91.99.221.97 - IPInfo

Basic Info

City: Falkenstein

Region: Sachsen

Country: Germany

Internet Service Provider: TCI

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '91.99.208.0 - 91.99.223.255'

% Abuse contact for '91.99.208.0 - 91.99.223.255' is 'abuse@hetzner.com'

inetnum:        91.99.208.0 - 91.99.223.255
netname:        CLOUD-FSN1
remarks:        INFRA-AW
country:        DE
org:            ORG-HOA1-RIPE
admin-c:        HOAC1-RIPE
tech-c:         HOAC1-RIPE
status:         ASSIGNED PA
mnt-by:         HOS-GUN
created:        2025-06-16T11:00:35Z
last-modified:  2025-06-16T11:00:35Z
source:         RIPE

organisation:   ORG-HOA1-RIPE
org-name:       Hetzner Online GmbH
country:        DE
org-type:       LIR
address:        Industriestrasse 25
address:        D-91710
address:        Gunzenhausen
address:        GERMANY
phone:          +49 9831 5050
fax-no:         +49 9831 5053
admin-c:        MF1400-RIPE
admin-c:        GM834-RIPE
admin-c:        HOAC1-RIPE
admin-c:        MH375-RIPE
admin-c:        SK2374-RIPE
admin-c:        SK8441-RIPE
abuse-c:        HOAC1-RIPE
mnt-ref:        RIPE-NCC-HM-MNT
mnt-ref:        HOS-GUN
mnt-by:         RIPE-NCC-HM-MNT
mnt-by:         HOS-GUN
created:        2004-04-17T11:07:58Z
last-modified:  2022-11-22T18:32:44Z
source:         RIPE # Filtered

role:           Hetzner Online GmbH - Contact Role
address:        Hetzner Online GmbH
address:        Industriestrasse 25
address:        D-91710 Gunzenhausen
address:        Germany
phone:          +49 9831 505-0
fax-no:         +49 9831 505-3
abuse-mailbox:  abuse@hetzner.com
remarks:        *************************************************
remarks:        * For spam/abuse/security issues please contact *
remarks:        * abuse@hetzner.com, or fill out the form at *
remarks:        * abuse.hetzner.com, thank you. *
remarks:        *************************************************
remarks:
remarks:        *************************************************
remarks:        * Any questions on Peering please send to *
remarks:        * peering@hetzner.com *
remarks:        *************************************************
org:            ORG-HOA1-RIPE
admin-c:        MH375-RIPE
tech-c:         GM834-RIPE
tech-c:         SK2374-RIPE
tech-c:         MF1400-RIPE
tech-c:         SK8441-RIPE
tech-c:         DD15478-RIPE
nic-hdl:        HOAC1-RIPE
mnt-by:         HOS-GUN
created:        2004-08-12T09:40:20Z
last-modified:  2022-11-22T18:33:55Z
source:         RIPE # Filtered

% Information related to '91.99.0.0/16AS24940'

route:          91.99.0.0/16
descr:          HETZNER-DC
origin:         AS24940
org:            ORG-HOA1-RIPE
mnt-by:         HOS-GUN
created:        2025-01-13T14:50:26Z
last-modified:  2025-01-13T14:50:26Z
source:         RIPE

organisation:   ORG-HOA1-RIPE
org-name:       Hetzner Online GmbH
country:        DE
org-type:       LIR
address:        Industriestrasse 25
address:        D-91710
address:        Gunzenhausen
address:        GERMANY
phone:          +49 9831 5050
fax-no:         +49 9831 5053
admin-c:        MF1400-RIPE
admin-c:        GM834-RIPE
admin-c:        HOAC1-RIPE
admin-c:        MH375-RIPE
admin-c:        SK2374-RIPE
admin-c:        SK8441-RIPE
abuse-c:        HOAC1-RIPE
mnt-ref:        RIPE-NCC-HM-MNT
mnt-ref:        HOS-GUN
mnt-by:         RIPE-NCC-HM-MNT
mnt-by:         HOS-GUN
created:        2004-04-17T11:07:58Z
last-modified:  2022-11-22T18:32:44Z
source:         RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.121.2 (SHETLAND)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.99.221.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;91.99.221.97.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026041500 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 16 01:30:06 CST 2026
;; MSG SIZE  rcvd: 105

