94.191.99.107 - IPInfo

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Joomla HTTP User Agent Object Injection Vulnerability	2020-02-15 05:21:04
attackbots	Automatic report - Banned IP Access	2019-10-12 18:10:43

相同子网IP讨论:

IP	类型	评论内容	时间
94.191.99.243	attack	May 24 15:38:26 Tower sshd[42253]: Connection from 94.191.99.243 port 44984 on 192.168.10.220 port 22 rdomain "" May 24 15:38:29 Tower sshd[42253]: Invalid user geometry from 94.191.99.243 port 44984 May 24 15:38:29 Tower sshd[42253]: error: Could not get shadow information for NOUSER May 24 15:38:29 Tower sshd[42253]: Failed password for invalid user geometry from 94.191.99.243 port 44984 ssh2 May 24 15:38:29 Tower sshd[42253]: Received disconnect from 94.191.99.243 port 44984:11: Bye Bye [preauth] May 24 15:38:29 Tower sshd[42253]: Disconnected from invalid user geometry 94.191.99.243 port 44984 [preauth]	2020-05-25 04:28:06
94.191.99.243	attack	k+ssh-bruteforce	2020-05-14 13:55:57
94.191.99.243	attack	2020-04-27 02:56:02 server sshd[20903]: Failed password for invalid user mysql_public from 94.191.99.243 port 59218 ssh2	2020-04-28 00:31:20
94.191.99.243	attackspambots	Invalid user student1 from 94.191.99.243 port 55270	2020-04-19 15:57:23
94.191.99.243	attack	$f2bV_matches	2020-03-26 15:53:40
94.191.99.243	attack	[MK-VM2] Blocked by UFW	2020-03-16 19:43:25
94.191.99.243	attackbots	Mar 13 11:32:13 ns37 sshd[24381]: Failed password for root from 94.191.99.243 port 37966 ssh2 Mar 13 11:33:37 ns37 sshd[24457]: Failed password for root from 94.191.99.243 port 51276 ssh2 Mar 13 11:34:15 ns37 sshd[24494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.243	2020-03-13 20:05:53
94.191.99.243	attackbotsspam	SSH Brute-Force Attack	2020-03-12 13:13:53
94.191.99.243	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-02-20 18:36:10
94.191.99.243	attackbotsspam	Feb 9 02:16:24 [host] sshd[32617]: Invalid user c Feb 9 02:16:24 [host] sshd[32617]: pam_unix(sshd: Feb 9 02:16:26 [host] sshd[32617]: Failed passwor	2020-02-09 10:26:46
94.191.99.243	attackspambots	Feb 8 14:26:20 yesfletchmain sshd\[18158\]: Invalid user rbg from 94.191.99.243 port 46534 Feb 8 14:26:20 yesfletchmain sshd\[18158\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.243 Feb 8 14:26:23 yesfletchmain sshd\[18158\]: Failed password for invalid user rbg from 94.191.99.243 port 46534 ssh2 Feb 8 14:30:37 yesfletchmain sshd\[18272\]: Invalid user sez from 94.191.99.243 port 36286 Feb 8 14:30:37 yesfletchmain sshd\[18272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.243 ...	2020-02-08 22:59:15
94.191.99.243	attackbotsspam	Automatic report - SSH Brute-Force Attack	2020-01-01 18:34:40
94.191.99.243	attackbotsspam	Dec 16 02:01:59 server sshd\[10329\]: Invalid user ledet from 94.191.99.243 Dec 16 02:01:59 server sshd\[10329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.243 Dec 16 02:02:01 server sshd\[10329\]: Failed password for invalid user ledet from 94.191.99.243 port 41772 ssh2 Dec 16 02:14:40 server sshd\[13693\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.243 user=bin Dec 16 02:14:42 server sshd\[13693\]: Failed password for bin from 94.191.99.243 port 33352 ssh2 ...	2019-12-16 09:02:22
94.191.99.243	attack	Dec 6 12:31:43 pornomens sshd\[30135\]: Invalid user shimasan from 94.191.99.243 port 56884 Dec 6 12:31:43 pornomens sshd\[30135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.243 Dec 6 12:31:46 pornomens sshd\[30135\]: Failed password for invalid user shimasan from 94.191.99.243 port 56884 ssh2 ...	2019-12-06 21:25:40
94.191.99.114	attackbotsspam	Nov 15 09:23:03 server sshd\[2590\]: Invalid user adria from 94.191.99.114 Nov 15 09:23:03 server sshd\[2590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.114 Nov 15 09:23:06 server sshd\[2590\]: Failed password for invalid user adria from 94.191.99.114 port 52346 ssh2 Nov 15 09:30:43 server sshd\[4747\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.114 user=root Nov 15 09:30:45 server sshd\[4747\]: Failed password for root from 94.191.99.114 port 42098 ssh2 ...	2019-11-15 15:21:23

