139.186.67.94 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches	2020-10-08 00:14:28
attackbots	Oct 6 22:41:14 ns3164893 sshd[31962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root Oct 6 22:41:17 ns3164893 sshd[31962]: Failed password for root from 139.186.67.94 port 34528 ssh2 ...	2020-10-07 16:20:45
attack	Sep 30 02:29:56 pve1 sshd[23210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 Sep 30 02:29:58 pve1 sshd[23210]: Failed password for invalid user cpanel from 139.186.67.94 port 47044 ssh2 ...	2020-09-30 09:56:23
attackspambots	Invalid user cm from 139.186.67.94 port 49110	2020-09-30 02:49:10
attackspambots	Invalid user android from 139.186.67.94 port 49488	2020-09-29 18:52:01
attackspambots	Invalid user vector from 139.186.67.94 port 33928	2020-09-05 23:57:26
attack	Invalid user vector from 139.186.67.94 port 33928	2020-09-05 15:29:05
attackspam	(sshd) Failed SSH login from 139.186.67.94 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 18:17:16 server sshd[10531]: Invalid user xwj from 139.186.67.94 port 41674 Sep 4 18:17:18 server sshd[10531]: Failed password for invalid user xwj from 139.186.67.94 port 41674 ssh2 Sep 4 18:30:29 server sshd[16244]: Invalid user dcj from 139.186.67.94 port 33994 Sep 4 18:30:31 server sshd[16244]: Failed password for invalid user dcj from 139.186.67.94 port 33994 ssh2 Sep 4 18:34:39 server sshd[17368]: Invalid user mmi from 139.186.67.94 port 32910	2020-09-05 08:05:57
attackspambots	(sshd) Failed SSH login from 139.186.67.94 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 29 13:59:06 elude sshd[21414]: Invalid user david from 139.186.67.94 port 39938 Aug 29 13:59:08 elude sshd[21414]: Failed password for invalid user david from 139.186.67.94 port 39938 ssh2 Aug 29 14:02:54 elude sshd[22063]: Invalid user plasma from 139.186.67.94 port 59594 Aug 29 14:02:56 elude sshd[22063]: Failed password for invalid user plasma from 139.186.67.94 port 59594 ssh2 Aug 29 14:06:49 elude sshd[22707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root	2020-08-30 01:25:52
attackspam	Aug 11 05:17:01 onepixel sshd[2326182]: Failed password for root from 139.186.67.94 port 37088 ssh2 Aug 11 05:20:03 onepixel sshd[2327894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root Aug 11 05:20:05 onepixel sshd[2327894]: Failed password for root from 139.186.67.94 port 40832 ssh2 Aug 11 05:21:49 onepixel sshd[2328895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root Aug 11 05:21:51 onepixel sshd[2328895]: Failed password for root from 139.186.67.94 port 56842 ssh2	2020-08-11 13:23:37
attack	leo_www	2020-08-08 22:07:35
attackspam	20 attempts against mh-ssh on echoip	2020-07-31 22:24:06
attackbots	Jul 24 15:43:32 piServer sshd[28885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 Jul 24 15:43:34 piServer sshd[28885]: Failed password for invalid user yw from 139.186.67.94 port 46668 ssh2 Jul 24 15:48:49 piServer sshd[29398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 ...	2020-07-24 21:55:13
attackbotsspam	DATE:2020-07-11 05:57:57, IP:139.186.67.94, PORT:ssh SSH brute force auth (docker-dc)	2020-07-11 12:01:22
attackbotsspam	$f2bV_matches	2020-06-28 19:05:24
attackbots	Jun 27 15:05:57 vps687878 sshd\[27912\]: Failed password for root from 139.186.67.94 port 48316 ssh2 Jun 27 15:09:41 vps687878 sshd\[28371\]: Invalid user gw from 139.186.67.94 port 38774 Jun 27 15:09:41 vps687878 sshd\[28371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 Jun 27 15:09:43 vps687878 sshd\[28371\]: Failed password for invalid user gw from 139.186.67.94 port 38774 ssh2 Jun 27 15:13:34 vps687878 sshd\[28774\]: Invalid user cps from 139.186.67.94 port 57428 Jun 27 15:13:34 vps687878 sshd\[28774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 ...	2020-06-28 04:05:35

相同子网IP讨论:

