189.213.139.168

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.213.139.132	attackbotsspam	Automatic report - Port Scan Attack	2020-10-14 01:55:30
189.213.139.132	attack	Automatic report - Port Scan Attack	2020-10-13 17:08:24
189.213.139.87	attackspambots	Telnet Server BruteForce Attack	2020-06-04 13:13:19
189.213.139.234	attackspam	Automatic report - Port Scan Attack	2020-01-14 01:02:37
189.213.139.215	attackbots	Automatic report - Port Scan Attack	2019-12-02 19:47:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.139.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59610
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.139.168.		IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 13:35:40 CST 2022
;; MSG SIZE  rcvd: 108

Host info

168.139.213.189.in-addr.arpa domain name pointer 189-213-139-168.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.139.213.189.in-addr.arpa	name = 189-213-139-168.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.45.32	attack	Jun 23 00:54:09 vps46666688 sshd[11547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.45.32 Jun 23 00:54:11 vps46666688 sshd[11547]: Failed password for invalid user dev from 106.12.45.32 port 60198 ssh2 ...	2020-06-23 15:35:22
104.248.165.195	attack	Automatic report - XMLRPC Attack	2020-06-23 15:16:36
178.17.174.198	attack	Automatic report - Port Scan	2020-06-23 15:36:09
192.144.155.63	attackspam	Jun 23 06:42:32 localhost sshd\[22009\]: Invalid user postgres from 192.144.155.63 Jun 23 06:42:32 localhost sshd\[22009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.155.63 Jun 23 06:42:34 localhost sshd\[22009\]: Failed password for invalid user postgres from 192.144.155.63 port 53358 ssh2 Jun 23 06:46:59 localhost sshd\[22267\]: Invalid user testuser from 192.144.155.63 Jun 23 06:46:59 localhost sshd\[22267\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.155.63 ...	2020-06-23 15:17:44
46.105.102.68	attackspam	46.105.102.68 - - [23/Jun/2020:05:54:23 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.105.102.68 - - [23/Jun/2020:05:54:25 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.105.102.68 - - [23/Jun/2020:05:54:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-23 15:21:33
49.65.246.73	attack	Lines containing failures of 49.65.246.73 Jun 23 08:40:19 shared04 sshd[30414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.65.246.73 user=r.r Jun 23 08:40:20 shared04 sshd[30414]: Failed password for r.r from 49.65.246.73 port 3548 ssh2 Jun 23 08:40:21 shared04 sshd[30414]: Received disconnect from 49.65.246.73 port 3548:11: Bye Bye [preauth] Jun 23 08:40:21 shared04 sshd[30414]: Disconnected from authenticating user r.r 49.65.246.73 port 3548 [preauth] Jun 23 08:41:57 shared04 sshd[31414]: Invalid user liuhaoran from 49.65.246.73 port 4082 Jun 23 08:41:57 shared04 sshd[31414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.65.246.73 Jun 23 08:41:59 shared04 sshd[31414]: Failed password for invalid user liuhaoran from 49.65.246.73 port 4082 ssh2 Jun 23 08:42:00 shared04 sshd[31414]: Received disconnect from 49.65.246.73 port 4082:11: Bye Bye [preauth] Jun 23 08:42:00 shared04 ssh........ ------------------------------	2020-06-23 15:35:01
51.178.47.194	attackspambots	Jun 23 06:47:38 *** sshd[13134]: Invalid user tapas from 51.178.47.194	2020-06-23 15:38:35
45.177.68.245	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-23T03:31:41Z and 2020-06-23T03:54:25Z	2020-06-23 15:22:15
184.105.139.67	attack	UDP 184.105.139.67:23394 -> port 161, len 113	2020-06-23 15:22:56
112.171.26.46	attackspam	Jun 22 22:48:38 dignus sshd[25838]: Failed password for invalid user manager1 from 112.171.26.46 port 60842 ssh2 Jun 22 22:52:29 dignus sshd[26247]: Invalid user pc from 112.171.26.46 port 63618 Jun 22 22:52:29 dignus sshd[26247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.171.26.46 Jun 22 22:52:31 dignus sshd[26247]: Failed password for invalid user pc from 112.171.26.46 port 63618 ssh2 Jun 22 22:56:20 dignus sshd[26647]: Invalid user data from 112.171.26.46 port 11088 ...	2020-06-23 15:18:08
84.241.12.180	attackspam	Jun 23 05:20:28 django-0 sshd[21676]: Invalid user virl from 84.241.12.180 ...	2020-06-23 15:38:11
129.204.23.5	attackspam	2020-06-23T08:07:07.786883vps751288.ovh.net sshd\[29848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.23.5 user=root 2020-06-23T08:07:09.795683vps751288.ovh.net sshd\[29848\]: Failed password for root from 129.204.23.5 port 58662 ssh2 2020-06-23T08:09:48.691041vps751288.ovh.net sshd\[29896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.23.5 user=root 2020-06-23T08:09:50.470159vps751288.ovh.net sshd\[29896\]: Failed password for root from 129.204.23.5 port 55352 ssh2 2020-06-23T08:11:26.003851vps751288.ovh.net sshd\[29930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.23.5 user=root	2020-06-23 15:11:49
185.38.3.138	attackbots	<6 unauthorized SSH connections	2020-06-23 15:45:00
45.4.5.221	attackbots	$f2bV_matches	2020-06-23 15:11:33
192.241.221.177	attackbotsspam	Unauthorized connection attempt detected from IP address 192.241.221.177 to port 5454 [T]	2020-06-23 15:14:56

Recently Reported IPs

178.72.76.165	180.244.36.57	188.0.255.196	193.233.138.73
219.138.227.208	103.233.122.223	189.162.84.32	125.43.38.45
201.156.216.29	82.151.125.194	167.71.188.238	162.142.125.140
182.74.48.82	188.148.143.231	23.108.42.130	121.177.253.210
36.73.242.134	119.18.158.137	43.243.164.67	166.88.248.159