193.140.134.210

Basic Info

City: unknown

Region: unknown

Country: Turkey

Internet Service Provider: Gebze Yuksek Teknoloji Enstitusu

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Automatic report - Banned IP Access	2019-07-27 11:03:02

Comments on same subnet:

IP	Type	Details	Datetime
193.140.134.102	attack	Aug 1 16:39:24 ms-srv sshd[16870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.140.134.102 Aug 1 16:39:26 ms-srv sshd[16870]: Failed password for invalid user rpc from 193.140.134.102 port 9687 ssh2	2020-02-03 05:00:53
193.140.134.140	attackspambots	WordPress wp-login brute force :: 193.140.134.140 0.124 BYPASS [05/Oct/2019:21:32:25 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-06 01:32:00
193.140.134.102	attackbots	2019-09-01T20:40:31.140180abusebot-3.cloudsearch.cf sshd\[24896\]: Invalid user xe from 193.140.134.102 port 14635	2019-09-02 05:20:39
193.140.134.102	attack	SSH Bruteforce attempt	2019-08-31 05:03:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.140.134.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6467
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.140.134.210.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072602 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 27 11:02:54 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 210.134.140.193.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 210.134.140.193.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.69.16.26	attackspam	3389BruteforceFW21	2019-09-20 10:48:33
68.183.187.234	attackspam	Sep 19 22:10:02 ny01 sshd[32695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.187.234 Sep 19 22:10:04 ny01 sshd[32695]: Failed password for invalid user fei from 68.183.187.234 port 41356 ssh2 Sep 19 22:14:24 ny01 sshd[1080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.187.234	2019-09-20 10:27:20
212.156.17.218	attack	Sep 19 18:25:39 home sshd[26382]: Invalid user cactiuser from 212.156.17.218 port 58662 Sep 19 18:25:39 home sshd[26382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.17.218 Sep 19 18:25:39 home sshd[26382]: Invalid user cactiuser from 212.156.17.218 port 58662 Sep 19 18:25:42 home sshd[26382]: Failed password for invalid user cactiuser from 212.156.17.218 port 58662 ssh2 Sep 19 18:54:23 home sshd[26449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.17.218 user=root Sep 19 18:54:25 home sshd[26449]: Failed password for root from 212.156.17.218 port 42090 ssh2 Sep 19 18:58:21 home sshd[26465]: Invalid user akanistha from 212.156.17.218 port 58598 Sep 19 18:58:21 home sshd[26465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.17.218 Sep 19 18:58:21 home sshd[26465]: Invalid user akanistha from 212.156.17.218 port 58598 Sep 19 18:58:24 home sshd[26465]: Failed p	2019-09-20 10:45:07
106.12.9.49	attackbots	Sep 20 04:16:12 dedicated sshd[28480]: Invalid user jannine from 106.12.9.49 port 45446	2019-09-20 10:18:34
46.38.144.32	attack	Sep 20 03:07:12 blackbee postfix/smtpd\[29543\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: authentication failure Sep 20 03:09:34 blackbee postfix/smtpd\[29543\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: authentication failure Sep 20 03:11:57 blackbee postfix/smtpd\[29543\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: authentication failure Sep 20 03:14:19 blackbee postfix/smtpd\[29543\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: authentication failure Sep 20 03:16:43 blackbee postfix/smtpd\[29543\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: authentication failure ...	2019-09-20 10:27:46
198.245.49.37	attackspambots	Sep 19 16:37:51 php1 sshd\[2813\]: Invalid user admin from 198.245.49.37 Sep 19 16:37:51 php1 sshd\[2813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.49.37 Sep 19 16:37:53 php1 sshd\[2813\]: Failed password for invalid user admin from 198.245.49.37 port 35214 ssh2 Sep 19 16:42:04 php1 sshd\[3317\]: Invalid user 2 from 198.245.49.37 Sep 19 16:42:04 php1 sshd\[3317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.49.37	2019-09-20 10:55:22
129.28.168.86	attackbotsspam	Sep 20 03:06:50 pornomens sshd\[11805\]: Invalid user str from 129.28.168.86 port 52376 Sep 20 03:06:50 pornomens sshd\[11805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.168.86 Sep 20 03:06:53 pornomens sshd\[11805\]: Failed password for invalid user str from 129.28.168.86 port 52376 ssh2 ...	2019-09-20 10:24:12
195.154.33.66	attack	Sep 20 01:06:12 marvibiene sshd[4758]: Invalid user min6 from 195.154.33.66 port 52736 Sep 20 01:06:12 marvibiene sshd[4758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.33.66 Sep 20 01:06:12 marvibiene sshd[4758]: Invalid user min6 from 195.154.33.66 port 52736 Sep 20 01:06:14 marvibiene sshd[4758]: Failed password for invalid user min6 from 195.154.33.66 port 52736 ssh2 ...	2019-09-20 10:51:07
111.177.201.187	attackbotsspam	Unauthorised access (Sep 20) SRC=111.177.201.187 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=11973 TCP DPT=8080 WINDOW=24863 SYN	2019-09-20 10:35:32
150.249.192.154	attackbots	Sep 20 01:29:58 game-panel sshd[18579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.249.192.154 Sep 20 01:30:00 game-panel sshd[18579]: Failed password for invalid user new from 150.249.192.154 port 49696 ssh2 Sep 20 01:34:31 game-panel sshd[18774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.249.192.154	2019-09-20 10:40:18
121.135.115.163	attackspam	Reported by AbuseIPDB proxy server.	2019-09-20 10:28:45
134.209.70.255	attackbotsspam	Sep 20 02:43:08 web8 sshd\[4342\]: Invalid user PS from 134.209.70.255 Sep 20 02:43:08 web8 sshd\[4342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Sep 20 02:43:10 web8 sshd\[4342\]: Failed password for invalid user PS from 134.209.70.255 port 35710 ssh2 Sep 20 02:47:34 web8 sshd\[6311\]: Invalid user admin from 134.209.70.255 Sep 20 02:47:34 web8 sshd\[6311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255	2019-09-20 10:52:22
105.226.226.70	attackspambots	/wp-login.php	2019-09-20 10:51:44
114.67.237.246	attackspambots	[FriSep2003:06:26.1250182019][:error][pid6886:tid46955185075968][client114.67.237.246:22582][client114.67.237.246]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"148.251.104.81"][uri"/App.php"][unique_id"XYQmEi8ZyiQ568zgao2LxAAAAIA"][FriSep2003:06:54.3301562019][:error][pid7087:tid46955279439616][client114.67.237.246:26754][client114.67.237.246]ModSecurity:Accessdeniedwithcode403\(phase2\).Patt	2019-09-20 10:21:51
114.35.187.202	attackbotsspam	Connection by 114.35.187.202 on port: 23 got caught by honeypot at 9/19/2019 6:06:38 PM	2019-09-20 10:37:25

Recently Reported IPs

176.201.146.158	252.10.115.204	41.137.214.71	160.147.219.74
168.181.74.13	190.210.42.209	239.214.209.242	59.10.131.201
187.139.229.64	155.219.20.73	101.15.123.212	239.24.133.79
1.79.188.201	187.36.91.65	238.62.37.28	191.19.121.97
192.69.64.28	186.56.184.26	167.99.209.200	113.224.104.94