IP	类型	评论内容	时间
139.186.67.159	attackspambots	Jul 25 08:03:24 buvik sshd[29741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Jul 25 08:03:26 buvik sshd[29741]: Failed password for invalid user asteriskpbx from 139.186.67.159 port 59886 ssh2 Jul 25 08:07:30 buvik sshd[30309]: Invalid user john1 from 139.186.67.159 ...	2020-07-25 16:26:47
139.186.67.159	attackbots	Invalid user cic from 139.186.67.159 port 57898	2020-06-21 06:33:19
139.186.67.159	attack	Jun 11 12:40:51 webhost01 sshd[7048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Jun 11 12:40:53 webhost01 sshd[7048]: Failed password for invalid user student from 139.186.67.159 port 43378 ssh2 ...	2020-06-11 15:54:40
139.186.67.159	attackbots	Jun 10 06:54:41 server sshd[24616]: Failed password for invalid user user from 139.186.67.159 port 60946 ssh2 Jun 10 06:58:59 server sshd[28773]: Failed password for root from 139.186.67.159 port 52746 ssh2 Jun 10 07:03:35 server sshd[1049]: Failed password for invalid user vlad from 139.186.67.159 port 44562 ssh2	2020-06-10 13:47:45
139.186.67.159	attack	May 29 09:54:16 dhoomketu sshd[289055]: Invalid user hundsun from 139.186.67.159 port 37862 May 29 09:54:16 dhoomketu sshd[289055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 May 29 09:54:16 dhoomketu sshd[289055]: Invalid user hundsun from 139.186.67.159 port 37862 May 29 09:54:18 dhoomketu sshd[289055]: Failed password for invalid user hundsun from 139.186.67.159 port 37862 ssh2 May 29 09:56:58 dhoomketu sshd[289102]: Invalid user postgres from 139.186.67.159 port 40244 ...	2020-05-29 14:42:48
139.186.67.159	attackspambots	$f2bV_matches	2020-05-28 12:04:14
139.186.67.159	attackspambots	May 11 11:51:44 ny01 sshd[18396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 May 11 11:51:46 ny01 sshd[18396]: Failed password for invalid user marketing123321 from 139.186.67.159 port 47950 ssh2 May 11 11:54:32 ny01 sshd[18751]: Failed password for root from 139.186.67.159 port 46876 ssh2	2020-05-12 02:01:57
139.186.67.159	attack	Apr 30 14:28:47 mail sshd[3539]: Invalid user test1 from 139.186.67.159 Apr 30 14:28:47 mail sshd[3539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Apr 30 14:28:47 mail sshd[3539]: Invalid user test1 from 139.186.67.159 Apr 30 14:28:48 mail sshd[3539]: Failed password for invalid user test1 from 139.186.67.159 port 43440 ssh2 Apr 30 15:01:51 mail sshd[8197]: Invalid user abc from 139.186.67.159 ...	2020-05-01 02:54:17
139.186.67.159	attack	Apr 27 04:45:55 game-panel sshd[10248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Apr 27 04:45:56 game-panel sshd[10248]: Failed password for invalid user ulrich from 139.186.67.159 port 60556 ssh2 Apr 27 04:49:30 game-panel sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159	2020-04-27 15:25:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.186.67.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37737
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.186.67.94.			IN	A

;; AUTHORITY SECTION:
.			398	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062701 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 28 04:05:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 94.67.186.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.67.186.139.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
187.167.69.123	attackspam	Unauthorized connection attempt detected from IP address 187.167.69.123 to port 23 [J]	2020-01-05 04:09:02
81.201.63.33	attackspambots	Unauthorized connection attempt detected from IP address 81.201.63.33 to port 8080 [J]	2020-01-05 03:54:35
201.122.102.140	attack	Unauthorized connection attempt detected from IP address 201.122.102.140 to port 23 [J]	2020-01-05 04:25:56
99.137.155.185	attack	Unauthorized connection attempt detected from IP address 99.137.155.185 to port 80 [J]	2020-01-05 03:52:32
200.153.11.82	attackbots	Unauthorized connection attempt detected from IP address 200.153.11.82 to port 445	2020-01-05 04:06:39
106.12.17.107	attackspambots	Unauthorized connection attempt detected from IP address 106.12.17.107 to port 2220 [J]	2020-01-05 03:52:12
86.237.7.250	attackbots	Unauthorized connection attempt detected from IP address 86.237.7.250 to port 5555 [J]	2020-01-05 03:53:25
117.121.214.50	attackbots	Unauthorized connection attempt detected from IP address 117.121.214.50 to port 2220 [J]	2020-01-05 04:14:12
45.123.97.24	attack	Unauthorized connection attempt detected from IP address 45.123.97.24 to port 445 [J]	2020-01-05 03:57:52
165.22.35.21	attackspam	Automatic report - XMLRPC Attack	2020-01-05 04:10:55
5.236.195.167	attackspambots	Unauthorized connection attempt detected from IP address 5.236.195.167 to port 8080 [J]	2020-01-05 04:00:58
183.104.225.230	attackbotsspam	Unauthorized connection attempt detected from IP address 183.104.225.230 to port 8000 [J]	2020-01-05 04:09:26
79.166.239.119	attackspambots	Unauthorized connection attempt detected from IP address 79.166.239.119 to port 23 [J]	2020-01-05 03:55:06
190.162.197.244	attackspambots	Unauthorized connection attempt detected from IP address 190.162.197.244 to port 5555 [J]	2020-01-05 04:07:28
201.182.104.98	attackbotsspam	Unauthorized connection attempt detected from IP address 201.182.104.98 to port 8080 [J]	2020-01-05 04:25:06

最近上报的IP列表

128.116.169.210	161.97.69.177	148.153.55.12	173.101.129.108
87.251.74.106	36.170.199.72	225.254.75.53	76.49.82.55
196.5.190.121	112.82.41.15	52.198.14.52	108.124.85.221
88.27.59.227	109.242.16.69	203.213.210.173	192.204.172.78
187.179.175.85	29.165.184.168	174.126.199.84	173.199.210.236