91.66.28.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.66.28.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65305
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.66.28.34.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 15:05:06 CST 2019
;; MSG SIZE  rcvd: 115

Host info

34.28.66.91.in-addr.arpa domain name pointer ip5b421c22.dynamic.kabel-deutschland.de.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
34.28.66.91.in-addr.arpa	name = ip5b421c22.dynamic.kabel-deutschland.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
150.136.241.199	attack	Sep 22 20:54:43 abendstille sshd\[9009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.241.199 user=root Sep 22 20:54:44 abendstille sshd\[9009\]: Failed password for root from 150.136.241.199 port 35516 ssh2 Sep 22 21:01:47 abendstille sshd\[17180\]: Invalid user git from 150.136.241.199 Sep 22 21:01:47 abendstille sshd\[17180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.241.199 Sep 22 21:01:49 abendstille sshd\[17180\]: Failed password for invalid user git from 150.136.241.199 port 44432 ssh2 ...	2020-09-23 13:17:33
190.111.151.194	attackspam	Sep 23 05:18:07 ip-172-31-16-56 sshd\[9218\]: Failed password for ubuntu from 190.111.151.194 port 55407 ssh2\ Sep 23 05:21:44 ip-172-31-16-56 sshd\[9237\]: Invalid user mp from 190.111.151.194\ Sep 23 05:21:47 ip-172-31-16-56 sshd\[9237\]: Failed password for invalid user mp from 190.111.151.194 port 52156 ssh2\ Sep 23 05:25:23 ip-172-31-16-56 sshd\[9275\]: Invalid user applmgr from 190.111.151.194\ Sep 23 05:25:25 ip-172-31-16-56 sshd\[9275\]: Failed password for invalid user applmgr from 190.111.151.194 port 48905 ssh2\	2020-09-23 13:26:54
51.158.145.216	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-23 13:06:05
106.13.190.84	attackspambots	Invalid user anderson from 106.13.190.84 port 51790	2020-09-23 13:23:02
128.201.100.84	attackspambots	$f2bV_matches	2020-09-23 13:18:25
67.207.89.167	attackspam	Lines containing failures of 67.207.89.167 (max 1000) Sep 22 05:29:01 ks3370873 sshd[311828]: Connection closed by 67.207.89.167 port 37148 Sep 22 05:29:01 ks3370873 sshd[311829]: Connection closed by 67.207.89.167 port 37480 Sep 22 05:29:42 ks3370873 sshd[311837]: Unable to negotiate whostnameh 67.207.89.167 port 36666: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 22 05:29:42 ks3370873 sshd[311839]: Unable to negotiate whostnameh 67.207.89.167 port 36806: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=67.207.89.167	2020-09-23 13:25:03
177.155.248.159	attackbots	2020-09-23T02:43:58.109736Z 9a6b663ea366 New connection: 177.155.248.159:55960 (172.17.0.5:2222) [session: 9a6b663ea366] 2020-09-23T02:52:48.658925Z b1fb00e71ca1 New connection: 177.155.248.159:51078 (172.17.0.5:2222) [session: b1fb00e71ca1]	2020-09-23 13:12:23
106.52.137.134	attack	Time: Wed Sep 23 02:33:26 2020 +0000 IP: 106.52.137.134 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 23 02:24:28 3 sshd[13388]: Failed password for root from 106.52.137.134 port 49878 ssh2 Sep 23 02:31:06 3 sshd[27032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.137.134 user=root Sep 23 02:31:08 3 sshd[27032]: Failed password for root from 106.52.137.134 port 44474 ssh2 Sep 23 02:33:19 3 sshd[31710]: Invalid user spotlight from 106.52.137.134 port 52104 Sep 23 02:33:21 3 sshd[31710]: Failed password for invalid user spotlight from 106.52.137.134 port 52104 ssh2	2020-09-23 13:04:24
162.243.128.186	attackbots	TCP (SYN) 162.243.128.186:58669 -> port 515, len 44	2020-09-23 13:39:06
178.128.217.135	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-09-23 13:15:23
51.68.44.13	attackbots	2020-09-22T21:33:51.757879abusebot-2.cloudsearch.cf sshd[28183]: Invalid user kafka from 51.68.44.13 port 51254 2020-09-22T21:33:51.765588abusebot-2.cloudsearch.cf sshd[28183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-68-44.eu 2020-09-22T21:33:51.757879abusebot-2.cloudsearch.cf sshd[28183]: Invalid user kafka from 51.68.44.13 port 51254 2020-09-22T21:33:53.490683abusebot-2.cloudsearch.cf sshd[28183]: Failed password for invalid user kafka from 51.68.44.13 port 51254 ssh2 2020-09-22T21:37:17.620213abusebot-2.cloudsearch.cf sshd[28282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-68-44.eu user=root 2020-09-22T21:37:20.292456abusebot-2.cloudsearch.cf sshd[28282]: Failed password for root from 51.68.44.13 port 49380 ssh2 2020-09-22T21:40:41.426920abusebot-2.cloudsearch.cf sshd[28288]: Invalid user admin from 51.68.44.13 port 47500 ...	2020-09-23 13:02:38
128.199.81.160	attack	$f2bV_matches	2020-09-23 13:18:43
181.13.51.177	attackbots	Sep 23 00:29:47 r.ca sshd[21307]: Failed password for invalid user ubuntu from 181.13.51.177 port 46970 ssh2	2020-09-23 13:28:00
18.179.1.25	attackspam	Time: Wed Sep 23 04:28:33 2020 +0000 IP: 18.179.1.25 (JP/Japan/ec2-18-179-1-25.ap-northeast-1.compute.amazonaws.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 23 04:10:01 3 sshd[14378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.179.1.25 user=root Sep 23 04:10:03 3 sshd[14378]: Failed password for root from 18.179.1.25 port 46234 ssh2 Sep 23 04:21:30 3 sshd[4135]: Invalid user charles from 18.179.1.25 port 36286 Sep 23 04:21:32 3 sshd[4135]: Failed password for invalid user charles from 18.179.1.25 port 36286 ssh2 Sep 23 04:28:27 3 sshd[17607]: Invalid user testmail from 18.179.1.25 port 55894	2020-09-23 13:00:00
142.93.56.57	attackbots	Sep 23 05:55:04 pve1 sshd[4970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.56.57 Sep 23 05:55:06 pve1 sshd[4970]: Failed password for invalid user hadoop from 142.93.56.57 port 57504 ssh2 ...	2020-09-23 13:05:32

Recently Reported IPs

95.42.150.116	121.252.61.142	168.202.242.228	120.220.45.84
139.159.189.161	126.135.182.238	250.247.88.215	111.234.119.208
239.57.227.131	23.85.65.214	176.150.242.160	225.79.133.141
69.117.65.10	67.199.47.242	141.115.6.223	138.195.210.210
226.127.148.64	137.115.244.27	123.152.90.7	225.12.202.156