Host info

97.221.99.91.in-addr.arpa domain name pointer static.97.221.99.91.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.221.99.91.in-addr.arpa	name = static.97.221.99.91.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.90.197.66	attackspam	Apr 24 16:54:19 debian-2gb-nbg1-2 kernel: \[9999003.547025\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=112.90.197.66 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=55875 PROTO=TCP SPT=43579 DPT=6379 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-24 23:43:11
178.237.237.67	attack	SpamScore above: 10.0	2020-04-24 23:49:08
78.180.150.148	attack	Apr 24 12:05:06 system,error,critical: login failure for user admin from 78.180.150.148 via telnet Apr 24 12:05:08 system,error,critical: login failure for user 888888 from 78.180.150.148 via telnet Apr 24 12:05:09 system,error,critical: login failure for user root from 78.180.150.148 via telnet Apr 24 12:05:14 system,error,critical: login failure for user root from 78.180.150.148 via telnet Apr 24 12:05:15 system,error,critical: login failure for user admin from 78.180.150.148 via telnet Apr 24 12:05:17 system,error,critical: login failure for user root from 78.180.150.148 via telnet Apr 24 12:05:21 system,error,critical: login failure for user 666666 from 78.180.150.148 via telnet Apr 24 12:05:23 system,error,critical: login failure for user administrator from 78.180.150.148 via telnet Apr 24 12:05:24 system,error,critical: login failure for user admin from 78.180.150.148 via telnet Apr 24 12:05:29 system,error,critical: login failure for user root from 78.180.150.148 via telnet	2020-04-25 00:02:46
34.236.235.47	attackspam	Apr 24 14:05:18 * sshd[30788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.236.235.47 Apr 24 14:05:19 * sshd[30788]: Failed password for invalid user nfs from 34.236.235.47 port 46098 ssh2	2020-04-25 00:11:16
185.234.216.206	attackspambots	Apr 24 16:19:57 web01.agentur-b-2.de postfix/smtpd[636161]: lost connection after CONNECT from unknown[185.234.216.206] Apr 24 16:22:39 web01.agentur-b-2.de postfix/smtpd[636161]: warning: unknown[185.234.216.206]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 24 16:22:39 web01.agentur-b-2.de postfix/smtpd[636161]: lost connection after AUTH from unknown[185.234.216.206] Apr 24 16:24:54 web01.agentur-b-2.de postfix/smtpd[636168]: warning: unknown[185.234.216.206]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 24 16:24:54 web01.agentur-b-2.de postfix/smtpd[636168]: lost connection after AUTH from unknown[185.234.216.206]	2020-04-24 23:52:40
103.145.12.87	attackspam	[2020-04-24 11:31:02] NOTICE[1170][C-00004af9] chan_sip.c: Call from '' (103.145.12.87:52634) to extension '011441482455983' rejected because extension not found in context 'public'. [2020-04-24 11:31:02] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-24T11:31:02.223-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441482455983",SessionID="0x7f6c083c7058",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.87/52634",ACLName="no_extension_match" [2020-04-24 11:31:02] NOTICE[1170][C-00004afa] chan_sip.c: Call from '' (103.145.12.87:56500) to extension '011442037698349' rejected because extension not found in context 'public'. [2020-04-24 11:31:02] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-24T11:31:02.833-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037698349",SessionID="0x7f6c08378858",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-04-24 23:45:37
36.90.59.186	attackbotsspam	detected by Fail2Ban	2020-04-25 00:06:04
