168.194.140.130

Basic Info

City: Jardin America

Region: Misiones

Country: Argentina

Internet Service Provider: Andy Taron

Hostname: unknown

Organization: Andy Taron(SWISS-NET)

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 12 13:41:00 firewall sshd[20491]: Invalid user haukanes from 168.194.140.130 Nov 12 13:41:01 firewall sshd[20491]: Failed password for invalid user haukanes from 168.194.140.130 port 37500 ssh2 Nov 12 13:45:36 firewall sshd[20672]: Invalid user server from 168.194.140.130 ...	2019-11-13 00:57:43
attack	Oct 16 13:20:05 ns381471 sshd[1012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Oct 16 13:20:07 ns381471 sshd[1012]: Failed password for invalid user kay from 168.194.140.130 port 40678 ssh2 Oct 16 13:25:21 ns381471 sshd[1274]: Failed password for root from 168.194.140.130 port 52058 ssh2	2019-10-16 19:26:57
attackbotsspam	Feb 9 20:31:51 dillonfme sshd\[32117\]: Invalid user shubham from 168.194.140.130 port 54936 Feb 9 20:31:51 dillonfme sshd\[32117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Feb 9 20:31:53 dillonfme sshd\[32117\]: Failed password for invalid user shubham from 168.194.140.130 port 54936 ssh2 Feb 9 20:38:13 dillonfme sshd\[32292\]: Invalid user chen from 168.194.140.130 port 46088 Feb 9 20:38:13 dillonfme sshd\[32292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 ...	2019-10-14 04:52:47
attackbots	Jul 7 08:11:22 server sshd\[39720\]: Invalid user testu from 168.194.140.130 Jul 7 08:11:22 server sshd\[39720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Jul 7 08:11:24 server sshd\[39720\]: Failed password for invalid user testu from 168.194.140.130 port 53972 ssh2 ...	2019-10-09 13:07:20
attackspam	Sep 30 00:45:02 plusreed sshd[16120]: Invalid user dbuser from 168.194.140.130 ...	2019-09-30 17:35:22
attackspam	Sep 9 22:47:06 vps200512 sshd\[15522\]: Invalid user butter from 168.194.140.130 Sep 9 22:47:06 vps200512 sshd\[15522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Sep 9 22:47:08 vps200512 sshd\[15522\]: Failed password for invalid user butter from 168.194.140.130 port 50782 ssh2 Sep 9 22:54:50 vps200512 sshd\[15623\]: Invalid user user1 from 168.194.140.130 Sep 9 22:54:50 vps200512 sshd\[15623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130	2019-09-10 10:58:18
attack	2019-09-09T19:44:19.312315abusebot-7.cloudsearch.cf sshd\[2946\]: Invalid user debian from 168.194.140.130 port 41520	2019-09-10 03:46:22
attackbots	Sep 9 10:34:40 vps01 sshd[28664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Sep 9 10:34:42 vps01 sshd[28664]: Failed password for invalid user 123456 from 168.194.140.130 port 38926 ssh2	2019-09-09 16:43:55
attackbots	Sep 8 21:16:05 game-panel sshd[23849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Sep 8 21:16:07 game-panel sshd[23849]: Failed password for invalid user deployer from 168.194.140.130 port 56770 ssh2 Sep 8 21:19:56 game-panel sshd[23972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130	2019-09-09 05:28:02
attackspam	Sep 5 01:07:42 web1 sshd\[28559\]: Invalid user testuser from 168.194.140.130 Sep 5 01:07:42 web1 sshd\[28559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Sep 5 01:07:44 web1 sshd\[28559\]: Failed password for invalid user testuser from 168.194.140.130 port 34462 ssh2 Sep 5 01:13:09 web1 sshd\[28876\]: Invalid user server01 from 168.194.140.130 Sep 5 01:13:09 web1 sshd\[28876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130	2019-09-05 12:09:56
