140.143.211.45

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Sep 16 07:27:42 george sshd[8691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=mysql Sep 16 07:27:44 george sshd[8691]: Failed password for mysql from 140.143.211.45 port 50650 ssh2 Sep 16 07:31:48 george sshd[8803]: Invalid user jaye from 140.143.211.45 port 38458 Sep 16 07:31:48 george sshd[8803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Sep 16 07:31:50 george sshd[8803]: Failed password for invalid user jaye from 140.143.211.45 port 38458 ssh2 ...	2020-09-16 21:12:37
attack	Sep 16 01:10:03 *** sshd[2215]: User root from 140.143.211.45 not allowed because not listed in AllowUsers	2020-09-16 13:43:10
attackbots	Sep 15 22:10:28 localhost sshd\[5604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root Sep 15 22:10:30 localhost sshd\[5604\]: Failed password for root from 140.143.211.45 port 51634 ssh2 Sep 15 22:13:10 localhost sshd\[5644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root Sep 15 22:13:12 localhost sshd\[5644\]: Failed password for root from 140.143.211.45 port 54306 ssh2 Sep 15 22:15:53 localhost sshd\[5869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root ...	2020-09-16 05:28:59
attack	Invalid user link from 140.143.211.45 port 46424	2020-09-06 00:31:20
attackspambots	Invalid user link from 140.143.211.45 port 46424	2020-09-05 16:00:27
attackspambots	(sshd) Failed SSH login from 140.143.211.45 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 18:23:29 server sshd[13236]: Invalid user vinay from 140.143.211.45 port 39504 Sep 4 18:23:31 server sshd[13236]: Failed password for invalid user vinay from 140.143.211.45 port 39504 ssh2 Sep 4 18:31:33 server sshd[16521]: Invalid user user from 140.143.211.45 port 37948 Sep 4 18:31:36 server sshd[16521]: Failed password for invalid user user from 140.143.211.45 port 37948 ssh2 Sep 4 18:37:23 server sshd[18335]: Invalid user guest from 140.143.211.45 port 40652	2020-09-05 08:36:13
attackspambots	Aug 31 22:10:37 rush sshd[3893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Aug 31 22:10:38 rush sshd[3893]: Failed password for invalid user test5 from 140.143.211.45 port 58912 ssh2 Aug 31 22:14:40 rush sshd[3974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 ...	2020-09-01 08:36:32
attackbots	Invalid user yyk from 140.143.211.45 port 51640	2020-08-24 13:37:23
attackbots	Aug 3 15:45:33 piServer sshd[17604]: Failed password for root from 140.143.211.45 port 55694 ssh2 Aug 3 15:50:09 piServer sshd[18081]: Failed password for root from 140.143.211.45 port 46284 ssh2 ...	2020-08-04 00:48:05
attack	Jul 31 03:49:39 php1 sshd\[32208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root Jul 31 03:49:40 php1 sshd\[32208\]: Failed password for root from 140.143.211.45 port 59260 ssh2 Jul 31 03:51:34 php1 sshd\[32341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root Jul 31 03:51:37 php1 sshd\[32341\]: Failed password for root from 140.143.211.45 port 50668 ssh2 Jul 31 03:53:33 php1 sshd\[32483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root	2020-07-31 23:06:57
attackspam	SSH auth scanning - multiple failed logins	2020-07-28 20:12:20
attackbots	Jul 25 17:08:28 home sshd[670353]: Invalid user user from 140.143.211.45 port 37530 Jul 25 17:08:28 home sshd[670353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Jul 25 17:08:28 home sshd[670353]: Invalid user user from 140.143.211.45 port 37530 Jul 25 17:08:30 home sshd[670353]: Failed password for invalid user user from 140.143.211.45 port 37530 ssh2 Jul 25 17:13:03 home sshd[670966]: Invalid user ryan from 140.143.211.45 port 56880 ...	2020-07-26 04:19:06
attackbotsspam	Jul 6 06:09:52 vps687878 sshd\[5661\]: Failed password for invalid user prd from 140.143.211.45 port 41540 ssh2 Jul 6 06:10:17 vps687878 sshd\[5736\]: Invalid user archana from 140.143.211.45 port 45682 Jul 6 06:10:17 vps687878 sshd\[5736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Jul 6 06:10:19 vps687878 sshd\[5736\]: Failed password for invalid user archana from 140.143.211.45 port 45682 ssh2 Jul 6 06:10:50 vps687878 sshd\[5764\]: Invalid user nick from 140.143.211.45 port 49834 Jul 6 06:10:50 vps687878 sshd\[5764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 ...	2020-07-06 17:39:54
attackspam	Jul 4 10:54:40 lanister sshd[5950]: Invalid user cmy from 140.143.211.45 Jul 4 10:54:40 lanister sshd[5950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Jul 4 10:54:40 lanister sshd[5950]: Invalid user cmy from 140.143.211.45 Jul 4 10:54:43 lanister sshd[5950]: Failed password for invalid user cmy from 140.143.211.45 port 59032 ssh2	2020-07-05 01:56:37
attack	Jun 28 22:36:06 host sshd[32648]: Invalid user carlos from 140.143.211.45 port 33810 ...	2020-06-29 07:31:21
attack	Jun 25 05:35:36 ns382633 sshd\[12345\]: Invalid user sftp from 140.143.211.45 port 57888 Jun 25 05:35:36 ns382633 sshd\[12345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 Jun 25 05:35:38 ns382633 sshd\[12345\]: Failed password for invalid user sftp from 140.143.211.45 port 57888 ssh2 Jun 25 05:47:04 ns382633 sshd\[14604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 user=root Jun 25 05:47:05 ns382633 sshd\[14604\]: Failed password for root from 140.143.211.45 port 47214 ssh2	2020-06-25 20:04:23
attack	Invalid user gy from 140.143.211.45 port 35442	2020-06-21 19:13:52
attackbots	SSH invalid-user multiple login try	2020-05-11 23:40:32
attackspambots	SSH Invalid Login	2020-05-10 07:32:51
attackbots	Brute-force attempt banned	2020-05-08 15:29:40
attack	2020-05-03T15:41:33.777128linuxbox-skyline sshd[149117]: Invalid user seitz from 140.143.211.45 port 33190 ...	2020-05-04 05:48:49
attackbots	2020-04-17T19:40:03.478671abusebot-8.cloudsearch.cf sshd[24563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 2020-04-17T19:40:03.466858abusebot-8.cloudsearch.cf sshd[24563]: Invalid user admin from 140.143.211.45 port 57358 2020-04-17T19:40:05.835565abusebot-8.cloudsearch.cf sshd[24563]: Failed password for invalid user admin from 140.143.211.45 port 57358 ssh2 2020-04-17T19:43:39.560312abusebot-8.cloudsearch.cf sshd[24899]: Invalid user sa from 140.143.211.45 port 35438 2020-04-17T19:43:39.576037abusebot-8.cloudsearch.cf sshd[24899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.45 2020-04-17T19:43:39.560312abusebot-8.cloudsearch.cf sshd[24899]: Invalid user sa from 140.143.211.45 port 35438 2020-04-17T19:43:41.250483abusebot-8.cloudsearch.cf sshd[24899]: Failed password for invalid user sa from 140.143.211.45 port 35438 ssh2 2020-04-17T19:47:04.232665abusebot-8.cloudsearch ...	2020-04-18 04:46:47

