140.213.45.194

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
140.213.45.221	attackspam	Unauthorized connection attempt from IP address 140.213.45.221 on Port 445(SMB)	2019-09-22 09:04:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.213.45.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53147
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.213.45.194.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:41:56 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 194.45.213.140.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 194.45.213.140.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.138.76.66	attack	Dec 21 19:28:16 server sshd\[27628\]: Failed password for invalid user admin from 217.138.76.66 port 51330 ssh2 Dec 22 15:29:20 server sshd\[27377\]: Invalid user guest from 217.138.76.66 Dec 22 15:29:20 server sshd\[27377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66 Dec 22 15:29:22 server sshd\[27377\]: Failed password for invalid user guest from 217.138.76.66 port 44648 ssh2 Dec 22 15:41:14 server sshd\[30736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.138.76.66 user=root ...	2019-12-22 21:04:39
109.237.214.176	attackbots	Multiple failed FTP logins	2019-12-22 20:35:46
117.90.39.2	attackbots	Dec 21 00:04:26 riskplan-s sshd[28699]: reveeclipse mapping checking getaddrinfo for 2.39.90.117.broad.zj.js.dynamic.163data.com.cn [117.90.39.2] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 21 00:04:26 riskplan-s sshd[28699]: Invalid user admin from 117.90.39.2 Dec 21 00:04:26 riskplan-s sshd[28699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.90.39.2 Dec 21 00:04:27 riskplan-s sshd[28699]: Failed password for invalid user admin from 117.90.39.2 port 32128 ssh2 Dec 21 00:04:27 riskplan-s sshd[28699]: Received disconnect from 117.90.39.2: 11: Bye Bye [preauth] Dec 21 00:19:39 riskplan-s sshd[28989]: reveeclipse mapping checking getaddrinfo for 2.39.90.117.broad.zj.js.dynamic.163data.com.cn [117.90.39.2] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 21 00:19:39 riskplan-s sshd[28989]: Invalid user michhostnameake from 117.90.39.2 Dec 21 00:19:39 riskplan-s sshd[28989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=........ -------------------------------	2019-12-22 20:46:30
94.191.78.128	attack	Dec 22 12:40:44 DAAP sshd[30673]: Invalid user trelle from 94.191.78.128 port 33296 Dec 22 12:40:44 DAAP sshd[30673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.78.128 Dec 22 12:40:44 DAAP sshd[30673]: Invalid user trelle from 94.191.78.128 port 33296 Dec 22 12:40:46 DAAP sshd[30673]: Failed password for invalid user trelle from 94.191.78.128 port 33296 ssh2 Dec 22 12:47:40 DAAP sshd[30749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.78.128 user=root Dec 22 12:47:42 DAAP sshd[30749]: Failed password for root from 94.191.78.128 port 50878 ssh2 ...	2019-12-22 21:00:15
81.22.45.250	attack	2019-12-22T13:54:57.780877+01:00 lumpi kernel: [2309223.977181] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.250 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=31850 PROTO=TCP SPT=57664 DPT=49903 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-22 21:02:47
36.49.185.254	attackbots	Dec 22 12:50:21 vpn01 sshd[21453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.49.185.254 Dec 22 12:50:24 vpn01 sshd[21453]: Failed password for invalid user jason4 from 36.49.185.254 port 47704 ssh2 ...	2019-12-22 20:31:25
134.209.89.101	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-12-22 20:48:29