attackspam	Sep 4 18:00:25 web1 sshd\[1803\]: Invalid user phil from 168.194.140.130 Sep 4 18:00:25 web1 sshd\[1803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Sep 4 18:00:27 web1 sshd\[1803\]: Failed password for invalid user phil from 168.194.140.130 port 32906 ssh2 Sep 4 18:05:45 web1 sshd\[2174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 user=dovenull Sep 4 18:05:48 web1 sshd\[2174\]: Failed password for dovenull from 168.194.140.130 port 46692 ssh2	2019-09-05 00:16:42
attack	Aug 25 08:27:25 dedicated sshd[24816]: Invalid user jenkins from 168.194.140.130 port 46788	2019-08-25 14:38:48
attack	Aug 24 00:26:29 MK-Soft-VM7 sshd\[12223\]: Invalid user atlas from 168.194.140.130 port 50294 Aug 24 00:26:29 MK-Soft-VM7 sshd\[12223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Aug 24 00:26:32 MK-Soft-VM7 sshd\[12223\]: Failed password for invalid user atlas from 168.194.140.130 port 50294 ssh2 ...	2019-08-24 08:36:57
attackbotsspam	Aug 22 04:58:00 vps200512 sshd\[16083\]: Invalid user dominic from 168.194.140.130 Aug 22 04:58:00 vps200512 sshd\[16083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Aug 22 04:58:03 vps200512 sshd\[16083\]: Failed password for invalid user dominic from 168.194.140.130 port 39248 ssh2 Aug 22 05:03:07 vps200512 sshd\[16229\]: Invalid user user1 from 168.194.140.130 Aug 22 05:03:07 vps200512 sshd\[16229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130	2019-08-22 17:18:11
attackbots	2019-08-01T11:11:58.089912lon01.zurich-datacenter.net sshd\[14528\]: Invalid user upload from 168.194.140.130 port 44212 2019-08-01T11:11:58.099231lon01.zurich-datacenter.net sshd\[14528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 2019-08-01T11:12:00.007300lon01.zurich-datacenter.net sshd\[14528\]: Failed password for invalid user upload from 168.194.140.130 port 44212 ssh2 2019-08-01T11:17:40.265425lon01.zurich-datacenter.net sshd\[14655\]: Invalid user france from 168.194.140.130 port 59378 2019-08-01T11:17:40.270757lon01.zurich-datacenter.net sshd\[14655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 ...	2019-08-01 21:24:50
attack	Mar 22 01:41:33 vpn sshd[6515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Mar 22 01:41:36 vpn sshd[6515]: Failed password for invalid user sybase from 168.194.140.130 port 36522 ssh2 Mar 22 01:45:52 vpn sshd[6523]: Failed password for root from 168.194.140.130 port 45432 ssh2	2019-07-19 08:37:29
attackspam	2019-07-15T23:59:52.224816enmeeting.mahidol.ac.th sshd\[18939\]: Invalid user user5 from 168.194.140.130 port 40634 2019-07-15T23:59:52.238669enmeeting.mahidol.ac.th sshd\[18939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 2019-07-15T23:59:54.228348enmeeting.mahidol.ac.th sshd\[18939\]: Failed password for invalid user user5 from 168.194.140.130 port 40634 ssh2 ...	2019-07-16 01:12:37
attackspam	Invalid user pc from 168.194.140.130 port 54002 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Failed password for invalid user pc from 168.194.140.130 port 54002 ssh2 Invalid user push from 168.194.140.130 port 57778 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130	2019-07-11 06:06:45
attack	SSH Brute Force, server-1 sshd[873]: Failed password for invalid user ts from 168.194.140.130 port 39198 ssh2	2019-07-02 15:38:11
attackbotsspam	Jun 25 19:30:29 atlassian sshd[21594]: Invalid user www from 168.194.140.130 port 51078 Jun 25 19:30:29 atlassian sshd[21594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.140.130 Jun 25 19:30:29 atlassian sshd[21594]: Invalid user www from 168.194.140.130 port 51078 Jun 25 19:30:30 atlassian sshd[21594]: Failed password for invalid user www from 168.194.140.130 port 51078 ssh2	2019-06-26 10:12:21
attackspambots	Automated report - ssh fail2ban: Jun 25 15:26:36 authentication failure Jun 25 15:26:38 wrong password, user=hschoi, port=41154, ssh2 Jun 25 15:30:27 authentication failure	2019-06-25 21:48:45

