140.143.12.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan denied	2020-07-13 23:39:11

相同子网IP讨论:

IP	类型	评论内容	时间
140.143.127.36	attackspambots	Invalid user rodney from 140.143.127.36 port 43612	2020-10-14 06:48:02
140.143.127.36	attackspam	Oct 12 15:12:23 jumpserver sshd[89982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 Oct 12 15:12:23 jumpserver sshd[89982]: Invalid user tammy from 140.143.127.36 port 53684 Oct 12 15:12:26 jumpserver sshd[89982]: Failed password for invalid user tammy from 140.143.127.36 port 53684 ssh2 ...	2020-10-13 00:23:26
140.143.12.19	attackspam	(sshd) Failed SSH login from 140.143.12.19 (CN/China/-): 5 in the last 3600 secs	2020-10-08 05:55:58
140.143.12.19	attack	Oct 6 22:31:46 logopedia-1vcpu-1gb-nyc1-01 sshd[188613]: Failed password for root from 140.143.12.19 port 38288 ssh2 ...	2020-10-07 14:13:23
140.143.128.66	attackspam	2020-10-03T22:17:57.831452hostname sshd[62950]: Failed password for invalid user david from 140.143.128.66 port 58782 ssh2 ...	2020-10-04 02:12:36
140.143.128.66	attackbotsspam	24998/tcp 4610/tcp 24033/tcp [2020-09-09/10-03]3pkt	2020-10-03 17:57:41
140.143.127.36	attackspambots	Oct 2 21:39:46 sshd\[15398\]: Invalid user andrei from 140.143.127.36Oct 2 21:39:47 sshd\[15398\]: Failed password for invalid user andrei from 140.143.127.36 port 38994 ssh2 ...	2020-10-03 06:30:53
140.143.127.36	attackbotsspam	SSH invalid-user multiple login try	2020-10-03 01:59:40
140.143.127.36	attackspam	SSH invalid-user multiple login try	2020-10-02 22:27:47
140.143.127.36	attackbotsspam	2020-10-02T11:35:07.136168snf-827550 sshd[15350]: Invalid user sysadmin from 140.143.127.36 port 54170 2020-10-02T11:35:09.300594snf-827550 sshd[15350]: Failed password for invalid user sysadmin from 140.143.127.36 port 54170 ssh2 2020-10-02T11:41:29.570905snf-827550 sshd[15361]: Invalid user filmlight from 140.143.127.36 port 60304 ...	2020-10-02 18:59:07
140.143.127.36	attack	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 Failed password for invalid user andres from 140.143.127.36 port 44532 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36	2020-10-02 15:34:17
140.143.121.45	attackspambots	2020-09-23T19:06:00.482372mail.broermann.family sshd[23458]: Failed password for invalid user nifi from 140.143.121.45 port 33550 ssh2 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:02.475776mail.broermann.family sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.121.45 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:04.751154mail.broermann.family sshd[23466]: Failed password for invalid user hadoop from 140.143.121.45 port 33826 ssh2 ...	2020-09-24 20:00:07
140.143.121.45	attackspam	2020-09-23T19:06:00.482372mail.broermann.family sshd[23458]: Failed password for invalid user nifi from 140.143.121.45 port 33550 ssh2 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:02.475776mail.broermann.family sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.121.45 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:04.751154mail.broermann.family sshd[23466]: Failed password for invalid user hadoop from 140.143.121.45 port 33826 ssh2 ...	2020-09-24 12:01:31
140.143.121.45	attack	2020-09-23T19:06:00.482372mail.broermann.family sshd[23458]: Failed password for invalid user nifi from 140.143.121.45 port 33550 ssh2 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:02.475776mail.broermann.family sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.121.45 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:04.751154mail.broermann.family sshd[23466]: Failed password for invalid user hadoop from 140.143.121.45 port 33826 ssh2 ...	2020-09-24 03:29:47
140.143.127.36	attackspam	Aug 29 21:16:20 localhost sshd[43770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 user=root Aug 29 21:16:21 localhost sshd[43770]: Failed password for root from 140.143.127.36 port 40564 ssh2 Aug 29 21:21:39 localhost sshd[44310]: Invalid user bartek from 140.143.127.36 port 43026 Aug 29 21:21:39 localhost sshd[44310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 Aug 29 21:21:39 localhost sshd[44310]: Invalid user bartek from 140.143.127.36 port 43026 Aug 29 21:21:41 localhost sshd[44310]: Failed password for invalid user bartek from 140.143.127.36 port 43026 ssh2 ...	2020-08-30 05:32:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.12.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1528
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.12.119.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071300 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 13 23:39:03 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 119.12.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 119.12.143.140.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
