140.249.205.100

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
140.249.205.58	attackbots	(sshd) Failed SSH login from 140.249.205.58 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 14 10:38:03 server2 sshd[17269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.205.58 user=root Sep 14 10:38:04 server2 sshd[17269]: Failed password for root from 140.249.205.58 port 42488 ssh2 Sep 14 10:39:47 server2 sshd[17484]: Invalid user minerva from 140.249.205.58 port 55092 Sep 14 10:39:49 server2 sshd[17484]: Failed password for invalid user minerva from 140.249.205.58 port 55092 ssh2 Sep 14 10:40:29 server2 sshd[17606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.205.58 user=root	2020-09-14 23:52:53
140.249.205.58	attackbots	Sep 13 15:00:06 askasleikir sshd[43815]: Failed password for invalid user test from 140.249.205.58 port 35680 ssh2 Sep 13 14:49:24 askasleikir sshd[43800]: Failed password for root from 140.249.205.58 port 41946 ssh2 Sep 13 14:56:22 askasleikir sshd[43810]: Failed password for root from 140.249.205.58 port 36414 ssh2	2020-09-14 15:39:06
140.249.205.58	attackbots	Sep 13 15:00:06 askasleikir sshd[43815]: Failed password for invalid user test from 140.249.205.58 port 35680 ssh2 Sep 13 14:49:24 askasleikir sshd[43800]: Failed password for root from 140.249.205.58 port 41946 ssh2 Sep 13 14:56:22 askasleikir sshd[43810]: Failed password for root from 140.249.205.58 port 36414 ssh2	2020-09-14 07:33:43

Type

Details

Datetime

140.249.205.58

attackbots

(sshd) Failed SSH login from 140.249.205.58 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 14 10:38:03 server2 sshd[17269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.205.58  user=root
Sep 14 10:38:04 server2 sshd[17269]: Failed password for root from 140.249.205.58 port 42488 ssh2
Sep 14 10:39:47 server2 sshd[17484]: Invalid user minerva from 140.249.205.58 port 55092
Sep 14 10:39:49 server2 sshd[17484]: Failed password for invalid user minerva from 140.249.205.58 port 55092 ssh2
Sep 14 10:40:29 server2 sshd[17606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.205.58  user=root

2020-09-14 23:52:53

140.249.205.58

attackbots

Sep 13 15:00:06 askasleikir sshd[43815]: Failed password for invalid user test from 140.249.205.58 port 35680 ssh2
Sep 13 14:49:24 askasleikir sshd[43800]: Failed password for root from 140.249.205.58 port 41946 ssh2
Sep 13 14:56:22 askasleikir sshd[43810]: Failed password for root from 140.249.205.58 port 36414 ssh2

2020-09-14 15:39:06

140.249.205.58

attackbots

Sep 13 15:00:06 askasleikir sshd[43815]: Failed password for invalid user test from 140.249.205.58 port 35680 ssh2
Sep 13 14:49:24 askasleikir sshd[43800]: Failed password for root from 140.249.205.58 port 41946 ssh2
Sep 13 14:56:22 askasleikir sshd[43810]: Failed password for root from 140.249.205.58 port 36414 ssh2

