140.249.30.188

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Shandong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Invalid user lixiangfeng from 140.249.30.188 port 55762	2020-06-27 14:23:52
attackbots	2020-06-22T12:09:45.028006v22018076590370373 sshd[16181]: Failed password for invalid user vp from 140.249.30.188 port 54058 ssh2 2020-06-22T12:12:57.549371v22018076590370373 sshd[13587]: Invalid user lilin from 140.249.30.188 port 56848 2020-06-22T12:12:57.555347v22018076590370373 sshd[13587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.188 2020-06-22T12:12:57.549371v22018076590370373 sshd[13587]: Invalid user lilin from 140.249.30.188 port 56848 2020-06-22T12:12:59.268529v22018076590370373 sshd[13587]: Failed password for invalid user lilin from 140.249.30.188 port 56848 ssh2 ...	2020-06-22 19:46:15
attackspam	May 28 17:28:46 s02-markstaller sshd[26869]: Failed password for r.r from 140.249.30.188 port 60318 ssh2 May 28 17:33:42 s02-markstaller sshd[27023]: Invalid user jose from 140.249.30.188 May 28 17:33:44 s02-markstaller sshd[27023]: Failed password for invalid user jose from 140.249.30.188 port 47462 ssh2 May 28 17:35:11 s02-markstaller sshd[27072]: Failed password for r.r from 140.249.30.188 port 33150 ssh2 May 28 17:36:38 s02-markstaller sshd[27138]: Invalid user window from 140.249.30.188 May 28 17:36:39 s02-markstaller sshd[27138]: Failed password for invalid user window from 140.249.30.188 port 47098 ssh2 May 28 17:37:46 s02-markstaller sshd[27206]: Invalid user ax from 140.249.30.188 May 28 17:37:48 s02-markstaller sshd[27206]: Failed password for invalid user ax from 140.249.30.188 port 60996 ssh2 May 28 17:39:10 s02-markstaller sshd[27297]: Failed password for r.r from 140.249.30.188 port 46666 ssh2 May 28 17:40:31 s02-markstaller sshd[27329]: Invalid user guinn ........ ------------------------------	2020-05-31 01:27:57
attackbots	May 29 05:51:24 eventyay sshd[2807]: Failed password for root from 140.249.30.188 port 32836 ssh2 May 29 05:55:41 eventyay sshd[2952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.188 May 29 05:55:43 eventyay sshd[2952]: Failed password for invalid user monique from 140.249.30.188 port 60724 ssh2 ...	2020-05-29 12:56:08

Comments on same subnet:

IP	Type	Details	Datetime
140.249.30.203	attackspambots	Failed password for invalid user wjy from 140.249.30.203 port 51390 ssh2	2020-06-28 03:33:14
140.249.30.203	attackspambots	Jun 27 06:08:14 inter-technics sshd[11074]: Invalid user deploy from 140.249.30.203 port 43914 Jun 27 06:08:14 inter-technics sshd[11074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 Jun 27 06:08:14 inter-technics sshd[11074]: Invalid user deploy from 140.249.30.203 port 43914 Jun 27 06:08:16 inter-technics sshd[11074]: Failed password for invalid user deploy from 140.249.30.203 port 43914 ssh2 Jun 27 06:12:06 inter-technics sshd[11434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 user=root Jun 27 06:12:08 inter-technics sshd[11434]: Failed password for root from 140.249.30.203 port 37764 ssh2 ...	2020-06-27 12:18:28
140.249.30.203	attack	Jun 23 07:34:11 buvik sshd[9254]: Invalid user developer from 140.249.30.203 Jun 23 07:34:11 buvik sshd[9254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 Jun 23 07:34:13 buvik sshd[9254]: Failed password for invalid user developer from 140.249.30.203 port 35630 ssh2 ...	2020-06-23 17:13:51
140.249.30.203	attackbots	2020-06-22T23:58:40.966762shield sshd\[7727\]: Invalid user crh from 140.249.30.203 port 60442 2020-06-22T23:58:40.970634shield sshd\[7727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 2020-06-22T23:58:43.073353shield sshd\[7727\]: Failed password for invalid user crh from 140.249.30.203 port 60442 ssh2 2020-06-23T00:02:24.188498shield sshd\[9052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 user=root 2020-06-23T00:02:26.381014shield sshd\[9052\]: Failed password for root from 140.249.30.203 port 53432 ssh2	2020-06-23 08:08:00
140.249.30.203	attackspam	2020-06-17T13:44:40.949447shield sshd\[15734\]: Invalid user t3rr0r from 140.249.30.203 port 34292 2020-06-17T13:44:40.953227shield sshd\[15734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 2020-06-17T13:44:42.827016shield sshd\[15734\]: Failed password for invalid user t3rr0r from 140.249.30.203 port 34292 ssh2 2020-06-17T13:49:31.580024shield sshd\[16489\]: Invalid user qb from 140.249.30.203 port 50220 2020-06-17T13:49:31.584516shield sshd\[16489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203	2020-06-17 21:54:00
140.249.30.203	attackbots	Jun 12 20:19:27 debian-2gb-nbg1-2 kernel: \[14244687.416969\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=140.249.30.203 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=61693 PROTO=TCP SPT=45638 DPT=27522 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-13 02:37:46
140.249.30.203	attackbots	May 21 14:56:16 buvik sshd[12770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.30.203 May 21 14:56:17 buvik sshd[12770]: Failed password for invalid user bzo from 140.249.30.203 port 51088 ssh2 May 21 15:00:54 buvik sshd[13836]: Invalid user lcr from 140.249.30.203 ...	2020-05-21 21:15:37
140.249.30.232	attackspambots	Invalid user xk from 140.249.30.232 port 60000	2020-04-21 03:13:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.249.30.188
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4403
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.249.30.188.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052802 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 29 12:56:02 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 188.30.249.140.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 188.30.249.140.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.175.46.170	attackbots	fail2ban -- 202.175.46.170 ...	2020-06-28 23:41:49
111.249.154.99	attackbots	1593346272 - 06/28/2020 14:11:12 Host: 111.249.154.99/111.249.154.99 Port: 445 TCP Blocked	2020-06-29 00:16:58
103.225.75.106	attack	SNORT TCP Port: 25 Classtype misc-attack - ET DROP Spamhaus DROP Listed Traffic Inbound group 6 - - Destination xx.xx.4.1 Port: 25 - - Source 103.225.75.106 Port: 44562 (Listed on barracuda zen-spamhaus spam-sorbs) (128)	2020-06-29 00:14:00
212.70.149.2	attackbotsspam	Jun 28 18:12:00 srv0 postfix/smtpd\[42620\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 28 18:12:40 srv0 postfix/smtpd\[42620\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 28 18:13:19 srv0 postfix/smtpd\[42620\]: warning: unknown\[212.70.149.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-29 00:19:42