相同子网IP讨论:

IP	类型	评论内容	时间
140.143.211.94	attackspambots	Mar 25 18:41:32 vlre-nyc-1 sshd\[27436\]: Invalid user christian from 140.143.211.94 Mar 25 18:41:32 vlre-nyc-1 sshd\[27436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.94 Mar 25 18:41:34 vlre-nyc-1 sshd\[27436\]: Failed password for invalid user christian from 140.143.211.94 port 59578 ssh2 Mar 25 18:46:11 vlre-nyc-1 sshd\[27557\]: Invalid user mali from 140.143.211.94 Mar 25 18:46:11 vlre-nyc-1 sshd\[27557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.94 ...	2020-03-26 03:24:41
140.143.211.94	attack	Mar 18 18:50:36 plusreed sshd[32183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.94 user=root Mar 18 18:50:38 plusreed sshd[32183]: Failed password for root from 140.143.211.94 port 38196 ssh2 ...	2020-03-19 06:54:50
140.143.211.94	attackbotsspam	Mar 10 00:27:16 minden010 sshd[25293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.94 Mar 10 00:27:17 minden010 sshd[25293]: Failed password for invalid user dave from 140.143.211.94 port 33864 ssh2 Mar 10 00:33:06 minden010 sshd[26323]: Failed password for root from 140.143.211.94 port 41866 ssh2 ...	2020-03-10 07:45:09
140.143.211.94	attack	Mar 9 20:56:48 minden010 sshd[23437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.211.94 Mar 9 20:56:49 minden010 sshd[23437]: Failed password for invalid user cpanelphppgadmin from 140.143.211.94 port 35810 ssh2 Mar 9 21:02:34 minden010 sshd[25355]: Failed password for root from 140.143.211.94 port 43812 ssh2 ...	2020-03-10 04:21:10
140.143.211.94	attackbotsspam	2020-03-07T00:01:05.724808linuxbox-skyline sshd[16950]: Invalid user Passwort111 from 140.143.211.94 port 41144 ...	2020-03-07 21:23:59

