140.249.213.243

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 12 14:37:58 lnxmail61 sshd[26442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Aug 12 14:38:00 lnxmail61 sshd[26442]: Failed password for invalid user sysadmin12345 from 140.249.213.243 port 50098 ssh2 Aug 12 14:43:51 lnxmail61 sshd[27244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243	2020-08-12 21:04:39
attack	SSH invalid-user multiple login try	2020-07-21 12:12:22
attack	2020-06-16T16:48:37.924969lavrinenko.info sshd[4386]: Failed password for invalid user gentoo from 140.249.213.243 port 37816 ssh2 2020-06-16T16:51:39.935011lavrinenko.info sshd[4585]: Invalid user user01 from 140.249.213.243 port 43902 2020-06-16T16:51:39.943935lavrinenko.info sshd[4585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 2020-06-16T16:51:39.935011lavrinenko.info sshd[4585]: Invalid user user01 from 140.249.213.243 port 43902 2020-06-16T16:51:41.788486lavrinenko.info sshd[4585]: Failed password for invalid user user01 from 140.249.213.243 port 43902 ssh2 ...	2020-06-17 00:25:59
attack	Jun 12 16:47:04 ws26vmsma01 sshd[236673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Jun 12 16:47:07 ws26vmsma01 sshd[236673]: Failed password for invalid user insideout from 140.249.213.243 port 39966 ssh2 ...	2020-06-13 02:37:14
attack	Jun 4 09:07:09 lanister sshd[32051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root Jun 4 09:07:11 lanister sshd[32051]: Failed password for root from 140.249.213.243 port 60274 ssh2 Jun 4 09:10:48 lanister sshd[32159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root Jun 4 09:10:49 lanister sshd[32159]: Failed password for root from 140.249.213.243 port 50688 ssh2	2020-06-05 01:37:06
attack	May 25 09:42:46 web1 sshd\[14248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root May 25 09:42:48 web1 sshd\[14248\]: Failed password for root from 140.249.213.243 port 45338 ssh2 May 25 09:50:47 web1 sshd\[14962\]: Invalid user noemi from 140.249.213.243 May 25 09:50:47 web1 sshd\[14962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 25 09:50:48 web1 sshd\[14962\]: Failed password for invalid user noemi from 140.249.213.243 port 41922 ssh2	2020-05-26 03:59:17
attackbots	May 21 22:00:19 web1 sshd\[26611\]: Invalid user ies from 140.249.213.243 May 21 22:00:19 web1 sshd\[26611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 21 22:00:21 web1 sshd\[26611\]: Failed password for invalid user ies from 140.249.213.243 port 51134 ssh2 May 21 22:02:59 web1 sshd\[26860\]: Invalid user jkp from 140.249.213.243 May 21 22:02:59 web1 sshd\[26860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243	2020-05-22 16:06:41
attackbots	May 8 06:36:50 eventyay sshd[10054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 May 8 06:36:53 eventyay sshd[10054]: Failed password for invalid user ghost from 140.249.213.243 port 39444 ssh2 May 8 06:40:43 eventyay sshd[10167]: Failed password for root from 140.249.213.243 port 34518 ssh2 ...	2020-05-08 14:14:58
attackspam	2020-05-05T19:51:02.981087vps751288.ovh.net sshd\[19689\]: Invalid user alex from 140.249.213.243 port 51622 2020-05-05T19:51:02.990584vps751288.ovh.net sshd\[19689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 2020-05-05T19:51:04.921571vps751288.ovh.net sshd\[19689\]: Failed password for invalid user alex from 140.249.213.243 port 51622 ssh2 2020-05-05T19:54:39.166102vps751288.ovh.net sshd\[19700\]: Invalid user cisco from 140.249.213.243 port 41836 2020-05-05T19:54:39.174970vps751288.ovh.net sshd\[19700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243	2020-05-06 05:21:32
attackbotsspam	Apr 25 06:01:41 vps58358 sshd\[17434\]: Invalid user pgsql from 140.249.213.243Apr 25 06:01:43 vps58358 sshd\[17434\]: Failed password for invalid user pgsql from 140.249.213.243 port 53880 ssh2Apr 25 06:06:07 vps58358 sshd\[17472\]: Invalid user dev from 140.249.213.243Apr 25 06:06:08 vps58358 sshd\[17472\]: Failed password for invalid user dev from 140.249.213.243 port 55662 ssh2Apr 25 06:10:33 vps58358 sshd\[17560\]: Invalid user aris from 140.249.213.243Apr 25 06:10:35 vps58358 sshd\[17560\]: Failed password for invalid user aris from 140.249.213.243 port 57444 ssh2 ...	2020-04-25 13:15:09
attack	Apr 20 19:05:19 sso sshd[10752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Apr 20 19:05:20 sso sshd[10752]: Failed password for invalid user yw from 140.249.213.243 port 46862 ssh2 ...	2020-04-21 01:39:45
attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-19 07:10:39
attack	Apr 15 03:41:03 km20725 sshd[8940]: Invalid user vyos from 140.249.213.243 Apr 15 03:41:03 km20725 sshd[8940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Apr 15 03:41:05 km20725 sshd[8940]: Failed password for invalid user vyos from 140.249.213.243 port 39888 ssh2 Apr 15 03:41:05 km20725 sshd[8940]: Received disconnect from 140.249.213.243: 11: Bye Bye [preauth] Apr 15 03:55:26 km20725 sshd[9605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=r.r Apr 15 03:55:28 km20725 sshd[9605]: Failed password for r.r from 140.249.213.243 port 44188 ssh2 Apr 15 03:56:02 km20725 sshd[9605]: Received disconnect from 140.249.213.243: 11: Bye Bye [preauth] Apr 15 04:00:36 km20725 sshd[9843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=r.r Apr 15 04:00:38 km20725 sshd[9843]: Failed password for r.r f........ -------------------------------	2020-04-16 05:50:48
attackbotsspam	Apr 15 17:01:47 www sshd\[6559\]: Invalid user ubuntu from 140.249.213.243 Apr 15 17:01:47 www sshd\[6559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Apr 15 17:01:49 www sshd\[6559\]: Failed password for invalid user ubuntu from 140.249.213.243 port 52778 ssh2 ...	2020-04-15 22:56:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.249.213.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.249.213.243.		IN	A

