112.94.189.34 - IPInfo

基本信息:

城市(city): Guangzhou

省份(region): Guangdong

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
112.94.189.144	attackbots	Mar 9 18:36:37 php1 sshd\[32549\]: Invalid user user from 112.94.189.144 Mar 9 18:36:37 php1 sshd\[32549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.94.189.144 Mar 9 18:36:38 php1 sshd\[32549\]: Failed password for invalid user user from 112.94.189.144 port 5636 ssh2 Mar 9 18:40:56 php1 sshd\[516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.94.189.144 user=tradewindcap Mar 9 18:40:58 php1 sshd\[516\]: Failed password for tradewindcap from 112.94.189.144 port 5637 ssh2	2020-03-10 12:49:15

类型

评论内容

时间

112.94.189.144

attackbots

Mar  9 18:36:37 php1 sshd\[32549\]: Invalid user user from 112.94.189.144
Mar  9 18:36:37 php1 sshd\[32549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.94.189.144
Mar  9 18:36:38 php1 sshd\[32549\]: Failed password for invalid user user from 112.94.189.144 port 5636 ssh2
Mar  9 18:40:56 php1 sshd\[516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.94.189.144  user=tradewindcap
Mar  9 18:40:58 php1 sshd\[516\]: Failed password for tradewindcap from 112.94.189.144 port 5637 ssh2

2020-03-10 12:49:15

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '112.94.0.0 - 112.94.255.255'

% Abuse contact for '112.94.0.0 - 112.94.255.255' is 'zhaoyz3@chinaunicom.cn'

inetnum:        112.94.0.0 - 112.94.255.255
netname:        GuangZhou-unicom
descr:          United-Communications-Network-Technology-Co-Ltd, GuangZhou
country:        CN
admin-c:        CG272-AP
tech-c:         CG272-AP
abuse-c:        AC1718-AP
status:         ASSIGNED NON-PORTABLE
mnt-by:         MAINT-CNCGROUP-GD
mnt-irt:        IRT-CU-CN
last-modified:  2025-01-22T13:20:11Z
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
e-mail:         zhaoyz3@chinaunicom.cn
abuse-mailbox:  zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
remarks:        zhaoyz3@chinaunicom.cn was validated on 2025-10-17
mnt-by:         MAINT-CNCGROUP
last-modified:  2025-11-18T00:26:20Z
source:         APNIC

role:           ABUSE CUCN
country:        ZZ
address:        No.21,Financial Street
address:        Beijing,100033
address:        P.R.China
phone:          +000000000
e-mail:         zhaoyz3@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
nic-hdl:        AC1718-AP
remarks:        Generated from irt object IRT-CU-CN
remarks:        zhaoyz3@chinaunicom.cn was validated on 2025-10-17
abuse-mailbox:  zhaoyz3@chinaunicom.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-10-17T02:26:56Z
source:         APNIC

role:           CNCGROUP GD
nic-hdl:        CG272-AP
e-mail:         gdipnoc@chinaunicom.cn
address:        XinShiKong Plaza,No 666 Huangpu Rd. Guangzhou 510627,China
phone:          +86-20-22214226
fax-no:         +86-20-22214228
admin-c:        RP181-AP
tech-c:         RP181-AP
country:        CN
mnt-by:         MAINT-CNCGROUP-GD
last-modified:  2009-04-14T08:33:40Z
source:         APNIC

% Information related to '112.94.128.0/18AS17622'

route:          112.94.128.0/18
origin:         AS17622
descr:          China Unicom
                B811&A1218, China Unicom
                No.21, Jin-Rong Street
mnt-by:         MAINT-CNCGROUP-RR
last-modified:  2023-06-08T07:54:54Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.94.189.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.94.189.34.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026041700 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 12:31:25 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

