140.143.158.194

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
140.143.158.169	attack	Sep 14 13:02:24 core sshd[22265]: Invalid user acsay from 140.143.158.169 port 48283 Sep 14 13:02:26 core sshd[22265]: Failed password for invalid user acsay from 140.143.158.169 port 48283 ssh2 ...	2019-09-14 23:07:10
140.143.158.169	attack	Aug 23 15:48:51 kapalua sshd\[29748\]: Invalid user redmine from 140.143.158.169 Aug 23 15:48:51 kapalua sshd\[29748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.158.169 Aug 23 15:48:52 kapalua sshd\[29748\]: Failed password for invalid user redmine from 140.143.158.169 port 52937 ssh2 Aug 23 15:53:48 kapalua sshd\[30182\]: Invalid user xm from 140.143.158.169 Aug 23 15:53:48 kapalua sshd\[30182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.158.169	2019-08-24 16:28:54

类型

评论内容

时间

140.143.158.169

attack

Sep 14 13:02:24 core sshd[22265]: Invalid user acsay from 140.143.158.169 port 48283
Sep 14 13:02:26 core sshd[22265]: Failed password for invalid user acsay from 140.143.158.169 port 48283 ssh2
...

2019-09-14 23:07:10

140.143.158.169

attack

Aug 23 15:48:51 kapalua sshd\[29748\]: Invalid user redmine from 140.143.158.169
Aug 23 15:48:51 kapalua sshd\[29748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.158.169
Aug 23 15:48:52 kapalua sshd\[29748\]: Failed password for invalid user redmine from 140.143.158.169 port 52937 ssh2
Aug 23 15:53:48 kapalua sshd\[30182\]: Invalid user xm from 140.143.158.169
Aug 23 15:53:48 kapalua sshd\[30182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.158.169

