189.206.1.142 - IPInfo

Basic Info

City: Tuxtla Gutiérrez

Region: Chiapas

Country: Mexico

Internet Service Provider: Alestra S. de R.L. de C.V.

Hostname: unknown

Organization: Alestra, S. de R.L. de C.V.

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Sep 29 15:11:44 dev0-dcfr-rnet sshd[28802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Sep 29 15:11:47 dev0-dcfr-rnet sshd[28802]: Failed password for invalid user qsvr from 189.206.1.142 port 17049 ssh2 Sep 29 15:16:17 dev0-dcfr-rnet sshd[28809]: Failed password for root from 189.206.1.142 port 57549 ssh2	2019-09-29 21:19:55
attackbotsspam	Sep 9 18:03:56 MK-Soft-VM5 sshd\[16334\]: Invalid user web@123 from 189.206.1.142 port 37560 Sep 9 18:03:57 MK-Soft-VM5 sshd\[16334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Sep 9 18:03:59 MK-Soft-VM5 sshd\[16334\]: Failed password for invalid user web@123 from 189.206.1.142 port 37560 ssh2 ...	2019-09-10 07:02:07
attack	Sep 8 22:22:08 core sshd[19627]: Invalid user newuser from 189.206.1.142 port 11818 Sep 8 22:22:10 core sshd[19627]: Failed password for invalid user newuser from 189.206.1.142 port 11818 ssh2 ...	2019-09-09 04:39:57
attack	Sep 8 00:11:56 mail sshd\[3338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Sep 8 00:11:58 mail sshd\[3338\]: Failed password for invalid user test123 from 189.206.1.142 port 57862 ssh2 Sep 8 00:16:34 mail sshd\[3815\]: Invalid user sshuser from 189.206.1.142 port 44833 Sep 8 00:16:34 mail sshd\[3815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Sep 8 00:16:36 mail sshd\[3815\]: Failed password for invalid user sshuser from 189.206.1.142 port 44833 ssh2	2019-09-08 12:29:25
attackbotsspam	Sep 3 04:29:43 rpi sshd[22312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Sep 3 04:29:45 rpi sshd[22312]: Failed password for invalid user leslie from 189.206.1.142 port 39810 ssh2	2019-09-03 10:59:21
attackspambots	Aug 30 16:27:08 web1 sshd\[29688\]: Invalid user adam from 189.206.1.142 Aug 30 16:27:08 web1 sshd\[29688\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Aug 30 16:27:10 web1 sshd\[29688\]: Failed password for invalid user adam from 189.206.1.142 port 37428 ssh2 Aug 30 16:31:38 web1 sshd\[30123\]: Invalid user qwerty from 189.206.1.142 Aug 30 16:31:38 web1 sshd\[30123\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142	2019-08-31 10:41:00
attack	Aug 26 00:50:18 server sshd[54210]: Failed password for invalid user ircop from 189.206.1.142 port 32239 ssh2 Aug 26 01:05:49 server sshd[57809]: Failed password for invalid user peter from 189.206.1.142 port 60485 ssh2 Aug 26 01:09:57 server sshd[58837]: Failed password for root from 189.206.1.142 port 49760 ssh2	2019-08-26 11:04:47
attackspambots	Aug 22 01:38:38 php1 sshd\[23038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 user=root Aug 22 01:38:40 php1 sshd\[23038\]: Failed password for root from 189.206.1.142 port 48944 ssh2 Aug 22 01:43:16 php1 sshd\[23782\]: Invalid user cjh from 189.206.1.142 Aug 22 01:43:16 php1 sshd\[23782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Aug 22 01:43:18 php1 sshd\[23782\]: Failed password for invalid user cjh from 189.206.1.142 port 37611 ssh2	2019-08-22 19:53:00
attackspam	fail2ban	2019-08-15 05:52:14
attackspambots	2019-08-13T12:24:17.143545abusebot-6.cloudsearch.cf sshd\[17110\]: Invalid user admin2 from 189.206.1.142 port 49092	2019-08-13 20:57:10
attackbotsspam	2019-08-10T07:21:03.272012abusebot-6.cloudsearch.cf sshd\[1263\]: Invalid user mz from 189.206.1.142 port 27869	2019-08-10 15:42:56
attackbots	Jul 31 22:17:03 srv206 sshd[25744]: Invalid user info from 189.206.1.142 ...	2019-08-01 09:25:46
attackbots	Jul 31 11:10:55 localhost sshd\[18401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 user=root Jul 31 11:10:57 localhost sshd\[18401\]: Failed password for root from 189.206.1.142 port 54167 ssh2 Jul 31 11:15:19 localhost sshd\[18663\]: Invalid user informax from 189.206.1.142 Jul 31 11:15:19 localhost sshd\[18663\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Jul 31 11:15:21 localhost sshd\[18663\]: Failed password for invalid user informax from 189.206.1.142 port 45616 ssh2 ...	2019-07-31 22:50:18
attack	2019-07-16T02:11:04.958579abusebot-3.cloudsearch.cf sshd\[3257\]: Invalid user ibm from 189.206.1.142 port 63302	2019-07-16 10:22:42
attackbots	2019-07-15T18:30:55.930645abusebot-3.cloudsearch.cf sshd\[426\]: Invalid user mattermost from 189.206.1.142 port 18897	2019-07-16 02:35:23
attack	Automatic report - Banned IP Access	2019-07-14 07:28:37
attackbotsspam	Feb 28 20:28:04 motanud sshd\[21022\]: Invalid user bh from 189.206.1.142 port 53324 Feb 28 20:28:04 motanud sshd\[21022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.1.142 Feb 28 20:28:06 motanud sshd\[21022\]: Failed password for invalid user bh from 189.206.1.142 port 53324 ssh2	2019-07-03 02:38:44
attackbotsspam	k+ssh-bruteforce	2019-06-30 17:03:40