Host 34.189.94.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.189.94.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
117.252.222.164	attackspam	Sep 20 18:49:25 lvps5-35-247-183 sshd[19298]: Invalid user admin from 117.252.222.164 Sep 20 18:49:26 lvps5-35-247-183 sshd[19298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.252.222.164 Sep 20 18:49:28 lvps5-35-247-183 sshd[19298]: Failed password for invalid user admin from 117.252.222.164 port 37729 ssh2 Sep 20 18:49:33 lvps5-35-247-183 sshd[19302]: Invalid user admin from 117.252.222.164 Sep 20 18:49:34 lvps5-35-247-183 sshd[19302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.252.222.164 Sep 20 18:49:36 lvps5-35-247-183 sshd[19302]: Failed password for invalid user admin from 117.252.222.164 port 37868 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.252.222.164	2020-09-21 21:00:37
222.186.30.112	attackbots	2020-09-21T13:52:18.262507vps773228.ovh.net sshd[22687]: Failed password for root from 222.186.30.112 port 23721 ssh2 2020-09-21T13:52:20.920275vps773228.ovh.net sshd[22687]: Failed password for root from 222.186.30.112 port 23721 ssh2 2020-09-21T13:52:23.845454vps773228.ovh.net sshd[22687]: Failed password for root from 222.186.30.112 port 23721 ssh2 2020-09-21T14:32:53.285164vps773228.ovh.net sshd[22969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root 2020-09-21T14:32:55.206995vps773228.ovh.net sshd[22969]: Failed password for root from 222.186.30.112 port 37904 ssh2 ...	2020-09-21 20:37:19
103.110.160.46	attackspam	2020-09-20 12:00:32.628647-0500 localhost smtpd[52512]: NOQUEUE: reject: RCPT from unknown[103.110.160.46]: 554 5.7.1 Service unavailable; Client host [103.110.160.46] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/103.110.160.46; from= to= proto=ESMTP helo=<[103.110.160.46]>	2020-09-21 21:12:43
58.228.159.253	attackspam	Fail2Ban Ban Triggered	2020-09-21 20:42:35
1.228.231.73	attackspambots	Sep 21 03:53:00 staging sshd[21826]: Invalid user admin from 1.228.231.73 port 15233 Sep 21 03:53:00 staging sshd[21826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.228.231.73 Sep 21 03:53:00 staging sshd[21826]: Invalid user admin from 1.228.231.73 port 15233 Sep 21 03:53:01 staging sshd[21826]: Failed password for invalid user admin from 1.228.231.73 port 15233 ssh2 ...	2020-09-21 20:39:24
83.36.227.153	attackbotsspam	20/9/20@13:03:46: FAIL: Alarm-Network address from=83.36.227.153 20/9/20@13:03:47: FAIL: Alarm-Network address from=83.36.227.153 ...	2020-09-21 20:40:05
195.140.187.40	attackbotsspam	Newsletter E-Mail Spam (Confirmed) [C2A525F6716EFDA0CD]	2020-09-21 20:48:01
157.245.211.180	attack	$f2bV_matches	2020-09-21 20:38:11
31.154.224.188	attack	Sep 20 12:38:57 foo sshd[15286]: reveeclipse mapping checking getaddrinfo for 31-154-224-188.orange.net.il [31.154.224.188] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 20 12:38:57 foo sshd[15286]: Invalid user admin from 31.154.224.188 Sep 20 12:38:57 foo sshd[15286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.154.224.188 Sep 20 12:38:59 foo sshd[15286]: Failed password for invalid user admin from 31.154.224.188 port 39127 ssh2 Sep 20 12:38:59 foo sshd[15286]: Received disconnect from 31.154.224.188: 11: Bye Bye [preauth] Sep 20 12:39:01 foo sshd[15288]: reveeclipse mapping checking getaddrinfo for 31-154-224-188.orange.net.il [31.154.224.188] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 20 12:39:01 foo sshd[15288]: Invalid user admin from 31.154.224.188 Sep 20 12:39:01 foo sshd[15288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.154.224.188 Sep 20 12:39:03 foo sshd[15288]: Failed pa........ -------------------------------	2020-09-21 20:46:02
185.39.11.109	attack	port scan	2020-09-21 20:32:07
27.7.148.115	attack	Tried our host z.	2020-09-21 20:51:25
62.234.115.152	attack	Sep 21 05:55:32 itv-usvr-01 sshd[18584]: Invalid user nagios from 62.234.115.152 Sep 21 05:55:32 itv-usvr-01 sshd[18584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.115.152 Sep 21 05:55:32 itv-usvr-01 sshd[18584]: Invalid user nagios from 62.234.115.152 Sep 21 05:55:34 itv-usvr-01 sshd[18584]: Failed password for invalid user nagios from 62.234.115.152 port 49990 ssh2 Sep 21 06:00:31 itv-usvr-01 sshd[18809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.115.152 user=root Sep 21 06:00:32 itv-usvr-01 sshd[18809]: Failed password for root from 62.234.115.152 port 47138 ssh2	2020-09-21 20:55:23
111.75.149.221	attack	Suspicious access to SMTP/POP/IMAP services.	2020-09-21 20:47:19
218.92.0.247	attackbots	2020-09-21T12:42:35.088351shield sshd\[4297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.247 user=root 2020-09-21T12:42:36.573987shield sshd\[4297\]: Failed password for root from 218.92.0.247 port 65471 ssh2 2020-09-21T12:42:39.568937shield sshd\[4297\]: Failed password for root from 218.92.0.247 port 65471 ssh2 2020-09-21T12:42:43.311737shield sshd\[4297\]: Failed password for root from 218.92.0.247 port 65471 ssh2 2020-09-21T12:42:46.941358shield sshd\[4297\]: Failed password for root from 218.92.0.247 port 65471 ssh2	2020-09-21 20:45:03
212.70.149.20	attackspambots	Sep 21 14:53:37 relay postfix/smtpd\[25894\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 14:54:02 relay postfix/smtpd\[26855\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 14:54:27 relay postfix/smtpd\[25894\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 14:54:52 relay postfix/smtpd\[25319\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 21 14:55:17 relay postfix/smtpd\[25891\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-21 20:56:12

最近上报的IP列表

2606:4700:10::6816:2799	2606:4700:10::6814:7859	2606:4700:10::6814:4951	194.36.32.205
103.136.32.14	45.180.134.197	172.232.232.10	220.197.78.83
175.30.48.231	105.191.36.188	176.65.139.101	2606:4700:10::6816:4018
2606:4700:10::6814:4721	2606:4700:10::6814:8297	2606:4700:10::6816:2612	2606:4700:10::6814:8986
2606:4700:10::6816:3393	110.77.226.6	2606:4700:10::6814:9100	83.89.180.168