189.213.138.245

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.213.138.7	attack	Automatic report - Port Scan Attack	2020-04-22 06:39:58
189.213.138.224	attack	Port Scan detected from 189.213.138.224 (MX/Mexico/-). 4 hits in the last 60 seconds	2019-11-21 18:43:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.138.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.138.245.		IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 16:19:53 CST 2022
;; MSG SIZE  rcvd: 108

Host info

245.138.213.189.in-addr.arpa domain name pointer 189-213-138-245.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.138.213.189.in-addr.arpa	name = 189-213-138-245.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.249.204	attackspam	2020-09-05T17:12:07.000329mail.broermann.family sshd[14352]: Invalid user oracle from 134.209.249.204 port 49104 2020-09-05T17:12:09.416657mail.broermann.family sshd[14352]: Failed password for invalid user oracle from 134.209.249.204 port 49104 ssh2 2020-09-05T17:12:24.892407mail.broermann.family sshd[14356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.249.204 user=root 2020-09-05T17:12:27.303615mail.broermann.family sshd[14356]: Failed password for root from 134.209.249.204 port 41634 ssh2 2020-09-05T17:12:41.715412mail.broermann.family sshd[14360]: Invalid user postgres from 134.209.249.204 port 34160 ...	2020-09-06 00:03:44
49.234.182.99	attackbots	Sep 5 14:20:17 sxvn sshd[127998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.182.99	2020-09-06 00:13:37
201.149.55.53	attack	Sep 5 19:14:17 hosting sshd[5326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=root Sep 5 19:14:18 hosting sshd[5326]: Failed password for root from 201.149.55.53 port 46916 ssh2 Sep 5 19:16:37 hosting sshd[5645]: Invalid user useradmin from 201.149.55.53 port 45550 Sep 5 19:16:37 hosting sshd[5645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 Sep 5 19:16:37 hosting sshd[5645]: Invalid user useradmin from 201.149.55.53 port 45550 Sep 5 19:16:40 hosting sshd[5645]: Failed password for invalid user useradmin from 201.149.55.53 port 45550 ssh2 ...	2020-09-06 00:24:07
45.154.168.201	attackbots	2020-09-05 11:36:43.744261-0500 localhost sshd[41861]: Failed password for root from 45.154.168.201 port 33766 ssh2	2020-09-06 00:42:19
90.84.224.152	attackspam	Honeypot attack, port: 81, PTR: 90-84-224-152.orangero.net.	2020-09-06 00:15:55
45.82.136.236	attackspam	Sep 1 14:56:06 euve59663 sshd[15993]: Did not receive identification s= tring from 45.82.136.236 Sep 1 14:56:09 euve59663 sshd[15994]: Invalid user ansible from 45.82.= 136.236 Sep 1 14:56:09 euve59663 sshd[15994]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D45.= 82.136.236=20 Sep 1 14:56:11 euve59663 sshd[15994]: Failed password for invalid user= ansible from 45.82.136.236 port 48408 ssh2 Sep 1 14:56:11 euve59663 sshd[15994]: Received disconnect from 45.82.1= 36.236: 11: Normal Shutdown, Thank you for playing [preauth] Sep 1 14:56:17 euve59663 sshd[15996]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D45.= 82.136.236 user=3Dr.r Sep 1 14:56:19 euve59663 sshd[15996]: Failed password for r.r from 45= .82.136.236 port 53924 ssh2 Sep 1 14:56:19 euve59663 sshd[15996]: Received disconnect from 45.82.1= 36.236: 11: Normal Shutdown, Thank you for playing [........ -------------------------------	2020-09-06 00:36:49
103.146.63.44	attack	Invalid user mininet from 103.146.63.44 port 54080	2020-09-06 00:22:26
80.82.68.201	attackbots	B: WP plugin attack	2020-09-06 00:32:51
133.130.109.118	attack	Sep 4 17:48:34 gospond sshd[30125]: Invalid user test from 133.130.109.118 port 50632 Sep 4 17:48:36 gospond sshd[30125]: Failed password for invalid user test from 133.130.109.118 port 50632 ssh2 Sep 4 17:48:54 gospond sshd[30133]: Invalid user system1 from 133.130.109.118 port 54064 ...	2020-09-06 00:39:45
179.125.179.197	attack	Automatic report - Port Scan Attack	2020-09-06 00:08:17
218.92.0.212	attackbotsspam	Sep 5 17:50:31 marvibiene sshd[13278]: Failed password for root from 218.92.0.212 port 50023 ssh2 Sep 5 17:50:37 marvibiene sshd[13278]: Failed password for root from 218.92.0.212 port 50023 ssh2	2020-09-05 23:55:17
190.104.61.251	attack	Sep 4 18:49:14 mellenthin postfix/smtpd[32575]: NOQUEUE: reject: RCPT from 251-red61.s10.coopenet.com.ar[190.104.61.251]: 554 5.7.1 Service unavailable; Client host [190.104.61.251] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/190.104.61.251; from= to= proto=ESMTP helo=<251-red61.s10.coopenet.com.ar>	2020-09-06 00:18:52
119.96.124.131	attackspambots	Automatic report - Banned IP Access	2020-09-06 00:16:26
1.227.100.17	attackbots	web-1 [ssh] SSH Attack	2020-09-05 23:58:44
151.80.149.75	attackspambots	Invalid user plex from 151.80.149.75 port 41810	2020-09-06 00:38:32

Recently Reported IPs

180.242.194.48	36.90.49.111	178.130.160.212	120.243.121.59
43.154.127.185	69.159.233.253	96.59.11.140	36.94.237.165
170.244.208.94	212.47.142.18	217.116.153.237	14.162.159.153
156.217.89.8	80.234.105.221	107.208.218.199	193.163.125.125
23.224.186.52	113.189.192.184	164.92.224.35	217.24.155.226