189.213.139.253

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.213.139.132	attackbotsspam	Automatic report - Port Scan Attack	2020-10-14 01:55:30
189.213.139.132	attack	Automatic report - Port Scan Attack	2020-10-13 17:08:24
189.213.139.87	attackspambots	Telnet Server BruteForce Attack	2020-06-04 13:13:19
189.213.139.234	attackspam	Automatic report - Port Scan Attack	2020-01-14 01:02:37
189.213.139.215	attackbots	Automatic report - Port Scan Attack	2019-12-02 19:47:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.139.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56020
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.139.253.		IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 15:38:01 CST 2022
;; MSG SIZE  rcvd: 108

Host info

253.139.213.189.in-addr.arpa domain name pointer 189-213-139-253.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
253.139.213.189.in-addr.arpa	name = 189-213-139-253.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.254.165.68	attackbotsspam	Port Scan: TCP/22	2019-09-20 05:19:37
219.135.194.77	attackbotsspam	Trying to log into mailserver (postfix/smtp) using multiple names and passwords	2019-09-20 05:30:05
118.24.149.248	attackbots	$f2bV_matches	2019-09-20 05:37:15
157.230.144.158	attackspambots	Sep 20 02:47:38 areeb-Workstation sshd[28813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.144.158 Sep 20 02:47:39 areeb-Workstation sshd[28813]: Failed password for invalid user ubnt from 157.230.144.158 port 57198 ssh2 ...	2019-09-20 05:35:37
58.214.9.102	attackbots	Sep 19 09:56:58 web1 sshd\[10309\]: Invalid user deploy from 58.214.9.102 Sep 19 09:56:58 web1 sshd\[10309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.9.102 Sep 19 09:57:00 web1 sshd\[10309\]: Failed password for invalid user deploy from 58.214.9.102 port 54778 ssh2 Sep 19 10:00:21 web1 sshd\[10639\]: Invalid user bb2 from 58.214.9.102 Sep 19 10:00:21 web1 sshd\[10639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.214.9.102	2019-09-20 05:26:37
198.98.60.40	attack	Sep 19 21:33:54 cvbmail sshd\[4016\]: Invalid user a from 198.98.60.40 Sep 19 21:33:54 cvbmail sshd\[4016\]: Failed none for invalid user a from 198.98.60.40 port 33592 ssh2 Sep 19 21:33:57 cvbmail sshd\[4022\]: Invalid user a1 from 198.98.60.40 Sep 19 21:33:57 cvbmail sshd\[4022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.98.60.40	2019-09-20 05:02:23
36.85.240.20	attackspambots	Unauthorized connection attempt from IP address 36.85.240.20 on Port 445(SMB)	2019-09-20 05:41:57
136.55.86.110	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 20:33:19.	2019-09-20 05:22:52
103.54.85.22	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 20:33:18.	2019-09-20 05:26:05
134.209.64.10	attackbotsspam	Sep 19 10:52:04 sachi sshd\[4847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.64.10 user=daemon Sep 19 10:52:06 sachi sshd\[4847\]: Failed password for daemon from 134.209.64.10 port 60610 ssh2 Sep 19 10:56:15 sachi sshd\[5230\]: Invalid user pg from 134.209.64.10 Sep 19 10:56:15 sachi sshd\[5230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.64.10 Sep 19 10:56:16 sachi sshd\[5230\]: Failed password for invalid user pg from 134.209.64.10 port 46830 ssh2	2019-09-20 05:12:09
5.16.120.42	attack	Unauthorized connection attempt from IP address 5.16.120.42 on Port 445(SMB)	2019-09-20 05:29:14
190.252.253.108	attackspam	Sep 19 21:03:11 hcbbdb sshd\[13542\]: Invalid user mscuser from 190.252.253.108 Sep 19 21:03:11 hcbbdb sshd\[13542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.252.253.108 Sep 19 21:03:13 hcbbdb sshd\[13542\]: Failed password for invalid user mscuser from 190.252.253.108 port 34644 ssh2 Sep 19 21:11:23 hcbbdb sshd\[14449\]: Invalid user oracle from 190.252.253.108 Sep 19 21:11:23 hcbbdb sshd\[14449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.252.253.108	2019-09-20 05:35:03
41.39.149.5	attack	Unauthorized connection attempt from IP address 41.39.149.5 on Port 445(SMB)	2019-09-20 05:41:14
77.247.110.197	attackspam	\[2019-09-19 17:26:19\] NOTICE\[2270\] chan_sip.c: Registration from '\' failed for '77.247.110.197:59430' - Wrong password \[2019-09-19 17:26:19\] SECURITY\[2283\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-19T17:26:19.055-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="31000050",SessionID="0x7fcd8c534828",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.197/59430",Challenge="180875c0",ReceivedChallenge="180875c0",ReceivedHash="788aa22dfc5137ff3df3485b4e252480" \[2019-09-19 17:26:35\] NOTICE\[2270\] chan_sip.c: Registration from '\' failed for '77.247.110.197:63828' - Wrong password \[2019-09-19 17:26:35\] SECURITY\[2283\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-19T17:26:35.788-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="31000053",SessionID="0x7fcd8c1c4788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247	2019-09-20 05:36:27
103.10.208.164	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-09-2019 20:33:18.	2019-09-20 05:27:39

Recently Reported IPs

77.83.165.252	180.110.79.87	69.79.11.166	223.189.59.12
171.101.69.187	185.179.175.165	121.29.178.242	118.172.193.234
41.79.191.180	186.216.68.240	119.23.229.24	65.21.217.81
185.152.46.212	89.191.228.134	34.91.30.111	198.148.90.34
157.100.174.246	82.156.183.197	158.140.188.162	39.122.44.9