192.144.140.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 4 06:12:56 host sshd[3009]: Invalid user magno from 192.144.140.20 port 46398 ...	2020-09-04 23:30:35
attack	Sep 4 06:12:56 host sshd[3009]: Invalid user magno from 192.144.140.20 port 46398 ...	2020-09-04 15:02:07
attack	"$f2bV_matches"	2020-09-04 07:25:07
attackbots	Invalid user thais from 192.144.140.20 port 58024	2020-08-28 16:17:09
attackbotsspam	Automatic Fail2ban report - Trying login SSH	2020-08-24 19:28:00
attackspambots	2020-08-16T19:18:02.783790hostname sshd[21555]: Invalid user guang from 192.144.140.20 port 49258 2020-08-16T19:18:04.675569hostname sshd[21555]: Failed password for invalid user guang from 192.144.140.20 port 49258 ssh2 2020-08-16T19:24:30.763773hostname sshd[24148]: Invalid user ts from 192.144.140.20 port 57396 ...	2020-08-16 22:45:38
attackspambots	Aug 1 22:18:06 plex-server sshd[121823]: Failed password for root from 192.144.140.20 port 42482 ssh2 Aug 1 22:19:42 plex-server sshd[122531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Aug 1 22:19:44 plex-server sshd[122531]: Failed password for root from 192.144.140.20 port 60734 ssh2 Aug 1 22:21:20 plex-server sshd[123223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Aug 1 22:21:22 plex-server sshd[123223]: Failed password for root from 192.144.140.20 port 50754 ssh2 ...	2020-08-02 06:46:54
attackspam	Jul 27 15:21:12 abendstille sshd\[20393\]: Invalid user laravel from 192.144.140.20 Jul 27 15:21:12 abendstille sshd\[20393\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 27 15:21:14 abendstille sshd\[20393\]: Failed password for invalid user laravel from 192.144.140.20 port 44910 ssh2 Jul 27 15:27:20 abendstille sshd\[25962\]: Invalid user orbit from 192.144.140.20 Jul 27 15:27:20 abendstille sshd\[25962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 ...	2020-07-27 21:48:52
attack	Jul 20 07:27:07 ns381471 sshd[24252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 20 07:27:08 ns381471 sshd[24252]: Failed password for invalid user sebastian from 192.144.140.20 port 49554 ssh2	2020-07-20 20:02:47
attackspambots	Jul 16 00:06:53 ny01 sshd[23022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 16 00:06:55 ny01 sshd[23022]: Failed password for invalid user rohit from 192.144.140.20 port 55686 ssh2 Jul 16 00:12:37 ny01 sshd[24370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20	2020-07-16 12:26:44
attackbotsspam	Jul 14 19:37:55 ws12vmsma01 sshd[19964]: Invalid user rly from 192.144.140.20 Jul 14 19:37:57 ws12vmsma01 sshd[19964]: Failed password for invalid user rly from 192.144.140.20 port 60046 ssh2 Jul 14 19:40:35 ws12vmsma01 sshd[20448]: Invalid user reporting from 192.144.140.20 ...	2020-07-15 07:15:54
attackbotsspam	Invalid user abram from 192.144.140.20 port 39678	2020-07-14 07:39:57
attack	Jul 13 15:36:07 ns381471 sshd[13023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 13 15:36:09 ns381471 sshd[13023]: Failed password for invalid user mihai from 192.144.140.20 port 43696 ssh2	2020-07-13 21:56:41
attack	Jul 12 18:07:20 [host] sshd[8875]: Invalid user ra Jul 12 18:07:20 [host] sshd[8875]: pam_unix(sshd:a Jul 12 18:07:21 [host] sshd[8875]: Failed password	2020-07-13 02:51:31
