140.143.130.52

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Exploited Host.	2020-07-26 01:03:10
attackbots	May 1 00:11:12 legacy sshd[9150]: Failed password for root from 140.143.130.52 port 45690 ssh2 May 1 00:16:15 legacy sshd[9267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 May 1 00:16:17 legacy sshd[9267]: Failed password for invalid user qswang from 140.143.130.52 port 47296 ssh2 ...	2020-05-01 06:22:05
attack	Invalid user kw from 140.143.130.52 port 41778	2020-04-22 00:56:51
attackspam	Apr 17 03:58:41 *** sshd[10821]: Invalid user hz from 140.143.130.52	2020-04-17 12:57:23
attackbots	fail2ban -- 140.143.130.52 ...	2020-04-05 15:50:01
attack	Apr 4 10:44:03 server sshd\[17153\]: Invalid user cl from 140.143.130.52 Apr 4 10:44:03 server sshd\[17153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Apr 4 10:44:05 server sshd\[17153\]: Failed password for invalid user cl from 140.143.130.52 port 58426 ssh2 Apr 4 11:11:49 server sshd\[25058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Apr 4 11:11:51 server sshd\[25058\]: Failed password for root from 140.143.130.52 port 48532 ssh2 ...	2020-04-04 16:37:41
attack	$f2bV_matches	2020-03-28 15:29:40
attack	Mar 24 04:58:38 srv206 sshd[19480]: Invalid user kurokawa from 140.143.130.52 ...	2020-03-24 13:13:08
attackbots	Jan 6 03:58:41 pi sshd[14701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Jan 6 03:58:43 pi sshd[14701]: Failed password for invalid user gnome-initial-setup from 140.143.130.52 port 46344 ssh2	2020-03-14 03:53:03
attackbotsspam	Fail2Ban Ban Triggered (2)	2020-03-12 18:37:07
attackspambots	Mar 1 18:45:56 server sshd\[23964\]: Invalid user speech-dispatcher from 140.143.130.52 Mar 1 18:45:56 server sshd\[23964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Mar 1 18:45:58 server sshd\[23964\]: Failed password for invalid user speech-dispatcher from 140.143.130.52 port 33494 ssh2 Mar 1 18:48:37 server sshd\[24199\]: Invalid user speech-dispatcher from 140.143.130.52 Mar 1 18:48:38 server sshd\[24199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 ...	2020-03-02 03:33:55
attackbots	Feb 22 05:37:48 mockhub sshd[29779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Feb 22 05:37:50 mockhub sshd[29779]: Failed password for invalid user administrator from 140.143.130.52 port 53756 ssh2 ...	2020-02-23 00:18:03
attackbotsspam	Jan 6 03:58:41 pi sshd[14701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Jan 6 03:58:43 pi sshd[14701]: Failed password for invalid user gnome-initial-setup from 140.143.130.52 port 46344 ssh2	2020-02-16 09:30:24
attackbots	Feb 15 20:28:47 v22018076622670303 sshd\[3060\]: Invalid user rabbitmq from 140.143.130.52 port 48150 Feb 15 20:28:47 v22018076622670303 sshd\[3060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Feb 15 20:28:49 v22018076622670303 sshd\[3060\]: Failed password for invalid user rabbitmq from 140.143.130.52 port 48150 ssh2 ...	2020-02-16 05:11:01
attack	Invalid user sinusbot from 140.143.130.52 port 49640	2020-01-18 22:09:14
attackspambots	$f2bV_matches	2020-01-11 23:24:21
attackbotsspam	Automatic report - Banned IP Access	2020-01-01 15:50:48
attackbots	Dec 18 00:17:24 microserver sshd[9707]: Invalid user institute from 140.143.130.52 port 35608 Dec 18 00:17:24 microserver sshd[9707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 18 00:17:26 microserver sshd[9707]: Failed password for invalid user institute from 140.143.130.52 port 35608 ssh2 Dec 18 00:23:54 microserver sshd[10581]: Invalid user nymann from 140.143.130.52 port 37964 Dec 18 00:23:54 microserver sshd[10581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 18 00:37:18 microserver sshd[12838]: Invalid user schultze from 140.143.130.52 port 42312 Dec 18 00:37:18 microserver sshd[12838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 18 00:37:20 microserver sshd[12838]: Failed password for invalid user schultze from 140.143.130.52 port 42312 ssh2 Dec 18 00:43:52 microserver sshd[13741]: Invalid user named from 140.143.13	2019-12-18 08:03:04
attackspam	$f2bV_matches	2019-12-11 21:28:57