80.66.81.143	attackbotsspam	Jan 9 14:27:43 srv01 postfix/smtpd\[3344\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 14:28:05 srv01 postfix/smtpd\[3346\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 14:29:00 srv01 postfix/smtpd\[3344\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 14:29:20 srv01 postfix/smtpd\[3346\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 9 14:32:13 srv01 postfix/smtpd\[3344\]: warning: unknown\[80.66.81.143\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-09 21:35:08
222.186.15.91	attackbots	2020-01-09T02:09:46.477292homeassistant sshd[19040]: Failed password for root from 222.186.15.91 port 62162 ssh2 2020-01-09T13:25:48.609374homeassistant sshd[28635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.91 user=root ...	2020-01-09 21:27:03
222.186.180.9	attack	Jan 9 14:38:06 localhost sshd\[3554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root Jan 9 14:38:08 localhost sshd\[3554\]: Failed password for root from 222.186.180.9 port 9966 ssh2 Jan 9 14:38:11 localhost sshd\[3554\]: Failed password for root from 222.186.180.9 port 9966 ssh2	2020-01-09 21:39:11
123.180.44.45	attackbots	2020-01-09 07:10:16 dovecot_login authenticator failed for (bwmyd) [123.180.44.45]:49768 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=lijing@lerctr.org) 2020-01-09 07:10:24 dovecot_login authenticator failed for (fglkn) [123.180.44.45]:49768 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=lijing@lerctr.org) 2020-01-09 07:10:35 dovecot_login authenticator failed for (pyrxk) [123.180.44.45]:49768 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=lijing@lerctr.org) ...	2020-01-09 21:51:15
104.236.226.93	attackbots	$f2bV_matches	2020-01-09 21:51:42
49.88.112.66	attackbots	Jan 9 14:13:27 v22018076622670303 sshd\[18297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root Jan 9 14:13:30 v22018076622670303 sshd\[18297\]: Failed password for root from 49.88.112.66 port 37907 ssh2 Jan 9 14:13:33 v22018076622670303 sshd\[18297\]: Failed password for root from 49.88.112.66 port 37907 ssh2 ...	2020-01-09 21:30:06
190.218.160.90	attackbots	2020-01-09T14:10:53.989374 X postfix/smtpd[60491]: NOQUEUE: reject: RCPT from unknown[190.218.160.90]: 554 5.7.1 Service unavailable; Client host [190.218.160.90] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?190.218.160.90; from= to= proto=ESMTP helo=	2020-01-09 21:34:17
60.190.114.82	attack	Jan 9 10:10:39 ws24vmsma01 sshd[177417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.190.114.82 Jan 9 10:10:41 ws24vmsma01 sshd[177417]: Failed password for invalid user dyl from 60.190.114.82 port 54633 ssh2 ...	2020-01-09 21:45:35
134.48.5.250	attack	Jan 9 14:11:33 lakhesis sshd[31144]: Invalid user mlsmhostnameh from 134.48.5.250 port 52842 Jan 9 14:11:33 lakhesis sshd[31144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.48.5.250 Jan 9 14:11:35 lakhesis sshd[31144]: Failed password for invalid user mlsmhostnameh from 134.48.5.250 port 52842 ssh2 Jan 9 14:14:35 lakhesis sshd[32198]: Invalid user hta from 134.48.5.250 port 57002 Jan 9 14:14:35 lakhesis sshd[32198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.48.5.250 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.48.5.250	2020-01-09 21:44:17
179.232.81.172	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-09 22:00:06
51.91.212.80	attack	SIP/5060 Probe, BF, Hack -	2020-01-09 21:55:00
60.211.25.209	attackspambots	Honeypot hit.	2020-01-09 21:32:16
14.233.45.5	attackspam	1578575456 - 01/09/2020 14:10:56 Host: 14.233.45.5/14.233.45.5 Port: 445 TCP Blocked	2020-01-09 21:33:16
157.7.52.201	attackbotsspam	Jan 9 16:06:22 server sshd\[29750\]: Invalid user mj from 157.7.52.201 Jan 9 16:06:22 server sshd\[29750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=m720x.dwzumq.tokyo Jan 9 16:06:25 server sshd\[29750\]: Failed password for invalid user mj from 157.7.52.201 port 55078 ssh2 Jan 9 16:10:30 server sshd\[31077\]: Invalid user bxp from 157.7.52.201 Jan 9 16:10:30 server sshd\[31077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=m720x.dwzumq.tokyo ...	2020-01-09 21:57:29
222.186.175.182	attack	Jan 9 14:11:15 markkoudstaal sshd[22815]: Failed password for root from 222.186.175.182 port 17990 ssh2 Jan 9 14:11:19 markkoudstaal sshd[22815]: Failed password for root from 222.186.175.182 port 17990 ssh2 Jan 9 14:11:22 markkoudstaal sshd[22815]: Failed password for root from 222.186.175.182 port 17990 ssh2 Jan 9 14:11:26 markkoudstaal sshd[22815]: Failed password for root from 222.186.175.182 port 17990 ssh2	2020-01-09 21:25:18

最近上报的IP列表

166.63.133.179	188.206.157.15	37.123.155.11	103.190.57.64
128.199.139.39	76.231.147.191	58.187.86.58	42.81.142.176
192.241.214.134	123.6.5.104	112.212.133.140	83.221.222.94
84.47.168.226	211.22.204.204	160.176.133.184	114.34.56.230
1.34.199.125	187.227.253.148	93.96.108.155	128.72.246.172