103.105.128.194	attackspambots	2020-06-28T16:00:01.580305galaxy.wi.uni-potsdam.de sshd[22575]: Failed password for invalid user mysql from 103.105.128.194 port 64272 ssh2 2020-06-28T16:02:12.441237galaxy.wi.uni-potsdam.de sshd[22833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.105.128.194 user=root 2020-06-28T16:02:14.103087galaxy.wi.uni-potsdam.de sshd[22833]: Failed password for root from 103.105.128.194 port 30899 ssh2 2020-06-28T16:04:38.132964galaxy.wi.uni-potsdam.de sshd[23105]: Invalid user syn from 103.105.128.194 port 46679 2020-06-28T16:04:38.139441galaxy.wi.uni-potsdam.de sshd[23105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.105.128.194 2020-06-28T16:04:38.132964galaxy.wi.uni-potsdam.de sshd[23105]: Invalid user syn from 103.105.128.194 port 46679 2020-06-28T16:04:39.510327galaxy.wi.uni-potsdam.de sshd[23105]: Failed password for invalid user syn from 103.105.128.194 port 46679 ssh2 2020-06-28T16:06:41.925 ...	2020-06-29 00:00:50
51.161.31.142	attackspam	Failed password for invalid user console from 51.161.31.142 port 40512 ssh2	2020-06-28 23:44:23
139.219.1.112	attackbotsspam	Lines containing failures of 139.219.1.112 Jun 25 08:22:35 penfold sshd[25471]: Invalid user test from 139.219.1.112 port 49062 Jun 25 08:22:35 penfold sshd[25471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 Jun 25 08:22:37 penfold sshd[25471]: Failed password for invalid user test from 139.219.1.112 port 49062 ssh2 Jun 25 08:22:37 penfold sshd[25471]: Received disconnect from 139.219.1.112 port 49062:11: Bye Bye [preauth] Jun 25 08:22:37 penfold sshd[25471]: Disconnected from invalid user test 139.219.1.112 port 49062 [preauth] Jun 25 08:59:31 penfold sshd[28101]: Invalid user admin8 from 139.219.1.112 port 53554 Jun 25 08:59:31 penfold sshd[28101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.1.112 Jun 25 08:59:34 penfold sshd[28101]: Failed password for invalid user admin8 from 139.219.1.112 port 53554 ssh2 Jun 25 08:59:35 penfold sshd[28101]: Received disco........ ------------------------------	2020-06-29 00:10:00
61.177.172.168	attack	Jun 28 17:31:31 vm1 sshd[18551]: Failed password for root from 61.177.172.168 port 37936 ssh2 Jun 28 17:31:45 vm1 sshd[18551]: error: maximum authentication attempts exceeded for root from 61.177.172.168 port 37936 ssh2 [preauth] ...	2020-06-28 23:56:55
46.17.104.33	attackspambots	Jun 28 16:00:43 debian-2gb-nbg1-2 kernel: \[15611490.515871\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=46.17.104.33 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=40036 DF PROTO=TCP SPT=12995 DPT=2081 WINDOW=512 RES=0x00 SYN URGP=0	2020-06-29 00:18:36
180.76.177.195	attackspambots	Jun 28 05:11:30 mockhub sshd[8203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.177.195 Jun 28 05:11:32 mockhub sshd[8203]: Failed password for invalid user sinusbot from 180.76.177.195 port 36984 ssh2 ...	2020-06-29 00:05:01
198.55.103.209	attackbots	2020-06-28T16:14:05.167450vps751288.ovh.net sshd\[11515\]: Invalid user johnny from 198.55.103.209 port 54822 2020-06-28T16:14:05.178180vps751288.ovh.net sshd\[11515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.55.103.209 2020-06-28T16:14:07.055928vps751288.ovh.net sshd\[11515\]: Failed password for invalid user johnny from 198.55.103.209 port 54822 ssh2 2020-06-28T16:15:22.379959vps751288.ovh.net sshd\[11517\]: Invalid user sdtdserver from 198.55.103.209 port 42918 2020-06-28T16:15:22.393867vps751288.ovh.net sshd\[11517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.55.103.209	2020-06-28 23:53:48
172.105.63.45	attack	Jun 28 15:16:23 debian-2gb-nbg1-2 kernel: \[15608831.199990\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=172.105.63.45 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x20 TTL=237 ID=4864 PROTO=TCP SPT=56513 DPT=17853 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-28 23:45:58
103.214.4.101	attackbotsspam	Jun 28 14:54:14 cp sshd[29169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.4.101	2020-06-28 23:43:20
86.21.205.149	attackbotsspam	2020-06-28T13:11:30.446355randservbullet-proofcloud-66.localdomain sshd[11935]: Invalid user joel from 86.21.205.149 port 50022 2020-06-28T13:11:30.449690randservbullet-proofcloud-66.localdomain sshd[11935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.21.205.149 2020-06-28T13:11:30.446355randservbullet-proofcloud-66.localdomain sshd[11935]: Invalid user joel from 86.21.205.149 port 50022 2020-06-28T13:11:32.161806randservbullet-proofcloud-66.localdomain sshd[11935]: Failed password for invalid user joel from 86.21.205.149 port 50022 ssh2 ...	2020-06-29 00:11:51
52.14.137.91	attackspambots	IP blocked	2020-06-28 23:39:24

Recently Reported IPs

45.84.196.85	37.148.69.214	123.122.163.190	157.45.195.210
123.122.163.42	107.180.238.240	34.89.240.117	114.33.42.210
224.74.238.252	200.114.9.126	220.76.91.130	193.169.212.37
193.169.212.17	146.144.193.168	185.143.74.251	193.169.212.99
81.212.41.244	3.6.222.2	220.247.165.230	187.150.50.132