186.249.138.67

基本信息:

城市(city): Jundiaí

省份(region): Sao Paulo

国家(country): Brazil

运营商(isp): TIM

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 186.249.138.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40198
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;186.249.138.67.			IN	A

;; AUTHORITY SECTION:
.			153	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023021500 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 15 18:19:20 CST 2023
;; MSG SIZE  rcvd: 107

HOST信息:

67.138.249.186.in-addr.arpa domain name pointer 186-249-138-67.dynamic.desktop.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
67.138.249.186.in-addr.arpa	name = 186-249-138-67.dynamic.desktop.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
36.67.167.242	attackspam	May 26 00:31:59 OPSO sshd\[9190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.167.242 user=root May 26 00:32:00 OPSO sshd\[9190\]: Failed password for root from 36.67.167.242 port 59616 ssh2 May 26 00:33:14 OPSO sshd\[9494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.167.242 user=root May 26 00:33:17 OPSO sshd\[9494\]: Failed password for root from 36.67.167.242 port 48000 ssh2 May 26 00:34:29 OPSO sshd\[9684\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.167.242 user=root	2020-05-26 06:37:41
185.91.142.202	attackbots	May 25 22:09:41 ns382633 sshd\[15511\]: Invalid user present from 185.91.142.202 port 46182 May 25 22:09:41 ns382633 sshd\[15511\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.91.142.202 May 25 22:09:43 ns382633 sshd\[15511\]: Failed password for invalid user present from 185.91.142.202 port 46182 ssh2 May 25 22:22:39 ns382633 sshd\[18215\]: Invalid user levendov from 185.91.142.202 port 42875 May 25 22:22:39 ns382633 sshd\[18215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.91.142.202	2020-05-26 06:44:54
164.132.225.151	attackspambots	Failed password for invalid user psybnc from 164.132.225.151 port 53602 ssh2	2020-05-26 06:43:32
103.87.214.100	attackspam	Unauthorized connection attempt detected from IP address 103.87.214.100 to port 4416	2020-05-26 06:42:59
185.155.17.174	attackspambots	1590437903 - 05/25/2020 22:18:23 Host: 185.155.17.174/185.155.17.174 Port: 445 TCP Blocked	2020-05-26 06:31:12
113.161.53.147	attackspam	Invalid user smbuser from 113.161.53.147 port 43731	2020-05-26 06:40:26
109.64.40.58	attack	Automatic report - Port Scan Attack	2020-05-26 07:08:05
152.136.165.226	attack	May 26 00:54:22 tuxlinux sshd[12946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.165.226 user=root May 26 00:54:24 tuxlinux sshd[12946]: Failed password for root from 152.136.165.226 port 60824 ssh2 May 26 00:54:22 tuxlinux sshd[12946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.165.226 user=root May 26 00:54:24 tuxlinux sshd[12946]: Failed password for root from 152.136.165.226 port 60824 ssh2 May 26 00:56:46 tuxlinux sshd[12990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.165.226 user=root ...	2020-05-26 07:10:16
199.34.241.56	attack	$f2bV_matches	2020-05-26 06:30:39
222.186.173.226	attack	May 26 00:44:36 abendstille sshd\[9640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.226 user=root May 26 00:44:36 abendstille sshd\[9637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.226 user=root May 26 00:44:37 abendstille sshd\[9640\]: Failed password for root from 222.186.173.226 port 55515 ssh2 May 26 00:44:38 abendstille sshd\[9637\]: Failed password for root from 222.186.173.226 port 19020 ssh2 May 26 00:44:41 abendstille sshd\[9640\]: Failed password for root from 222.186.173.226 port 55515 ssh2 ...	2020-05-26 06:53:28
49.234.27.90	attack	May 26 00:47:00 piServer sshd[27760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.27.90 May 26 00:47:02 piServer sshd[27760]: Failed password for invalid user bnjoroge from 49.234.27.90 port 57600 ssh2 May 26 00:52:22 piServer sshd[28281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.27.90 ...	2020-05-26 07:04:40
146.185.130.101	attackbotsspam	334. On May 25 2020 experienced a Brute Force SSH login attempt -> 3 unique times by 146.185.130.101.	2020-05-26 07:10:48
190.14.233.89	attackspambots	Unauthorised access (May 25) SRC=190.14.233.89 LEN=52 TTL=116 ID=24080 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-26 06:32:54
139.199.30.155	attackbots	2020-05-25T22:24:37.515587shield sshd\[25956\]: Invalid user admin from 139.199.30.155 port 37008 2020-05-25T22:24:37.519482shield sshd\[25956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.30.155 2020-05-25T22:24:39.246819shield sshd\[25956\]: Failed password for invalid user admin from 139.199.30.155 port 37008 ssh2 2020-05-25T22:29:21.219380shield sshd\[27233\]: Invalid user tamas from 139.199.30.155 port 34060 2020-05-25T22:29:21.223071shield sshd\[27233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.30.155	2020-05-26 06:31:38
178.154.200.148	attack	[Tue May 26 03:17:59.948866 2020] [:error] [pid 12294:tid 139717653989120] [client 178.154.200.148:44802] [client 178.154.200.148] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xswn90N-8J72mePFxBHbNQAAAcI"] ...	2020-05-26 06:56:53

最近上报的IP列表

204.189.72.196	82.88.17.224	144.198.1.209	150.25.85.21
165.22.217.61	202.75.231.243	91.202.143.4	194.153.154.224
135.92.200.4	54.75.68.192	84.29.255.160	220.188.110.84
196.134.101.166	188.35.98.15	126.28.122.142	159.229.225.159
3.11.117.99	192.168.86.208	177.94.183.67	15.40.245.85