91.137.8.221 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Thueringer Netkom GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	ssh failed login	2019-09-23 00:29:59
attackbotsspam	Sep 11 19:15:51 friendsofhawaii sshd\[18729\]: Invalid user csgoserver from 91.137.8.221 Sep 11 19:15:51 friendsofhawaii sshd\[18729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 11 19:15:53 friendsofhawaii sshd\[18729\]: Failed password for invalid user csgoserver from 91.137.8.221 port 45537 ssh2 Sep 11 19:21:29 friendsofhawaii sshd\[19232\]: Invalid user admin from 91.137.8.221 Sep 11 19:21:29 friendsofhawaii sshd\[19232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221	2019-09-12 13:25:44
attackbotsspam	Sep 6 20:46:36 php1 sshd\[30667\]: Invalid user password from 91.137.8.221 Sep 6 20:46:36 php1 sshd\[30667\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 6 20:46:38 php1 sshd\[30667\]: Failed password for invalid user password from 91.137.8.221 port 55510 ssh2 Sep 6 20:50:39 php1 sshd\[31021\]: Invalid user frappe from 91.137.8.221 Sep 6 20:50:39 php1 sshd\[31021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221	2019-09-07 15:01:37
attackspam	Sep 4 16:21:56 kapalua sshd\[2348\]: Invalid user 12345 from 91.137.8.221 Sep 4 16:21:56 kapalua sshd\[2348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 4 16:21:58 kapalua sshd\[2348\]: Failed password for invalid user 12345 from 91.137.8.221 port 57187 ssh2 Sep 4 16:25:40 kapalua sshd\[2669\]: Invalid user 1q2w3e4r from 91.137.8.221 Sep 4 16:25:40 kapalua sshd\[2669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221	2019-09-05 10:50:30
attack	Sep 4 22:22:27 lcl-usvr-02 sshd[15714]: Invalid user remote from 91.137.8.221 port 56523 Sep 4 22:22:27 lcl-usvr-02 sshd[15714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 4 22:22:27 lcl-usvr-02 sshd[15714]: Invalid user remote from 91.137.8.221 port 56523 Sep 4 22:22:29 lcl-usvr-02 sshd[15714]: Failed password for invalid user remote from 91.137.8.221 port 56523 ssh2 Sep 4 22:28:06 lcl-usvr-02 sshd[16919]: Invalid user ronald from 91.137.8.221 port 57036 ...	2019-09-05 03:33:33
attack	Sep 4 04:11:50 xtremcommunity sshd\[26435\]: Invalid user oracle from 91.137.8.221 port 37981 Sep 4 04:11:50 xtremcommunity sshd\[26435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 4 04:11:52 xtremcommunity sshd\[26435\]: Failed password for invalid user oracle from 91.137.8.221 port 37981 ssh2 Sep 4 04:15:57 xtremcommunity sshd\[26617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 user=root Sep 4 04:15:59 xtremcommunity sshd\[26617\]: Failed password for root from 91.137.8.221 port 60665 ssh2 ...	2019-09-04 16:23:00
attackbots	Sep 1 22:02:35 localhost sshd\[25438\]: Invalid user start from 91.137.8.221 port 48604 Sep 1 22:02:35 localhost sshd\[25438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.221 Sep 1 22:02:36 localhost sshd\[25438\]: Failed password for invalid user start from 91.137.8.221 port 48604 ssh2 ...	2019-09-02 08:29:44

相同子网IP讨论:

IP	类型	评论内容	时间
91.137.8.222	attack	Oct 2 21:53:47 ns37 sshd[8160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.222	2019-10-03 04:49:31
91.137.8.222	attackspambots	Sep 27 14:16:11 meumeu sshd[27941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.222 Sep 27 14:16:14 meumeu sshd[27941]: Failed password for invalid user usuario from 91.137.8.222 port 45097 ssh2 Sep 27 14:20:27 meumeu sshd[28478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.222 ...	2019-09-27 20:22:53

类型

评论内容

时间

91.137.8.222

attack

Oct  2 21:53:47 ns37 sshd[8160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.222

2019-10-03 04:49:31

91.137.8.222

attackspambots

Sep 27 14:16:11 meumeu sshd[27941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.222 
Sep 27 14:16:14 meumeu sshd[27941]: Failed password for invalid user usuario from 91.137.8.222 port 45097 ssh2
Sep 27 14:20:27 meumeu sshd[28478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.137.8.222 
...

