140.143.130.52

基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Exploited Host.	2020-07-26 01:03:10
attackbots	May 1 00:11:12 legacy sshd[9150]: Failed password for root from 140.143.130.52 port 45690 ssh2 May 1 00:16:15 legacy sshd[9267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 May 1 00:16:17 legacy sshd[9267]: Failed password for invalid user qswang from 140.143.130.52 port 47296 ssh2 ...	2020-05-01 06:22:05
attack	Invalid user kw from 140.143.130.52 port 41778	2020-04-22 00:56:51
attackspam	Apr 17 03:58:41 *** sshd[10821]: Invalid user hz from 140.143.130.52	2020-04-17 12:57:23
attackbots	fail2ban -- 140.143.130.52 ...	2020-04-05 15:50:01
attack	Apr 4 10:44:03 server sshd\[17153\]: Invalid user cl from 140.143.130.52 Apr 4 10:44:03 server sshd\[17153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Apr 4 10:44:05 server sshd\[17153\]: Failed password for invalid user cl from 140.143.130.52 port 58426 ssh2 Apr 4 11:11:49 server sshd\[25058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Apr 4 11:11:51 server sshd\[25058\]: Failed password for root from 140.143.130.52 port 48532 ssh2 ...	2020-04-04 16:37:41
attack	$f2bV_matches	2020-03-28 15:29:40
attack	Mar 24 04:58:38 srv206 sshd[19480]: Invalid user kurokawa from 140.143.130.52 ...	2020-03-24 13:13:08
attackbots	Jan 6 03:58:41 pi sshd[14701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Jan 6 03:58:43 pi sshd[14701]: Failed password for invalid user gnome-initial-setup from 140.143.130.52 port 46344 ssh2	2020-03-14 03:53:03
attackbotsspam	Fail2Ban Ban Triggered (2)	2020-03-12 18:37:07
attackspambots	Mar 1 18:45:56 server sshd\[23964\]: Invalid user speech-dispatcher from 140.143.130.52 Mar 1 18:45:56 server sshd\[23964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Mar 1 18:45:58 server sshd\[23964\]: Failed password for invalid user speech-dispatcher from 140.143.130.52 port 33494 ssh2 Mar 1 18:48:37 server sshd\[24199\]: Invalid user speech-dispatcher from 140.143.130.52 Mar 1 18:48:38 server sshd\[24199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 ...	2020-03-02 03:33:55
attackbots	Feb 22 05:37:48 mockhub sshd[29779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Feb 22 05:37:50 mockhub sshd[29779]: Failed password for invalid user administrator from 140.143.130.52 port 53756 ssh2 ...	2020-02-23 00:18:03
attackbotsspam	Jan 6 03:58:41 pi sshd[14701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Jan 6 03:58:43 pi sshd[14701]: Failed password for invalid user gnome-initial-setup from 140.143.130.52 port 46344 ssh2	2020-02-16 09:30:24
attackbots	Feb 15 20:28:47 v22018076622670303 sshd\[3060\]: Invalid user rabbitmq from 140.143.130.52 port 48150 Feb 15 20:28:47 v22018076622670303 sshd\[3060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Feb 15 20:28:49 v22018076622670303 sshd\[3060\]: Failed password for invalid user rabbitmq from 140.143.130.52 port 48150 ssh2 ...	2020-02-16 05:11:01
attack	Invalid user sinusbot from 140.143.130.52 port 49640	2020-01-18 22:09:14
attackspambots	$f2bV_matches	2020-01-11 23:24:21
attackbotsspam	Automatic report - Banned IP Access	2020-01-01 15:50:48
attackbots	Dec 18 00:17:24 microserver sshd[9707]: Invalid user institute from 140.143.130.52 port 35608 Dec 18 00:17:24 microserver sshd[9707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 18 00:17:26 microserver sshd[9707]: Failed password for invalid user institute from 140.143.130.52 port 35608 ssh2 Dec 18 00:23:54 microserver sshd[10581]: Invalid user nymann from 140.143.130.52 port 37964 Dec 18 00:23:54 microserver sshd[10581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 18 00:37:18 microserver sshd[12838]: Invalid user schultze from 140.143.130.52 port 42312 Dec 18 00:37:18 microserver sshd[12838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 18 00:37:20 microserver sshd[12838]: Failed password for invalid user schultze from 140.143.130.52 port 42312 ssh2 Dec 18 00:43:52 microserver sshd[13741]: Invalid user named from 140.143.13	2019-12-18 08:03:04
attackspam	$f2bV_matches	2019-12-11 21:28:57
