140.143.5.72 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sep 11 11:30:07 root sshd[25604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 ...	2020-09-11 21:31:38
attackbotsspam	Failed password for invalid user ruud from 140.143.5.72 port 58562 ssh2	2020-09-11 13:39:51
attackbotsspam	Invalid user testuser from 140.143.5.72 port 41774	2020-08-28 15:21:09
attackspam	Aug 26 23:04:43 meumeu sshd[383615]: Invalid user zhong from 140.143.5.72 port 59244 Aug 26 23:04:43 meumeu sshd[383615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 Aug 26 23:04:43 meumeu sshd[383615]: Invalid user zhong from 140.143.5.72 port 59244 Aug 26 23:04:45 meumeu sshd[383615]: Failed password for invalid user zhong from 140.143.5.72 port 59244 ssh2 Aug 26 23:05:51 meumeu sshd[383642]: Invalid user ubuntu from 140.143.5.72 port 48482 Aug 26 23:05:51 meumeu sshd[383642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 Aug 26 23:05:51 meumeu sshd[383642]: Invalid user ubuntu from 140.143.5.72 port 48482 Aug 26 23:05:53 meumeu sshd[383642]: Failed password for invalid user ubuntu from 140.143.5.72 port 48482 ssh2 Aug 26 23:06:57 meumeu sshd[383663]: Invalid user usu from 140.143.5.72 port 37720 ...	2020-08-27 06:15:24
attack	"$f2bV_matches"	2020-08-24 19:33:25
attackspambots	Aug 23 13:19:22 scw-6657dc sshd[24219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 Aug 23 13:19:22 scw-6657dc sshd[24219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 Aug 23 13:19:24 scw-6657dc sshd[24219]: Failed password for invalid user zfl from 140.143.5.72 port 41518 ssh2 ...	2020-08-23 22:02:35
attack	Aug 12 07:17:32 serwer sshd\[25263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 user=root Aug 12 07:17:34 serwer sshd\[25263\]: Failed password for root from 140.143.5.72 port 57914 ssh2 Aug 12 07:23:12 serwer sshd\[25746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 user=root ...	2020-08-12 15:23:48
attackspambots	Aug 10 13:56:03 itv-usvr-01 sshd[5606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 user=root Aug 10 13:56:04 itv-usvr-01 sshd[5606]: Failed password for root from 140.143.5.72 port 54390 ssh2 Aug 10 14:00:37 itv-usvr-01 sshd[5787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 user=root Aug 10 14:00:39 itv-usvr-01 sshd[5787]: Failed password for root from 140.143.5.72 port 49780 ssh2 Aug 10 14:05:06 itv-usvr-01 sshd[5968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.5.72 user=root Aug 10 14:05:08 itv-usvr-01 sshd[5968]: Failed password for root from 140.143.5.72 port 45170 ssh2	2020-08-10 19:36:35
attackspambots	Aug 4 10:41:22 rush sshd[29973]: Failed password for root from 140.143.5.72 port 59642 ssh2 Aug 4 10:44:05 rush sshd[30091]: Failed password for root from 140.143.5.72 port 36364 ssh2 ...	2020-08-04 21:17:01
attackbotsspam	SSH Brute Force	2020-07-28 16:19:57
attack	Jul 24 07:46:33 web-main sshd[694841]: Invalid user iz from 140.143.5.72 port 60590 Jul 24 07:46:35 web-main sshd[694841]: Failed password for invalid user iz from 140.143.5.72 port 60590 ssh2 Jul 24 07:59:15 web-main sshd[694919]: Invalid user lebesgue from 140.143.5.72 port 35514	2020-07-24 15:25:50
attackspambots	$f2bV_matches	2020-07-20 14:22:10

相同子网IP讨论:

IP	类型	评论内容	时间
140.143.56.61	attack	Oct 8 13:23:37 ns382633 sshd\[30536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root Oct 8 13:23:39 ns382633 sshd\[30536\]: Failed password for root from 140.143.56.61 port 40856 ssh2 Oct 8 13:31:46 ns382633 sshd\[31749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root Oct 8 13:31:48 ns382633 sshd\[31749\]: Failed password for root from 140.143.56.61 port 34130 ssh2 Oct 8 13:36:49 ns382633 sshd\[32538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root	2020-10-09 06:43:07
140.143.56.61	attackbotsspam	Oct 8 13:23:37 ns382633 sshd\[30536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root Oct 8 13:23:39 ns382633 sshd\[30536\]: Failed password for root from 140.143.56.61 port 40856 ssh2 Oct 8 13:31:46 ns382633 sshd\[31749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root Oct 8 13:31:48 ns382633 sshd\[31749\]: Failed password for root from 140.143.56.61 port 34130 ssh2 Oct 8 13:36:49 ns382633 sshd\[32538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root	2020-10-08 23:05:19
140.143.56.61	attackspambots	SSH bruteforce	2020-10-08 15:00:27
140.143.57.159	attackspam	Port scan denied	2020-09-29 00:25:16
140.143.57.159	attackbotsspam	Port scan denied	2020-09-28 16:27:07
140.143.57.195	attackspam	2020-09-17T17:49:41.180330mail.broermann.family sshd[5714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root 2020-09-17T17:49:43.273900mail.broermann.family sshd[5714]: Failed password for root from 140.143.57.195 port 46620 ssh2 2020-09-17T17:53:19.731350mail.broermann.family sshd[5876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root 2020-09-17T17:53:22.084032mail.broermann.family sshd[5876]: Failed password for root from 140.143.57.195 port 55882 ssh2 2020-09-17T18:00:25.779048mail.broermann.family sshd[6188]: Invalid user mikel from 140.143.57.195 port 46180 ...	2020-09-18 00:42:48
140.143.57.195	attackspambots	$f2bV_matches	2020-09-17 16:44:11
140.143.57.195	attackbots	Sep 16 21:28:06 roki sshd[25735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root Sep 16 21:28:08 roki sshd[25735]: Failed password for root from 140.143.57.195 port 38052 ssh2 Sep 16 21:37:24 roki sshd[26402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root Sep 16 21:37:26 roki sshd[26402]: Failed password for root from 140.143.57.195 port 55000 ssh2 Sep 16 21:43:20 roki sshd[26844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root ...	2020-09-17 07:49:53
140.143.57.195	attackbots	Bruteforce detected by fail2ban	2020-09-12 20:14:33
140.143.57.195	attackbots	SSH Invalid Login	2020-09-12 12:17:42
140.143.57.195	attack	Sep 11 20:54:03 sshgateway sshd\[10501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 user=root Sep 11 20:54:05 sshgateway sshd\[10501\]: Failed password for root from 140.143.57.195 port 48694 ssh2 Sep 11 20:56:08 sshgateway sshd\[10759\]: Invalid user walt from 140.143.57.195 Sep 11 20:56:08 sshgateway sshd\[10759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195	2020-09-12 04:06:12
140.143.56.61	attackspambots	Sep 9 02:32:57 vlre-nyc-1 sshd\[13464\]: Invalid user echo from 140.143.56.61 Sep 9 02:32:57 vlre-nyc-1 sshd\[13464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 Sep 9 02:32:59 vlre-nyc-1 sshd\[13464\]: Failed password for invalid user echo from 140.143.56.61 port 56458 ssh2 Sep 9 02:38:46 vlre-nyc-1 sshd\[13580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.56.61 user=root Sep 9 02:38:48 vlre-nyc-1 sshd\[13580\]: Failed password for root from 140.143.56.61 port 58408 ssh2 ...	2020-09-09 15:39:04
140.143.56.61	attackspambots	2020-09-08T12:41:28.865689morrigan.ad5gb.com sshd[2611175]: Failed password for root from 140.143.56.61 port 45160 ssh2 2020-09-08T12:41:31.289233morrigan.ad5gb.com sshd[2611175]: Disconnected from authenticating user root 140.143.56.61 port 45160 [preauth]	2020-09-09 07:48:26
140.143.57.195	attackspam	Sep 4 11:54:57 vm1 sshd[1663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 Sep 4 11:54:58 vm1 sshd[1663]: Failed password for invalid user jsa from 140.143.57.195 port 54488 ssh2 ...	2020-09-05 04:36:32
140.143.57.195	attack	Sep 4 11:54:57 vm1 sshd[1663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.57.195 Sep 4 11:54:58 vm1 sshd[1663]: Failed password for invalid user jsa from 140.143.57.195 port 54488 ssh2 ...	2020-09-04 20:14:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.5.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39576
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.143.5.72.			IN	A