Comments on same subnet:

IP	Type	Details	Datetime
189.206.165.62	attackbots	Oct 10 18:18:10 vps sshd[10685]: Failed password for root from 189.206.165.62 port 46472 ssh2 Oct 10 18:23:48 vps sshd[10940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.165.62 Oct 10 18:23:50 vps sshd[10940]: Failed password for invalid user oracle from 189.206.165.62 port 39200 ssh2 ...	2020-10-11 01:35:38
189.206.165.62	attackspam	2 SSH login attempts.	2020-10-05 05:50:54
189.206.165.62	attackspambots	firewall-block, port(s): 16512/tcp	2020-10-04 21:47:57
189.206.165.62	attack	TCP (SYN) 189.206.165.62:46716 -> port 26960, len 44	2020-10-04 13:34:59
189.206.160.153	attackspam	Sep 27 18:32:23 NPSTNNYC01T sshd[7388]: Failed password for root from 189.206.160.153 port 27923 ssh2 Sep 27 18:36:27 NPSTNNYC01T sshd[7869]: Failed password for root from 189.206.160.153 port 44665 ssh2 ...	2020-09-28 06:41:48
189.206.160.153	attackbotsspam	Invalid user redis1 from 189.206.160.153 port 13920	2020-09-27 23:07:54
189.206.160.153	attackbots	Sep 27 14:12:55 web1 sshd[5350]: Invalid user ventas from 189.206.160.153 port 37567 Sep 27 14:12:55 web1 sshd[5350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.160.153 Sep 27 14:12:55 web1 sshd[5350]: Invalid user ventas from 189.206.160.153 port 37567 Sep 27 14:12:57 web1 sshd[5350]: Failed password for invalid user ventas from 189.206.160.153 port 37567 ssh2 Sep 27 14:18:00 web1 sshd[7013]: Invalid user ftpuser from 189.206.160.153 port 43794 Sep 27 14:18:00 web1 sshd[7013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.160.153 Sep 27 14:18:00 web1 sshd[7013]: Invalid user ftpuser from 189.206.160.153 port 43794 Sep 27 14:18:02 web1 sshd[7013]: Failed password for invalid user ftpuser from 189.206.160.153 port 43794 ssh2 Sep 27 14:20:27 web1 sshd[7876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.160.153 user=root Sep 27 14:20:28 ...	2020-09-27 15:05:33
189.206.165.62	attack	$f2bV_matches	2020-09-18 14:43:27
189.206.165.62	attackbotsspam	firewall-block, port(s): 23032/tcp	2020-09-18 04:59:40
189.206.165.62	attackbotsspam	$f2bV_matches	2020-09-16 12:44:48
189.206.165.62	attackspam	" "	2020-09-16 04:30:49
189.206.160.153	attackspambots	Invalid user null from 189.206.160.153 port 18370	2020-09-15 00:09:16
189.206.160.153	attackbotsspam	2020-09-13T23:14:52.046163shield sshd\[31491\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.160.153 user=root 2020-09-13T23:14:54.098446shield sshd\[31491\]: Failed password for root from 189.206.160.153 port 26919 ssh2 2020-09-13T23:19:09.464740shield sshd\[32282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.160.153 user=root 2020-09-13T23:19:10.934942shield sshd\[32282\]: Failed password for root from 189.206.160.153 port 15164 ssh2 2020-09-13T23:23:24.504035shield sshd\[316\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.206.160.153 user=root	2020-09-14 07:47:16
189.206.165.62	attackbots	Sep 13 22:45:28 gw1 sshd[22213]: Failed password for root from 189.206.165.62 port 36124 ssh2 ...	2020-09-14 02:00:14
189.206.165.62	attackspam	Port scan denied	2020-09-13 17:55:30

