	2019-12-05 01:07:02
59.10.5.156	attack	Dec 4 17:12:00 web8 sshd\[29529\]: Invalid user ident from 59.10.5.156 Dec 4 17:12:00 web8 sshd\[29529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156 Dec 4 17:12:01 web8 sshd\[29529\]: Failed password for invalid user ident from 59.10.5.156 port 46518 ssh2 Dec 4 17:19:04 web8 sshd\[417\]: Invalid user crp from 59.10.5.156 Dec 4 17:19:04 web8 sshd\[417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156	2019-12-05 01:25:42

最近上报的IP列表

178.176.193.55	52.0.64.81	184.103.253.123	113.108.125.228
147.231.140.28	149.111.140.161	126.9.154.193	172.99.173.226
98.234.54.4	123.244.13.56	177.165.207.124	60.250.152.137
134.169.241.244	219.5.176.15	58.152.1.158	184.75.227.158
169.2.65.52	73.121.75.191	194.88.90.29	208.237.25.4