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.211.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42839
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.211.45.			IN	A

;; AUTHORITY SECTION:
.			483	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 141 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 04:46:43 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 45.211.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.211.143.140.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
54.37.11.58	attackbots	2020-09-17T22:20:00.924141ns386461 sshd\[16843\]: Invalid user ftp1 from 54.37.11.58 port 57736 2020-09-17T22:20:00.928667ns386461 sshd\[16843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-54-37-11.eu 2020-09-17T22:20:02.609380ns386461 sshd\[16843\]: Failed password for invalid user ftp1 from 54.37.11.58 port 57736 ssh2 2020-09-17T22:34:29.797531ns386461 sshd\[30280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-54-37-11.eu user=root 2020-09-17T22:34:31.442449ns386461 sshd\[30280\]: Failed password for root from 54.37.11.58 port 46360 ssh2 ...	2020-09-18 04:38:12
218.92.0.158	attackbots	Sep 17 22:12:47 hidden sshd[18539]: Failed password for hidden from 218.92.0.158 port 40887 ssh2 Sep 17 22:12:52 hidden sshd[18539]: Failed password for hidden from 218.92.0.158 port 40887 ssh2 Sep 17 22:12:57 hidden sshd[18539]: Failed password for hidden from 218.92.0.158 port 40887 ssh2	2020-09-18 04:23:57
193.42.30.119	attack	Sep 17 19:00:46 roki-contabo sshd\[15005\]: Invalid user ubuntu from 193.42.30.119 Sep 17 19:00:47 roki-contabo sshd\[15005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.42.30.119 Sep 17 19:00:47 roki-contabo sshd\[15007\]: Invalid user user from 193.42.30.119 Sep 17 19:00:47 roki-contabo sshd\[15007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.42.30.119 Sep 17 19:00:49 roki-contabo sshd\[15005\]: Failed password for invalid user ubuntu from 193.42.30.119 port 60034 ssh2 ...	2020-09-18 04:32:49
154.209.8.13	attackspambots	Sep 17 22:01:07 sip sshd[8977]: Failed password for root from 154.209.8.13 port 45138 ssh2 Sep 17 22:01:08 sip sshd[8980]: Failed password for root from 154.209.8.13 port 45152 ssh2	2020-09-18 04:27:45
103.82.24.89	attackbotsspam	$f2bV_matches	2020-09-18 04:44:14
149.34.20.153	attack	Sep 17 14:00:55 logopedia-1vcpu-1gb-nyc1-01 sshd[377122]: Failed password for root from 149.34.20.153 port 44700 ssh2 ...	2020-09-18 04:23:01
178.33.67.12	attackbotsspam	Sep 17 20:45:41 ajax sshd[13284]: Failed password for root from 178.33.67.12 port 48456 ssh2	2020-09-18 04:30:45
14.252.249.46	attackspambots	Unauthorized connection attempt from IP address 14.252.249.46 on Port 445(SMB)	2020-09-18 04:23:43
185.13.112.246	attackspam	spam form 2020-09-17 16:38	2020-09-18 04:49:50
187.87.8.241	attackbots	Attempted Brute Force (dovecot)	2020-09-18 04:22:05
36.233.88.3	attackspambots	Sep 17 14:00:58 logopedia-1vcpu-1gb-nyc1-01 sshd[377135]: Failed password for root from 36.233.88.3 port 35511 ssh2 ...	2020-09-18 04:19:13
45.176.244.48	attackspambots	Automatic report - Banned IP Access	2020-09-18 04:35:52
139.59.239.38	attackspambots	DATE:2020-09-17 22:09:32,IP:139.59.239.38,MATCHES:10,PORT:ssh	2020-09-18 04:45:38
189.217.50.51	attackbotsspam	Email rejected due to spam filtering	2020-09-18 04:18:43
41.37.233.241	attackspam	Unauthorized connection attempt from IP address 41.37.233.241 on Port 445(SMB)	2020-09-18 04:29:29

最近上报的IP列表

210.148.53.59	124.113.219.167	54.188.123.169	191.100.192.185
59.47.72.95	52.91.3.249	116.85.11.53	223.187.198.123
187.162.252.38	83.23.101.237	85.12.203.154	106.75.99.198
45.88.79.24	191.193.8.54	121.69.44.6	180.212.38.134
175.174.187.238	54.83.88.158	59.173.241.234	14.160.223.31