189.212.114.138

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.212.114.222	attackspam	2020-08-14T12:23:02.564Z Portscan drop, PROTO=TCP SPT=40583 DPT=23 2020-08-14T12:22:59.564Z Portscan drop, PROTO=TCP SPT=40583 DPT=23	2020-08-15 01:34:17
189.212.114.125	attackbots	Automatic report - Port Scan Attack	2020-08-08 02:09:39
189.212.114.116	attackbots	unauthorized connection attempt	2020-02-16 21:21:18
189.212.114.90	attackbotsspam	Jan 13 14:04:34 vps339862 kernel: \[3593448.092636\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:22:9b:64:31:28:de:08:00 SRC=189.212.114.90 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=5246 DF PROTO=TCP SPT=38811 DPT=23 SEQ=1231728 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405B40402080AA320DF0E0000000001030302\) Jan 13 14:04:37 vps339862 kernel: \[3593451.091907\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:22:9b:64:31:28:de:08:00 SRC=189.212.114.90 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=5247 DF PROTO=TCP SPT=38811 DPT=23 SEQ=1231728 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405B40402080AA320EAC60000000001030302\) Jan 13 14:04:43 vps339862 kernel: \[3593457.092343\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:22:9b:64:31:28:de:08:00 SRC=189.212.114.90 DST=51.254.206.43 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=5248 DF PROTO=TCP SPT=38811 DPT=23 SEQ=1231728 ACK=0 WINDOW=5840 RES=0x00 SYN URGP=0 OPT \(020405 ...	2020-01-14 02:22:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.212.114.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52479
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.212.114.138.		IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:39:12 CST 2022
;; MSG SIZE  rcvd: 108

