139.186.67.94 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches	2020-10-08 00:14:28
attackbots	Oct 6 22:41:14 ns3164893 sshd[31962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root Oct 6 22:41:17 ns3164893 sshd[31962]: Failed password for root from 139.186.67.94 port 34528 ssh2 ...	2020-10-07 16:20:45
attack	Sep 30 02:29:56 pve1 sshd[23210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 Sep 30 02:29:58 pve1 sshd[23210]: Failed password for invalid user cpanel from 139.186.67.94 port 47044 ssh2 ...	2020-09-30 09:56:23
attackspambots	Invalid user cm from 139.186.67.94 port 49110	2020-09-30 02:49:10
attackspambots	Invalid user android from 139.186.67.94 port 49488	2020-09-29 18:52:01
attackspambots	Invalid user vector from 139.186.67.94 port 33928	2020-09-05 23:57:26
attack	Invalid user vector from 139.186.67.94 port 33928	2020-09-05 15:29:05
attackspam	(sshd) Failed SSH login from 139.186.67.94 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 18:17:16 server sshd[10531]: Invalid user xwj from 139.186.67.94 port 41674 Sep 4 18:17:18 server sshd[10531]: Failed password for invalid user xwj from 139.186.67.94 port 41674 ssh2 Sep 4 18:30:29 server sshd[16244]: Invalid user dcj from 139.186.67.94 port 33994 Sep 4 18:30:31 server sshd[16244]: Failed password for invalid user dcj from 139.186.67.94 port 33994 ssh2 Sep 4 18:34:39 server sshd[17368]: Invalid user mmi from 139.186.67.94 port 32910	2020-09-05 08:05:57
attackspambots	(sshd) Failed SSH login from 139.186.67.94 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 29 13:59:06 elude sshd[21414]: Invalid user david from 139.186.67.94 port 39938 Aug 29 13:59:08 elude sshd[21414]: Failed password for invalid user david from 139.186.67.94 port 39938 ssh2 Aug 29 14:02:54 elude sshd[22063]: Invalid user plasma from 139.186.67.94 port 59594 Aug 29 14:02:56 elude sshd[22063]: Failed password for invalid user plasma from 139.186.67.94 port 59594 ssh2 Aug 29 14:06:49 elude sshd[22707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root	2020-08-30 01:25:52
attackspam	Aug 11 05:17:01 onepixel sshd[2326182]: Failed password for root from 139.186.67.94 port 37088 ssh2 Aug 11 05:20:03 onepixel sshd[2327894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root Aug 11 05:20:05 onepixel sshd[2327894]: Failed password for root from 139.186.67.94 port 40832 ssh2 Aug 11 05:21:49 onepixel sshd[2328895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 user=root Aug 11 05:21:51 onepixel sshd[2328895]: Failed password for root from 139.186.67.94 port 56842 ssh2	2020-08-11 13:23:37
attack	leo_www	2020-08-08 22:07:35
attackspam	20 attempts against mh-ssh on echoip	2020-07-31 22:24:06
attackbots	Jul 24 15:43:32 piServer sshd[28885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 Jul 24 15:43:34 piServer sshd[28885]: Failed password for invalid user yw from 139.186.67.94 port 46668 ssh2 Jul 24 15:48:49 piServer sshd[29398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 ...	2020-07-24 21:55:13
attackbotsspam	DATE:2020-07-11 05:57:57, IP:139.186.67.94, PORT:ssh SSH brute force auth (docker-dc)	2020-07-11 12:01:22
attackbotsspam	$f2bV_matches	2020-06-28 19:05:24
attackbots	Jun 27 15:05:57 vps687878 sshd\[27912\]: Failed password for root from 139.186.67.94 port 48316 ssh2 Jun 27 15:09:41 vps687878 sshd\[28371\]: Invalid user gw from 139.186.67.94 port 38774 Jun 27 15:09:41 vps687878 sshd\[28371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 Jun 27 15:09:43 vps687878 sshd\[28371\]: Failed password for invalid user gw from 139.186.67.94 port 38774 ssh2 Jun 27 15:13:34 vps687878 sshd\[28774\]: Invalid user cps from 139.186.67.94 port 57428 Jun 27 15:13:34 vps687878 sshd\[28774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.94 ...	2020-06-28 04:05:35

相同子网IP讨论:

