182.139.86.139

基本信息:

城市(city): Chengdu

省份(region): Sichuan

国家(country): China

运营商(isp): ChinaNet Sichuan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Jun 15 16:16:18 vps639187 sshd\[22792\]: Invalid user aurelien from 182.139.86.139 port 50766 Jun 15 16:16:18 vps639187 sshd\[22792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139 Jun 15 16:16:20 vps639187 sshd\[22792\]: Failed password for invalid user aurelien from 182.139.86.139 port 50766 ssh2 ...	2020-06-16 01:29:13
attackspambots	(sshd) Failed SSH login from 182.139.86.139 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 1 22:05:09 amsweb01 sshd[27451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139 user=root Jun 1 22:05:10 amsweb01 sshd[27451]: Failed password for root from 182.139.86.139 port 42936 ssh2 Jun 1 22:13:25 amsweb01 sshd[29005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139 user=root Jun 1 22:13:27 amsweb01 sshd[29005]: Failed password for root from 182.139.86.139 port 46282 ssh2 Jun 1 22:16:35 amsweb01 sshd[29645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139 user=root	2020-06-02 07:26:02

类型

评论内容

时间

attackspam

Jun 15 16:16:18 vps639187 sshd\[22792\]: Invalid user aurelien from 182.139.86.139 port 50766
Jun 15 16:16:18 vps639187 sshd\[22792\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139
Jun 15 16:16:20 vps639187 sshd\[22792\]: Failed password for invalid user aurelien from 182.139.86.139 port 50766 ssh2
...

2020-06-16 01:29:13

attackspambots

(sshd) Failed SSH login from 182.139.86.139 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun  1 22:05:09 amsweb01 sshd[27451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139  user=root
Jun  1 22:05:10 amsweb01 sshd[27451]: Failed password for root from 182.139.86.139 port 42936 ssh2
Jun  1 22:13:25 amsweb01 sshd[29005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139  user=root
Jun  1 22:13:27 amsweb01 sshd[29005]: Failed password for root from 182.139.86.139 port 46282 ssh2
Jun  1 22:16:35 amsweb01 sshd[29645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.139.86.139  user=root

2020-06-02 07:26:02

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 182.139.86.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44983
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;182.139.86.139.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060101 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 07:25:59 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 139.86.139.182.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.86.139.182.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
67.227.152.142	attackbotsspam	Unauthorized connection attempt detected from IP address 67.227.152.142 to port 8545	2020-07-16 05:04:08
117.5.159.107	attackbotsspam	Unauthorized connection attempt from IP address 117.5.159.107 on Port 445(SMB)	2020-07-16 05:06:54
167.71.162.16	attackspambots	(sshd) Failed SSH login from 167.71.162.16 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 15 18:47:14 amsweb01 sshd[26514]: Invalid user gary from 167.71.162.16 port 52472 Jul 15 18:47:17 amsweb01 sshd[26514]: Failed password for invalid user gary from 167.71.162.16 port 52472 ssh2 Jul 15 18:53:13 amsweb01 sshd[27343]: Invalid user composer from 167.71.162.16 port 37872 Jul 15 18:53:15 amsweb01 sshd[27343]: Failed password for invalid user composer from 167.71.162.16 port 37872 ssh2 Jul 15 18:57:09 amsweb01 sshd[27915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.162.16 user=admin	2020-07-16 04:51:05
40.113.89.249	attackbots	Jul 15 22:26:46 mout sshd[3275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.113.89.249 user=daemon Jul 15 22:26:48 mout sshd[3275]: Failed password for daemon from 40.113.89.249 port 24988 ssh2 Jul 15 22:26:49 mout sshd[3275]: Disconnected from authenticating user daemon 40.113.89.249 port 24988 [preauth]	2020-07-16 04:59:32
13.66.166.169	attackbots	2020-07-15T22:20:28.140898ks3355764 sshd[8211]: Invalid user user1 from 13.66.166.169 port 9296 2020-07-15T22:20:29.907192ks3355764 sshd[8211]: Failed password for invalid user user1 from 13.66.166.169 port 9296 ssh2 ...	2020-07-16 05:00:37
176.67.80.9	attackspambots	[2020-07-15 16:24:40] NOTICE[1277] chan_sip.c: Registration from '' failed for '176.67.80.9:62593' - Wrong password [2020-07-15 16:24:40] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-15T16:24:40.098-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7501",SessionID="0x7f175400c8e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.67.80.9/62593",Challenge="76736d1b",ReceivedChallenge="76736d1b",ReceivedHash="e6dea598ca658628dad711451186ffce" [2020-07-15 16:25:10] NOTICE[1277] chan_sip.c: Registration from '' failed for '176.67.80.9:56273' - Wrong password [2020-07-15 16:25:10] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-15T16:25:10.451-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2639",SessionID="0x7f175404ea18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/176.67.80.9/56273", ...	2020-07-16 04:36:44
217.182.192.217	attack	Jul 15 17:50:28 IngegnereFirenze sshd[8652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.192.217 user=root ...	2020-07-16 04:47:53
49.235.92.208	attack	2020-07-16T03:08:36.450269hostname sshd[13214]: Invalid user gaia from 49.235.92.208 port 55938 2020-07-16T03:08:38.477855hostname sshd[13214]: Failed password for invalid user gaia from 49.235.92.208 port 55938 ssh2 2020-07-16T03:13:30.723217hostname sshd[15481]: Invalid user binh from 49.235.92.208 port 51038 ...	2020-07-16 04:33:23
172.69.70.27	attackbotsspam	Apache - FakeGoogleBot	2020-07-16 04:50:13
51.75.144.43	attackbots	SSH brutforce	2020-07-16 04:57:49
125.74.47.230	attackbots	Exploited Host.	2020-07-16 04:52:59
37.59.56.124	attackbots	37.59.56.124 - - [15/Jul/2020:14:33:23 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.56.124 - - [15/Jul/2020:15:00:35 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-16 04:35:09
93.56.68.41	attackbots	firewall-block, port(s): 8080/tcp	2020-07-16 04:43:09
52.188.7.143	attackbots	Jul 15 22:30:38 vm1 sshd[16342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.188.7.143 Jul 15 22:30:40 vm1 sshd[16342]: Failed password for invalid user user from 52.188.7.143 port 29631 ssh2 ...	2020-07-16 04:32:00
124.127.129.186	attackspambots	Unauthorized connection attempt detected from IP address 124.127.129.186 to port 23	2020-07-16 04:53:29

最近上报的IP列表

217.163.251.92	182.164.44.153	66.161.1.234	168.197.193.25
90.161.33.165	73.64.8.42	49.2.191.150	39.117.88.32
155.205.200.199	47.11.107.133	100.151.69.182	93.148.22.156
126.239.180.197	40.125.114.15	58.183.153.237	209.146.17.107
91.22.107.180	101.243.139.51	70.229.108.162	116.202.253.142