192.144.140.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 4 06:12:56 host sshd[3009]: Invalid user magno from 192.144.140.20 port 46398 ...	2020-09-04 23:30:35
attack	Sep 4 06:12:56 host sshd[3009]: Invalid user magno from 192.144.140.20 port 46398 ...	2020-09-04 15:02:07
attack	"$f2bV_matches"	2020-09-04 07:25:07
attackbots	Invalid user thais from 192.144.140.20 port 58024	2020-08-28 16:17:09
attackbotsspam	Automatic Fail2ban report - Trying login SSH	2020-08-24 19:28:00
attackspambots	2020-08-16T19:18:02.783790hostname sshd[21555]: Invalid user guang from 192.144.140.20 port 49258 2020-08-16T19:18:04.675569hostname sshd[21555]: Failed password for invalid user guang from 192.144.140.20 port 49258 ssh2 2020-08-16T19:24:30.763773hostname sshd[24148]: Invalid user ts from 192.144.140.20 port 57396 ...	2020-08-16 22:45:38
attackspambots	Aug 1 22:18:06 plex-server sshd[121823]: Failed password for root from 192.144.140.20 port 42482 ssh2 Aug 1 22:19:42 plex-server sshd[122531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Aug 1 22:19:44 plex-server sshd[122531]: Failed password for root from 192.144.140.20 port 60734 ssh2 Aug 1 22:21:20 plex-server sshd[123223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Aug 1 22:21:22 plex-server sshd[123223]: Failed password for root from 192.144.140.20 port 50754 ssh2 ...	2020-08-02 06:46:54
attackspam	Jul 27 15:21:12 abendstille sshd\[20393\]: Invalid user laravel from 192.144.140.20 Jul 27 15:21:12 abendstille sshd\[20393\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 27 15:21:14 abendstille sshd\[20393\]: Failed password for invalid user laravel from 192.144.140.20 port 44910 ssh2 Jul 27 15:27:20 abendstille sshd\[25962\]: Invalid user orbit from 192.144.140.20 Jul 27 15:27:20 abendstille sshd\[25962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 ...	2020-07-27 21:48:52
attack	Jul 20 07:27:07 ns381471 sshd[24252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 20 07:27:08 ns381471 sshd[24252]: Failed password for invalid user sebastian from 192.144.140.20 port 49554 ssh2	2020-07-20 20:02:47
attackspambots	Jul 16 00:06:53 ny01 sshd[23022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 16 00:06:55 ny01 sshd[23022]: Failed password for invalid user rohit from 192.144.140.20 port 55686 ssh2 Jul 16 00:12:37 ny01 sshd[24370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20	2020-07-16 12:26:44
attackbotsspam	Jul 14 19:37:55 ws12vmsma01 sshd[19964]: Invalid user rly from 192.144.140.20 Jul 14 19:37:57 ws12vmsma01 sshd[19964]: Failed password for invalid user rly from 192.144.140.20 port 60046 ssh2 Jul 14 19:40:35 ws12vmsma01 sshd[20448]: Invalid user reporting from 192.144.140.20 ...	2020-07-15 07:15:54
attackbotsspam	Invalid user abram from 192.144.140.20 port 39678	2020-07-14 07:39:57
attack	Jul 13 15:36:07 ns381471 sshd[13023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 13 15:36:09 ns381471 sshd[13023]: Failed password for invalid user mihai from 192.144.140.20 port 43696 ssh2	2020-07-13 21:56:41
attack	Jul 12 18:07:20 [host] sshd[8875]: Invalid user ra Jul 12 18:07:20 [host] sshd[8875]: pam_unix(sshd:a Jul 12 18:07:21 [host] sshd[8875]: Failed password	2020-07-13 02:51:31