2019-08-24 16:28:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.158.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18990
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.143.158.194.		IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:00:25 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 194.158.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 194.158.143.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.227.2.130	attackbotsspam	"Fail2Ban detected SSH brute force attempt"	2019-08-20 17:04:47
45.32.61.237	attackspam	Automatic report - Banned IP Access	2019-08-20 16:42:01
36.82.224.13	attackspambots	445/tcp 445/tcp [2019-08-20]2pkt	2019-08-20 17:09:09
116.20.231.114	attack	Unauthorised access (Aug 20) SRC=116.20.231.114 LEN=40 TTL=50 ID=28257 TCP DPT=8080 WINDOW=29501 SYN	2019-08-20 16:39:34
185.93.2.75	attackspam	\[2019-08-20 10:07:14\] NOTICE\[603\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '185.93.2.75:2382' \(callid: 1675381516-1945452440-875569766\) - Failed to authenticate \[2019-08-20 10:07:14\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFailed",EventTV="2019-08-20T10:07:14.272+0200",Severity="Error",Service="PJSIP",EventVersion="1",AccountID="\",SessionID="1675381516-1945452440-875569766",LocalAddress="IPV4/UDP/188.40.118.248/5060",RemoteAddress="IPV4/UDP/185.93.2.75/2382",Challenge="1566288434/b8cd4ab3007588f024327e3d9dabaf70",Response="c0d348668dfce19d9a5b75084c28ee92",ExpectedResponse="" \[2019-08-20 10:07:14\] NOTICE\[26038\] res_pjsip/pjsip_distributor.c: Request 'REGISTER' from '\' failed for '185.93.2.75:2382' \(callid: 1675381516-1945452440-875569766\) - Failed to authenticate \[2019-08-20 10:07:14\] SECURITY\[1715\] res_security_log.c: SecurityEvent="ChallengeResponseFailed	2019-08-20 17:11:50
185.81.251.59	attackbots	2019-08-20T13:40:40.298505enmeeting.mahidol.ac.th sshd\[14868\]: Invalid user 123456 from 185.81.251.59 port 54070 2019-08-20T13:40:40.313886enmeeting.mahidol.ac.th sshd\[14868\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.81.251.59 2019-08-20T13:40:42.062302enmeeting.mahidol.ac.th sshd\[14868\]: Failed password for invalid user 123456 from 185.81.251.59 port 54070 ssh2 ...	2019-08-20 17:06:58
162.248.4.46	attackbots	Aug 20 05:38:56 master sshd[17264]: Failed password for invalid user chester from 162.248.4.46 port 47922 ssh2 Aug 20 05:43:32 master sshd[17276]: Failed password for invalid user kev from 162.248.4.46 port 42264 ssh2 Aug 20 05:47:30 master sshd[17302]: Failed password for invalid user htt from 162.248.4.46 port 59728 ssh2 Aug 20 05:51:29 master sshd[17312]: Failed password for invalid user hl from 162.248.4.46 port 48956 ssh2 Aug 20 05:55:25 master sshd[17326]: Failed password for invalid user prueba1 from 162.248.4.46 port 38206 ssh2 Aug 20 05:59:34 master sshd[17336]: Failed password for invalid user caulax from 162.248.4.46 port 55664 ssh2 Aug 20 06:03:34 master sshd[17650]: Failed password for invalid user debian from 162.248.4.46 port 44906 ssh2 Aug 20 06:07:32 master sshd[17662]: Failed password for invalid user www02 from 162.248.4.46 port 34154 ssh2 Aug 20 06:11:39 master sshd[17674]: Failed password for root from 162.248.4.46 port 51624 ssh2 Aug 20 06:15:46 master sshd[17693]: Failed password for in	2019-08-20 16:44:57
23.129.64.150	attackbots	C1,WP GET /wp-login.php	2019-08-20 16:42:38
119.57.162.18	attackbotsspam	Aug 20 03:58:59 xtremcommunity sshd\[11532\]: Invalid user kjs from 119.57.162.18 port 55869 Aug 20 03:58:59 xtremcommunity sshd\[11532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.57.162.18 Aug 20 03:59:01 xtremcommunity sshd\[11532\]: Failed password for invalid user kjs from 119.57.162.18 port 55869 ssh2 Aug 20 04:04:16 xtremcommunity sshd\[11805\]: Invalid user openproject from 119.57.162.18 port 40890 Aug 20 04:04:16 xtremcommunity sshd\[11805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.57.162.18 ...	2019-08-20 16:59:33
45.4.148.14	attackspambots	Aug 20 04:28:38 ny01 sshd[7475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.4.148.14 Aug 20 04:28:40 ny01 sshd[7475]: Failed password for invalid user lee from 45.4.148.14 port 57001 ssh2 Aug 20 04:34:37 ny01 sshd[7987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.4.148.14	2019-08-20 16:49:17
132.232.59.136	attackspambots	Aug 20 10:51:36 mail sshd\[556\]: Invalid user smecher from 132.232.59.136 port 46178 Aug 20 10:51:36 mail sshd\[556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.136 Aug 20 10:51:38 mail sshd\[556\]: Failed password for invalid user smecher from 132.232.59.136 port 46178 ssh2 Aug 20 10:57:20 mail sshd\[1394\]: Invalid user blog from 132.232.59.136 port 35742 Aug 20 10:57:20 mail sshd\[1394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.136	2019-08-20 17:13:04
159.90.82.100	attackbotsspam	Aug 19 22:41:03 web9 sshd\[14472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.90.82.100 user=root Aug 19 22:41:04 web9 sshd\[14472\]: Failed password for root from 159.90.82.100 port 1243 ssh2 Aug 19 22:47:17 web9 sshd\[15724\]: Invalid user impala from 159.90.82.100 Aug 19 22:47:17 web9 sshd\[15724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.90.82.100 Aug 19 22:47:19 web9 sshd\[15724\]: Failed password for invalid user impala from 159.90.82.100 port 57063 ssh2	2019-08-20 16:57:36
180.244.229.10	attackspambots	445/tcp [2019-08-20]1pkt	2019-08-20 16:43:31
159.203.77.51	attackbots	Aug 20 11:01:40 cvbmail sshd\[11113\]: Invalid user support from 159.203.77.51 Aug 20 11:01:40 cvbmail sshd\[11113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.77.51 Aug 20 11:01:42 cvbmail sshd\[11113\]: Failed password for invalid user support from 159.203.77.51 port 41950 ssh2	2019-08-20 17:19:30
125.76.249.17	attack	445/tcp [2019-08-20]1pkt	2019-08-20 16:54:01

最近上报的IP列表

140.143.156.166	140.143.161.176	140.143.155.229	140.143.16.80
140.143.163.64	140.143.164.107	118.70.203.173	140.143.164.223
140.143.165.206	140.143.164.56	140.143.169.13	140.143.166.1
140.143.169.57	140.143.169.229	140.143.169.115	140.143.170.222
140.143.171.14	140.143.170.237	140.143.179.128	140.143.182.105