140.249.213.243

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 12 14:37:58 lnxmail61 sshd[26442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Aug 12 14:38:00 lnxmail61 sshd[26442]: Failed password for invalid user sysadmin12345 from 140.249.213.243 port 50098 ssh2 Aug 12 14:43:51 lnxmail61 sshd[27244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243	2020-08-12 21:04:39
attack	SSH invalid-user multiple login try	2020-07-21 12:12:22
attack	2020-06-16T16:48:37.924969lavrinenko.info sshd[4386]: Failed password for invalid user gentoo from 140.249.213.243 port 37816 ssh2 2020-06-16T16:51:39.935011lavrinenko.info sshd[4585]: Invalid user user01 from 140.249.213.243 port 43902 2020-06-16T16:51:39.943935lavrinenko.info sshd[4585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 2020-06-16T16:51:39.935011lavrinenko.info sshd[4585]: Invalid user user01 from 140.249.213.243 port 43902 2020-06-16T16:51:41.788486lavrinenko.info sshd[4585]: Failed password for invalid user user01 from 140.249.213.243 port 43902 ssh2 ...	2020-06-17 00:25:59
attack	Jun 12 16:47:04 ws26vmsma01 sshd[236673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Jun 12 16:47:07 ws26vmsma01 sshd[236673]: Failed password for invalid user insideout from 140.249.213.243 port 39966 ssh2 ...	2020-06-13 02:37:14
attack	Jun 4 09:07:09 lanister sshd[32051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root Jun 4 09:07:11 lanister sshd[32051]: Failed password for root from 140.249.213.243 port 60274 ssh2 Jun 4 09:10:48 lanister sshd[32159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root Jun 4 09:10:49 lanister sshd[32159]: Failed password for root from 140.249.213.243 port 50688 ssh2	2020-06-05 01:37:06
attack	May 25 09:42:46 web1 sshd\[14248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root May 25 09:42:48 web1 sshd\[14248\]: Failed password for root from 140.249.213.243 port 45338 ssh2 May 25 09:50:47 web1 sshd\[14962\]: Invalid user noemi from 140.249.213.243 May 25 09:50:47 web1 sshd\[14962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 25 09:50:48 web1 sshd\[14962\]: Failed password for invalid user noemi from 140.249.213.243 port 41922 ssh2	2020-05-26 03:59:17
attackbots	May 21 22:00:19 web1 sshd\[26611\]: Invalid user ies from 140.249.213.243 May 21 22:00:19 web1 sshd\[26611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 21 22:00:21 web1 sshd\[26611\]: Failed password for invalid user ies from 140.249.213.243 port 51134 ssh2 May 21 22:02:59 web1 sshd\[26860\]: Invalid user jkp from 140.249.213.243 May 21 22:02:59 web1 sshd\[26860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243	2020-05-22 16:06:41
attackbots	May 8 06:36:50 eventyay sshd[10054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 8 06:36:53 eventyay sshd[10054]: Failed password for invalid user ghost from 140.249.213.243 port 39444 ssh2 May 8 06:40:43 eventyay sshd[10167]: Failed password for root from 140.249.213.243 port 34518 ssh2 ...	2020-05-08 14:14:58
attackspam	2020-05-05T19:51:02.981087vps751288.ovh.net sshd\[19689\]: Invalid user alex from 140.249.213.243 port 51622 2020-05-05T19:51:02.990584vps751288.ovh.net sshd\[19689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 2020-05-05T19:51:04.921571vps751288.ovh.net sshd\[19689\]: Failed password for invalid user alex from 140.249.213.243 port 51622 ssh2 2020-05-05T19:54:39.166102vps751288.ovh.net sshd\[19700\]: Invalid user cisco from 140.249.213.243 port 41836 2020-05-05T19:54:39.174970vps751288.ovh.net sshd\[19700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243	2020-05-06 05:21:32
attackbotsspam	Apr 25 06:01:41 vps58358 sshd\[17434\]: Invalid user pgsql from 140.249.213.243Apr 25 06:01:43 vps58358 sshd\[17434\]: Failed password for invalid user pgsql from 140.249.213.243 port 53880 ssh2Apr 25 06:06:07 vps58358 sshd\[17472\]: Invalid user dev from 140.249.213.243Apr 25 06:06:08 vps58358 sshd\[17472\]: Failed password for invalid user dev from 140.249.213.243 port 55662 ssh2Apr 25 06:10:33 vps58358 sshd\[17560\]: Invalid user aris from 140.249.213.243Apr 25 06:10:35 vps58358 sshd\[17560\]: Failed password for invalid user aris from 140.249.213.243 port 57444 ssh2 ...	2020-04-25 13:15:09
attack	Apr 20 19:05:19 sso sshd[10752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Apr 20 19:05:20 sso sshd[10752]: Failed password for invalid user yw from 140.249.213.243 port 46862 ssh2 ...	2020-04-21 01:39:45
attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-19 07:10:39
attack	Apr 15 03:41:03 km20725 sshd[8940]: Invalid user vyos from 140.249.213.243 Apr 15 03:41:03 km20725 sshd[8940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Apr 15 03:41:05 km20725 sshd[8940]: Failed password for invalid user vyos from 140.249.213.243 port 39888 ssh2 Apr 15 03:41:05 km20725 sshd[8940]: Received disconnect from 140.249.213.243: 11: Bye Bye [preauth] Apr 15 03:55:26 km20725 sshd[9605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=r.r Apr 15 03:55:28 km20725 sshd[9605]: Failed password for r.r from 140.249.213.243 port 44188 ssh2 Apr 15 03:56:02 km20725 sshd[9605]: Received disconnect from 140.249.213.243: 11: Bye Bye [preauth] Apr 15 04:00:36 km20725 sshd[9843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=r.r Apr 15 04:00:38 km20725 sshd[9843]: Failed password for r.r f........ -------------------------------	2020-04-16 05:50:48
attackbotsspam	Apr 15 17:01:47 www sshd\[6559\]: Invalid user ubuntu from 140.249.213.243 Apr 15 17:01:47 www sshd\[6559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Apr 15 17:01:49 www sshd\[6559\]: Failed password for invalid user ubuntu from 140.249.213.243 port 52778 ssh2 ...	2020-04-15 22:56:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.249.213.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.249.213.243.		IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041500 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 22:56:38 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 243.213.249.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 243.213.249.140.in-addr.arpa.: NXDOMAIN

