138.214.4.189 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.214.4.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.214.4.189.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022700 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 22:28:02 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 189.4.214.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.4.214.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.154.18.192	attack	12/13/2019-16:56:44.565904 85.154.18.192 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-12-14 03:37:40
192.153.5.1	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/192.153.5.1/ US - 1H : (105) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN22415 IP : 192.153.5.1 CIDR : 192.153.5.0/24 PREFIX COUNT : 2 UNIQUE IP COUNT : 512 ATTACKS DETECTED ASN22415 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-12-13 16:56:31 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-12-14 03:45:59
180.250.115.98	attack	Dec 13 20:22:46 jane sshd[7024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.98 Dec 13 20:22:49 jane sshd[7024]: Failed password for invalid user l4d from 180.250.115.98 port 33421 ssh2 ...	2019-12-14 03:26:15
164.132.192.5	attackbots	2019-12-13T20:09:39.252688vps751288.ovh.net sshd\[22082\]: Invalid user webmaster from 164.132.192.5 port 33610 2019-12-13T20:09:39.261077vps751288.ovh.net sshd\[22082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.ip-164-132-192.eu 2019-12-13T20:09:41.435606vps751288.ovh.net sshd\[22082\]: Failed password for invalid user webmaster from 164.132.192.5 port 33610 ssh2 2019-12-13T20:14:28.118050vps751288.ovh.net sshd\[22162\]: Invalid user brittany from 164.132.192.5 port 41802 2019-12-13T20:14:28.128889vps751288.ovh.net sshd\[22162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.ip-164-132-192.eu	2019-12-14 03:50:05
116.196.82.187	attack	Dec 13 20:25:51 * sshd[30914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.82.187 Dec 13 20:25:53 * sshd[30914]: Failed password for invalid user kyilmaz from 116.196.82.187 port 56055 ssh2	2019-12-14 03:26:57
80.211.175.209	attackbotsspam	Dec 13 17:33:49 pi sshd\[3117\]: Invalid user test from 80.211.175.209 port 35476 Dec 13 17:33:49 pi sshd\[3117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.175.209 Dec 13 17:33:51 pi sshd\[3117\]: Failed password for invalid user test from 80.211.175.209 port 35476 ssh2 Dec 13 17:39:40 pi sshd\[3550\]: Invalid user smmsp from 80.211.175.209 port 44806 Dec 13 17:39:40 pi sshd\[3550\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.175.209 ...	2019-12-14 03:36:58
170.106.67.19	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-14 03:35:22
69.229.6.52	attack	Dec 13 08:53:24 home sshd[12894]: Invalid user sonhing from 69.229.6.52 port 39120 Dec 13 08:53:24 home sshd[12894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 Dec 13 08:53:24 home sshd[12894]: Invalid user sonhing from 69.229.6.52 port 39120 Dec 13 08:53:26 home sshd[12894]: Failed password for invalid user sonhing from 69.229.6.52 port 39120 ssh2 Dec 13 09:02:27 home sshd[12949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 user=root Dec 13 09:02:29 home sshd[12949]: Failed password for root from 69.229.6.52 port 46048 ssh2 Dec 13 09:09:54 home sshd[12984]: Invalid user user from 69.229.6.52 port 55422 Dec 13 09:09:54 home sshd[12984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.229.6.52 Dec 13 09:09:54 home sshd[12984]: Invalid user user from 69.229.6.52 port 55422 Dec 13 09:09:56 home sshd[12984]: Failed password for invalid user user from 69.229.6	2019-12-14 03:49:12
222.186.175.182	attackbotsspam	Dec 13 20:26:53 nextcloud sshd\[23764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Dec 13 20:26:55 nextcloud sshd\[23764\]: Failed password for root from 222.186.175.182 port 10884 ssh2 Dec 13 20:26:58 nextcloud sshd\[23764\]: Failed password for root from 222.186.175.182 port 10884 ssh2 ...	2019-12-14 03:29:24
193.66.202.67	attack	Dec 13 20:05:22 loxhost sshd\[20380\]: Invalid user vcsa from 193.66.202.67 port 46618 Dec 13 20:05:22 loxhost sshd\[20380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.66.202.67 Dec 13 20:05:23 loxhost sshd\[20380\]: Failed password for invalid user vcsa from 193.66.202.67 port 46618 ssh2 Dec 13 20:11:51 loxhost sshd\[20628\]: Invalid user guest from 193.66.202.67 port 53358 Dec 13 20:11:51 loxhost sshd\[20628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.66.202.67 ...	2019-12-14 03:26:01
185.209.0.51	attack	12/13/2019-20:49:54.985063 185.209.0.51 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-14 03:59:01
159.65.49.251	attackbotsspam	fraudulent SSH attempt	2019-12-14 03:46:48
221.143.48.143	attack	--- report --- Dec 13 15:13:21 sshd: Connection from 221.143.48.143 port 37936 Dec 13 15:13:22 sshd: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 13 15:13:22 sshd: Invalid user nancarrow from 221.143.48.143 Dec 13 15:13:23 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.143.48.143 Dec 13 15:13:25 sshd: Failed password for invalid user nancarrow from 221.143.48.143 port 37936 ssh2 Dec 13 15:13:25 sshd: Received disconnect from 221.143.48.143: 11: Bye Bye [preauth]	2019-12-14 03:58:38
159.89.160.91	attackspambots	Dec 13 17:56:15 ws26vmsma01 sshd[27780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.160.91 Dec 13 17:56:18 ws26vmsma01 sshd[27780]: Failed password for invalid user pauline from 159.89.160.91 port 44700 ssh2 ...	2019-12-14 03:28:26
91.188.179.222	attackbots	Unauthorised access (Dec 13) SRC=91.188.179.222 LEN=52 TTL=120 ID=17434 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-14 03:54:03

Recently Reported IPs

137.225.71.34	9.197.171.231	172.92.23.174	246.6.92.198
248.221.152.254	2.146.136.246	47.35.60.188	184.32.14.109
90.14.227.147	114.61.223.34	59.233.149.135	177.33.22.83
135.207.32.218	43.252.133.185	139.42.228.89	94.59.150.188
93.97.247.246	92.171.39.120	151.69.36.30	24.29.46.251