;; AUTHORITY SECTION:
.			335	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041500 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 22:56:38 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 243.213.249.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 243.213.249.140.in-addr.arpa.: NXDOMAIN

IP	类型	评论内容	时间
41.193.46.253	attackbotsspam	RDP Brute-Force (Grieskirchen RZ1)	2019-07-08 03:52:11
200.93.78.8	attackbots	Unauthorized connection attempt from IP address 200.93.78.8 on Port 445(SMB)	2019-07-08 04:02:18
37.59.130.90	attackbotsspam	Port scan on 1 port(s): 445	2019-07-08 04:20:02
66.249.64.20	attack	Automatic report - Web App Attack	2019-07-08 03:53:57
189.51.201.4	attackspambots	Jul 7 09:31:47 web1 postfix/smtpd[12172]: warning: unknown[189.51.201.4]: SASL PLAIN authentication failed: authentication failure ...	2019-07-08 04:01:28
106.12.211.247	attack	2019-07-07T15:58:39.0359191240 sshd\[11858\]: Invalid user valeria from 106.12.211.247 port 43960 2019-07-07T15:58:39.0417211240 sshd\[11858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.211.247 2019-07-07T15:58:40.9656411240 sshd\[11858\]: Failed password for invalid user valeria from 106.12.211.247 port 43960 ssh2 ...	2019-07-08 03:57:40
183.182.109.84	attack	Unauthorized connection attempt from IP address 183.182.109.84 on Port 445(SMB)	2019-07-08 04:24:01
209.146.24.60	attackbots	Unauthorized connection attempt from IP address 209.146.24.60 on Port 445(SMB)	2019-07-08 04:15:03
66.206.0.171	attack	[portscan] Port scan	2019-07-08 03:58:06
82.142.165.226	attack	Unauthorized connection attempt from IP address 82.142.165.226 on Port 445(SMB)	2019-07-08 04:09:03
218.92.0.205	attack	Jul 7 21:42:48 localhost sshd\[25094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root Jul 7 21:42:50 localhost sshd\[25094\]: Failed password for root from 218.92.0.205 port 39824 ssh2 Jul 7 21:42:52 localhost sshd\[25094\]: Failed password for root from 218.92.0.205 port 39824 ssh2	2019-07-08 03:57:21
125.105.50.228	attack	WordpressAttack	2019-07-08 03:47:10
45.163.149.36	attackspam	Unauthorized connection attempt from IP address 45.163.149.36 on Port 445(SMB)	2019-07-08 04:17:30
5.122.123.60	attack	Unauthorized connection attempt from IP address 5.122.123.60 on Port 445(SMB)	2019-07-08 04:14:31
151.16.111.223	attackspam	Autoban 151.16.111.223 AUTH/CONNECT	2019-07-08 03:42:17

最近上报的IP列表

88.85.111.147	206.189.65.107	139.169.44.212	206.189.28.69
201.136.233.147	3.80.217.86	175.193.40.88	210.30.114.245
88.218.17.126	186.135.27.212	132.172.65.199	93.108.13.69
88.88.253.243	128.241.98.106	45.77.227.39	186.210.181.115
7.96.91.75	128.188.219.239	30.26.70.219	131.198.53.35