IP	类型	评论内容	时间
119.45.112.28	attackbotsspam	20 attempts against mh-ssh on echoip	2020-09-06 02:06:55
171.50.207.134	attackbotsspam	Sep 5 18:56:22 vps333114 sshd[9270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.50.207.134 Sep 5 18:56:24 vps333114 sshd[9270]: Failed password for invalid user postgres from 171.50.207.134 port 49112 ssh2 ...	2020-09-06 01:37:52
201.1.22.35	attackspambots	Automatic report - Port Scan Attack	2020-09-06 02:09:46
202.137.155.193	attack	(imapd) Failed IMAP login from 202.137.155.193 (LA/Laos/-): 1 in the last 3600 secs	2020-09-06 02:09:32
134.122.112.200	attack	Sep 5 16:47:31 gw1 sshd[16300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.112.200 Sep 5 16:47:33 gw1 sshd[16300]: Failed password for invalid user zabbix from 134.122.112.200 port 48040 ssh2 ...	2020-09-06 01:43:02
186.234.80.218	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-06 02:04:40
107.161.88.35	attackbots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-09-06 02:05:10
62.68.246.140	attack	Icarus honeypot on github	2020-09-06 02:05:40
41.46.130.137	attack	Port probing on unauthorized port 23	2020-09-06 01:59:41
82.165.253.73	attackbots	Port Scan: TCP/80	2020-09-06 01:44:24
104.248.155.233	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-06 02:02:36
151.62.6.225	attackspam	Sep 4 18:46:48 mellenthin postfix/smtpd[32352]: NOQUEUE: reject: RCPT from unknown[151.62.6.225]: 554 5.7.1 Service unavailable; Client host [151.62.6.225] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/151.62.6.225; from= to= proto=ESMTP helo=<[151.62.6.225]>	2020-09-06 02:19:33
131.147.249.143	attackbotsspam	Unauthorised access (Sep 4) SRC=131.147.249.143 LEN=52 TTL=119 ID=28306 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-06 02:15:53
116.241.175.237	attack	Unauthorised access (Sep 4) SRC=116.241.175.237 LEN=40 TTL=46 ID=60910 TCP DPT=23 WINDOW=59723 SYN	2020-09-06 01:45:39
2001:41d0:8:737c::	attackbots	[munged]::443 2001:41d0:8:737c:: - - [05/Sep/2020:09:39:38 +0200] "POST /[munged]: HTTP/1.1" 200 8156 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-06 01:56:07

最近上报的IP列表

88.85.111.147	206.189.65.107	139.169.44.212	206.189.28.69
201.136.233.147	3.80.217.86	175.193.40.88	210.30.114.245
88.218.17.126	186.135.27.212	132.172.65.199	93.108.13.69
88.88.253.243	128.241.98.106	45.77.227.39	186.210.181.115
7.96.91.75	128.188.219.239	30.26.70.219	131.198.53.35