IP	类型	评论内容	时间
139.186.67.159	attackspambots	Jul 25 08:03:24 buvik sshd[29741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Jul 25 08:03:26 buvik sshd[29741]: Failed password for invalid user asteriskpbx from 139.186.67.159 port 59886 ssh2 Jul 25 08:07:30 buvik sshd[30309]: Invalid user john1 from 139.186.67.159 ...	2020-07-25 16:26:47
139.186.67.159	attackbots	Invalid user cic from 139.186.67.159 port 57898	2020-06-21 06:33:19
139.186.67.159	attack	Jun 11 12:40:51 webhost01 sshd[7048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Jun 11 12:40:53 webhost01 sshd[7048]: Failed password for invalid user student from 139.186.67.159 port 43378 ssh2 ...	2020-06-11 15:54:40
139.186.67.159	attackbots	Jun 10 06:54:41 server sshd[24616]: Failed password for invalid user user from 139.186.67.159 port 60946 ssh2 Jun 10 06:58:59 server sshd[28773]: Failed password for root from 139.186.67.159 port 52746 ssh2 Jun 10 07:03:35 server sshd[1049]: Failed password for invalid user vlad from 139.186.67.159 port 44562 ssh2	2020-06-10 13:47:45
139.186.67.159	attack	May 29 09:54:16 dhoomketu sshd[289055]: Invalid user hundsun from 139.186.67.159 port 37862 May 29 09:54:16 dhoomketu sshd[289055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 May 29 09:54:16 dhoomketu sshd[289055]: Invalid user hundsun from 139.186.67.159 port 37862 May 29 09:54:18 dhoomketu sshd[289055]: Failed password for invalid user hundsun from 139.186.67.159 port 37862 ssh2 May 29 09:56:58 dhoomketu sshd[289102]: Invalid user postgres from 139.186.67.159 port 40244 ...	2020-05-29 14:42:48
139.186.67.159	attackspambots	$f2bV_matches	2020-05-28 12:04:14
139.186.67.159	attackspambots	May 11 11:51:44 ny01 sshd[18396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 May 11 11:51:46 ny01 sshd[18396]: Failed password for invalid user marketing123321 from 139.186.67.159 port 47950 ssh2 May 11 11:54:32 ny01 sshd[18751]: Failed password for root from 139.186.67.159 port 46876 ssh2	2020-05-12 02:01:57
139.186.67.159	attack	Apr 30 14:28:47 mail sshd[3539]: Invalid user test1 from 139.186.67.159 Apr 30 14:28:47 mail sshd[3539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Apr 30 14:28:47 mail sshd[3539]: Invalid user test1 from 139.186.67.159 Apr 30 14:28:48 mail sshd[3539]: Failed password for invalid user test1 from 139.186.67.159 port 43440 ssh2 Apr 30 15:01:51 mail sshd[8197]: Invalid user abc from 139.186.67.159 ...	2020-05-01 02:54:17
139.186.67.159	attack	Apr 27 04:45:55 game-panel sshd[10248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159 Apr 27 04:45:56 game-panel sshd[10248]: Failed password for invalid user ulrich from 139.186.67.159 port 60556 ssh2 Apr 27 04:49:30 game-panel sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.186.67.159	2020-04-27 15:25:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.186.67.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37737
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.186.67.94.			IN	A