attackspambots	Jul 9 15:27:42 vps687878 sshd\[8400\]: Failed password for invalid user lissette from 192.144.140.20 port 49342 ssh2 Jul 9 15:31:00 vps687878 sshd\[8581\]: Invalid user laurel from 192.144.140.20 port 56072 Jul 9 15:31:00 vps687878 sshd\[8581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Jul 9 15:31:01 vps687878 sshd\[8581\]: Failed password for invalid user laurel from 192.144.140.20 port 56072 ssh2 Jul 9 15:37:32 vps687878 sshd\[9186\]: Invalid user eshop from 192.144.140.20 port 41280 Jul 9 15:37:32 vps687878 sshd\[9186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 ...	2020-07-10 00:01:31
attackspam	SSH auth scanning - multiple failed logins	2020-07-02 06:41:57
attackspam	Jun 29 08:02:18 nextcloud sshd\[16300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Jun 29 08:02:20 nextcloud sshd\[16300\]: Failed password for root from 192.144.140.20 port 41400 ssh2 Jun 29 08:06:20 nextcloud sshd\[19974\]: Invalid user one from 192.144.140.20 Jun 29 08:06:20 nextcloud sshd\[19974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20	2020-06-29 17:40:07
attack	$f2bV_matches	2020-06-26 15:48:03
attackspam	2020-06-19T16:15:53.456072lavrinenko.info sshd[9426]: Failed password for invalid user naufal from 192.144.140.20 port 58280 ssh2 2020-06-19T16:17:46.804281lavrinenko.info sshd[9559]: Invalid user vlad from 192.144.140.20 port 51482 2020-06-19T16:17:46.813664lavrinenko.info sshd[9559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 2020-06-19T16:17:46.804281lavrinenko.info sshd[9559]: Invalid user vlad from 192.144.140.20 port 51482 2020-06-19T16:17:48.541453lavrinenko.info sshd[9559]: Failed password for invalid user vlad from 192.144.140.20 port 51482 ssh2 ...	2020-06-19 23:44:48
attack	Jun 12 00:24:36 lnxweb61 sshd[14734]: Failed password for root from 192.144.140.20 port 37098 ssh2 Jun 12 00:24:36 lnxweb61 sshd[14734]: Failed password for root from 192.144.140.20 port 37098 ssh2	2020-06-12 06:36:55
attack	Ssh brute force	2020-05-13 08:52:50
attack	SSH Brute-Forcing (server1)	2020-05-08 14:36:33
attack	May 7 18:45:39 onepixel sshd[760171]: Failed password for root from 192.144.140.20 port 40024 ssh2 May 7 18:49:24 onepixel sshd[762141]: Invalid user test from 192.144.140.20 port 55660 May 7 18:49:24 onepixel sshd[762141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 May 7 18:49:24 onepixel sshd[762141]: Invalid user test from 192.144.140.20 port 55660 May 7 18:49:26 onepixel sshd[762141]: Failed password for invalid user test from 192.144.140.20 port 55660 ssh2	2020-05-08 03:03:40
attack	k+ssh-bruteforce	2020-05-05 04:15:47
attackbots	Apr 29 06:58:03 sso sshd[18826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Apr 29 06:58:05 sso sshd[18826]: Failed password for invalid user srvadmin from 192.144.140.20 port 51826 ssh2 ...	2020-04-29 15:37:42
attack	SSH Invalid Login	2020-04-25 05:58:41
attackspambots	Automatic report BANNED IP	2020-04-21 01:17:23
attack	Apr 2 23:24:22 server1 sshd\[25164\]: Invalid user wusm from 192.144.140.20 Apr 2 23:24:22 server1 sshd\[25164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 Apr 2 23:24:24 server1 sshd\[25164\]: Failed password for invalid user wusm from 192.144.140.20 port 42804 ssh2 Apr 2 23:30:04 server1 sshd\[26972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.140.20 user=root Apr 2 23:30:06 server1 sshd\[26972\]: Failed password for root from 192.144.140.20 port 44394 ssh2 ...	2020-04-03 16:52:20
attack	Brute force attempt	2020-03-27 20:10:02
attack	Mar 25 14:51:34 plex sshd[28817]: Invalid user stacee from 192.144.140.20 port 36468	2020-03-25 22:16:25

