91.231.40.134 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ukraine

运营商(isp): FOP Budko Dmitro Pavlovich

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sun, 21 Jul 2019 18:28:49 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 03:51:10

相同子网IP讨论:

IP	类型	评论内容	时间
91.231.40.97	attackbotsspam	Unauthorized connection attempt from IP address 91.231.40.97 on Port 445(SMB)	2020-04-26 23:43:30
91.231.40.44	attack	Email rejected due to spam filtering	2020-03-05 04:32:51
91.231.40.214	attackspam	Automatic report - Port Scan	2019-12-10 05:35:36

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.231.40.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2418
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.231.40.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 03:51:04 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 134.40.231.91.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 134.40.231.91.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
77.85.242.141	attack	SMB Server BruteForce Attack	2019-09-26 08:08:37
190.85.108.186	attackspam	Sep 25 20:51:30 sshgateway sshd\[14853\]: Invalid user joh from 190.85.108.186 Sep 25 20:51:30 sshgateway sshd\[14853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.108.186 Sep 25 20:51:32 sshgateway sshd\[14853\]: Failed password for invalid user joh from 190.85.108.186 port 49674 ssh2	2019-09-26 08:38:10
222.186.52.89	attackspam	Sep 25 20:25:35 debian sshd\[831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.89 user=root Sep 25 20:25:37 debian sshd\[831\]: Failed password for root from 222.186.52.89 port 16350 ssh2 Sep 25 20:25:39 debian sshd\[831\]: Failed password for root from 222.186.52.89 port 16350 ssh2 ...	2019-09-26 08:27:22
85.37.38.195	attack	Sep 26 00:56:13 pornomens sshd\[3212\]: Invalid user tara from 85.37.38.195 port 1167 Sep 26 00:56:13 pornomens sshd\[3212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.37.38.195 Sep 26 00:56:15 pornomens sshd\[3212\]: Failed password for invalid user tara from 85.37.38.195 port 1167 ssh2 ...	2019-09-26 08:16:16
112.217.150.113	attack	Unauthorized SSH login attempts	2019-09-26 08:32:44
62.234.144.135	attack	Sep 25 22:44:01 mail sshd\[22012\]: Failed password for invalid user amanda from 62.234.144.135 port 51452 ssh2 Sep 25 22:47:57 mail sshd\[22412\]: Invalid user steve from 62.234.144.135 port 32970 Sep 25 22:47:57 mail sshd\[22412\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.144.135 Sep 25 22:47:59 mail sshd\[22412\]: Failed password for invalid user steve from 62.234.144.135 port 32970 ssh2 Sep 25 22:51:58 mail sshd\[22716\]: Invalid user sh from 62.234.144.135 port 42712	2019-09-26 08:23:58
222.186.173.238	attack	Sep 26 02:13:39 dcd-gentoo sshd[2802]: User root from 222.186.173.238 not allowed because none of user's groups are listed in AllowGroups Sep 26 02:13:44 dcd-gentoo sshd[2802]: error: PAM: Authentication failure for illegal user root from 222.186.173.238 Sep 26 02:13:39 dcd-gentoo sshd[2802]: User root from 222.186.173.238 not allowed because none of user's groups are listed in AllowGroups Sep 26 02:13:44 dcd-gentoo sshd[2802]: error: PAM: Authentication failure for illegal user root from 222.186.173.238 Sep 26 02:13:39 dcd-gentoo sshd[2802]: User root from 222.186.173.238 not allowed because none of user's groups are listed in AllowGroups Sep 26 02:13:44 dcd-gentoo sshd[2802]: error: PAM: Authentication failure for illegal user root from 222.186.173.238 Sep 26 02:13:44 dcd-gentoo sshd[2802]: Failed keyboard-interactive/pam for invalid user root from 222.186.173.238 port 20420 ssh2 ...	2019-09-26 08:18:58
138.197.140.222	attackbotsspam	Invalid user prestashop from 138.197.140.222 port 45132	2019-09-26 08:30:21
128.199.142.0	attackbotsspam	2019-09-25T20:51:15.408900abusebot-8.cloudsearch.cf sshd\[30496\]: Invalid user tester from 128.199.142.0 port 32816	2019-09-26 08:46:44
156.194.237.30	attackspam	Chat Spam	2019-09-26 08:27:55
185.234.216.76	attackbots	Sep 25 22:25:41 heicom postfix/smtpd\[30995\]: warning: unknown\[185.234.216.76\]: SASL LOGIN authentication failed: authentication failure Sep 25 22:33:55 heicom postfix/smtpd\[28854\]: warning: unknown\[185.234.216.76\]: SASL LOGIN authentication failed: authentication failure Sep 25 22:42:45 heicom postfix/smtpd\[30995\]: warning: unknown\[185.234.216.76\]: SASL LOGIN authentication failed: authentication failure Sep 25 22:50:43 heicom postfix/smtpd\[30995\]: warning: unknown\[185.234.216.76\]: SASL LOGIN authentication failed: authentication failure Sep 25 22:59:38 heicom postfix/smtpd\[30995\]: warning: unknown\[185.234.216.76\]: SASL LOGIN authentication failed: authentication failure ...	2019-09-26 08:42:33
137.59.162.169	attackspambots	Sep 26 00:19:12 XXX sshd[30939]: Invalid user odoo from 137.59.162.169 port 43247	2019-09-26 08:25:46
59.61.206.221	attackspam	Sep 26 00:07:01 ip-172-31-62-245 sshd\[26600\]: Invalid user tricia from 59.61.206.221\ Sep 26 00:07:03 ip-172-31-62-245 sshd\[26600\]: Failed password for invalid user tricia from 59.61.206.221 port 39589 ssh2\ Sep 26 00:11:42 ip-172-31-62-245 sshd\[26700\]: Invalid user odroid from 59.61.206.221\ Sep 26 00:11:44 ip-172-31-62-245 sshd\[26700\]: Failed password for invalid user odroid from 59.61.206.221 port 60035 ssh2\ Sep 26 00:16:27 ip-172-31-62-245 sshd\[26716\]: Invalid user test8 from 59.61.206.221\	2019-09-26 08:42:08
62.234.99.172	attack	Sep 26 02:11:38 s64-1 sshd[1985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.99.172 Sep 26 02:11:40 s64-1 sshd[1985]: Failed password for invalid user weblogic from 62.234.99.172 port 55374 ssh2 Sep 26 02:16:30 s64-1 sshd[2058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.99.172 ...	2019-09-26 08:30:48
85.93.20.26	attackbots	20 attempts against mh-misbehave-ban on tree.magehost.pro	2019-09-26 08:10:42

最近上报的IP列表

18.213.93.102	43.250.80.220	219.123.222.24	196.74.143.178
108.117.151.95	141.57.117.154	185.175.68.85	226.220.22.79
16.137.85.198	191.53.249.50	35.51.51.220	188.25.114.164
141.8.54.218	113.190.134.32	191.53.249.185	191.53.248.98
188.127.27.213	158.140.171.11	95.47.172.54	251.43.205.252