140.143.12.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port scan denied	2020-07-13 23:39:11

相同子网IP讨论:

IP	类型	评论内容	时间
140.143.127.36	attackspambots	Invalid user rodney from 140.143.127.36 port 43612	2020-10-14 06:48:02
140.143.127.36	attackspam	Oct 12 15:12:23 jumpserver sshd[89982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 Oct 12 15:12:23 jumpserver sshd[89982]: Invalid user tammy from 140.143.127.36 port 53684 Oct 12 15:12:26 jumpserver sshd[89982]: Failed password for invalid user tammy from 140.143.127.36 port 53684 ssh2 ...	2020-10-13 00:23:26
140.143.12.19	attackspam	(sshd) Failed SSH login from 140.143.12.19 (CN/China/-): 5 in the last 3600 secs	2020-10-08 05:55:58
140.143.12.19	attack	Oct 6 22:31:46 logopedia-1vcpu-1gb-nyc1-01 sshd[188613]: Failed password for root from 140.143.12.19 port 38288 ssh2 ...	2020-10-07 14:13:23
140.143.128.66	attackspam	2020-10-03T22:17:57.831452hostname sshd[62950]: Failed password for invalid user david from 140.143.128.66 port 58782 ssh2 ...	2020-10-04 02:12:36
140.143.128.66	attackbotsspam	24998/tcp 4610/tcp 24033/tcp [2020-09-09/10-03]3pkt	2020-10-03 17:57:41
140.143.127.36	attackspambots	Oct 2 21:39:46 sshd\[15398\]: Invalid user andrei from 140.143.127.36Oct 2 21:39:47 sshd\[15398\]: Failed password for invalid user andrei from 140.143.127.36 port 38994 ssh2 ...	2020-10-03 06:30:53
140.143.127.36	attackbotsspam	SSH invalid-user multiple login try	2020-10-03 01:59:40
140.143.127.36	attackspam	SSH invalid-user multiple login try	2020-10-02 22:27:47
140.143.127.36	attackbotsspam	2020-10-02T11:35:07.136168snf-827550 sshd[15350]: Invalid user sysadmin from 140.143.127.36 port 54170 2020-10-02T11:35:09.300594snf-827550 sshd[15350]: Failed password for invalid user sysadmin from 140.143.127.36 port 54170 ssh2 2020-10-02T11:41:29.570905snf-827550 sshd[15361]: Invalid user filmlight from 140.143.127.36 port 60304 ...	2020-10-02 18:59:07
140.143.127.36	attack	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 Failed password for invalid user andres from 140.143.127.36 port 44532 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36	2020-10-02 15:34:17
140.143.121.45	attackspambots	2020-09-23T19:06:00.482372mail.broermann.family sshd[23458]: Failed password for invalid user nifi from 140.143.121.45 port 33550 ssh2 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:02.475776mail.broermann.family sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.121.45 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:04.751154mail.broermann.family sshd[23466]: Failed password for invalid user hadoop from 140.143.121.45 port 33826 ssh2 ...	2020-09-24 20:00:07
140.143.121.45	attackspam	2020-09-23T19:06:00.482372mail.broermann.family sshd[23458]: Failed password for invalid user nifi from 140.143.121.45 port 33550 ssh2 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:02.475776mail.broermann.family sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.121.45 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:04.751154mail.broermann.family sshd[23466]: Failed password for invalid user hadoop from 140.143.121.45 port 33826 ssh2 ...	2020-09-24 12:01:31