相同子网IP讨论:

IP	类型	评论内容	时间
192.144.140.80	attack	detected by Fail2Ban	2020-04-04 09:13:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.144.140.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11446
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.144.140.20.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092600 1800 900 604800 86400

;; Query time: 322 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 26 15:50:32 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 20.140.144.192.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.140.144.192.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
122.139.214.22	attackspambots	81/tcp [2020-10-11]1pkt	2020-10-12 21:06:55
180.76.106.65	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-12 21:05:46
106.13.6.70	attack	2020-10-12T07:58:38+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-10-12 21:39:11
139.155.34.181	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-10-12 21:25:59
103.81.153.133	attack	Oct 12 05:18:26 h2865660 sshd[16646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.153.133 user=root Oct 12 05:18:28 h2865660 sshd[16646]: Failed password for root from 103.81.153.133 port 37364 ssh2 Oct 12 05:30:31 h2865660 sshd[17097]: Invalid user oracle from 103.81.153.133 port 55996 Oct 12 05:30:31 h2865660 sshd[17097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.153.133 Oct 12 05:30:31 h2865660 sshd[17097]: Invalid user oracle from 103.81.153.133 port 55996 Oct 12 05:30:33 h2865660 sshd[17097]: Failed password for invalid user oracle from 103.81.153.133 port 55996 ssh2 ...	2020-10-12 21:35:25
190.144.57.186	attackbots	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth): user=mysql	2020-10-12 21:13:35
36.133.5.157	attackbotsspam	Oct 12 12:20:57 pkdns2 sshd\[24099\]: Failed password for root from 36.133.5.157 port 34896 ssh2Oct 12 12:22:10 pkdns2 sshd\[24168\]: Failed password for root from 36.133.5.157 port 48820 ssh2Oct 12 12:23:18 pkdns2 sshd\[24240\]: Invalid user bot from 36.133.5.157Oct 12 12:23:20 pkdns2 sshd\[24240\]: Failed password for invalid user bot from 36.133.5.157 port 34504 ssh2Oct 12 12:24:29 pkdns2 sshd\[24288\]: Invalid user mandea from 36.133.5.157Oct 12 12:24:31 pkdns2 sshd\[24288\]: Failed password for invalid user mandea from 36.133.5.157 port 48428 ssh2 ...	2020-10-12 21:22:20
125.118.244.250	attack	Oct 12 00:13:08 pixelmemory sshd[4069296]: Failed password for root from 125.118.244.250 port 36796 ssh2 Oct 12 00:16:40 pixelmemory sshd[4087879]: Invalid user voodoo from 125.118.244.250 port 37576 Oct 12 00:16:40 pixelmemory sshd[4087879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.118.244.250 Oct 12 00:16:40 pixelmemory sshd[4087879]: Invalid user voodoo from 125.118.244.250 port 37576 Oct 12 00:16:42 pixelmemory sshd[4087879]: Failed password for invalid user voodoo from 125.118.244.250 port 37576 ssh2 ...	2020-10-12 21:35:05
188.166.255.77	attackspam	Oct 12 13:20:36 mellenthin sshd[8232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.255.77 user=root Oct 12 13:20:38 mellenthin sshd[8232]: Failed password for invalid user root from 188.166.255.77 port 49120 ssh2	2020-10-12 21:17:30
49.235.69.80	attack	Bruteforce detected by fail2ban	2020-10-12 21:28:55
190.202.109.244	attack	SSH login attempts.	2020-10-12 21:44:05
187.190.109.201	attackspam	Invalid user administrator from 187.190.109.201 port 54224	2020-10-12 21:19:32
218.92.0.175	attack	Oct 12 15:09:40 ovpn sshd\[14752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.175 user=root Oct 12 15:09:42 ovpn sshd\[14752\]: Failed password for root from 218.92.0.175 port 40564 ssh2 Oct 12 15:09:47 ovpn sshd\[14752\]: Failed password for root from 218.92.0.175 port 40564 ssh2 Oct 12 15:09:51 ovpn sshd\[14752\]: Failed password for root from 218.92.0.175 port 40564 ssh2 Oct 12 15:09:54 ovpn sshd\[14752\]: Failed password for root from 218.92.0.175 port 40564 ssh2	2020-10-12 21:16:59
212.70.149.20	attackbots	Oct 12 15:45:33 srv01 postfix/smtpd\[6937\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:45:35 srv01 postfix/smtpd\[4051\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:45:39 srv01 postfix/smtpd\[21097\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:45:40 srv01 postfix/smtpd\[8795\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:45:57 srv01 postfix/smtpd\[21097\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-12 21:48:16
69.94.46.58	attackbotsspam	Automatic report - Port Scan Attack	2020-10-12 21:24:31

最近上报的IP列表

220.25.140.137	108.90.122.190	235.123.252.216	92.220.10.100
222.208.203.220	114.230.134.186	107.223.83.57	241.95.11.94
90.130.140.198	192.237.9.86	49.234.62.144	222.219.80.60
66.142.187.103	154.123.24.242	107.68.114.111	156.60.181.205
223.4.70.106	158.145.244.161	58.149.33.74	194.189.67.248