2019-09-27 20:22:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.137.8.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30967
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.137.8.221.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 02 08:29:34 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 221.8.137.91.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 221.8.137.91.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.230.46.80	attackbotsspam	Unauthorized connection attempt from IP address 94.230.46.80 on Port 445(SMB)	2019-11-17 05:43:59
95.81.102.191	attackbots	2019-11-16T15:44:34.932791wiz-ks3 sshd[19789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.81.102.191 user=root 2019-11-16T15:44:37.477055wiz-ks3 sshd[19789]: Failed password for root from 95.81.102.191 port 37476 ssh2 2019-11-16T15:44:38.886318wiz-ks3 sshd[19789]: Failed password for root from 95.81.102.191 port 37476 ssh2 2019-11-16T15:44:34.932791wiz-ks3 sshd[19789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.81.102.191 user=root 2019-11-16T15:44:37.477055wiz-ks3 sshd[19789]: Failed password for root from 95.81.102.191 port 37476 ssh2 2019-11-16T15:44:38.886318wiz-ks3 sshd[19789]: Failed password for root from 95.81.102.191 port 37476 ssh2 2019-11-16T15:44:34.932791wiz-ks3 sshd[19789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.81.102.191 user=root 2019-11-16T15:44:37.477055wiz-ks3 sshd[19789]: Failed password for root from 95.81.102.191 port 37476 ssh2 2019-11-1	2019-11-17 06:03:43
195.218.182.53	attack	Unauthorized connection attempt from IP address 195.218.182.53 on Port 445(SMB)	2019-11-17 05:41:37
180.215.209.212	attack	Nov 16 15:42:49 Invalid user web from 180.215.209.212 port 50644	2019-11-17 05:53:18
41.74.70.22	attack	Unauthorized connection attempt from IP address 41.74.70.22 on Port 445(SMB)	2019-11-17 05:33:15
106.12.3.189	attackbots	Nov 16 16:30:32 meumeu sshd[28573]: Failed password for sync from 106.12.3.189 port 36972 ssh2 Nov 16 16:35:36 meumeu sshd[29359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.3.189 Nov 16 16:35:38 meumeu sshd[29359]: Failed password for invalid user jenhua from 106.12.3.189 port 42538 ssh2 ...	2019-11-17 05:50:19
41.214.138.178	attack	Nov 16 08:42:33 askasleikir sshd[58601]: Failed password for invalid user mysql from 41.214.138.178 port 34542 ssh2	2019-11-17 05:53:04
222.186.180.8	attackspam	Nov 16 22:53:24 MainVPS sshd[30380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 16 22:53:26 MainVPS sshd[30380]: Failed password for root from 222.186.180.8 port 58850 ssh2 Nov 16 22:53:37 MainVPS sshd[31039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 16 22:53:39 MainVPS sshd[31039]: Failed password for root from 222.186.180.8 port 21514 ssh2 Nov 16 22:53:37 MainVPS sshd[31039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 16 22:53:39 MainVPS sshd[31039]: Failed password for root from 222.186.180.8 port 21514 ssh2 Nov 16 22:53:51 MainVPS sshd[31039]: Failed password for root from 222.186.180.8 port 21514 ssh2 ...	2019-11-17 05:58:21
201.20.42.129	attackspambots	Unauthorized connection attempt from IP address 201.20.42.129 on Port 445(SMB)	2019-11-17 05:34:35
201.164.65.10	attackspambots	Unauthorized connection attempt from IP address 201.164.65.10 on Port 445(SMB)	2019-11-17 05:43:27
43.229.72.220	attackbotsspam	A spam email was sent from this SMTP server. This kind of spam emails had the following features.: - They attempted to camouflage the SMTP server with a KDDI's legitimate server. - The domain of URLs in the messages was best-self.info (103.212.223.59).	2019-11-17 05:52:51
41.60.238.124	attackspambots	Unauthorized IMAP connection attempt	2019-11-17 05:33:57
177.38.242.45	attackbotsspam	Automatic report - Banned IP Access	2019-11-17 06:03:25
103.62.144.152	attackbots	103.62.144.152 has been banned for [spam] ...	2019-11-17 05:57:17
1.52.35.240	attackbots	Unauthorized connection attempt from IP address 1.52.35.240 on Port 445(SMB)	2019-11-17 05:29:59

最近上报的IP列表

235.99.184.10	246.93.65.134	61.148.231.57	117.69.51.164
75.82.245.4	62.210.7.218	73.161.14.214	167.71.40.112
168.3.187.135	11.15.89.80	215.23.104.25	220.130.24.182
218.91.173.144	187.188.84.205	68.26.229.250	196.254.137.133
177.128.121.210	54.39.84.182	169.96.232.224	43.237.41.194