140.143.146.91

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
140.143.146.148	attackspambots	Jul 4 06:05:20 server sshd[15901]: Failed password for invalid user server from 140.143.146.148 port 60882 ssh2 Jul 4 06:06:42 server sshd[17103]: User postgres from 140.143.146.148 not allowed because not listed in AllowUsers Jul 4 06:06:44 server sshd[17103]: Failed password for invalid user postgres from 140.143.146.148 port 50414 ssh2	2020-07-04 12:16:41
140.143.146.148	attack	Jun 26 05:52:04 backup sshd[11103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.146.148 Jun 26 05:52:06 backup sshd[11103]: Failed password for invalid user guest from 140.143.146.148 port 34456 ssh2 ...	2020-06-26 16:47:04
140.143.146.148	attackbots	Bruteforce detected by fail2ban	2020-06-14 17:59:09
140.143.146.45	attackbotsspam	2020-06-06T01:20:39.670171billing sshd[19309]: Failed password for root from 140.143.146.45 port 53738 ssh2 2020-06-06T01:24:30.422732billing sshd[27284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.146.45 user=root 2020-06-06T01:24:32.351059billing sshd[27284]: Failed password for root from 140.143.146.45 port 45704 ssh2 ...	2020-06-06 03:54:58
140.143.146.148	attackspam	odoo8 ...	2020-06-05 07:53:03
140.143.146.148	attack	May 31 11:56:50 sip sshd[478372]: Failed password for invalid user server from 140.143.146.148 port 44012 ssh2 May 31 12:01:11 sip sshd[478406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.146.148 user=root May 31 12:01:13 sip sshd[478406]: Failed password for root from 140.143.146.148 port 41150 ssh2 ...	2020-05-31 18:37:31
140.143.146.148	attackspambots	May 27 05:54:54 serwer sshd\[5496\]: Invalid user elsi from 140.143.146.148 port 57174 May 27 05:54:54 serwer sshd\[5496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.146.148 May 27 05:54:55 serwer sshd\[5496\]: Failed password for invalid user elsi from 140.143.146.148 port 57174 ssh2 ...	2020-05-27 14:31:31
140.143.146.45	attackspambots	May 24 19:31:20 nextcloud sshd\[20335\]: Invalid user teodora from 140.143.146.45 May 24 19:31:20 nextcloud sshd\[20335\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.146.45 May 24 19:31:22 nextcloud sshd\[20335\]: Failed password for invalid user teodora from 140.143.146.45 port 50778 ssh2	2020-05-25 02:32:01
140.143.146.45	attackbots	SSH brute force attempt	2020-05-13 21:03:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.143.146.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33775
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.143.146.91.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 140 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:00:16 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 91.146.143.140.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 91.146.143.140.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.25.217.107	attackbots	1582519762 - 02/24/2020 05:49:22 Host: 181.25.217.107/181.25.217.107 Port: 445 TCP Blocked	2020-02-24 17:51:57
180.124.201.158	attackspam	Feb 24 05:49:27 grey postfix/smtpd\[5536\]: NOQUEUE: reject: RCPT from unknown\[180.124.201.158\]: 554 5.7.1 Service unavailable\; Client host \[180.124.201.158\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[180.124.201.158\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-24 17:48:20
162.243.136.70	attack	Port probing on unauthorized port 143	2020-02-24 17:52:34
51.38.232.93	attack	suspicious action Mon, 24 Feb 2020 01:48:59 -0300	2020-02-24 18:01:03
163.179.125.21	attackspambots	suspicious action Mon, 24 Feb 2020 01:49:10 -0300	2020-02-24 17:57:20
86.57.254.129	attackbotsspam	Unauthorized connection attempt detected from IP address 86.57.254.129 to port 8080	2020-02-24 17:52:17
167.71.209.115	attack	xmlrpc attack	2020-02-24 17:50:25
183.80.183.192	attack	MIRAI HOST Sun Feb 23 21:49:48 2020 - Child process 223029 handling connection Sun Feb 23 21:49:48 2020 - New connection from: 183.80.183.192:33011 Sun Feb 23 21:49:48 2020 - Sending data to client: [Login: ] Sun Feb 23 21:49:49 2020 - Got data: admin Sun Feb 23 21:49:50 2020 - Sending data to client: [Password: ] Sun Feb 23 21:49:50 2020 - Got data: 54321 Sun Feb 23 21:49:52 2020 - Child 223033 granting shell Sun Feb 23 21:49:52 2020 - Child 223029 exiting Sun Feb 23 21:49:52 2020 - Sending data to client: [Logged in] Sun Feb 23 21:49:52 2020 - Sending data to client: [Welcome to MX990 Embedded Linux] Sun Feb 23 21:49:52 2020 - Sending data to client: [[root@dvrdvs /]# ] Sun Feb 23 21:49:52 2020 - Got data: enable system shell sh Sun Feb 23 21:49:52 2020 - Sending data to client: [Command not found] Sun Feb 23 21:49:53 2020 - Sending data to client: [[root@dvrdvs /]# ] Sun Feb 23 21:49:53 2020 - Got data: cat /proc/mounts; /bin/busybox ESGMI Sun Feb 23 21:49:53 2020 - Sending data to clie	2020-02-24 17:44:06
185.175.93.104	attack	Automatic report - Port Scan	2020-02-24 17:25:18
155.133.1.129	attackspambots	scan r	2020-02-24 17:46:24
103.108.187.4	attackbotsspam	Feb 24 10:08:30 ArkNodeAT sshd\[5125\]: Invalid user www from 103.108.187.4 Feb 24 10:08:30 ArkNodeAT sshd\[5125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.187.4 Feb 24 10:08:32 ArkNodeAT sshd\[5125\]: Failed password for invalid user www from 103.108.187.4 port 34003 ssh2	2020-02-24 17:26:09
204.48.31.236	attackspambots	DATE:2020-02-24 07:55:11, IP:204.48.31.236, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-24 17:55:38
202.83.58.22	attackbots	Email rejected due to spam filtering	2020-02-24 17:21:21
103.81.157.196	attackspambots	Email rejected due to spam filtering	2020-02-24 17:21:45
202.94.83.196	attackbots	Email rejected due to spam filtering	2020-02-24 17:20:48

Recently Reported IPs

140.143.147.224	140.143.148.236	140.143.145.71	140.143.146.6
140.143.147.3	140.143.148.155	140.143.147.57	140.143.148.53
118.70.197.22	140.143.148.95	140.143.150.126	140.143.150.174
140.143.152.135	140.143.15.61	140.143.15.79	140.143.150.83
140.143.151.143	140.143.150.3	140.143.151.155	140.143.152.88