140.143.121.45	attack	2020-09-23T19:06:00.482372mail.broermann.family sshd[23458]: Failed password for invalid user nifi from 140.143.121.45 port 33550 ssh2 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:02.475776mail.broermann.family sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.121.45 2020-09-23T19:06:02.472343mail.broermann.family sshd[23466]: Invalid user hadoop from 140.143.121.45 port 33826 2020-09-23T19:06:04.751154mail.broermann.family sshd[23466]: Failed password for invalid user hadoop from 140.143.121.45 port 33826 ssh2 ...	2020-09-24 03:29:47
140.143.127.36	attackspam	Aug 29 21:16:20 localhost sshd[43770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 user=root Aug 29 21:16:21 localhost sshd[43770]: Failed password for root from 140.143.127.36 port 40564 ssh2 Aug 29 21:21:39 localhost sshd[44310]: Invalid user bartek from 140.143.127.36 port 43026 Aug 29 21:21:39 localhost sshd[44310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.127.36 Aug 29 21:21:39 localhost sshd[44310]: Invalid user bartek from 140.143.127.36 port 43026 Aug 29 21:21:41 localhost sshd[44310]: Failed password for invalid user bartek from 140.143.127.36 port 43026 ssh2 ...	2020-08-30 05:32:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.12.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1528
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.12.119.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071300 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 13 23:39:03 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 119.12.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 119.12.143.140.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.147	attackspambots	Oct 7 15:59:02 lcl-usvr-01 sshd[11710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Oct 7 15:59:04 lcl-usvr-01 sshd[11710]: Failed password for root from 222.186.180.147 port 28482 ssh2	2019-10-07 17:09:13
109.123.117.229	attackspam	Honeypot hit.	2019-10-07 17:08:44
118.25.134.166	attackspambots	[Mon Oct 07 04:46:22.345516 2019] [authz_core:error] [pid 15159] [client 118.25.134.166:60436] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/l.php [Mon Oct 07 04:46:22.892080 2019] [authz_core:error] [pid 16491] [client 118.25.134.166:60712] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/phpinfo.php [Mon Oct 07 04:46:34.352003 2019] [authz_core:error] [pid 9962] [client 118.25.134.166:60910] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/test.php ...	2019-10-07 17:17:04
59.10.6.152	attack	no	2019-10-07 17:15:48
190.64.141.18	attack	2019-10-07T07:25:54.789464shield sshd\[18245\]: Invalid user Passw0rt123 from 190.64.141.18 port 37767 2019-10-07T07:25:54.794697shield sshd\[18245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-141-18.ir-static.anteldata.net.uy 2019-10-07T07:25:57.127083shield sshd\[18245\]: Failed password for invalid user Passw0rt123 from 190.64.141.18 port 37767 ssh2 2019-10-07T07:30:57.365637shield sshd\[18758\]: Invalid user P4rol4@2016 from 190.64.141.18 port 57692 2019-10-07T07:30:57.370221shield sshd\[18758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=r190-64-141-18.ir-static.anteldata.net.uy	2019-10-07 17:06:44
121.66.224.90	attackspambots	Automatic report - Banned IP Access	2019-10-07 16:50:21
119.49.17.155	attackbots	Unauthorised access (Oct 7) SRC=119.49.17.155 LEN=40 TTL=49 ID=4223 TCP DPT=8080 WINDOW=63201 SYN Unauthorised access (Oct 7) SRC=119.49.17.155 LEN=40 TTL=49 ID=38163 TCP DPT=8080 WINDOW=35694 SYN Unauthorised access (Oct 7) SRC=119.49.17.155 LEN=40 TTL=49 ID=18821 TCP DPT=8080 WINDOW=63201 SYN Unauthorised access (Oct 6) SRC=119.49.17.155 LEN=40 TTL=49 ID=36639 TCP DPT=8080 WINDOW=42566 SYN Unauthorised access (Oct 6) SRC=119.49.17.155 LEN=40 TTL=49 ID=38756 TCP DPT=8080 WINDOW=64489 SYN Unauthorised access (Oct 6) SRC=119.49.17.155 LEN=40 TTL=49 ID=60090 TCP DPT=8080 WINDOW=35694 SYN	2019-10-07 16:46:02
