91.237.148.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Pskovline Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[portscan] Port scan	2019-08-28 06:36:11
attackspam	[portscan] Port scan	2019-07-03 07:11:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.237.148.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65222
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.237.148.34.			IN	A

;; AUTHORITY SECTION:
.			3334	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 07:11:24 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 34.148.237.91.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 34.148.237.91.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.207.144.205	attack	k+ssh-bruteforce	2020-09-14 04:44:40
212.145.192.205	attackbotsspam	Sep 13 22:51:16 fhem-rasp sshd[16861]: Failed password for root from 212.145.192.205 port 47216 ssh2 Sep 13 22:51:16 fhem-rasp sshd[16861]: Disconnected from authenticating user root 212.145.192.205 port 47216 [preauth] ...	2020-09-14 04:55:38
60.212.191.66	attackspambots	Sep 13 20:37:41 localhost sshd[127551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.212.191.66 user=root Sep 13 20:37:43 localhost sshd[127551]: Failed password for root from 60.212.191.66 port 34219 ssh2 Sep 13 20:41:51 localhost sshd[127903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.212.191.66 user=root Sep 13 20:41:53 localhost sshd[127903]: Failed password for root from 60.212.191.66 port 37136 ssh2 Sep 13 20:46:08 localhost sshd[128209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.212.191.66 user=root Sep 13 20:46:10 localhost sshd[128209]: Failed password for root from 60.212.191.66 port 2449 ssh2 ...	2020-09-14 04:54:38
79.0.147.19	attackspam	Telnet Server BruteForce Attack	2020-09-14 04:58:37
50.126.109.226	attack	SMB Server BruteForce Attack	2020-09-14 04:46:58
212.70.149.4	attack	Sep 13 22:59:15 relay postfix/smtpd\[18085\]: warning: unknown\[212.70.149.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 23:02:19 relay postfix/smtpd\[18086\]: warning: unknown\[212.70.149.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 23:05:24 relay postfix/smtpd\[18086\]: warning: unknown\[212.70.149.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 23:08:27 relay postfix/smtpd\[20669\]: warning: unknown\[212.70.149.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 13 23:11:31 relay postfix/smtpd\[21179\]: warning: unknown\[212.70.149.4\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-14 05:20:36
74.120.14.30	attackbots	TCP (SYN) 74.120.14.30:14247 -> port 5432, len 44	2020-09-14 04:59:07
94.191.113.77	attackspambots	Sep 13 13:22:31 NPSTNNYC01T sshd[9846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.113.77 Sep 13 13:22:32 NPSTNNYC01T sshd[9846]: Failed password for invalid user deployer from 94.191.113.77 port 44044 ssh2 Sep 13 13:24:13 NPSTNNYC01T sshd[10045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.113.77 ...	2020-09-14 05:16:16
168.63.212.45	attackspambots	Detected by ModSecurity. Host header is an IP address, Request URI: //ip-redirect/	2020-09-14 05:11:30
198.251.89.99	attackspam	Automatic report - Banned IP Access	2020-09-14 05:15:21
86.61.66.59	attackspam	Sep 9 05:38:19 Ubuntu-1404-trusty-64-minimal sshd\[6045\]: Invalid user jira from 86.61.66.59 Sep 9 05:38:19 Ubuntu-1404-trusty-64-minimal sshd\[6045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.61.66.59 Sep 9 05:38:21 Ubuntu-1404-trusty-64-minimal sshd\[6045\]: Failed password for invalid user jira from 86.61.66.59 port 36627 ssh2 Sep 9 05:44:41 Ubuntu-1404-trusty-64-minimal sshd\[8731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.61.66.59 user=root Sep 9 05:44:43 Ubuntu-1404-trusty-64-minimal sshd\[8731\]: Failed password for root from 86.61.66.59 port 50846 ssh2	2020-09-14 04:46:10
81.147.185.11	attack	Automatic report - Banned IP Access	2020-09-14 04:52:47
193.239.147.224	attack	Sep 13 22:49:34 h2427292 sshd\[20063\]: Invalid user tomcat from 193.239.147.224 Sep 13 22:49:34 h2427292 sshd\[20063\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.239.147.224 Sep 13 22:49:36 h2427292 sshd\[20063\]: Failed password for invalid user tomcat from 193.239.147.224 port 60562 ssh2 ...	2020-09-14 05:05:46
117.30.209.213	attackbotsspam	2020-09-13 15:58:07.907206-0500 localhost sshd[99941]: Failed password for invalid user pi from 117.30.209.213 port 40494 ssh2	2020-09-14 05:07:05
119.40.33.22	attack	Sep 13 20:25:36 vps647732 sshd[21531]: Failed password for root from 119.40.33.22 port 58362 ssh2 ...	2020-09-14 05:14:13

Recently Reported IPs

172.104.161.208	84.32.75.211	112.236.167.235	103.41.18.249
88.99.112.212	104.216.171.35	88.98.36.29	152.243.121.28
103.38.194.139	180.156.14.61	37.49.225.137	92.222.66.27
177.106.3.4	14.169.232.42	129.204.201.32	195.209.48.253
130.86.43.211	122.171.94.231	173.248.225.20	113.74.52.159