91.139.196.141

基本信息:

城市(city): Plovdiv

省份(region): Plovdiv

国家(country): Bulgaria

运营商(isp): Bulsatcom EAD

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	2020-08-04T10:48:04.448614snf-827550 sshd[21476]: Failed password for root from 91.139.196.141 port 48777 ssh2 2020-08-04T10:52:00.759120snf-827550 sshd[21512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91-139-196-141.plvd.ddns.bulsat.com user=root 2020-08-04T10:52:03.066093snf-827550 sshd[21512]: Failed password for root from 91.139.196.141 port 54435 ssh2 ...	2020-08-04 16:00:39
attackbots	Aug 2 22:10:47 jumpserver sshd[361784]: Failed password for root from 91.139.196.141 port 52493 ssh2 Aug 2 22:14:43 jumpserver sshd[361869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.139.196.141 user=root Aug 2 22:14:46 jumpserver sshd[361869]: Failed password for root from 91.139.196.141 port 59164 ssh2 ...	2020-08-03 07:23:15

类型

评论内容

时间

attackbots

2020-08-04T10:48:04.448614snf-827550 sshd[21476]: Failed password for root from 91.139.196.141 port 48777 ssh2
2020-08-04T10:52:00.759120snf-827550 sshd[21512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91-139-196-141.plvd.ddns.bulsat.com  user=root
2020-08-04T10:52:03.066093snf-827550 sshd[21512]: Failed password for root from 91.139.196.141 port 54435 ssh2
...

2020-08-04 16:00:39

attackbots

Aug  2 22:10:47 jumpserver sshd[361784]: Failed password for root from 91.139.196.141 port 52493 ssh2
Aug  2 22:14:43 jumpserver sshd[361869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.139.196.141  user=root
Aug  2 22:14:46 jumpserver sshd[361869]: Failed password for root from 91.139.196.141 port 59164 ssh2
...

2020-08-03 07:23:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.139.196.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41852
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.139.196.141.			IN	A

;; AUTHORITY SECTION:
.			385	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080201 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 03 07:23:12 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

