91.191.250.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): LLC Komtehcentr

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-04-26 18:02:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.191.250.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6009
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.191.250.142.			IN	A

;; AUTHORITY SECTION:
.			334	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042600 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 26 18:01:58 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

142.250.191.91.in-addr.arpa domain name pointer 91.191.250.142-FTTB.planeta.tc.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.250.191.91.in-addr.arpa	name = 91.191.250.142-FTTB.planeta.tc.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
91.250.242.12	attackspam	port scan and connect, tcp 22 (ssh)	2020-09-16 15:39:54
121.46.26.126	attackbotsspam	2020-09-16T07:31:12.513234ionos.janbro.de sshd[105395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.26.126 user=root 2020-09-16T07:31:14.414756ionos.janbro.de sshd[105395]: Failed password for root from 121.46.26.126 port 35884 ssh2 2020-09-16T07:35:20.202357ionos.janbro.de sshd[105412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.26.126 user=root 2020-09-16T07:35:22.475605ionos.janbro.de sshd[105412]: Failed password for root from 121.46.26.126 port 55532 ssh2 2020-09-16T07:39:33.181415ionos.janbro.de sshd[105420]: Invalid user guest from 121.46.26.126 port 16774 2020-09-16T07:39:33.309581ionos.janbro.de sshd[105420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.26.126 2020-09-16T07:39:33.181415ionos.janbro.de sshd[105420]: Invalid user guest from 121.46.26.126 port 16774 2020-09-16T07:39:34.981666ionos.janbro.de sshd[105420]: Failed ...	2020-09-16 15:50:59
186.206.129.160	attackspam	Sep 16 09:23:22 vps639187 sshd\[18496\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.129.160 user=root Sep 16 09:23:24 vps639187 sshd\[18496\]: Failed password for root from 186.206.129.160 port 37577 ssh2 Sep 16 09:26:41 vps639187 sshd\[18573\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.129.160 user=root ...	2020-09-16 15:42:09
152.136.143.44	attack	2020-09-15T23:56:03.390803linuxbox-skyline sshd[86849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.143.44 user=root 2020-09-15T23:56:05.538849linuxbox-skyline sshd[86849]: Failed password for root from 152.136.143.44 port 46648 ssh2 ...	2020-09-16 15:57:21
193.112.73.157	attack	Sep 16 07:55:28 vlre-nyc-1 sshd\[8715\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.73.157 user=root Sep 16 07:55:30 vlre-nyc-1 sshd\[8715\]: Failed password for root from 193.112.73.157 port 36184 ssh2 Sep 16 07:59:03 vlre-nyc-1 sshd\[8758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.73.157 user=root Sep 16 07:59:06 vlre-nyc-1 sshd\[8758\]: Failed password for root from 193.112.73.157 port 55950 ssh2 Sep 16 08:02:36 vlre-nyc-1 sshd\[8811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.73.157 user=root ...	2020-09-16 16:10:17
106.54.140.250	attackbots	Sep 16 05:41:58 host sshd[13191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.140.250 user=root Sep 16 05:42:00 host sshd[13191]: Failed password for root from 106.54.140.250 port 51426 ssh2 ...	2020-09-16 16:04:39
201.22.95.49	attack	Sep 16 07:40:54 *** sshd[2597]: User root from 201.22.95.49 not allowed because not listed in AllowUsers	2020-09-16 16:18:09
163.172.29.120	attackspam	Sep 16 07:22:47 h2829583 sshd[29083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.29.120	2020-09-16 15:45:05
181.114.195.121	attackspam	$f2bV_matches	2020-09-16 16:09:22
187.136.77.116	attack	Icarus honeypot on github	2020-09-16 16:16:00
134.122.26.76	attackspambots	Sep 16 03:30:32 marvibiene sshd[4595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.26.76 user=root Sep 16 03:30:33 marvibiene sshd[4595]: Failed password for root from 134.122.26.76 port 52082 ssh2 Sep 16 03:40:00 marvibiene sshd[4851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.26.76 user=root Sep 16 03:40:02 marvibiene sshd[4851]: Failed password for root from 134.122.26.76 port 44412 ssh2	2020-09-16 15:50:32
182.61.44.177	attackbots	SSH brute-force attempt	2020-09-16 15:42:58
142.93.52.3	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-16 15:47:17
58.250.89.46	attack	SSH Brute-Force reported by Fail2Ban	2020-09-16 16:16:58
180.158.14.140	attackbots	Sep 16 03:16:37 www6-3 sshd[31494]: Invalid user www from 180.158.14.140 port 2126 Sep 16 03:16:37 www6-3 sshd[31494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.158.14.140 Sep 16 03:16:39 www6-3 sshd[31494]: Failed password for invalid user www from 180.158.14.140 port 2126 ssh2 Sep 16 03:16:39 www6-3 sshd[31494]: Received disconnect from 180.158.14.140 port 2126:11: Bye Bye [preauth] Sep 16 03:16:39 www6-3 sshd[31494]: Disconnected from 180.158.14.140 port 2126 [preauth] Sep 16 03:19:41 www6-3 sshd[31766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.158.14.140 user=r.r Sep 16 03:19:43 www6-3 sshd[31766]: Failed password for r.r from 180.158.14.140 port 2127 ssh2 Sep 16 03:19:43 www6-3 sshd[31766]: Received disconnect from 180.158.14.140 port 2127:11: Bye Bye [preauth] Sep 16 03:19:43 www6-3 sshd[31766]: Disconnected from 180.158.14.140 port 2127 [preauth] ........ ---------------------------------------------	2020-09-16 15:49:41

最近上报的IP列表

45.35.221.55	57.240.162.185	164.163.111.143	131.210.200.123
46.88.138.177	156.130.17.191	45.56.137.137	94.103.84.76
1.83.125.12	85.112.113.222	248.250.254.199	69.234.64.222
85.105.147.134	187.162.242.235	144.217.199.136	64.229.11.191
60.12.184.226	122.142.181.13	92.23.249.107	118.25.25.106