2020-09-14 07:33:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.249.205.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48172
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.249.205.100.		IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100602 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 11:24:33 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 100.205.249.140.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 100.205.249.140.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.180.41	attackbotsspam	Feb 19 20:33:49 h2177944 sshd\[14045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Feb 19 20:33:50 h2177944 sshd\[14045\]: Failed password for root from 222.186.180.41 port 37316 ssh2 Feb 19 20:33:53 h2177944 sshd\[14045\]: Failed password for root from 222.186.180.41 port 37316 ssh2 Feb 19 20:33:56 h2177944 sshd\[14045\]: Failed password for root from 222.186.180.41 port 37316 ssh2 ...	2020-02-20 03:47:56
139.195.246.78	attackbots	Unauthorized connection attempt from IP address 139.195.246.78 on Port 445(SMB)	2020-02-20 03:50:49
92.246.85.229	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-20 03:47:09
68.183.12.127	attackbotsspam	Feb 19 17:54:26 srv-ubuntu-dev3 sshd[78367]: Invalid user hadoop from 68.183.12.127 Feb 19 17:54:26 srv-ubuntu-dev3 sshd[78367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.12.127 Feb 19 17:54:26 srv-ubuntu-dev3 sshd[78367]: Invalid user hadoop from 68.183.12.127 Feb 19 17:54:28 srv-ubuntu-dev3 sshd[78367]: Failed password for invalid user hadoop from 68.183.12.127 port 54800 ssh2 Feb 19 17:57:16 srv-ubuntu-dev3 sshd[78575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.12.127 user=daemon Feb 19 17:57:18 srv-ubuntu-dev3 sshd[78575]: Failed password for daemon from 68.183.12.127 port 56230 ssh2 Feb 19 18:00:14 srv-ubuntu-dev3 sshd[78866]: Invalid user gitlab-psql from 68.183.12.127 Feb 19 18:00:14 srv-ubuntu-dev3 sshd[78866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.12.127 Feb 19 18:00:14 srv-ubuntu-dev3 sshd[78866]: Invalid user gitl ...	2020-02-20 04:03:01
92.246.84.200	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-20 03:59:23
43.252.214.194	attack	Automatic report - XMLRPC Attack	2020-02-20 03:50:04
92.119.160.52	attackspambots	Feb 19 19:34:06 h2177944 kernel: \[5335119.666821\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.52 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=384 PROTO=TCP SPT=48995 DPT=10443 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 19 19:34:06 h2177944 kernel: \[5335119.666835\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.52 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=384 PROTO=TCP SPT=48995 DPT=10443 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 19 19:41:03 h2177944 kernel: \[5335536.705648\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.52 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19562 PROTO=TCP SPT=48995 DPT=15759 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 19 19:41:03 h2177944 kernel: \[5335536.705663\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.52 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=19562 PROTO=TCP SPT=48995 DPT=15759 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 19 20:23:28 h2177944 kernel: \[5338081.608582\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.52 DST=85.214.117.9	2020-02-20 04:08:28
175.145.19.152	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-20 03:49:03
14.174.157.52	attackbotsspam	Honeypot attack, port: 81, PTR: static.vnpt.vn.	2020-02-20 04:20:29
114.237.188.8	attackbotsspam	Feb 19 14:32:37 grey postfix/smtpd\[12244\]: NOQUEUE: reject: RCPT from unknown\[114.237.188.8\]: 554 5.7.1 Service unavailable\; Client host \[114.237.188.8\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[114.237.188.8\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-20 03:55:16
203.95.212.41	attackbots	Feb 19 19:54:47 minden010 sshd[21451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41 Feb 19 19:54:49 minden010 sshd[21451]: Failed password for invalid user ftpuser from 203.95.212.41 port 51669 ssh2 Feb 19 19:57:17 minden010 sshd[22289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41 ...	2020-02-20 04:17:52
59.124.22.218	attackbotsspam	Feb 19 20:51:45 gw1 sshd[23602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.124.22.218 Feb 19 20:51:46 gw1 sshd[23602]: Failed password for invalid user tengyan from 59.124.22.218 port 52511 ssh2 ...	2020-02-20 04:12:15
172.40.48.6	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 03:53:44
91.144.135.133	attackbotsspam	Honeypot attack, port: 81, PTR: 91x144x135x133.static-business.chel.ertelecom.ru.	2020-02-20 03:54:47
14.249.42.22	attackbotsspam	Unauthorized connection attempt from IP address 14.249.42.22 on Port 445(SMB)	2020-02-20 04:14:26

Recently Reported IPs

51.103.47.68	124.83.7.18	123.240.33.243	121.235.7.120
43.249.131.243	36.90.61.205	20.77.246.224	123.60.40.197
94.139.161.162	3.110.214.173	5.161.125.189	125.95.23.95
45.152.202.191	185.17.178.143	95.164.234.209	154.27.18.130
103.250.18.135	193.182.144.148	156.199.126.81	189.206.27.52