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.191.99.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7494
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.191.99.107.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat May 11 21:28:32 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 107.99.191.94.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 107.99.191.94.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.189.199.48	attackspambots	Aug 30 19:19:24 h1745522 sshd[2329]: Invalid user admin from 206.189.199.48 port 46742 Aug 30 19:19:24 h1745522 sshd[2329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.199.48 Aug 30 19:19:24 h1745522 sshd[2329]: Invalid user admin from 206.189.199.48 port 46742 Aug 30 19:19:26 h1745522 sshd[2329]: Failed password for invalid user admin from 206.189.199.48 port 46742 ssh2 Aug 30 19:23:01 h1745522 sshd[2836]: Invalid user service from 206.189.199.48 port 52734 Aug 30 19:23:01 h1745522 sshd[2836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.199.48 Aug 30 19:23:01 h1745522 sshd[2836]: Invalid user service from 206.189.199.48 port 52734 Aug 30 19:23:03 h1745522 sshd[2836]: Failed password for invalid user service from 206.189.199.48 port 52734 ssh2 Aug 30 19:26:42 h1745522 sshd[3478]: Invalid user sekine from 206.189.199.48 port 58720 ...	2020-08-31 03:42:08
213.217.1.27	attackspambots	firewall-block, port(s): 34644/tcp, 36059/tcp	2020-08-31 03:23:15
102.36.164.141	attack	2020-08-30T17:46:01.924157vps1033 sshd[31894]: Failed password for invalid user teamspeak3 from 102.36.164.141 port 33374 ssh2 2020-08-30T17:48:14.166468vps1033 sshd[4224]: Invalid user david from 102.36.164.141 port 36998 2020-08-30T17:48:14.171520vps1033 sshd[4224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.36.164.141 2020-08-30T17:48:14.166468vps1033 sshd[4224]: Invalid user david from 102.36.164.141 port 36998 2020-08-30T17:48:15.882298vps1033 sshd[4224]: Failed password for invalid user david from 102.36.164.141 port 36998 ssh2 ...	2020-08-31 03:12:56
128.199.109.128	attackspam	2020-08-30T22:08:25.360877mail.standpoint.com.ua sshd[1318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.109.128 2020-08-30T22:08:25.358131mail.standpoint.com.ua sshd[1318]: Invalid user michael01 from 128.199.109.128 port 43384 2020-08-30T22:08:27.538226mail.standpoint.com.ua sshd[1318]: Failed password for invalid user michael01 from 128.199.109.128 port 43384 ssh2 2020-08-30T22:13:21.758288mail.standpoint.com.ua sshd[2003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.109.128 user=root 2020-08-30T22:13:23.905442mail.standpoint.com.ua sshd[2003]: Failed password for root from 128.199.109.128 port 36806 ssh2 ...	2020-08-31 03:16:44
134.209.96.131	attackbotsspam	Aug 30 14:28:47 haigwepa sshd[24520]: Failed password for root from 134.209.96.131 port 59846 ssh2 Aug 30 14:33:17 haigwepa sshd[25181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131 ...	2020-08-31 03:47:25
34.75.125.212	attack	Aug 30 16:35:52 ift sshd\[34303\]: Failed password for mysql from 34.75.125.212 port 47002 ssh2Aug 30 16:39:27 ift sshd\[34647\]: Invalid user ganesh from 34.75.125.212Aug 30 16:39:29 ift sshd\[34647\]: Failed password for invalid user ganesh from 34.75.125.212 port 52374 ssh2Aug 30 16:43:02 ift sshd\[35571\]: Invalid user wxc from 34.75.125.212Aug 30 16:43:04 ift sshd\[35571\]: Failed password for invalid user wxc from 34.75.125.212 port 57734 ssh2 ...	2020-08-31 03:22:06
96.92.139.225	attackspambots	2020-08-30T12:11:31.064Z Portscan drop, PROTO=TCP SPT=8767 DPT=23 2020-08-30T12:11:30.108Z Portscan drop, PROTO=TCP SPT=8767 DPT=23	2020-08-31 03:20:21
106.54.42.129	attack	Aug 30 16:17:58 fhem-rasp sshd[17159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.42.129 user=root Aug 30 16:18:00 fhem-rasp sshd[17159]: Failed password for root from 106.54.42.129 port 38086 ssh2 ...	2020-08-31 03:39:12
181.60.79.253	attack	Automatic Fail2ban report - Trying login SSH	2020-08-31 03:43:44
198.23.251.238	attack	Aug 30 12:11:19 *** sshd[15636]: User root from 198.23.251.238 not allowed because not listed in AllowUsers	2020-08-31 03:26:37
141.98.10.55	attack	Port Scanning, DDoS & Ransomware delivery	2020-08-31 03:45:59
78.36.152.186	attack	Aug 30 17:26:26 rush sshd[22609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.36.152.186 Aug 30 17:26:28 rush sshd[22609]: Failed password for invalid user ubuntu from 78.36.152.186 port 38549 ssh2 Aug 30 17:30:12 rush sshd[22880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.36.152.186 ...	2020-08-31 03:44:24
197.240.74.129	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-31 03:44:54
51.77.212.235	attackbots	Aug 30 14:02:17 ns382633 sshd\[11281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.235 user=root Aug 30 14:02:19 ns382633 sshd\[11281\]: Failed password for root from 51.77.212.235 port 43540 ssh2 Aug 30 14:11:24 ns382633 sshd\[13675\]: Invalid user scaner from 51.77.212.235 port 48058 Aug 30 14:11:24 ns382633 sshd\[13675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.212.235 Aug 30 14:11:26 ns382633 sshd\[13675\]: Failed password for invalid user scaner from 51.77.212.235 port 48058 ssh2	2020-08-31 03:21:53
155.94.160.110	attackbots	Multiple SSH authentication failures from 155.94.160.110	2020-08-31 03:44:12

最近上报的IP列表

45.168.154.69	183.122.44.222	182.160.194.74	187.148.109.33
50.109.54.73	180.248.14.254	171.92.154.92	67.205.135.237
205.207.36.126	136.45.104.26	134.209.2.30	219.238.152.153
132.171.253.154	203.144.79.245	69.12.86.77	92.57.96.188
65.19.167.131	14.186.118.15	104.149.196.234	185.169.1.160