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.206.1.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4071
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.206.1.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040300 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 03 15:41:33 +08 2019
;; MSG SIZE  rcvd: 117

Host info

142.1.206.189.in-addr.arpa domain name pointer static-189-206-142.alestra.net.mx.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
142.1.206.189.in-addr.arpa	name = static-189-206-142.alestra.net.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.208	attackbots	Apr 25 00:28:27 MainVPS sshd[20273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root Apr 25 00:28:29 MainVPS sshd[20273]: Failed password for root from 218.92.0.208 port 29347 ssh2 Apr 25 00:29:18 MainVPS sshd[21024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root Apr 25 00:29:19 MainVPS sshd[21024]: Failed password for root from 218.92.0.208 port 29173 ssh2 Apr 25 00:29:18 MainVPS sshd[21024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root Apr 25 00:29:19 MainVPS sshd[21024]: Failed password for root from 218.92.0.208 port 29173 ssh2 Apr 25 00:29:22 MainVPS sshd[21024]: Failed password for root from 218.92.0.208 port 29173 ssh2 ...	2020-04-25 07:47:03
218.36.86.40	attackbots	2020-04-24T23:24:30.235903abusebot-4.cloudsearch.cf sshd[23782]: Invalid user testuser from 218.36.86.40 port 50484 2020-04-24T23:24:30.242941abusebot-4.cloudsearch.cf sshd[23782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.36.86.40 2020-04-24T23:24:30.235903abusebot-4.cloudsearch.cf sshd[23782]: Invalid user testuser from 218.36.86.40 port 50484 2020-04-24T23:24:31.555475abusebot-4.cloudsearch.cf sshd[23782]: Failed password for invalid user testuser from 218.36.86.40 port 50484 ssh2 2020-04-24T23:34:14.636327abusebot-4.cloudsearch.cf sshd[24312]: Invalid user zha from 218.36.86.40 port 38860 2020-04-24T23:34:14.641836abusebot-4.cloudsearch.cf sshd[24312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.36.86.40 2020-04-24T23:34:14.636327abusebot-4.cloudsearch.cf sshd[24312]: Invalid user zha from 218.36.86.40 port 38860 2020-04-24T23:34:16.461067abusebot-4.cloudsearch.cf sshd[24312]: Failed p ...	2020-04-25 07:34:51
112.45.122.7	attackbotsspam	Apr 25 00:33:00 vmanager6029 sshd\[16329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.45.122.7 user=root Apr 25 00:36:37 vmanager6029 sshd\[16472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.45.122.7 user=root Apr 25 00:38:26 vmanager6029 sshd\[16508\]: Invalid user dmdba from 112.45.122.7 port 55208	2020-04-25 07:47:50
167.172.57.75	attackspambots	prod11 ...	2020-04-25 07:28:44
183.89.237.22	attackspambots	'IP reached maximum auth failures for a one day block'	2020-04-25 07:44:04
