140.143.128.66

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-10-03T22:17:57.831452hostname sshd[62950]: Failed password for invalid user david from 140.143.128.66 port 58782 ssh2 ...	2020-10-04 02:12:36
attackbotsspam	24998/tcp 4610/tcp 24033/tcp [2020-09-09/10-03]3pkt	2020-10-03 17:57:41
attackspambots	Aug 26 06:06:17 XXX sshd[30111]: Invalid user cacheusr from 140.143.128.66 port 60972	2020-08-27 09:40:00
attack	2020-08-20T12:10:18.884841vps-d63064a2 sshd[3917]: Invalid user mwb from 140.143.128.66 port 44882 2020-08-20T12:10:20.913221vps-d63064a2 sshd[3917]: Failed password for invalid user mwb from 140.143.128.66 port 44882 ssh2 2020-08-20T12:16:21.342738vps-d63064a2 sshd[3953]: User root from 140.143.128.66 not allowed because not listed in AllowUsers 2020-08-20T12:16:21.358608vps-d63064a2 sshd[3953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.128.66 user=root 2020-08-20T12:16:21.342738vps-d63064a2 sshd[3953]: User root from 140.143.128.66 not allowed because not listed in AllowUsers 2020-08-20T12:16:23.544764vps-d63064a2 sshd[3953]: Failed password for invalid user root from 140.143.128.66 port 48018 ssh2 ...	2020-08-21 01:37:15
attackspam	Aug 11 05:47:19 host sshd[2117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.128.66 user=root Aug 11 05:47:21 host sshd[2117]: Failed password for root from 140.143.128.66 port 38478 ssh2 ...	2020-08-11 19:40:05
attackbotsspam	Jul 26 05:04:41 l03 sshd[9770]: Invalid user mms from 140.143.128.66 port 60362 ...	2020-07-26 15:18:13
attackspambots	May 4 15:19:46 host sshd[39307]: Invalid user oliver from 140.143.128.66 port 36586 ...	2020-05-05 03:14:48
attack	(sshd) Failed SSH login from 140.143.128.66 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 19 18:27:52 srv sshd[601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.128.66 user=root Apr 19 18:27:54 srv sshd[601]: Failed password for root from 140.143.128.66 port 41762 ssh2 Apr 19 18:37:32 srv sshd[826]: Invalid user postgres from 140.143.128.66 port 42198 Apr 19 18:37:34 srv sshd[826]: Failed password for invalid user postgres from 140.143.128.66 port 42198 ssh2 Apr 19 18:42:22 srv sshd[931]: Invalid user ftpuser from 140.143.128.66 port 59160	2020-04-20 01:02:48
attackbots	$f2bV_matches	2020-04-06 06:30:41
attackspam	Mar 24 02:47:20 firewall sshd[14900]: Invalid user mn from 140.143.128.66 Mar 24 02:47:22 firewall sshd[14900]: Failed password for invalid user mn from 140.143.128.66 port 56016 ssh2 Mar 24 02:52:07 firewall sshd[15085]: Invalid user eve from 140.143.128.66 ...	2020-03-24 17:03:26

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.128.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26221
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.128.66.			IN	A

;; AUTHORITY SECTION:
.			261	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032400 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 24 17:03:16 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 66.128.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.128.143.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.76.92.22	attackbotsspam	[portscan] Port scan	2019-07-28 17:15:04
109.115.228.230	attackbotsspam	Port scan and direct access per IP instead of hostname	2019-07-28 17:22:29
218.92.0.172	attackspambots	Jul 28 06:58:25 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Jul 28 06:58:27 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2 Jul 28 06:58:30 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2 Jul 28 06:58:32 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2 Jul 28 06:58:35 Ubuntu-1404-trusty-64-minimal sshd\[21089\]: Failed password for root from 218.92.0.172 port 59030 ssh2	2019-07-28 16:56:57
106.45.0.111	attackspambots	GET /common.js HTTP/1.1	2019-07-28 17:39:09
39.134.26.20	attack	Jul 28 03:05:24 mail kernel: \[1537165.698252\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=39.134.26.20 DST=91.205.173.180 LEN=52 TOS=0x04 PREC=0x00 TTL=50 ID=22293 DF PROTO=TCP SPT=39920 DPT=6380 WINDOW=29200 RES=0x00 SYN URGP=0 Jul 28 03:05:25 mail kernel: \[1537166.700875\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=39.134.26.20 DST=91.205.173.180 LEN=52 TOS=0x04 PREC=0x00 TTL=49 ID=46261 DF PROTO=TCP SPT=30396 DPT=7001 WINDOW=29200 RES=0x00 SYN URGP=0 Jul 28 03:05:29 mail kernel: \[1537170.700622\] \[UFW BLOCK\] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=39.134.26.20 DST=91.205.173.180 LEN=52 TOS=0x04 PREC=0x00 TTL=49 ID=31223 DF PROTO=TCP SPT=32289 DPT=8088 WINDOW=29200 RES=0x00 SYN URGP=0	2019-07-28 17:10:17
12.247.117.222	attackbots	Port scan and direct access per IP instead of hostname	2019-07-28 17:10:37
106.75.65.4	attackspam	Jul 28 06:33:15 pornomens sshd\[18737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.65.4 user=root Jul 28 06:33:17 pornomens sshd\[18737\]: Failed password for root from 106.75.65.4 port 43352 ssh2 Jul 28 06:36:18 pornomens sshd\[18752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.65.4 user=root ...	2019-07-28 17:17:03
107.170.237.219	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-28 17:28:35
37.49.227.202	attackspambots	Scanning random ports - tries to find possible vulnerable services	2019-07-28 17:03:42
116.0.4.122	attackspambots	Port scan and direct access per IP instead of hostname	2019-07-28 17:13:53
91.185.236.236	attackbotsspam	Sending SPAM email	2019-07-28 17:21:57
110.80.25.9	attackspambots	GET /TP/public/index.php HTTP/1.1	2019-07-28 17:15:33
108.178.61.58	attackbotsspam	Port scan and direct access per IP instead of hostname	2019-07-28 17:24:46
79.137.46.233	attackbots	C2,WP GET /wp-login.php	2019-07-28 17:25:53
107.170.201.217	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-28 18:13:49

最近上报的IP列表

49.144.73.9	180.242.183.201	171.227.105.217	152.136.142.30
58.187.166.127	112.197.70.120	113.22.139.204	112.194.117.19
223.149.181.220	223.10.242.253	221.199.61.122	183.80.236.84
182.117.163.118	180.177.107.16	180.116.209.226	179.232.76.114
171.110.239.2	171.103.160.210	171.95.90.53	153.187.167.124