attackbotsspam	2019-12-08T16:05:37.992711abusebot-2.cloudsearch.cf sshd\[29063\]: Invalid user nugent from 140.143.130.52 port 34288	2019-12-09 00:34:57
attackspambots	Dec 2 23:43:00 pi sshd\[22719\]: Failed password for invalid user zp from 140.143.130.52 port 52468 ssh2 Dec 2 23:50:26 pi sshd\[23142\]: Invalid user balmont from 140.143.130.52 port 55472 Dec 2 23:50:26 pi sshd\[23142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 2 23:50:28 pi sshd\[23142\]: Failed password for invalid user balmont from 140.143.130.52 port 55472 ssh2 Dec 3 00:04:38 pi sshd\[23891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=www-data ...	2019-12-03 08:11:50
attackbots	Nov 29 13:56:29 vibhu-HP-Z238-Microtower-Workstation sshd\[29808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Nov 29 13:56:30 vibhu-HP-Z238-Microtower-Workstation sshd\[29808\]: Failed password for root from 140.143.130.52 port 51120 ssh2 Nov 29 14:00:40 vibhu-HP-Z238-Microtower-Workstation sshd\[31457\]: Invalid user csgo from 140.143.130.52 Nov 29 14:00:40 vibhu-HP-Z238-Microtower-Workstation sshd\[31457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 29 14:00:42 vibhu-HP-Z238-Microtower-Workstation sshd\[31457\]: Failed password for invalid user csgo from 140.143.130.52 port 56138 ssh2 ...	2019-11-29 17:14:55
attackbotsspam	Nov 23 05:48:32 lcl-usvr-02 sshd[5409]: Invalid user my from 140.143.130.52 port 42270 Nov 23 05:48:32 lcl-usvr-02 sshd[5409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 23 05:48:32 lcl-usvr-02 sshd[5409]: Invalid user my from 140.143.130.52 port 42270 Nov 23 05:48:34 lcl-usvr-02 sshd[5409]: Failed password for invalid user my from 140.143.130.52 port 42270 ssh2 Nov 23 05:52:53 lcl-usvr-02 sshd[6634]: Invalid user webmaster from 140.143.130.52 port 45240 ...	2019-11-23 09:29:21
attackspambots	Nov 20 12:35:02 auw2 sshd\[9349\]: Invalid user nfs from 140.143.130.52 Nov 20 12:35:02 auw2 sshd\[9349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 20 12:35:03 auw2 sshd\[9349\]: Failed password for invalid user nfs from 140.143.130.52 port 43638 ssh2 Nov 20 12:38:42 auw2 sshd\[9638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Nov 20 12:38:44 auw2 sshd\[9638\]: Failed password for root from 140.143.130.52 port 46926 ssh2	2019-11-21 06:47:13
attackbotsspam	Nov 17 15:44:22 ks10 sshd[25429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 17 15:44:24 ks10 sshd[25429]: Failed password for invalid user t-bone from 140.143.130.52 port 44700 ssh2 ...	2019-11-18 00:08:48
attackspambots	Nov 5 21:44:33 hpm sshd\[12427\]: Invalid user user from 140.143.130.52 Nov 5 21:44:33 hpm sshd\[12427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 5 21:44:35 hpm sshd\[12427\]: Failed password for invalid user user from 140.143.130.52 port 33280 ssh2 Nov 5 21:49:38 hpm sshd\[12832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Nov 5 21:49:41 hpm sshd\[12832\]: Failed password for root from 140.143.130.52 port 43618 ssh2	2019-11-06 15:59:55
attackspam	Oct 24 07:24:03 MK-Soft-VM7 sshd[21547]: Failed password for root from 140.143.130.52 port 51376 ssh2 ...	2019-10-24 14:16:56
attackbots	Oct 22 05:51:42 MK-Soft-VM7 sshd[17825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Oct 22 05:51:44 MK-Soft-VM7 sshd[17825]: Failed password for invalid user alyssa from 140.143.130.52 port 50376 ssh2 ...	2019-10-22 17:05:19
attackspam	Oct 21 11:00:44 ArkNodeAT sshd\[16860\]: Invalid user fm365 from 140.143.130.52 Oct 21 11:00:44 ArkNodeAT sshd\[16860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Oct 21 11:00:45 ArkNodeAT sshd\[16860\]: Failed password for invalid user fm365 from 140.143.130.52 port 34324 ssh2	2019-10-21 17:54:29
attackbots	Oct 16 20:27:16 php1 sshd\[3791\]: Invalid user woofer from 140.143.130.52 Oct 16 20:27:16 php1 sshd\[3791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Oct 16 20:27:18 php1 sshd\[3791\]: Failed password for invalid user woofer from 140.143.130.52 port 37892 ssh2 Oct 16 20:32:26 php1 sshd\[4379\]: Invalid user t3mp from 140.143.130.52 Oct 16 20:32:26 php1 sshd\[4379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52	2019-10-17 18:03:08