attackspambots	Jul 9 15:27:42 vps687878 sshd\[8400\]: Failed password for invalid user lissette from 192.144.140.20 port 49342 ssh2 Jul 9 15:31:00 vps687878 sshd\[8581\]: Invalid user laurel from 192.144.140.20 port 56072 Jul 9 15:31:00 vps687878 sshd\[8581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 9 15:31:01 vps687878 sshd\[8581\]: Failed password for invalid user laurel from 192.144.140.20 port 56072 ssh2 Jul 9 15:37:32 vps687878 sshd\[9186\]: Invalid user eshop from 192.144.140.20 port 41280 Jul 9 15:37:32 vps687878 sshd\[9186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 ...	2020-07-10 00:01:31
attackspam	SSH auth scanning - multiple failed logins	2020-07-02 06:41:57
attackspam	Jun 29 08:02:18 nextcloud sshd\[16300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Jun 29 08:02:20 nextcloud sshd\[16300\]: Failed password for root from 192.144.140.20 port 41400 ssh2 Jun 29 08:06:20 nextcloud sshd\[19974\]: Invalid user one from 192.144.140.20 Jun 29 08:06:20 nextcloud sshd\[19974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20	2020-06-29 17:40:07
attack	$f2bV_matches	2020-06-26 15:48:03
attackspam	2020-06-19T16:15:53.456072lavrinenko.info sshd[9426]: Failed password for invalid user naufal from 192.144.140.20 port 58280 ssh2 2020-06-19T16:17:46.804281lavrinenko.info sshd[9559]: Invalid user vlad from 192.144.140.20 port 51482 2020-06-19T16:17:46.813664lavrinenko.info sshd[9559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 2020-06-19T16:17:46.804281lavrinenko.info sshd[9559]: Invalid user vlad from 192.144.140.20 port 51482 2020-06-19T16:17:48.541453lavrinenko.info sshd[9559]: Failed password for invalid user vlad from 192.144.140.20 port 51482 ssh2 ...	2020-06-19 23:44:48
attack	Jun 12 00:24:36 lnxweb61 sshd[14734]: Failed password for root from 192.144.140.20 port 37098 ssh2 Jun 12 00:24:36 lnxweb61 sshd[14734]: Failed password for root from 192.144.140.20 port 37098 ssh2	2020-06-12 06:36:55
attack	Ssh brute force	2020-05-13 08:52:50
attack	SSH Brute-Forcing (server1)	2020-05-08 14:36:33
attack	May 7 18:45:39 onepixel sshd[760171]: Failed password for root from 192.144.140.20 port 40024 ssh2 May 7 18:49:24 onepixel sshd[762141]: Invalid user test from 192.144.140.20 port 55660 May 7 18:49:24 onepixel sshd[762141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 May 7 18:49:24 onepixel sshd[762141]: Invalid user test from 192.144.140.20 port 55660 May 7 18:49:26 onepixel sshd[762141]: Failed password for invalid user test from 192.144.140.20 port 55660 ssh2	2020-05-08 03:03:40
attack	k+ssh-bruteforce	2020-05-05 04:15:47
attackbots	Apr 29 06:58:03 sso sshd[18826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Apr 29 06:58:05 sso sshd[18826]: Failed password for invalid user srvadmin from 192.144.140.20 port 51826 ssh2 ...	2020-04-29 15:37:42
attack	SSH Invalid Login	2020-04-25 05:58:41
attackspambots	Automatic report BANNED IP	2020-04-21 01:17:23
attack	Apr 2 23:24:22 server1 sshd\[25164\]: Invalid user wusm from 192.144.140.20 Apr 2 23:24:22 server1 sshd\[25164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Apr 2 23:24:24 server1 sshd\[25164\]: Failed password for invalid user wusm from 192.144.140.20 port 42804 ssh2 Apr 2 23:30:04 server1 sshd\[26972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Apr 2 23:30:06 server1 sshd\[26972\]: Failed password for root from 192.144.140.20 port 44394 ssh2 ...	2020-04-03 16:52:20
attack	Brute force attempt	2020-03-27 20:10:02
attack	Mar 25 14:51:34 plex sshd[28817]: Invalid user stacee from 192.144.140.20 port 36468	2020-03-25 22:16:25

