189.11.21.220 - IPInfo

Basic Info

City: Pinhais

Region: Parana

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.11.21.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.11.21.220.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102601 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 27 03:26:24 CST 2019
;; MSG SIZE  rcvd: 117

Host info

220.21.11.189.in-addr.arpa domain name pointer 189-11-21-220.ctaje701.dsl.brasiltelecom.net.br.
220.21.11.189.in-addr.arpa domain name pointer 189-11-21-220.mganm702.dsl.brasiltelecom.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
220.21.11.189.in-addr.arpa	name = 189-11-21-220.ctaje701.dsl.brasiltelecom.net.br.
220.21.11.189.in-addr.arpa	name = 189-11-21-220.mganm702.dsl.brasiltelecom.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.150.177.146	attack	May 10 21:06:03 debian sshd[28145]: Unable to negotiate with 129.150.177.146 port 3594: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] May 10 23:47:41 debian sshd[3211]: Unable to negotiate with 129.150.177.146 port 3594: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-05-11 19:48:46
177.74.135.57	attack	Invalid user kent from 177.74.135.57 port 53626	2020-05-11 20:08:11
115.79.208.117	attack	Wordpress malicious attack:[sshd]	2020-05-11 20:00:21
193.254.135.252	attackbots	May 11 10:03:35 DAAP sshd[28311]: Invalid user postgres from 193.254.135.252 port 57244 May 11 10:03:35 DAAP sshd[28311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.254.135.252 May 11 10:03:35 DAAP sshd[28311]: Invalid user postgres from 193.254.135.252 port 57244 May 11 10:03:37 DAAP sshd[28311]: Failed password for invalid user postgres from 193.254.135.252 port 57244 ssh2 May 11 10:07:06 DAAP sshd[28345]: Invalid user mtucker from 193.254.135.252 port 37252 ...	2020-05-11 19:52:45
198.27.122.201	attackbots	May 11 14:06:06 buvik sshd[4136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.27.122.201 May 11 14:06:08 buvik sshd[4136]: Failed password for invalid user admin from 198.27.122.201 port 43702 ssh2 May 11 14:09:44 buvik sshd[4622]: Invalid user postgres from 198.27.122.201 ...	2020-05-11 20:11:07
179.70.138.97	attack	May 11 07:01:41 localhost sshd\[10040\]: Invalid user aj from 179.70.138.97 May 11 07:01:41 localhost sshd\[10040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.70.138.97 May 11 07:01:43 localhost sshd\[10040\]: Failed password for invalid user aj from 179.70.138.97 port 10593 ssh2 May 11 07:06:50 localhost sshd\[10334\]: Invalid user ftpuser1 from 179.70.138.97 May 11 07:06:50 localhost sshd\[10334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.70.138.97 ...	2020-05-11 20:06:52
14.183.136.143	attackbots	Unauthorized connection attempt from IP address 14.183.136.143 on Port 445(SMB)	2020-05-11 19:44:08
60.172.47.2	attackbotsspam	May 11 03:47:46 TCP Attack: SRC=60.172.47.2 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=113 PROTO=TCP SPT=24653 DPT=21433 WINDOW=16384 RES=0x00 SYN URGP=0	2020-05-11 19:46:04
219.153.107.186	attackspambots	SSH brute force attempt	2020-05-11 20:03:28
118.25.91.168	attack	$f2bV_matches	2020-05-11 20:12:11
188.166.164.10	attack	May 11 10:16:43 web8 sshd\[32556\]: Invalid user jenny from 188.166.164.10 May 11 10:16:43 web8 sshd\[32556\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.164.10 May 11 10:16:45 web8 sshd\[32556\]: Failed password for invalid user jenny from 188.166.164.10 port 35954 ssh2 May 11 10:19:35 web8 sshd\[1670\]: Invalid user tena from 188.166.164.10 May 11 10:19:35 web8 sshd\[1670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.164.10	2020-05-11 19:33:38
106.12.204.75	attack	May 11 10:16:51 vps58358 sshd\[5075\]: Invalid user sammy from 106.12.204.75May 11 10:16:53 vps58358 sshd\[5075\]: Failed password for invalid user sammy from 106.12.204.75 port 60900 ssh2May 11 10:21:47 vps58358 sshd\[5151\]: Invalid user andres from 106.12.204.75May 11 10:21:49 vps58358 sshd\[5151\]: Failed password for invalid user andres from 106.12.204.75 port 59578 ssh2May 11 10:23:22 vps58358 sshd\[5189\]: Invalid user lorenza from 106.12.204.75May 11 10:23:24 vps58358 sshd\[5189\]: Failed password for invalid user lorenza from 106.12.204.75 port 40330 ssh2 ...	2020-05-11 19:31:29
167.172.102.74	attackspambots	May 11 04:53:59 askasleikir sshd[49269]: Failed password for root from 167.172.102.74 port 52442 ssh2 May 11 04:58:05 askasleikir sshd[49284]: Failed password for invalid user test from 167.172.102.74 port 34368 ssh2 May 11 04:46:02 askasleikir sshd[48917]: Failed password for invalid user ubuntu from 167.172.102.74 port 52074 ssh2	2020-05-11 20:06:06
178.165.99.208	attackspam	May 11 11:50:56 scw-6657dc sshd[28524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.165.99.208 May 11 11:50:56 scw-6657dc sshd[28524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.165.99.208 May 11 11:50:58 scw-6657dc sshd[28524]: Failed password for invalid user gitlab from 178.165.99.208 port 37192 ssh2 ...	2020-05-11 19:53:31
165.22.84.3	attackbotsspam	Bruteforce detected by fail2ban	2020-05-11 19:53:47

Recently Reported IPs

49.42.26.164	76.14.214.134	52.249.114.144	139.200.15.142
139.227.73.230	203.129.207.4	199.185.81.158	56.180.189.82
124.59.229.121	201.131.185.121	121.167.172.81	197.251.254.126
75.188.74.206	115.133.30.17	151.90.33.67	46.117.255.129
105.54.117.169	168.150.70.48	77.200.252.130	125.104.49.239