attackbotsspam	2019-12-08T16:05:37.992711abusebot-2.cloudsearch.cf sshd\[29063\]: Invalid user nugent from 140.143.130.52 port 34288	2019-12-09 00:34:57
attackspambots	Dec 2 23:43:00 pi sshd\[22719\]: Failed password for invalid user zp from 140.143.130.52 port 52468 ssh2 Dec 2 23:50:26 pi sshd\[23142\]: Invalid user balmont from 140.143.130.52 port 55472 Dec 2 23:50:26 pi sshd\[23142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Dec 2 23:50:28 pi sshd\[23142\]: Failed password for invalid user balmont from 140.143.130.52 port 55472 ssh2 Dec 3 00:04:38 pi sshd\[23891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=www-data ...	2019-12-03 08:11:50
attackbots	Nov 29 13:56:29 vibhu-HP-Z238-Microtower-Workstation sshd\[29808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Nov 29 13:56:30 vibhu-HP-Z238-Microtower-Workstation sshd\[29808\]: Failed password for root from 140.143.130.52 port 51120 ssh2 Nov 29 14:00:40 vibhu-HP-Z238-Microtower-Workstation sshd\[31457\]: Invalid user csgo from 140.143.130.52 Nov 29 14:00:40 vibhu-HP-Z238-Microtower-Workstation sshd\[31457\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 29 14:00:42 vibhu-HP-Z238-Microtower-Workstation sshd\[31457\]: Failed password for invalid user csgo from 140.143.130.52 port 56138 ssh2 ...	2019-11-29 17:14:55
attackbotsspam	Nov 23 05:48:32 lcl-usvr-02 sshd[5409]: Invalid user my from 140.143.130.52 port 42270 Nov 23 05:48:32 lcl-usvr-02 sshd[5409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 23 05:48:32 lcl-usvr-02 sshd[5409]: Invalid user my from 140.143.130.52 port 42270 Nov 23 05:48:34 lcl-usvr-02 sshd[5409]: Failed password for invalid user my from 140.143.130.52 port 42270 ssh2 Nov 23 05:52:53 lcl-usvr-02 sshd[6634]: Invalid user webmaster from 140.143.130.52 port 45240 ...	2019-11-23 09:29:21
attackspambots	Nov 20 12:35:02 auw2 sshd\[9349\]: Invalid user nfs from 140.143.130.52 Nov 20 12:35:02 auw2 sshd\[9349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 20 12:35:03 auw2 sshd\[9349\]: Failed password for invalid user nfs from 140.143.130.52 port 43638 ssh2 Nov 20 12:38:42 auw2 sshd\[9638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Nov 20 12:38:44 auw2 sshd\[9638\]: Failed password for root from 140.143.130.52 port 46926 ssh2	2019-11-21 06:47:13
attackbotsspam	Nov 17 15:44:22 ks10 sshd[25429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 17 15:44:24 ks10 sshd[25429]: Failed password for invalid user t-bone from 140.143.130.52 port 44700 ssh2 ...	2019-11-18 00:08:48
attackspambots	Nov 5 21:44:33 hpm sshd\[12427\]: Invalid user user from 140.143.130.52 Nov 5 21:44:33 hpm sshd\[12427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Nov 5 21:44:35 hpm sshd\[12427\]: Failed password for invalid user user from 140.143.130.52 port 33280 ssh2 Nov 5 21:49:38 hpm sshd\[12832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 user=root Nov 5 21:49:41 hpm sshd\[12832\]: Failed password for root from 140.143.130.52 port 43618 ssh2	2019-11-06 15:59:55
attackspam	Oct 24 07:24:03 MK-Soft-VM7 sshd[21547]: Failed password for root from 140.143.130.52 port 51376 ssh2 ...	2019-10-24 14:16:56
attackbots	Oct 22 05:51:42 MK-Soft-VM7 sshd[17825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Oct 22 05:51:44 MK-Soft-VM7 sshd[17825]: Failed password for invalid user alyssa from 140.143.130.52 port 50376 ssh2 ...	2019-10-22 17:05:19
attackspam	Oct 21 11:00:44 ArkNodeAT sshd\[16860\]: Invalid user fm365 from 140.143.130.52 Oct 21 11:00:44 ArkNodeAT sshd\[16860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Oct 21 11:00:45 ArkNodeAT sshd\[16860\]: Failed password for invalid user fm365 from 140.143.130.52 port 34324 ssh2	2019-10-21 17:54:29
attackbots	Oct 16 20:27:16 php1 sshd\[3791\]: Invalid user woofer from 140.143.130.52 Oct 16 20:27:16 php1 sshd\[3791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52 Oct 16 20:27:18 php1 sshd\[3791\]: Failed password for invalid user woofer from 140.143.130.52 port 37892 ssh2 Oct 16 20:32:26 php1 sshd\[4379\]: Invalid user t3mp from 140.143.130.52 Oct 16 20:32:26 php1 sshd\[4379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.130.52	2019-10-17 18:03:08