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.130.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5619
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.130.52.			IN	A

;; AUTHORITY SECTION:
.			3280	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033102 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 01 09:24:23 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 52.130.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 52.130.143.140.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
222.252.95.161	attack	Unauthorized connection attempt from IP address 222.252.95.161 on Port 445(SMB)	2020-07-16 03:09:59
206.72.198.20	attackbots	$f2bV_matches	2020-07-16 02:52:23
20.48.49.128	attack	Jul 15 09:25:50 lunarastro sshd[4639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.48.49.128 Jul 15 09:25:52 lunarastro sshd[4639]: Failed password for invalid user admin from 20.48.49.128 port 36061 ssh2	2020-07-16 03:17:10
202.158.123.42	attackbots	Jul 15 05:25:28 lunarastro sshd[3453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.158.123.42 Jul 15 05:25:29 lunarastro sshd[3453]: Failed password for invalid user prueba1 from 202.158.123.42 port 34074 ssh2	2020-07-16 02:53:41
103.124.152.208	attackspam	Unauthorized connection attempt from IP address 103.124.152.208 on Port 445(SMB)	2020-07-16 03:08:50
195.175.17.158	attack	Unauthorized connection attempt from IP address 195.175.17.158 on Port 445(SMB)	2020-07-16 03:02:03
181.15.221.77	attackspam	20/7/15@09:01:23: FAIL: Alarm-Intrusion address from=181.15.221.77 ...	2020-07-16 03:06:16
144.217.94.188	attack	Exploited Host.	2020-07-16 03:08:20
13.70.89.23	attackspambots	failed root login	2020-07-16 02:46:52
159.65.11.253	attack	2020-07-15T23:35:19.918658SusPend.routelink.net.id sshd[84452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=dev.plus.goline.id 2020-07-15T23:35:19.910939SusPend.routelink.net.id sshd[84452]: Invalid user gopi from 159.65.11.253 port 36412 2020-07-15T23:35:21.787688SusPend.routelink.net.id sshd[84452]: Failed password for invalid user gopi from 159.65.11.253 port 36412 ssh2 ...	2020-07-16 03:02:21
211.219.18.186	attackspam	(sshd) Failed SSH login from 211.219.18.186 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 15 18:07:59 amsweb01 sshd[20543]: Invalid user webmaster from 211.219.18.186 port 42580 Jul 15 18:08:01 amsweb01 sshd[20543]: Failed password for invalid user webmaster from 211.219.18.186 port 42580 ssh2 Jul 15 18:08:26 amsweb01 sshd[20653]: Invalid user system from 211.219.18.186 port 43943 Jul 15 18:08:29 amsweb01 sshd[20653]: Failed password for invalid user system from 211.219.18.186 port 43943 ssh2 Jul 15 18:08:40 amsweb01 sshd[20666]: Invalid user moses from 211.219.18.186 port 44464	2020-07-16 02:47:17
40.87.107.162	attackspambots	Jul 15 12:59:52 pi sshd[12538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.87.107.162 Jul 15 12:59:54 pi sshd[12538]: Failed password for invalid user magnos from 40.87.107.162 port 11731 ssh2	2020-07-16 02:53:01
13.70.177.141	attack	$f2bV_matches	2020-07-16 03:11:52
62.148.142.202	attackbots	SSH invalid-user multiple login attempts	2020-07-16 02:48:08
106.52.137.134	attack	2020-07-15T22:50:19.413998hostname sshd[58232]: Failed password for invalid user openerp from 106.52.137.134 port 38200 ssh2 ...	2020-07-16 02:51:14

最近上报的IP列表

73.63.68.254	206.189.130.251	68.46.208.41	64.190.4.62
103.74.119.100	185.254.122.12	125.133.65.226	132.232.108.143
113.173.105.7	103.74.123.83	87.112.165.121	68.183.35.69
113.169.136.51	37.59.46.60	89.151.134.78	82.132.241.238
187.19.212.75	178.128.241.194	182.243.91.145	76.120.104.36