189.213.14.114

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.213.149.54	attack	Automatic report - Port Scan Attack	2020-09-04 00:58:17
189.213.149.54	attackspam	Automatic report - Port Scan Attack	2020-09-03 16:22:38
189.213.149.54	attack	Automatic report - Port Scan Attack	2020-09-03 08:31:09
189.213.148.165	attackbotsspam	[MK-Root1] Blocked by UFW	2020-08-24 02:45:14
189.213.144.47	attackbots	Automatic report - Port Scan Attack	2020-08-19 21:00:54
189.213.142.130	attackspambots	Automatic report - Port Scan Attack	2020-07-02 08:53:27
189.213.148.218	attackspam	Automatic report - Port Scan Attack	2020-07-01 17:12:45
189.213.143.195	attackbotsspam	Automatic report - Port Scan Attack	2020-06-30 12:53:03
189.213.147.178	attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-06-06 08:19:44
189.213.147.178	attack	firewall-block, port(s): 1433/tcp	2020-05-01 02:17:42
189.213.147.178	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-04-11 16:13:41
189.213.147.178	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-19 02:27:52
189.213.148.199	attack	Unauthorized connection attempt detected from IP address 189.213.148.199 to port 23 [J]	2020-02-04 05:37:12
189.213.143.78	attack	Unauthorized connection attempt detected from IP address 189.213.143.78 to port 23 [J]	2020-01-22 23:47:18
189.213.149.89	attackspam	unauthorized connection attempt	2020-01-12 16:17:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.14.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51103
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.14.114.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 15:19:34 CST 2022
;; MSG SIZE  rcvd: 107

Host info

114.14.213.189.in-addr.arpa domain name pointer 189-213-14-114.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
114.14.213.189.in-addr.arpa	name = 189-213-14-114.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.25.160	attackspam	Triggered by Fail2Ban at Ares web server	2019-08-20 16:17:57
183.249.241.212	attackbotsspam	Aug 19 21:34:39 sachi sshd\[2038\]: Invalid user dulap from 183.249.241.212 Aug 19 21:34:39 sachi sshd\[2038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.249.241.212 Aug 19 21:34:41 sachi sshd\[2038\]: Failed password for invalid user dulap from 183.249.241.212 port 47718 ssh2 Aug 19 21:42:45 sachi sshd\[2955\]: Invalid user test10 from 183.249.241.212 Aug 19 21:42:45 sachi sshd\[2955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.249.241.212	2019-08-20 16:05:53
201.22.95.52	attack	Aug 19 21:53:06 hcbb sshd\[5247\]: Invalid user sudo from 201.22.95.52 Aug 19 21:53:06 hcbb sshd\[5247\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.95.52.static.gvt.net.br Aug 19 21:53:08 hcbb sshd\[5247\]: Failed password for invalid user sudo from 201.22.95.52 port 45497 ssh2 Aug 19 21:59:04 hcbb sshd\[5798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.95.52.static.gvt.net.br user=root Aug 19 21:59:06 hcbb sshd\[5798\]: Failed password for root from 201.22.95.52 port 38948 ssh2	2019-08-20 16:16:10
212.79.108.63	attackspam	23/tcp [2019-08-20]1pkt	2019-08-20 15:47:52
138.94.211.164	attack	$f2bV_matches	2019-08-20 16:08:32
174.138.20.132	attack	SSH/22 MH Probe, BF, Hack -	2019-08-20 16:12:37
43.227.67.11	attack	Aug 19 22:06:31 eddieflores sshd\[19387\]: Invalid user ab from 43.227.67.11 Aug 19 22:06:31 eddieflores sshd\[19387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.67.11 Aug 19 22:06:33 eddieflores sshd\[19387\]: Failed password for invalid user ab from 43.227.67.11 port 37274 ssh2 Aug 19 22:12:35 eddieflores sshd\[19954\]: Invalid user ts3 from 43.227.67.11 Aug 19 22:12:35 eddieflores sshd\[19954\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.227.67.11	2019-08-20 16:25:22
113.220.231.32	attackspam	22/tcp [2019-08-20]1pkt	2019-08-20 16:08:08
103.224.240.111	attack	Invalid user g from 103.224.240.111 port 44716	2019-08-20 16:15:20
60.250.63.154	attack	445/tcp 445/tcp [2019-08-20]2pkt	2019-08-20 15:56:17
143.107.232.252	attackbotsspam	2019-08-20T07:39:14.852167abusebot-4.cloudsearch.cf sshd\[20967\]: Invalid user glen from 143.107.232.252 port 45462	2019-08-20 16:05:25
119.29.247.225	attack	Aug 20 06:08:26 lnxmail61 sshd[19082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.247.225	2019-08-20 15:55:20
77.247.110.92	attackspambots	SIPVicious Scanner Detection, PTR: PTR record not found	2019-08-20 15:54:12
139.60.161.89	attackbots	19/8/20@00:08:30: FAIL: Alarm-Intrusion address from=139.60.161.89 ...	2019-08-20 15:48:28
195.154.60.99	attackbots	\[Tue Aug 20 06:07:43.442323 2019\] \[authz_core:error\] \[pid 44122:tid 139842840700672\] \[client 195.154.60.99:59300\] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/xmlrpc.php, referer: https://www.sololinux.es/ \[Tue Aug 20 06:07:43.481142 2019\] \[authz_core:error\] \[pid 44352:tid 139842832307968\] \[client 195.154.60.99:59302\] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/xmlrpc.php, referer: https://www.sololinux.es/ \[Tue Aug 20 06:07:43.528845 2019\] \[authz_core:error\] \[pid 44352:tid 139842591586048\] \[client 195.154.60.99:59304\] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/xmlrpc.php, referer: https://www.sololinux.es/ \[Tue Aug 20 06:07:43.555732 2019\] \[authz_core:error\] \[pid 44352:tid 139842667120384\] \[client 195.154.60.99:59306\] AH01630: client denied by server configuration: /var/www/vhosts/sololinux.es/httpdocs/xmlrpc.php, referer: https://www.sololinux.es/ ...	2019-08-20 16:31:51

Recently Reported IPs

200.12.37.156	41.94.28.60	175.107.7.38	67.219.250.112
103.110.22.115	177.8.131.217	128.90.5.180	177.91.203.12
115.50.16.86	162.158.253.9	31.206.38.49	187.162.243.193
186.226.7.39	187.104.66.31	112.20.104.229	183.215.90.51
46.159.175.191	36.65.37.247	36.234.165.232	114.177.215.231