159.89.134.199	attackspam	Dec 22 02:41:24 wbs sshd\[30655\]: Invalid user jmckervey from 159.89.134.199 Dec 22 02:41:24 wbs sshd\[30655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 Dec 22 02:41:26 wbs sshd\[30655\]: Failed password for invalid user jmckervey from 159.89.134.199 port 51092 ssh2 Dec 22 02:46:39 wbs sshd\[31120\]: Invalid user guest from 159.89.134.199 Dec 22 02:46:39 wbs sshd\[31120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199	2019-12-22 21:00:36
221.1.52.99	attack	Scanning	2019-12-22 20:49:17
159.203.103.153	attack	10 attempts against mh-misc-ban on heat.magehost.pro	2019-12-22 20:48:10
41.159.18.20	attack	SSH Brute-Forcing (server2)	2019-12-22 20:31:04
109.131.130.178	attack	Dec 20 08:52:12 de sshd[20243]: User r.r from 109.131.130.178 not allowed because not listed in AllowUsers Dec 20 08:52:12 de sshd[20243]: Failed password for invalid user r.r from 109.131.130.178 port 33056 ssh2 Dec 20 08:52:40 de sshd[20251]: User r.r from 109.131.130.178 not allowed because not listed in AllowUsers Dec 20 08:52:40 de sshd[20251]: Failed password for invalid user r.r from 109.131.130.178 port 59894 ssh2 Dec 20 08:52:52 de sshd[20253]: Invalid user marhta from 109.131.130.178 Dec 20 08:52:52 de sshd[20253]: Failed password for invalid user marhta from 109.131.130.178 port 60912 ssh2 Dec 20 08:53:05 de sshd[20257]: Invalid user enigmatic from 109.131.130.178 Dec 20 08:53:05 de sshd[20257]: Failed password for invalid user enigmatic from 109.131.130.178 port 34124 ssh2 Dec 20 08:53:18 de sshd[20261]: Invalid user ivans from 109.131.130.178 Dec 20 08:53:18 de sshd[20261]: Failed password for invalid user ivans from 109.131.130.178 port 35134 ssh2 Dec 20 08........ ------------------------------	2019-12-22 20:26:07
202.148.3.158	attackbotsspam	Dec 21 08:30:38 ovpn sshd[10744]: Did not receive identification string from 202.148.3.158 Dec 21 08:32:03 ovpn sshd[11025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.148.3.158 user=r.r Dec 21 08:32:05 ovpn sshd[11025]: Failed password for r.r from 202.148.3.158 port 58592 ssh2 Dec 21 08:32:06 ovpn sshd[11025]: Received disconnect from 202.148.3.158 port 58592:11: Normal Shutdown, Thank you for playing [preauth] Dec 21 08:32:06 ovpn sshd[11025]: Disconnected from 202.148.3.158 port 58592 [preauth] Dec 21 08:32:31 ovpn sshd[11158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.148.3.158 user=r.r Dec 21 08:32:33 ovpn sshd[11158]: Failed password for r.r from 202.148.3.158 port 10216 ssh2 Dec 21 08:32:38 ovpn sshd[11158]: Received disconnect from 202.148.3.158 port 10216:11: Normal Shutdown, Thank you for playing [preauth] Dec 21 08:32:38 ovpn sshd[11158]: Disconnected from 202........ ------------------------------	2019-12-22 21:01:09
46.38.144.202	attack	Dec 22 12:58:57 relay postfix/smtpd\[9774\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 22 13:03:54 relay postfix/smtpd\[13113\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 22 13:08:16 relay postfix/smtpd\[16157\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 22 13:13:44 relay postfix/smtpd\[13112\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 22 13:18:10 relay postfix/smtpd\[16157\]: warning: unknown\[46.38.144.202\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-22 20:56:09
107.6.91.26	attackspambots	"GET //admin/config.php?password%5B0%5D=ZIZO&username=admin HTTP/1.1" 404 3667 "-" "python-requests/2.6.0 CPython/2.7.5 Linux/3.10.0-862.11.6.el7.x86_64"	2019-12-22 20:27:23

Recently Reported IPs

140.224.170.209	140.228.29.50	140.237.13.132	140.237.4.119
140.237.144.171	140.238.29.72	140.240.106.116	140.237.31.125
140.238.151.68	140.240.207.62	140.240.11.167	140.237.75.35
140.240.50.78	140.249.193.72	140.240.39.111	140.240.39.61
140.250.248.33	140.240.220.17	140.249.205.201	140.250.146.67