;; AUTHORITY SECTION:
.			398	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062701 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 28 04:05:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 94.67.186.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.67.186.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
36.232.104.53	attack	20/4/9@17:55:13: FAIL: Alarm-Network address from=36.232.104.53 20/4/9@17:55:14: FAIL: Alarm-Network address from=36.232.104.53 ...	2020-04-10 08:11:46
121.229.57.220	attackspam	Apr 10 02:10:46 mail sshd[31128]: Invalid user deploy from 121.229.57.220 Apr 10 02:10:46 mail sshd[31128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.57.220 Apr 10 02:10:46 mail sshd[31128]: Invalid user deploy from 121.229.57.220 Apr 10 02:10:48 mail sshd[31128]: Failed password for invalid user deploy from 121.229.57.220 port 40944 ssh2 Apr 10 02:22:24 mail sshd[16891]: Invalid user admin from 121.229.57.220 ...	2020-04-10 08:22:59
45.133.99.14	attackbots	(smtpauth) Failed SMTP AUTH login from 45.133.99.14 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-04-10 01:29:29 login authenticator failed for ([45.133.99.14]) [45.133.99.14]: 535 Incorrect authentication data (set_id=info@brict.it) 2020-04-10 01:29:30 login authenticator failed for ([45.133.99.14]) [45.133.99.14]: 535 Incorrect authentication data (set_id=info) 2020-04-10 01:58:30 login authenticator failed for ([45.133.99.14]) [45.133.99.14]: 535 Incorrect authentication data (set_id=info@ikbentehuurennietteduur.nl) 2020-04-10 01:58:33 login authenticator failed for ([45.133.99.14]) [45.133.99.14]: 535 Incorrect authentication data (set_id=info) 2020-04-10 02:28:44 login authenticator failed for ([45.133.99.14]) [45.133.99.14]: 535 Incorrect authentication data (set_id=info@brict.it)	2020-04-10 08:33:00
112.215.113.11	attack	Apr 9 23:46:11 sigma sshd\[3857\]: Invalid user jeffrey from 112.215.113.11Apr 9 23:46:13 sigma sshd\[3857\]: Failed password for invalid user jeffrey from 112.215.113.11 port 38082 ssh2 ...	2020-04-10 08:08:13
49.233.169.58	attackbots	SSH login attempts with user(s): osm, mysql.	2020-04-10 08:26:15
120.70.102.239	attack	SSH Brute-Forcing (server1)	2020-04-10 08:10:51
218.92.0.212	attack	Apr 10 02:09:07 localhost sshd[10664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Apr 10 02:09:09 localhost sshd[10664]: Failed password for root from 218.92.0.212 port 30742 ssh2 ...	2020-04-10 08:34:23
65.50.209.87	attackbots	Port Scan detected from 65.50.209.87 (US/United States/California/San Jose/-). 4 hits in the last 51 seconds	2020-04-10 08:24:22
222.186.31.166	attack	Apr 9 21:12:31 firewall sshd[32066]: Failed password for root from 222.186.31.166 port 47014 ssh2 Apr 9 21:12:33 firewall sshd[32066]: Failed password for root from 222.186.31.166 port 47014 ssh2 Apr 9 21:12:35 firewall sshd[32066]: Failed password for root from 222.186.31.166 port 47014 ssh2 ...	2020-04-10 08:18:18
36.37.175.123	attack	Brute force attempt	2020-04-10 08:12:08
162.243.133.185	attack	Port Scan detected from 162.243.133.185 (US/United States/California/San Francisco/zg-0312c-439.stretchoid.com). 4 hits in the last 245 seconds	2020-04-10 08:25:35
106.52.131.86	attack	2020-04-09T23:49:08.530060rocketchat.forhosting.nl sshd[1776]: Invalid user postgres from 106.52.131.86 port 59846 2020-04-09T23:49:11.089032rocketchat.forhosting.nl sshd[1776]: Failed password for invalid user postgres from 106.52.131.86 port 59846 ssh2 2020-04-09T23:55:21.780020rocketchat.forhosting.nl sshd[1998]: Invalid user john_romul from 106.52.131.86 port 60844 ...	2020-04-10 08:00:33
103.119.140.45	attack	Distributed brute force attack	2020-04-10 08:34:38
51.91.108.15	attackbots	Apr 9 23:37:25 lock-38 sshd[798782]: Failed password for invalid user test from 51.91.108.15 port 53896 ssh2 Apr 9 23:50:39 lock-38 sshd[799212]: Invalid user facturacion from 51.91.108.15 port 39010 Apr 9 23:50:39 lock-38 sshd[799212]: Invalid user facturacion from 51.91.108.15 port 39010 Apr 9 23:50:39 lock-38 sshd[799212]: Failed password for invalid user facturacion from 51.91.108.15 port 39010 ssh2 Apr 9 23:54:56 lock-38 sshd[799359]: Invalid user deploy from 51.91.108.15 port 47188 ...	2020-04-10 08:29:46
222.186.173.201	attackspam	Scanned 29 times in the last 24 hours on port 22	2020-04-10 08:14:59

最近上报的IP列表

128.116.169.210	161.97.69.177	148.153.55.12	173.101.129.108
87.251.74.106	36.170.199.72	225.254.75.53	76.49.82.55
196.5.190.121	112.82.41.15	52.198.14.52	108.124.85.221
88.27.59.227	109.242.16.69	203.213.210.173	192.204.172.78
187.179.175.85	29.165.184.168	174.126.199.84	173.199.210.236