141.196.139.91.in-addr.arpa domain name pointer 91-139-196-141.plvd.ddns.bulsat.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.196.139.91.in-addr.arpa	name = 91-139-196-141.plvd.ddns.bulsat.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.142.172.29	attackbots	20/7/16@23:53:14: FAIL: Alarm-Network address from=114.142.172.29 ...	2020-07-17 17:02:17
49.247.208.185	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-07-17 17:05:14
124.251.110.164	attack	sshd: Failed password for invalid user .... from 124.251.110.164 port 39920 ssh2	2020-07-17 17:31:31
112.14.178.70	attack	Jul 17 05:53:24 icecube postfix/smtpd[80910]: NOQUEUE: reject: RCPT from unknown[112.14.178.70]: 554 5.7.1 Service unavailable; Client host [112.14.178.70] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/112.14.178.70; from= to= proto=ESMTP helo=	2020-07-17 16:57:02
35.222.182.220	attackspambots	Invalid user klaudia from 35.222.182.220 port 45932	2020-07-17 17:10:35
34.75.125.212	attackbots	$f2bV_matches	2020-07-17 17:26:11
80.151.235.172	attackspambots	Jul 17 05:07:23 ns382633 sshd\[31753\]: Invalid user factura from 80.151.235.172 port 44464 Jul 17 05:07:23 ns382633 sshd\[31753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.151.235.172 Jul 17 05:07:24 ns382633 sshd\[31753\]: Failed password for invalid user factura from 80.151.235.172 port 44464 ssh2 Jul 17 05:52:51 ns382633 sshd\[7664\]: Invalid user test from 80.151.235.172 port 36564 Jul 17 05:52:51 ns382633 sshd\[7664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.151.235.172	2020-07-17 17:16:33
212.119.190.162	attack	2020-07-17T08:51:23.409887abusebot.cloudsearch.cf sshd[6807]: Invalid user student08 from 212.119.190.162 port 51975 2020-07-17T08:51:23.415013abusebot.cloudsearch.cf sshd[6807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.swedmobil.ru 2020-07-17T08:51:23.409887abusebot.cloudsearch.cf sshd[6807]: Invalid user student08 from 212.119.190.162 port 51975 2020-07-17T08:51:25.652991abusebot.cloudsearch.cf sshd[6807]: Failed password for invalid user student08 from 212.119.190.162 port 51975 ssh2 2020-07-17T08:58:58.400981abusebot.cloudsearch.cf sshd[6992]: Invalid user markd from 212.119.190.162 port 58183 2020-07-17T08:58:58.406017abusebot.cloudsearch.cf sshd[6992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.swedmobil.ru 2020-07-17T08:58:58.400981abusebot.cloudsearch.cf sshd[6992]: Invalid user markd from 212.119.190.162 port 58183 2020-07-17T08:59:00.438300abusebot.cloudsearch.cf sshd[6992]: ...	2020-07-17 17:09:32
121.157.82.202	attackspam	Bruteforce detected by fail2ban	2020-07-17 17:11:24
195.154.42.43	attackbotsspam	Jul 17 09:23:53 vserver sshd\[3265\]: Invalid user tempo from 195.154.42.43Jul 17 09:23:54 vserver sshd\[3265\]: Failed password for invalid user tempo from 195.154.42.43 port 55024 ssh2Jul 17 09:28:32 vserver sshd\[3638\]: Invalid user akhavan from 195.154.42.43Jul 17 09:28:35 vserver sshd\[3638\]: Failed password for invalid user akhavan from 195.154.42.43 port 48438 ssh2 ...	2020-07-17 17:21:15
94.54.91.32	attackbots	Jul 17 08:27:54 vps sshd[959601]: Failed password for invalid user centos from 94.54.91.32 port 44924 ssh2 Jul 17 08:33:02 vps sshd[983746]: Invalid user julien from 94.54.91.32 port 35940 Jul 17 08:33:02 vps sshd[983746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.54.91.32 Jul 17 08:33:05 vps sshd[983746]: Failed password for invalid user julien from 94.54.91.32 port 35940 ssh2 Jul 17 08:38:16 vps sshd[1007870]: Invalid user kongtao from 94.54.91.32 port 55192 ...	2020-07-17 16:57:29
82.135.36.6	attackspam	Jul 17 10:19:15 nextcloud sshd\[18287\]: Invalid user ftpuser from 82.135.36.6 Jul 17 10:19:15 nextcloud sshd\[18287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.135.36.6 Jul 17 10:19:17 nextcloud sshd\[18287\]: Failed password for invalid user ftpuser from 82.135.36.6 port 41078 ssh2	2020-07-17 17:10:13
89.248.162.214	attack	firewall-block, port(s): 21/tcp, 23/tcp, 33/tcp, 58/tcp, 116/tcp, 161/tcp, 222/tcp, 246/tcp, 260/tcp, 297/tcp, 302/tcp, 307/tcp, 332/tcp, 341/tcp, 359/tcp, 368/tcp, 436/tcp, 449/tcp, 451/tcp, 536/tcp, 537/tcp, 569/tcp, 595/tcp, 617/tcp, 622/tcp, 633/tcp, 636/tcp, 681/tcp, 736/tcp, 739/tcp, 741/tcp, 780/tcp, 815/tcp, 910/tcp, 912/tcp, 913/tcp, 916/tcp, 930/tcp, 959/tcp, 966/tcp, 981/tcp	2020-07-17 17:09:04
104.198.16.231	attack	Invalid user ruby from 104.198.16.231 port 40572	2020-07-17 17:00:34
180.76.102.226	attackspam	2020-07-17T04:23:36.285787abusebot-5.cloudsearch.cf sshd[16281]: Invalid user luciana from 180.76.102.226 port 36518 2020-07-17T04:23:36.291370abusebot-5.cloudsearch.cf sshd[16281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.102.226 2020-07-17T04:23:36.285787abusebot-5.cloudsearch.cf sshd[16281]: Invalid user luciana from 180.76.102.226 port 36518 2020-07-17T04:23:38.469523abusebot-5.cloudsearch.cf sshd[16281]: Failed password for invalid user luciana from 180.76.102.226 port 36518 ssh2 2020-07-17T04:27:40.006989abusebot-5.cloudsearch.cf sshd[16379]: Invalid user palash from 180.76.102.226 port 51560 2020-07-17T04:27:40.012280abusebot-5.cloudsearch.cf sshd[16379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.102.226 2020-07-17T04:27:40.006989abusebot-5.cloudsearch.cf sshd[16379]: Invalid user palash from 180.76.102.226 port 51560 2020-07-17T04:27:41.688424abusebot-5.cloudsearch.cf sshd ...	2020-07-17 17:40:20

最近上报的IP列表

79.182.66.202	190.226.3.202	170.249.162.148	203.43.40.173
108.149.5.223	194.123.190.148	4.7.241.115	201.193.14.157
60.143.32.12	79.229.175.100	91.23.25.235	203.181.215.250
207.55.95.49	207.134.111.158	72.189.188.24	129.74.111.223
178.255.96.70	113.83.150.125	82.216.211.65	180.82.91.95