80.91.163.139 - IPInfo

Basic Info

City: Kyiv

Region: Kyiv City

Country: Ukraine

Internet Service Provider: Vikonda Ltd Krivoj Rog Olhovskaja 2 STR

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-19 05:20:35

Comments on same subnet:

IP	Type	Details	Datetime
80.91.163.138	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-29 03:16:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.91.163.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25253
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.91.163.139.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031801 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 05:20:30 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 139.163.91.80.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.163.91.80.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.116.215.190	attackbots	Sep 3 18:19:44 cumulus sshd[12127]: Invalid user kdk from 88.116.215.190 port 49297 Sep 3 18:19:44 cumulus sshd[12127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.116.215.190 Sep 3 18:19:46 cumulus sshd[12127]: Failed password for invalid user kdk from 88.116.215.190 port 49297 ssh2 Sep 3 18:19:46 cumulus sshd[12127]: Received disconnect from 88.116.215.190 port 49297:11: Bye Bye [preauth] Sep 3 18:19:46 cumulus sshd[12127]: Disconnected from 88.116.215.190 port 49297 [preauth] Sep 3 18:33:01 cumulus sshd[12823]: Invalid user recepcao from 88.116.215.190 port 58442 Sep 3 18:33:01 cumulus sshd[12823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.116.215.190 Sep 3 18:33:03 cumulus sshd[12823]: Failed password for invalid user recepcao from 88.116.215.190 port 58442 ssh2 Sep 3 18:33:03 cumulus sshd[12823]: Received disconnect from 88.116.215.190 port 58442:11: Bye Bye [pr........ -------------------------------	2019-09-04 17:14:06
206.189.149.170	attack	Automatic report - Banned IP Access	2019-09-04 16:27:53
91.243.93.15	attackspambots	B: Magento admin pass test (abusive)	2019-09-04 17:01:28
159.65.140.148	attackbotsspam	(sshd) Failed SSH login from 159.65.140.148 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 00:04:42 testbed sshd[12706]: Invalid user kevin from 159.65.140.148 port 57190 Sep 4 00:04:44 testbed sshd[12706]: Failed password for invalid user kevin from 159.65.140.148 port 57190 ssh2 Sep 4 00:26:00 testbed sshd[13479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.140.148 user=root Sep 4 00:26:03 testbed sshd[13479]: Failed password for root from 159.65.140.148 port 54916 ssh2 Sep 4 00:30:28 testbed sshd[13663]: Invalid user golden from 159.65.140.148 port 42472	2019-09-04 17:12:35
188.166.239.106	attack	Sep 4 10:23:05 markkoudstaal sshd[4414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.239.106 Sep 4 10:23:07 markkoudstaal sshd[4414]: Failed password for invalid user miusuario from 188.166.239.106 port 46638 ssh2 Sep 4 10:27:59 markkoudstaal sshd[4964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.239.106	2019-09-04 16:46:03
134.249.112.49	attackbotsspam	445/tcp 445/tcp [2019-08-27/09-04]2pkt	2019-09-04 16:43:04
154.8.167.48	attackbots	Port Scan detected from 154.8.167.48 (CN/China/-). 4 hits in the last 110 seconds	2019-09-04 16:44:29
123.31.43.162	attackspambots	TCP src-port=45200 dst-port=25 dnsbl-sorbs abuseat-org barracuda (528)	2019-09-04 17:08:33
178.165.72.177	attack	Reported by AbuseIPDB proxy server.	2019-09-04 17:11:31
45.55.95.57	attack	Sep 3 22:24:01 php1 sshd\[31266\]: Invalid user fnet from 45.55.95.57 Sep 3 22:24:01 php1 sshd\[31266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.95.57 Sep 3 22:24:03 php1 sshd\[31266\]: Failed password for invalid user fnet from 45.55.95.57 port 43558 ssh2 Sep 3 22:27:56 php1 sshd\[31611\]: Invalid user testuser from 45.55.95.57 Sep 3 22:27:56 php1 sshd\[31611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.95.57	2019-09-04 16:37:58
218.98.26.166	attackspam	Sep 4 10:11:04 MainVPS sshd[24664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.166 user=root Sep 4 10:11:06 MainVPS sshd[24664]: Failed password for root from 218.98.26.166 port 51905 ssh2 Sep 4 10:11:14 MainVPS sshd[24678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.166 user=root Sep 4 10:11:16 MainVPS sshd[24678]: Failed password for root from 218.98.26.166 port 24686 ssh2 Sep 4 10:11:25 MainVPS sshd[24699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.26.166 user=root Sep 4 10:11:27 MainVPS sshd[24699]: Failed password for root from 218.98.26.166 port 49970 ssh2 ...	2019-09-04 16:55:18
159.89.38.26	attackbotsspam	Sep 4 05:46:49 localhost sshd\[14311\]: Invalid user hk from 159.89.38.26 port 43489 Sep 4 05:46:49 localhost sshd\[14311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.38.26 Sep 4 05:46:51 localhost sshd\[14311\]: Failed password for invalid user hk from 159.89.38.26 port 43489 ssh2	2019-09-04 16:57:22
112.27.91.233	attackspam	port scan and connect, tcp 23 (telnet)	2019-09-04 17:03:33
74.141.132.233	attackbotsspam	Sep 4 05:16:44 minden010 sshd[18016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.141.132.233 Sep 4 05:16:46 minden010 sshd[18016]: Failed password for invalid user tomcat from 74.141.132.233 port 42866 ssh2 Sep 4 05:24:26 minden010 sshd[20629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.141.132.233 ...	2019-09-04 16:31:05
165.22.99.108	attackbots	Sep 3 22:37:04 aiointranet sshd\[18602\]: Invalid user pin from 165.22.99.108 Sep 3 22:37:04 aiointranet sshd\[18602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.99.108 Sep 3 22:37:06 aiointranet sshd\[18602\]: Failed password for invalid user pin from 165.22.99.108 port 45536 ssh2 Sep 3 22:45:16 aiointranet sshd\[19414\]: Invalid user work from 165.22.99.108 Sep 3 22:45:16 aiointranet sshd\[19414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.99.108	2019-09-04 17:07:16

Recently Reported IPs

221.158.65.244	73.66.67.110	59.125.84.213	113.119.212.117
166.130.140.80	32.93.142.239	87.152.176.13	212.158.141.219
91.92.77.174	121.189.135.167	27.193.154.165	124.106.188.167
73.220.187.157	34.194.42.213	123.148.246.144	175.9.232.246
111.161.74.113	77.123.31.165	220.109.115.7	196.234.112.197