Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Zhuhai Dou Men Qu de Chang Fang Chan Co Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attackbots
Nov  6 23:15:33 SilenceServices sshd[11591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134
Nov  6 23:15:35 SilenceServices sshd[11591]: Failed password for invalid user 89532E 11 from 112.91.149.134 port 36626 ssh2
Nov  6 23:19:39 SilenceServices sshd[15246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134
2019-11-07 06:32:00
attackbotsspam
Nov  5 08:30:13 MK-Soft-Root2 sshd[9236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 
Nov  5 08:30:15 MK-Soft-Root2 sshd[9236]: Failed password for invalid user magnamawah$27mn from 112.91.149.134 port 46236 ssh2
...
2019-11-05 15:49:09
attackbotsspam
Nov  2 18:30:03 server sshd\[28003\]: Invalid user ahah from 112.91.149.134 port 46262
Nov  2 18:30:03 server sshd\[28003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134
Nov  2 18:30:05 server sshd\[28003\]: Failed password for invalid user ahah from 112.91.149.134 port 46262 ssh2
Nov  2 18:34:18 server sshd\[7520\]: Invalid user avenir from 112.91.149.134 port 46114
Nov  2 18:34:18 server sshd\[7520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134
2019-11-03 01:13:41
attack
Invalid user gk from 112.91.149.134 port 55924
2019-10-30 07:17:37
attackspambots
sshd jail - ssh hack attempt
2019-10-29 17:25:46
attackspambots
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134  user=root
Failed password for root from 112.91.149.134 port 50220 ssh2
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134  user=root
Failed password for root from 112.91.149.134 port 54966 ssh2
Invalid user admin from 112.91.149.134 port 59722
2019-10-25 06:05:34
attack
Oct 10 14:58:47 sso sshd[32214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134
Oct 10 14:58:49 sso sshd[32214]: Failed password for invalid user Haslo!23 from 112.91.149.134 port 60074 ssh2
...
2019-10-10 21:47:03
attack
2019-08-23 06:51:57,914 fail2ban.actions        [878]: NOTICE  [sshd] Ban 112.91.149.134
2019-08-23 10:06:05,036 fail2ban.actions        [878]: NOTICE  [sshd] Ban 112.91.149.134
2019-08-23 13:15:02,028 fail2ban.actions        [878]: NOTICE  [sshd] Ban 112.91.149.134
...
2019-09-13 16:23:28
attackspambots
Aug 20 22:14:39 localhost sshd\[14970\]: Invalid user webrun from 112.91.149.134 port 45888
Aug 20 22:14:39 localhost sshd\[14970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134
Aug 20 22:14:41 localhost sshd\[14970\]: Failed password for invalid user webrun from 112.91.149.134 port 45888 ssh2
2019-08-21 04:26:16
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.91.149.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61719
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.91.149.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 10:30:28 CST 2019
;; MSG SIZE  rcvd: 118
Host info
Host 134.149.91.112.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 134.149.91.112.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
167.99.220.199 attackbotsspam
Mar 15 18:17:48 yesfletchmain sshd\[9328\]: User root from 167.99.220.199 not allowed because not listed in AllowUsers
Mar 15 18:17:48 yesfletchmain sshd\[9328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.220.199  user=root
Mar 15 18:17:50 yesfletchmain sshd\[9328\]: Failed password for invalid user root from 167.99.220.199 port 60504 ssh2
Mar 15 18:22:35 yesfletchmain sshd\[9653\]: User root from 167.99.220.199 not allowed because not listed in AllowUsers
Mar 15 18:22:35 yesfletchmain sshd\[9653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.220.199  user=root
...
2019-10-14 06:06:17
211.195.12.33 attackspam
Oct 13 17:28:36 xtremcommunity sshd\[489570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.195.12.33  user=root
Oct 13 17:28:38 xtremcommunity sshd\[489570\]: Failed password for root from 211.195.12.33 port 52850 ssh2
Oct 13 17:32:55 xtremcommunity sshd\[489629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.195.12.33  user=root
Oct 13 17:32:57 xtremcommunity sshd\[489629\]: Failed password for root from 211.195.12.33 port 44391 ssh2
Oct 13 17:37:21 xtremcommunity sshd\[489741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.195.12.33  user=root
...
2019-10-14 05:58:58
148.70.26.85 attack
Oct 14 00:50:15 sauna sshd[171462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.26.85
Oct 14 00:50:16 sauna sshd[171462]: Failed password for invalid user Russia@1 from 148.70.26.85 port 55044 ssh2
...