221.225.118.139	attackbots	Apr 23 03:43:13 xxxxxxx8434580 sshd[12800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.225.118.139 user=r.r Apr 23 03:43:14 xxxxxxx8434580 sshd[12800]: Failed password for r.r from 221.225.118.139 port 50632 ssh2 Apr 23 03:43:14 xxxxxxx8434580 sshd[12800]: Received disconnect from 221.225.118.139: 11: Bye Bye [preauth] Apr 23 04:06:40 xxxxxxx8434580 sshd[12948]: Invalid user qt from 221.225.118.139 Apr 23 04:06:40 xxxxxxx8434580 sshd[12948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.225.118.139 Apr 23 04:06:42 xxxxxxx8434580 sshd[12948]: Failed password for invalid user qt from 221.225.118.139 port 36310 ssh2 Apr 23 04:06:42 xxxxxxx8434580 sshd[12948]: Received disconnect from 221.225.118.139: 11: Bye Bye [preauth] Apr 23 04:12:06 xxxxxxx8434580 sshd[13041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.225.118.139 user=r.r ........ -------------------------------	2020-04-25 00:08:09
119.28.158.212	attackbotsspam	Apr 24 15:13:08 cloud sshd[9334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.158.212 Apr 24 15:13:10 cloud sshd[9334]: Failed password for invalid user gast from 119.28.158.212 port 57362 ssh2	2020-04-25 00:14:47
186.122.149.144	attackspam	Apr 24 18:42:32 gw1 sshd[31446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.149.144 Apr 24 18:42:34 gw1 sshd[31446]: Failed password for invalid user chef from 186.122.149.144 port 55534 ssh2 ...	2020-04-25 00:01:17
123.16.29.57	attackbots	DATE:2020-04-24 14:05:53, IP:123.16.29.57, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-24 23:41:25
217.112.142.184	attackspam	Apr 24 14:55:58 mail.srvfarm.net postfix/smtpd[401250]: NOQUEUE: reject: RCPT from unknown[217.112.142.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 14:57:20 mail.srvfarm.net postfix/smtpd[403462]: NOQUEUE: reject: RCPT from unknown[217.112.142.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 15:00:27 mail.srvfarm.net postfix/smtpd[397481]: NOQUEUE: reject: RCPT from unknown[217.112.142.184]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 15:00:27 mail.srvfarm.net postfix/smtpd[402803]: NOQUEUE: reject: RCPT from unknown[217.112.142.184]: 450 4.1	2020-04-24 23:51:28
106.225.211.193	attack	Apr 24 14:02:32 dev0-dcde-rnet sshd[7987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.211.193 Apr 24 14:02:34 dev0-dcde-rnet sshd[7987]: Failed password for invalid user dms from 106.225.211.193 port 36469 ssh2 Apr 24 14:05:59 dev0-dcde-rnet sshd[8070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.211.193	2020-04-24 23:36:24
217.112.128.152	attack	RBL listed IP. Trying to send Spam. IP autobanned	2020-04-24 23:51:46
220.76.205.35	attack	Apr 24 04:00:54 php1 sshd\[7393\]: Invalid user sasha from 220.76.205.35 Apr 24 04:00:54 php1 sshd\[7393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.35 Apr 24 04:00:56 php1 sshd\[7393\]: Failed password for invalid user sasha from 220.76.205.35 port 58833 ssh2 Apr 24 04:02:26 php1 sshd\[7578\]: Invalid user fd from 220.76.205.35 Apr 24 04:02:26 php1 sshd\[7578\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.35	2020-04-25 00:00:50

Recently Reported IPs

153.127.9.27	139.59.162.235	2606:4700:10::6814:4935	110.78.154.126
2606:4700:10::6816:2742	2606:4700:10::6814:7763	2606:4700:10::6814:6134	2606:4700:10::6816:3852
2606:4700:10::6814:4574	2606:4700:10::ac43:2285	2606:4700:10::6816:2997	2606:4700:10::6816:3415
182.32.246.159	156.172.187.138	73.185.98.10	77.90.185.118
89.28.100.183	219.46.53.109	2001:16b8:605d:d800:7409:17e3:4680:c7cf	2606:4700:10::6814:9214