Host info

138.114.212.189.in-addr.arpa domain name pointer 189-212-114-138.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.114.212.189.in-addr.arpa	name = 189-212-114-138.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.32.221.142	attackbotsspam	Apr 19 22:14:40 tuxlinux sshd[52207]: Invalid user ps from 178.32.221.142 port 50067 Apr 19 22:14:40 tuxlinux sshd[52207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.221.142 Apr 19 22:14:40 tuxlinux sshd[52207]: Invalid user ps from 178.32.221.142 port 50067 Apr 19 22:14:40 tuxlinux sshd[52207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.221.142 Apr 19 22:14:40 tuxlinux sshd[52207]: Invalid user ps from 178.32.221.142 port 50067 Apr 19 22:14:40 tuxlinux sshd[52207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.221.142 Apr 19 22:14:42 tuxlinux sshd[52207]: Failed password for invalid user ps from 178.32.221.142 port 50067 ssh2 ...	2020-04-20 06:13:10
222.186.15.115	attackspam	Apr 19 18:32:20 plusreed sshd[26089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.115 user=root Apr 19 18:32:22 plusreed sshd[26089]: Failed password for root from 222.186.15.115 port 20161 ssh2 ...	2020-04-20 06:35:19
159.203.27.146	attackbotsspam	fail2ban	2020-04-20 06:22:21
106.52.131.86	attackspam	Apr 19 21:07:06 vps58358 sshd\[28964\]: Invalid user ubuntu from 106.52.131.86Apr 19 21:07:06 vps58358 sshd\[28963\]: Invalid user ubuntu from 106.52.131.86Apr 19 21:07:09 vps58358 sshd\[28964\]: Failed password for invalid user ubuntu from 106.52.131.86 port 59902 ssh2Apr 19 21:07:09 vps58358 sshd\[28963\]: Failed password for invalid user ubuntu from 106.52.131.86 port 59900 ssh2Apr 19 21:14:11 vps58358 sshd\[29100\]: Invalid user gq from 106.52.131.86Apr 19 21:14:12 vps58358 sshd\[29101\]: Invalid user gq from 106.52.131.86 ...	2020-04-20 06:38:39
80.211.60.125	attackspam	Apr 19 22:13:58 vpn01 sshd[6540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.60.125 Apr 19 22:13:59 vpn01 sshd[6540]: Failed password for invalid user yg from 80.211.60.125 port 50922 ssh2 ...	2020-04-20 06:52:22
106.12.211.168	attack	20 attempts against mh-ssh on cloud	2020-04-20 06:15:32
203.86.235.224	attack	Apr 19 23:55:15 raspberrypi sshd[16255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.86.235.224	2020-04-20 06:39:34
121.200.55.39	attackspambots	Apr 19 21:04:21 vlre-nyc-1 sshd\[2355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.39 user=root Apr 19 21:04:22 vlre-nyc-1 sshd\[2355\]: Failed password for root from 121.200.55.39 port 51688 ssh2 Apr 19 21:09:17 vlre-nyc-1 sshd\[2496\]: Invalid user ss from 121.200.55.39 Apr 19 21:09:17 vlre-nyc-1 sshd\[2496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.200.55.39 Apr 19 21:09:18 vlre-nyc-1 sshd\[2496\]: Failed password for invalid user ss from 121.200.55.39 port 43706 ssh2 ...	2020-04-20 06:14:34
222.186.42.137	attackspambots	Apr 20 00:16:39 vmd38886 sshd\[19825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 20 00:16:41 vmd38886 sshd\[19825\]: Failed password for root from 222.186.42.137 port 49273 ssh2 Apr 20 00:16:43 vmd38886 sshd\[19825\]: Failed password for root from 222.186.42.137 port 49273 ssh2	2020-04-20 06:17:13
186.146.1.122	attackspam	Apr 19 14:40:26 pixelmemory sshd[27197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.146.1.122 Apr 19 14:40:28 pixelmemory sshd[27197]: Failed password for invalid user ke from 186.146.1.122 port 55540 ssh2 Apr 19 14:42:29 pixelmemory sshd[27628]: Failed password for root from 186.146.1.122 port 56480 ssh2 ...	2020-04-20 06:13:36
61.191.55.33	attackbots	Apr 19 22:07:20 Ubuntu-1404-trusty-64-minimal sshd\[19026\]: Invalid user hw from 61.191.55.33 Apr 19 22:07:20 Ubuntu-1404-trusty-64-minimal sshd\[19026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.191.55.33 Apr 19 22:07:22 Ubuntu-1404-trusty-64-minimal sshd\[19026\]: Failed password for invalid user hw from 61.191.55.33 port 51160 ssh2 Apr 19 22:14:33 Ubuntu-1404-trusty-64-minimal sshd\[22336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.191.55.33 user=root Apr 19 22:14:35 Ubuntu-1404-trusty-64-minimal sshd\[22336\]: Failed password for root from 61.191.55.33 port 41268 ssh2	2020-04-20 06:17:46
125.167.56.255	attack	Automatic report - Port Scan Attack	2020-04-20 06:19:35
185.175.93.11	attack	Apr 20 00:31:23 debian-2gb-nbg1-2 kernel: \[9594448.650085\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.175.93.11 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=53340 PROTO=TCP SPT=49928 DPT=57696 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-20 06:33:48
40.73.59.55	attackbotsspam	2020-04-19T20:44:26.504365shield sshd\[16218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.59.55 user=root 2020-04-19T20:44:28.613612shield sshd\[16218\]: Failed password for root from 40.73.59.55 port 33998 ssh2 2020-04-19T20:51:03.049540shield sshd\[17884\]: Invalid user oracle from 40.73.59.55 port 41644 2020-04-19T20:51:03.052400shield sshd\[17884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.59.55 2020-04-19T20:51:04.995878shield sshd\[17884\]: Failed password for invalid user oracle from 40.73.59.55 port 41644 ssh2	2020-04-20 06:42:37
45.236.128.124	attackspam	Apr 19 23:37:57 legacy sshd[22982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.128.124 Apr 19 23:37:59 legacy sshd[22982]: Failed password for invalid user git from 45.236.128.124 port 51474 ssh2 Apr 19 23:44:06 legacy sshd[23203]: Failed password for root from 45.236.128.124 port 57388 ssh2 ...	2020-04-20 06:16:06

Recently Reported IPs

165.227.85.21	103.195.36.2	181.3.114.95	94.25.229.165
45.181.29.80	141.98.84.216	112.163.153.214	185.250.47.135
117.146.229.254	27.43.114.151	212.193.30.18	121.101.186.13
176.167.77.252	35.138.3.240	82.114.97.157	125.45.76.29
191.239.251.46	78.138.161.182	92.205.10.38	116.99.50.201