61.246.7.145	attack	Oct 6 19:27:20 auw2 sshd\[26292\]: Invalid user Monaco!23 from 61.246.7.145 Oct 6 19:27:20 auw2 sshd\[26292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.246.7.145 Oct 6 19:27:21 auw2 sshd\[26292\]: Failed password for invalid user Monaco!23 from 61.246.7.145 port 49768 ssh2 Oct 6 19:32:16 auw2 sshd\[26690\]: Invalid user Cent0s2018 from 61.246.7.145 Oct 6 19:32:16 auw2 sshd\[26690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.246.7.145	2019-10-07 16:56:30
5.196.75.178	attack	Oct 7 09:59:21 legacy sshd[15409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.178 Oct 7 09:59:23 legacy sshd[15409]: Failed password for invalid user Professur123 from 5.196.75.178 port 39520 ssh2 Oct 7 10:06:59 legacy sshd[15665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.75.178 ...	2019-10-07 16:54:37
81.82.87.230	attackspambots	SSH invalid-user multiple login attempts	2019-10-07 17:01:15
121.3.157.198	attackbotsspam	Unauthorised access (Oct 7) SRC=121.3.157.198 LEN=40 TTL=55 ID=59088 TCP DPT=8080 WINDOW=5291 SYN Unauthorised access (Oct 7) SRC=121.3.157.198 LEN=40 TTL=55 ID=57747 TCP DPT=8080 WINDOW=6730 SYN Unauthorised access (Oct 6) SRC=121.3.157.198 LEN=40 TTL=55 ID=16404 TCP DPT=8080 WINDOW=5291 SYN Unauthorised access (Oct 6) SRC=121.3.157.198 LEN=40 TTL=55 ID=36771 TCP DPT=8080 WINDOW=6730 SYN	2019-10-07 17:09:45
138.197.179.102	attack	Oct 7 00:36:31 nxxxxxxx sshd[19333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.102 user=r.r Oct 7 00:36:33 nxxxxxxx sshd[19333]: Failed password for r.r from 138.197.179.102 port 34402 ssh2 Oct 7 00:36:33 nxxxxxxx sshd[19333]: Received disconnect from 138.197.179.102: 11: Bye Bye [preauth] Oct 7 00:41:20 nxxxxxxx sshd[19724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.102 user=r.r Oct 7 00:41:22 nxxxxxxx sshd[19724]: Failed password for r.r from 138.197.179.102 port 54628 ssh2 Oct 7 00:41:22 nxxxxxxx sshd[19724]: Received disconnect from 138.197.179.102: 11: Bye Bye [preauth] Oct 7 00:45:02 nxxxxxxx sshd[20043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.179.102 user=r.r Oct 7 00:45:04 nxxxxxxx sshd[20043]: Failed password for r.r from 138.197.179.102 port 39986 ssh2 Oct 7 00:45:04 nxxxxxxx ss........ -------------------------------	2019-10-07 16:51:25
222.186.15.33	attackspambots	Oct 7 03:47:19 *** sshd[27634]: User root from 222.186.15.33 not allowed because not listed in AllowUsers	2019-10-07 16:53:54
134.209.170.127	attackbots	Oct 7 10:58:19 vps691689 sshd[373]: Failed password for root from 134.209.170.127 port 38808 ssh2 Oct 7 11:02:22 vps691689 sshd[443]: Failed password for root from 134.209.170.127 port 49892 ssh2 ...	2019-10-07 17:16:06
111.73.231.127	attackbots	Unauthorised access (Oct 7) SRC=111.73.231.127 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=29709 TCP DPT=8080 WINDOW=850 SYN	2019-10-07 17:15:21

最近上报的IP列表

166.63.133.179	188.206.157.15	37.123.155.11	103.190.57.64
128.199.139.39	76.231.147.191	58.187.86.58	42.81.142.176
192.241.214.134	123.6.5.104	112.212.133.140	83.221.222.94
84.47.168.226	211.22.204.204	160.176.133.184	114.34.56.230
1.34.199.125	187.227.253.148	93.96.108.155	128.72.246.172