AbuseIPDB » 140.249.213.243

140.249.213.243 was found in our database!

This IP was reported 264 times. Confidence of Abuse is 100%: ?

100%

ISP	ChinaNet Shandong Province Network
Usage Type	Unknown
Domain Name	chinatelecom.com.cn
Country	China
City	Jinan, Shandong

IP info including ISP, Usage Type, and Location provided by IP2Location. Updated monthly.

Report 140.249.213.243

Whois 140.249.213.243

IP Abuse Reports for 140.249.213.243:

This IP address has been reported a total of 264 times from 110 distinct sources. 140.249.213.243 was first reported on November 21st 2020, and the most recent report was 15 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	Date	Comment	Categories
sxvn	15 hours ago		SSH
MSchienle	20 hours ago	2021-01-19 17:41:15.723551-0600 localhost sshd[12638]: Failed password for invalid user tomcat from ... show more2021-01-19 17:41:15.723551-0600 localhost sshd[12638]: Failed password for invalid user tomcat from 140.249.213.243 port 38190 ssh2 show less	Brute-Force
MSchienle	21 hours ago	2021-01-19 16:46:29.447787-0600 localhost sshd[7569]: Failed password for root from 140.249.213.243 ... show more2021-01-19 16:46:29.447787-0600 localhost sshd[7569]: Failed password for root from 140.249.213.243 port 56490 ssh2 show less	Brute-Force
MSchienle	21 hours ago	2021-01-19 16:27:39.983857-0600 localhost sshd[6218]: Failed password for invalid user romain from ... show more2021-01-19 16:27:39.983857-0600 localhost sshd[6218]: Failed password for invalid user romain from 140.249.213.243 port 55594 ssh2 show less	Brute-Force
MSchienle	22 hours ago	2021-01-19 15:26:09.773336-0600 localhost sshd[1229]: Failed password for invalid user sample from ... show more2021-01-19 15:26:09.773336-0600 localhost sshd[1229]: Failed password for invalid user sample from 140.249.213.243 port 58484 ssh2 show less	Brute-Force
NiuginiGeeks	22 hours ago	Jan 20 07:28:28 NG-HHDC-SVS-001 sshd[31072]: Invalid user sample from 140.249.213.243 ...	Brute-Force SSH
McBuzz	22 hours ago	Jan 19 22:18:11 ourumov-web sshd\[10265\]: Invalid user sample from 140.249.213.243 port 40362 ... show moreJan 19 22:18:11 ourumov-web sshd\[10265\]: Invalid user sample from 140.249.213.243 port 40362 Jan 19 22:18:11 ourumov-web sshd\[10265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 Jan 19 22:18:13 ourumov-web sshd\[10265\]: Failed password for invalid user sample from 140.249.213.243 port 40362 ssh2 ... show less	Brute-Force SSH
StatsMe	22 hours ago	ET SCAN NMAP -sS window 1024	Port Scan
Unwasted	17 Jan 2021	Blocked IP still knocking	Hacking
stfw	17 Jan 2021	28007/tcp 15909/tcp 29801/tcp... [2020-11-16/2021-01-17]8pkt,8pt.(tcp)	Port Scan
creechy	16 Jan 2021	Jan 16 18:20:57 mockhub sshd[2992650]: Invalid user ftpuser from 140.249.213.243 port 55384 Ja ... show moreJan 16 18:20:57 mockhub sshd[2992650]: Invalid user ftpuser from 140.249.213.243 port 55384 Jan 16 18:20:59 mockhub sshd[2992650]: Failed password for invalid user ftpuser from 140.249.213.243 port 55384 ssh2 Jan 16 18:25:43 mockhub sshd[2992808]: Invalid user admin from 140.249.213.243 port 57182 ... show less	Brute-Force SSH
creechy	16 Jan 2021	Jan 16 17:46:43 mockhub sshd[2991293]: Failed password for invalid user ubuntu from 140.249.213.243 ... show moreJan 16 17:46:43 mockhub sshd[2991293]: Failed password for invalid user ubuntu from 140.249.213.243 port 42224 ssh2 Jan 16 17:49:53 mockhub sshd[2991419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.213.243 user=root Jan 16 17:49:55 mockhub sshd[2991419]: Failed password for root from 140.249.213.243 port 33676 ssh2 ... show less	Brute-Force SSH
someone	16 Jan 2021	SSH brute-force attack detected from [140.249.213.243]	Brute-Force SSH
StatsMe	16 Jan 2021	ET SCAN NMAP -sS window 1024	Port Scan
Parth Maniar	16 Jan 2021	SSH bruteforce login attempts.	Brute-Force SSH

Is this your IP? You may request to takedown any associated reports. We will attempt to verify your ownership. Request Takedown 🚩