Comments on same subnet:

IP	Type	Details	Datetime
168.194.140.54	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-08-02 06:49:18

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.194.140.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12866
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.194.140.130.		IN	A

;; AUTHORITY SECTION:
.			1641	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 05:31:16 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 130.140.194.168.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 130.140.194.168.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
154.127.150.101	attack	Jul 20 23:33:38 b2b-pharm sshd[14381]: Did not receive identification string from 154.127.150.101 port 48773 Jul 20 23:33:45 b2b-pharm sshd[14382]: Invalid user ubnt from 154.127.150.101 port 62610 Jul 20 23:33:45 b2b-pharm sshd[14382]: Invalid user ubnt from 154.127.150.101 port 62610 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=154.127.150.101	2020-07-21 06:39:21
138.197.151.129	attackspambots	2020-07-21T00:23:15.631954amanda2.illicoweb.com sshd\[18130\]: Invalid user oper from 138.197.151.129 port 34748 2020-07-21T00:23:15.634732amanda2.illicoweb.com sshd\[18130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.151.129 2020-07-21T00:23:17.486948amanda2.illicoweb.com sshd\[18130\]: Failed password for invalid user oper from 138.197.151.129 port 34748 ssh2 2020-07-21T00:29:26.616836amanda2.illicoweb.com sshd\[18489\]: Invalid user victor from 138.197.151.129 port 58816 2020-07-21T00:29:26.619678amanda2.illicoweb.com sshd\[18489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.151.129 ...	2020-07-21 06:31:16
122.51.34.215	attackspam	Jul 21 00:41:36 santamaria sshd\[21587\]: Invalid user webrun from 122.51.34.215 Jul 21 00:41:36 santamaria sshd\[21587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.34.215 Jul 21 00:41:38 santamaria sshd\[21587\]: Failed password for invalid user webrun from 122.51.34.215 port 46496 ssh2 ...	2020-07-21 06:42:17
114.46.47.110	attackspam	Jul 20 22:33:56 uapps sshd[14129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114-46-47-110.dynamic-ip.hinet.net Jul 20 22:33:58 uapps sshd[14129]: Failed password for invalid user admin from 114.46.47.110 port 40131 ssh2 Jul 20 22:33:58 uapps sshd[14129]: Received disconnect from 114.46.47.110: 11: Bye Bye [preauth] Jul 20 22:34:00 uapps sshd[14131]: User r.r from 114-46-47-110.dynamic-ip.hinet.net not allowed because not listed in AllowUsers Jul 20 22:34:01 uapps sshd[14131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114-46-47-110.dynamic-ip.hinet.net user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.46.47.110	2020-07-21 06:35:29
125.64.94.131	attackspam	SmallBizIT.US 3 packets to tcp(2087,5443,5902)	2020-07-21 06:08:07
167.114.114.114	attackbotsspam	Jul 20 18:14:02 ny01 sshd[26489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.114.114 Jul 20 18:14:04 ny01 sshd[26489]: Failed password for invalid user julio from 167.114.114.114 port 42392 ssh2 Jul 20 18:18:13 ny01 sshd[26982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.114.114	2020-07-21 06:30:24
51.178.82.80	attack	Invalid user l from 51.178.82.80 port 48850	2020-07-21 06:43:20
93.56.8.14	attack	Jul 20 23:07:06 web-main sshd[665156]: Invalid user cmsftp from 93.56.8.14 port 45790 Jul 20 23:07:09 web-main sshd[665156]: Failed password for invalid user cmsftp from 93.56.8.14 port 45790 ssh2 Jul 20 23:15:48 web-main sshd[665288]: Invalid user ywz from 93.56.8.14 port 40446	2020-07-21 06:34:43
51.83.76.25	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-21 06:44:43
118.24.126.48	attack	Jul 21 00:17:13 santamaria sshd\[21142\]: Invalid user wey from 118.24.126.48 Jul 21 00:17:13 santamaria sshd\[21142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.126.48 Jul 21 00:17:15 santamaria sshd\[21142\]: Failed password for invalid user wey from 118.24.126.48 port 58570 ssh2 ...	2020-07-21 06:24:20
125.22.9.186	attack	Brute-force attempt banned	2020-07-21 06:43:38
195.80.151.30	attackspam	Automated report (2020-07-21T04:43:14+08:00). Hack attempt detected.	2020-07-21 06:08:34
49.235.109.97	attackbots	2020-07-20T22:37:28.237521amanda2.illicoweb.com sshd\[11405\]: Invalid user lxy from 49.235.109.97 port 49334 2020-07-20T22:37:28.240299amanda2.illicoweb.com sshd\[11405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.109.97 2020-07-20T22:37:29.761818amanda2.illicoweb.com sshd\[11405\]: Failed password for invalid user lxy from 49.235.109.97 port 49334 ssh2 2020-07-20T22:43:13.124281amanda2.illicoweb.com sshd\[11910\]: Invalid user por from 49.235.109.97 port 54540 2020-07-20T22:43:13.127036amanda2.illicoweb.com sshd\[11910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.109.97 ...	2020-07-21 06:10:59
13.71.21.123	attackbotsspam	Invalid user admin from 13.71.21.123 port 1024	2020-07-21 06:11:15
183.80.17.84	attack	leo_www	2020-07-21 06:26:17

Recently Reported IPs

80.106.194.1	185.175.156.30	129.146.121.201	103.62.236.186
170.239.86.225	173.168.188.247	106.12.107.23	92.63.194.103
103.252.170.227	122.166.124.14	41.221.146.138	132.232.12.42
182.254.129.82	162.254.132.20	13.233.105.8	217.61.2.97
116.206.231.14	106.13.11.225	177.18.204.185	221.130.130.238