91.2.165.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Deutsche Telekom AG

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2020-08-05 16:29:22

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.2.165.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2934
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.2.165.42.			IN	A

;; AUTHORITY SECTION:
.			262	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080500 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 05 16:29:14 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

42.165.2.91.in-addr.arpa domain name pointer p5b02a52a.dip0.t-ipconnect.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.165.2.91.in-addr.arpa	name = p5b02a52a.dip0.t-ipconnect.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
62.234.156.66	attack	Dec 10 20:21:16 loxhost sshd\[11527\]: Invalid user alcayde from 62.234.156.66 port 56408 Dec 10 20:21:16 loxhost sshd\[11527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.66 Dec 10 20:21:18 loxhost sshd\[11527\]: Failed password for invalid user alcayde from 62.234.156.66 port 56408 ssh2 Dec 10 20:25:36 loxhost sshd\[11658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.66 user=root Dec 10 20:25:38 loxhost sshd\[11658\]: Failed password for root from 62.234.156.66 port 46098 ssh2 ...	2019-12-11 07:29:19
110.136.220.74	attack	Unauthorized connection attempt from IP address 110.136.220.74 on Port 445(SMB)	2019-12-11 07:23:39
106.54.240.178	attack	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 1000 proto: TCP cat: Attempted Information Leak	2019-12-11 07:05:06
185.156.73.7	attackspam	firewall-block, port(s): 51114/tcp	2019-12-11 07:03:16
80.211.164.5	attackspam	2019-12-10T23:37:26.352641vps751288.ovh.net sshd\[16985\]: Invalid user corace from 80.211.164.5 port 53016 2019-12-10T23:37:26.363215vps751288.ovh.net sshd\[16985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.164.5 2019-12-10T23:37:28.387705vps751288.ovh.net sshd\[16985\]: Failed password for invalid user corace from 80.211.164.5 port 53016 ssh2 2019-12-10T23:42:35.142394vps751288.ovh.net sshd\[17035\]: Invalid user whobraun from 80.211.164.5 port 33784 2019-12-10T23:42:35.152234vps751288.ovh.net sshd\[17035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.164.5	2019-12-11 07:33:07
121.164.122.134	attackbotsspam	Dec 9 01:52:45 lamijardin sshd[19832]: Invalid user comrades from 121.164.122.134 Dec 9 01:52:45 lamijardin sshd[19832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.122.134 Dec 9 01:52:48 lamijardin sshd[19832]: Failed password for invalid user comrades from 121.164.122.134 port 48554 ssh2 Dec 9 01:52:48 lamijardin sshd[19832]: Received disconnect from 121.164.122.134 port 48554:11: Bye Bye [preauth] Dec 9 01:52:48 lamijardin sshd[19832]: Disconnected from 121.164.122.134 port 48554 [preauth] Dec 9 02:01:24 lamijardin sshd[19850]: Invalid user denis from 121.164.122.134 Dec 9 02:01:24 lamijardin sshd[19850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.122.134 Dec 9 02:01:26 lamijardin sshd[19850]: Failed password for invalid user denis from 121.164.122.134 port 60238 ssh2 Dec 9 02:01:26 lamijardin sshd[19850]: Received disconnect from 121.164.122.134 port 602........ -------------------------------	2019-12-11 07:30:46
182.72.104.106	attack	Dec 10 11:31:35 sachi sshd\[26920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.104.106 user=root Dec 10 11:31:38 sachi sshd\[26920\]: Failed password for root from 182.72.104.106 port 39918 ssh2 Dec 10 11:38:49 sachi sshd\[27620\]: Invalid user operator from 182.72.104.106 Dec 10 11:38:49 sachi sshd\[27620\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.72.104.106 Dec 10 11:38:51 sachi sshd\[27620\]: Failed password for invalid user operator from 182.72.104.106 port 48618 ssh2	2019-12-11 07:27:37
82.102.173.83	attackspam	Port scan: Attack repeated for 24 hours	2019-12-11 07:07:22
181.40.122.2	attackbots	Dec 10 23:59:13 OPSO sshd\[6550\]: Invalid user guest from 181.40.122.2 port 1423 Dec 10 23:59:13 OPSO sshd\[6550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.122.2 Dec 10 23:59:15 OPSO sshd\[6550\]: Failed password for invalid user guest from 181.40.122.2 port 1423 ssh2 Dec 11 00:06:08 OPSO sshd\[8517\]: Invalid user guest from 181.40.122.2 port 54961 Dec 11 00:06:08 OPSO sshd\[8517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.40.122.2	2019-12-11 07:20:54
51.15.23.27	attack	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 1000 proto: TCP cat: Attempted Information Leak	2019-12-11 07:10:19
58.119.3.77	attack	Dec 10 19:50:54 localhost sshd\[26639\]: Invalid user iron from 58.119.3.77 Dec 10 19:50:54 localhost sshd\[26639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.119.3.77 Dec 10 19:50:56 localhost sshd\[26639\]: Failed password for invalid user iron from 58.119.3.77 port 44236 ssh2 Dec 10 19:57:03 localhost sshd\[26877\]: Invalid user jamaica from 58.119.3.77 Dec 10 19:57:03 localhost sshd\[26877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.119.3.77 ...	2019-12-11 07:34:13
190.131.212.24	attackspam	Unauthorized connection attempt detected from IP address 190.131.212.24 to port 445	2019-12-11 07:20:38
176.31.100.19	attack	2019-12-10T23:06:27.404319stark.klein-stark.info sshd\[1951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388913.ip-176-31-100.eu user=mysql 2019-12-10T23:06:29.897033stark.klein-stark.info sshd\[1951\]: Failed password for mysql from 176.31.100.19 port 33074 ssh2 2019-12-10T23:15:40.867430stark.klein-stark.info sshd\[2640\]: Invalid user hingtgen from 176.31.100.19 port 37908 2019-12-10T23:15:40.874659stark.klein-stark.info sshd\[2640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns388913.ip-176-31-100.eu ...	2019-12-11 07:28:48
170.238.123.148	attackspambots	Unauthorized connection attempt from IP address 170.238.123.148 on Port 445(SMB)	2019-12-11 07:33:38
219.93.6.3	attackbots	Dec 10 22:32:39 marvibiene sshd[17128]: Invalid user test from 219.93.6.3 port 51660 Dec 10 22:32:39 marvibiene sshd[17128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.93.6.3 Dec 10 22:32:39 marvibiene sshd[17128]: Invalid user test from 219.93.6.3 port 51660 Dec 10 22:32:40 marvibiene sshd[17128]: Failed password for invalid user test from 219.93.6.3 port 51660 ssh2 ...	2019-12-11 07:36:04

最近上报的IP列表

43.42.178.234	91.238.163.243	251.35.78.161	199.73.131.110
204.24.136.71	224.37.75.237	210.92.20.253	47.170.92.132
97.17.21.65	146.54.21.39	50.196.93.94	209.9.131.175
223.209.173.134	248.186.0.226	65.27.248.57	125.77.35.242
80.0.223.72	254.248.179.26	29.38.98.180	164.132.255.116