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.130.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5619
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.130.52.			IN	A

;; AUTHORITY SECTION:
.			3280	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019033102 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 01 09:24:23 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 52.130.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 52.130.143.140.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
128.199.224.183	attackbots	2020-10-10 23:32:41,757 fail2ban.actions: WARNING [ssh] Ban 128.199.224.183	2020-10-11 05:47:05
49.88.112.77	attackspambots	October 10 2020, 17:52:46 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-10-11 06:06:03
174.243.97.222	attack	Brute forcing email accounts	2020-10-11 06:22:00
180.76.114.235	attackbotsspam	Invalid user oracle from 180.76.114.235 port 33354	2020-10-11 05:59:00
192.99.8.102	attackspambots	(cxs) cxs mod_security triggered by 192.99.8.102 (CA/Canada/ns553671.ip-192-99-8.net): 1 in the last 3600 secs	2020-10-11 06:13:49
51.38.129.120	attack	Oct 10 21:50:00 cdc sshd[22554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.129.120 user=root Oct 10 21:50:02 cdc sshd[22554]: Failed password for invalid user root from 51.38.129.120 port 55404 ssh2	2020-10-11 05:53:07
158.177.123.152	attackspam	www.goldgier.de 158.177.123.152 [10/Oct/2020:22:49:45 +0200] "POST /wp-login.php HTTP/1.1" 200 8762 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.goldgier.de 158.177.123.152 [10/Oct/2020:22:49:45 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4338 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-11 06:09:07
106.124.132.105	attackbotsspam	Failed password for root from 106.124.132.105 port 46550 ssh2 Failed password for root from 106.124.132.105 port 48184 ssh2	2020-10-11 05:49:33
182.76.74.78	attackspam	SSH Invalid Login	2020-10-11 06:02:22
182.126.99.114	attackspam	IP 182.126.99.114 attacked honeypot on port: 23 at 10/10/2020 1:48:52 PM	2020-10-11 06:16:10
82.223.82.221	attackbots	Oct 10 23:09:44 vm0 sshd[3515]: Failed password for root from 82.223.82.221 port 42238 ssh2 Oct 10 23:19:20 vm0 sshd[22279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.223.82.221 ...	2020-10-11 05:50:39
144.217.34.148	attackspam	UDP 144.217.34.148:34408 -> port 3283, len 33	2020-10-11 06:08:35
79.129.29.237	attack	SSH Brute Force	2020-10-11 05:50:53
177.21.195.122	attack	Brute force attempt	2020-10-11 06:21:35
51.83.74.126	attackspam	SSH Brute Force	2020-10-11 05:52:25

最近上报的IP列表

73.63.68.254	206.189.130.251	68.46.208.41	64.190.4.62
103.74.119.100	185.254.122.12	125.133.65.226	132.232.108.143
113.173.105.7	103.74.123.83	87.112.165.121	68.183.35.69
113.169.136.51	37.59.46.60	89.151.134.78	82.132.241.238
187.19.212.75	178.128.241.194	182.243.91.145	76.120.104.36