2019-10-14 06:02:53
222.186.31.136 attackspam
Oct 13 23:40:44 vpn01 sshd[27442]: Failed password for root from 222.186.31.136 port 43149 ssh2
...
2019-10-14 06:00:57
142.93.33.62 attackspam
2019-10-13T22:00:45.901895shield sshd\[30414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62  user=root
2019-10-13T22:00:47.954555shield sshd\[30414\]: Failed password for root from 142.93.33.62 port 58256 ssh2
2019-10-13T22:04:22.536469shield sshd\[31341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62  user=root
2019-10-13T22:04:24.044595shield sshd\[31341\]: Failed password for root from 142.93.33.62 port 41006 ssh2
2019-10-13T22:07:58.775722shield sshd\[942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62  user=root
2019-10-14 06:14:10
104.244.76.201 attackspambots
" "
2019-10-14 06:36:21
220.152.112.114 attackspam
postfix (unknown user, SPF fail or relay access denied)
2019-10-14 06:24:38
222.186.175.161 attack
Oct 13 22:01:36 sshgateway sshd\[19597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161  user=root
Oct 13 22:01:38 sshgateway sshd\[19597\]: Failed password for root from 222.186.175.161 port 48654 ssh2
Oct 13 22:01:56 sshgateway sshd\[19597\]: error: maximum authentication attempts exceeded for root from 222.186.175.161 port 48654 ssh2 \[preauth\]
2019-10-14 06:25:31
62.234.67.109 attack
Oct 13 20:13:54 work-partkepr sshd\[6945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.67.109  user=root
Oct 13 20:13:56 work-partkepr sshd\[6945\]: Failed password for root from 62.234.67.109 port 55170 ssh2
...
2019-10-14 06:24:24
106.13.10.207 attackspambots
Oct 13 17:52:50 ny01 sshd[12731]: Failed password for root from 106.13.10.207 port 41082 ssh2
Oct 13 17:57:41 ny01 sshd[13565]: Failed password for root from 106.13.10.207 port 50926 ssh2
2019-10-14 06:17:07
81.22.45.116 attackspam
10/13/2019-23:59:46.915440 81.22.45.116 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-10-14 06:08:01
115.159.185.71 attackbotsspam
Oct 13 23:27:48 meumeu sshd[31297]: Failed password for root from 115.159.185.71 port 35142 ssh2
Oct 13 23:32:25 meumeu sshd[32146]: Failed password for root from 115.159.185.71 port 45736 ssh2
...
2019-10-14 05:57:35
157.230.27.47 attack
Oct 13 12:03:32 sachi sshd\[18618\]: Invalid user qwerty12345 from 157.230.27.47
Oct 13 12:03:32 sachi sshd\[18618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47
Oct 13 12:03:34 sachi sshd\[18618\]: Failed password for invalid user qwerty12345 from 157.230.27.47 port 37614 ssh2
Oct 13 12:07:46 sachi sshd\[18966\]: Invalid user Bizz@2017 from 157.230.27.47
Oct 13 12:07:46 sachi sshd\[18966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47
2019-10-14 06:13:03
51.255.197.164 attackbotsspam
Oct 14 00:17:34 SilenceServices sshd[18325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164
Oct 14 00:17:36 SilenceServices sshd[18325]: Failed password for invalid user P@$$w0rt12345 from 51.255.197.164 port 34748 ssh2
Oct 14 00:21:49 SilenceServices sshd[19459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164
2019-10-14 06:34:08
192.163.197.138 attackspambots
2019-10-13T21:15:28.214550hub.schaetter.us sshd\[19438\]: Invalid user Eclipse2017 from 192.163.197.138 port 34266
2019-10-13T21:15:28.227734hub.schaetter.us sshd\[19438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.197.138
2019-10-13T21:15:30.281219hub.schaetter.us sshd\[19438\]: Failed password for invalid user Eclipse2017 from 192.163.197.138 port 34266 ssh2
2019-10-13T21:18:58.198324hub.schaetter.us sshd\[19480\]: Invalid user P@ssw0rd01 from 192.163.197.138 port 44194
2019-10-13T21:18:58.209311hub.schaetter.us sshd\[19480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.197.138
...
2019-10-14 05:51:03

Recently Reported IPs

93.174.93.164 209.85.221.50 112.230.212.93 198.46.255.34
49.146.39.250 134.73.161.190 229.13.105.42 210.217.24.246
135.159.128.126 216.71.252.62 118.24.38.53 37.156.71.104
182.117.177.182 45.95.32.220 233.113.137.221 175.140.138.193
84.183.111.120 27.50.161.27 91.230.31.54 103.133.104.133