106.75.172.103	attackbotsspam	Invalid user admin from 106.75.172.103 port 47720	2020-04-25 07:27:57
45.4.5.221	attack	DATE:2020-04-25 01:34:02, IP:45.4.5.221, PORT:ssh SSH brute force auth (docker-dc)	2020-04-25 07:36:06
125.212.217.214	attackbotsspam	firewall-block, port(s): 9981/tcp	2020-04-25 07:59:42
106.12.59.49	attackspam	Invalid user admin from 106.12.59.49 port 56104	2020-04-25 07:40:21
49.234.196.215	attack	SSH Invalid Login	2020-04-25 07:56:22
222.186.169.192	attack	2020-04-24T19:49:21.188652xentho-1 sshd[136792]: Failed password for root from 222.186.169.192 port 53730 ssh2 2020-04-24T19:49:14.708796xentho-1 sshd[136792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root 2020-04-24T19:49:16.750251xentho-1 sshd[136792]: Failed password for root from 222.186.169.192 port 53730 ssh2 2020-04-24T19:49:21.188652xentho-1 sshd[136792]: Failed password for root from 222.186.169.192 port 53730 ssh2 2020-04-24T19:49:25.826246xentho-1 sshd[136792]: Failed password for root from 222.186.169.192 port 53730 ssh2 2020-04-24T19:49:14.708796xentho-1 sshd[136792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root 2020-04-24T19:49:16.750251xentho-1 sshd[136792]: Failed password for root from 222.186.169.192 port 53730 ssh2 2020-04-24T19:49:21.188652xentho-1 sshd[136792]: Failed password for root from 222.186.169.192 port 53730 ssh2 2020-0 ...	2020-04-25 07:55:25
112.85.42.229	attackspambots	Apr 25 00:28:31 server sshd[1079]: Failed password for root from 112.85.42.229 port 58070 ssh2 Apr 25 01:28:42 server sshd[21669]: Failed password for root from 112.85.42.229 port 20180 ssh2 Apr 25 01:28:45 server sshd[21669]: Failed password for root from 112.85.42.229 port 20180 ssh2	2020-04-25 07:31:39
52.246.161.60	attackspam	Apr 24 22:56:22 srv01 sshd[14105]: Invalid user liuliu from 52.246.161.60 port 33984 Apr 24 22:56:22 srv01 sshd[14105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.246.161.60 Apr 24 22:56:22 srv01 sshd[14105]: Invalid user liuliu from 52.246.161.60 port 33984 Apr 24 22:56:24 srv01 sshd[14105]: Failed password for invalid user liuliu from 52.246.161.60 port 33984 ssh2 Apr 24 23:00:49 srv01 sshd[14375]: Invalid user git from 52.246.161.60 port 47892 ...	2020-04-25 07:57:10
61.7.235.211	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-04-25 08:06:06
49.235.134.46	attackbots	Apr 24 22:01:42 XXX sshd[8319]: Invalid user Plm54321 from 49.235.134.46 port 33608	2020-04-25 07:56:05

Recently Reported IPs

223.38.22.242	14.116.207.212	85.187.93.151	218.92.0.185
195.137.226.124	171.103.9.30	147.78.14.198	84.53.228.1
41.32.179.215	159.253.46.126	209.59.182.90	223.97.194.236
49.231.4.10	49.248.120.154	188.165.211.99	134.209.164.39
187.57.152.176	88.61.0.21	107.170.202.34	95.165.198.214