;; AUTHORITY SECTION:
.			265	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072000 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 14:22:03 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 72.5.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.5.143.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
3.87.221.26	attackspam	Masquerading as Googlebot: Mozilla/5.0 (compatible; Googlebot/2.1; startmebot/1.0; +https://start.me/bot)	2019-10-12 16:49:19
222.186.173.183	attackbotsspam	Oct 12 13:40:52 gw1 sshd[5987]: Failed password for root from 222.186.173.183 port 14702 ssh2 Oct 12 13:41:11 gw1 sshd[5987]: error: maximum authentication attempts exceeded for root from 222.186.173.183 port 14702 ssh2 [preauth] ...	2019-10-12 16:42:12
196.219.86.90	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-12 16:40:17
190.145.7.42	attack	Oct 11 22:01:17 sachi sshd\[12978\]: Invalid user 1qaz@WSX\#EDC from 190.145.7.42 Oct 11 22:01:17 sachi sshd\[12978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.7.42 Oct 11 22:01:19 sachi sshd\[12978\]: Failed password for invalid user 1qaz@WSX\#EDC from 190.145.7.42 port 49675 ssh2 Oct 11 22:05:45 sachi sshd\[32597\]: Invalid user 123Dallas from 190.145.7.42 Oct 11 22:05:45 sachi sshd\[32597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.7.42	2019-10-12 16:47:13
58.3.15.135	attack	Unauthorised access (Oct 12) SRC=58.3.15.135 LEN=40 TTL=48 ID=14907 TCP DPT=8080 WINDOW=48891 SYN	2019-10-12 17:10:54
212.11.181.19	attackbots	Unauthorized connection attempt from IP address 212.11.181.19 on Port 445(SMB)	2019-10-12 16:42:42
118.24.5.135	attackspambots	Oct 12 10:38:46 vps01 sshd[4876]: Failed password for root from 118.24.5.135 port 48128 ssh2	2019-10-12 17:07:00
118.68.170.172	attack	Oct 12 05:56:04 sshgateway sshd\[2258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.68.170.172 user=root Oct 12 05:56:06 sshgateway sshd\[2258\]: Failed password for root from 118.68.170.172 port 50528 ssh2 Oct 12 06:00:27 sshgateway sshd\[2269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.68.170.172 user=root	2019-10-12 17:12:49
186.24.43.28	attackspam	SSH brute-force: detected 31 distinct usernames within a 24-hour window.	2019-10-12 17:14:58
132.232.112.25	attackspam	Oct 12 08:51:47 venus sshd\[13851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.112.25 user=root Oct 12 08:51:49 venus sshd\[13851\]: Failed password for root from 132.232.112.25 port 58864 ssh2 Oct 12 08:57:38 venus sshd\[13957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.112.25 user=root ...	2019-10-12 17:01:05
145.255.21.172	attackspambots	Unauthorized connection attempt from IP address 145.255.21.172 on Port 445(SMB)	2019-10-12 17:05:23
43.250.187.166	attack	firewall-block, port(s): 445/tcp	2019-10-12 17:24:31
119.92.138.202	attackspam	Unauthorized connection attempt from IP address 119.92.138.202 on Port 445(SMB)	2019-10-12 16:56:49
167.114.47.68	attackspambots	Oct 12 11:05:19 SilenceServices sshd[26655]: Failed password for root from 167.114.47.68 port 43996 ssh2 Oct 12 11:10:00 SilenceServices sshd[27914]: Failed password for root from 167.114.47.68 port 35735 ssh2	2019-10-12 17:25:19
182.61.43.47	attackspambots	Oct 12 11:06:00 markkoudstaal sshd[14694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.43.47 Oct 12 11:06:02 markkoudstaal sshd[14694]: Failed password for invalid user JeanPaul123 from 182.61.43.47 port 39310 ssh2 Oct 12 11:11:20 markkoudstaal sshd[15256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.43.47	2019-10-12 17:17:38

最近上报的IP列表

233.26.100.208	201.206.69.237	10.54.70.71	232.52.53.191
194.116.236.208	125.164.21.182	109.236.50.201	157.245.252.154
83.248.187.193	157.32.235.198	173.221.26.69	131.230.6.193
29.121.207.11	191.85.97.196	120.238.65.227	20.96.185.22
14.29.51.160	41.218.119.140	11.32.146.247	199.77.94.30