相同子网IP讨论:

IP	类型	评论内容	时间
192.144.140.80	attack	detected by Fail2Ban	2020-04-04 09:13:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.144.140.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11446
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.144.140.20.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092600 1800 900 604800 86400

;; Query time: 322 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 26 15:50:32 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 20.140.144.192.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.140.144.192.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
77.93.33.212	attackspam	k+ssh-bruteforce	2019-09-27 01:44:49
23.129.64.182	attackspambots	Sep 26 06:12:35 hanapaa sshd\[4704\]: Invalid user about from 23.129.64.182 Sep 26 06:12:35 hanapaa sshd\[4704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.182 Sep 26 06:12:36 hanapaa sshd\[4704\]: Failed password for invalid user about from 23.129.64.182 port 59510 ssh2 Sep 26 06:12:40 hanapaa sshd\[4704\]: Failed password for invalid user about from 23.129.64.182 port 59510 ssh2 Sep 26 06:12:42 hanapaa sshd\[4704\]: Failed password for invalid user about from 23.129.64.182 port 59510 ssh2	2019-09-27 01:23:48
182.61.187.39	attack	$f2bV_matches	2019-09-27 01:37:44
106.13.128.71	attackbotsspam	2019-09-26T17:00:17.902865abusebot-5.cloudsearch.cf sshd\[14634\]: Invalid user ldapuser from 106.13.128.71 port 57636	2019-09-27 01:16:08
223.197.151.55	attack	Sep 26 22:12:42 gw1 sshd[30890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.151.55 Sep 26 22:12:44 gw1 sshd[30890]: Failed password for invalid user phillip from 223.197.151.55 port 38097 ssh2 ...	2019-09-27 01:18:03
27.254.158.129	attack	$f2bV_matches	2019-09-27 01:59:41
185.53.88.74	attackspam	\[2019-09-26 08:35:16\] NOTICE\[1948\] chan_sip.c: Registration from '"5001" \' failed for '185.53.88.74:6053' - Wrong password \[2019-09-26 08:35:16\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-26T08:35:16.614-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5001",SessionID="0x7f1e1c0f3b48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.74/6053",Challenge="79d35283",ReceivedChallenge="79d35283",ReceivedHash="5a77f7fefe406ff624629dd31da0f8f6" \[2019-09-26 08:35:16\] NOTICE\[1948\] chan_sip.c: Registration from '"5001" \' failed for '185.53.88.74:6053' - Wrong password \[2019-09-26 08:35:16\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-26T08:35:16.713-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5001",SessionID="0x7f1e1c02d9c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/1	2019-09-27 01:51:46
58.199.164.240	attack	2019-09-26T12:32:08.6931681495-001 sshd\[18648\]: Invalid user test from 58.199.164.240 port 56522 2019-09-26T12:32:08.7000621495-001 sshd\[18648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.199.164.240 2019-09-26T12:32:10.9604921495-001 sshd\[18648\]: Failed password for invalid user test from 58.199.164.240 port 56522 ssh2 2019-09-26T12:35:23.9916161495-001 sshd\[18829\]: Invalid user zonaWifi from 58.199.164.240 port 52638 2019-09-26T12:35:23.9990311495-001 sshd\[18829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.199.164.240 2019-09-26T12:35:25.6928641495-001 sshd\[18829\]: Failed password for invalid user zonaWifi from 58.199.164.240 port 52638 ssh2 ...	2019-09-27 01:47:12
167.88.7.134	attackbots	[portscan] Port scan	2019-09-27 01:25:17
45.80.65.76	attackbots	Sep 26 19:48:16 core sshd[26196]: Invalid user test2 from 45.80.65.76 port 37438 Sep 26 19:48:18 core sshd[26196]: Failed password for invalid user test2 from 45.80.65.76 port 37438 ssh2 ...	2019-09-27 02:02:17
54.37.226.173	attackspambots	Sep 26 19:38:22 gw1 sshd[26893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.226.173 Sep 26 19:38:24 gw1 sshd[26893]: Failed password for invalid user operator from 54.37.226.173 port 39974 ssh2 ...	2019-09-27 01:24:20
167.99.231.250	attackbots	MYH,DEF GET /cms/wp-login.php	2019-09-27 01:46:38
222.186.15.217	attackbotsspam	Sep 26 19:09:16 MK-Soft-Root2 sshd[19589]: Failed password for root from 222.186.15.217 port 30889 ssh2 Sep 26 19:09:19 MK-Soft-Root2 sshd[19589]: Failed password for root from 222.186.15.217 port 30889 ssh2 ...	2019-09-27 01:13:45
203.93.108.189	attack	Unauthorised access (Sep 26) SRC=203.93.108.189 LEN=52 TOS=0x08 PREC=0x20 TTL=99 ID=16045 DF TCP DPT=445 WINDOW=8192 SYN	2019-09-27 01:48:12
46.161.60.231	attackbotsspam	B: zzZZzz blocked content access	2019-09-27 01:50:01

最近上报的IP列表

220.25.140.137	108.90.122.190	235.123.252.216	92.220.10.100
222.208.203.220	114.230.134.186	107.223.83.57	241.95.11.94
90.130.140.198	192.237.9.86	49.234.62.144	222.219.80.60
66.142.187.103	154.123.24.242	107.68.114.111	156.60.181.205
223.4.70.106	158.145.244.161	58.149.33.74	194.189.67.248