189.213.21.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
189.213.217.91	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-16 18:42:25
189.213.214.50	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 02-01-2020 23:05:31.	2020-01-03 08:54:37
189.213.21.140	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-27 18:23:15
189.213.210.35	attackspam	Aug 28 14:40:26 aat-srv002 sshd[21667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.213.210.35 Aug 28 14:40:28 aat-srv002 sshd[21667]: Failed password for invalid user alanturing from 189.213.210.35 port 11747 ssh2 Aug 28 14:44:50 aat-srv002 sshd[21768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.213.210.35 Aug 28 14:44:53 aat-srv002 sshd[21768]: Failed password for invalid user ubuntu from 189.213.210.35 port 37813 ssh2 ...	2019-08-29 03:46:51
189.213.210.35	attackspambots	Invalid user taivi from 189.213.210.35 port 22625	2019-08-28 16:17:53
189.213.210.35	attackspambots	Aug 27 11:39:53 rpi sshd[23611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.213.210.35 Aug 27 11:39:54 rpi sshd[23611]: Failed password for invalid user huey from 189.213.210.35 port 53438 ssh2	2019-08-27 18:08:51
189.213.210.35	attack	Invalid user ca from 189.213.210.35 port 55597	2019-08-26 09:05:25
189.213.210.35	attackbots	Aug 17 16:18:08 TORMINT sshd\[2053\]: Invalid user training from 189.213.210.35 Aug 17 16:18:08 TORMINT sshd\[2053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.213.210.35 Aug 17 16:18:10 TORMINT sshd\[2053\]: Failed password for invalid user training from 189.213.210.35 port 50679 ssh2 ...	2019-08-18 04:32:26
189.213.210.35	attackspambots	May 4 13:33:40 server sshd\[83886\]: Invalid user qe from 189.213.210.35 May 4 13:33:40 server sshd\[83886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.213.210.35 May 4 13:33:42 server sshd\[83886\]: Failed password for invalid user qe from 189.213.210.35 port 60598 ssh2 ...	2019-08-01 09:12:34
189.213.210.35	attack	Automatic report - Banned IP Access	2019-07-31 09:38:59
189.213.210.35	attackbotsspam	Jul 16 21:11:53 animalibera sshd[20545]: Invalid user lzt from 189.213.210.35 port 49449 ...	2019-07-17 05:20:53
189.213.210.35	attack	Jul 16 13:08:23 animalibera sshd[559]: Invalid user lori from 189.213.210.35 port 40569 ...	2019-07-16 21:13:20
189.213.210.35	attackbotsspam	Feb 23 12:28:02 motanud sshd\[27593\]: Invalid user webuser from 189.213.210.35 port 56894 Feb 23 12:28:02 motanud sshd\[27593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.213.210.35 Feb 23 12:28:03 motanud sshd\[27593\]: Failed password for invalid user webuser from 189.213.210.35 port 56894 ssh2	2019-07-03 02:31:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.21.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.21.20.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:49:41 CST 2022
;; MSG SIZE  rcvd: 106

Host info

20.21.213.189.in-addr.arpa domain name pointer 189-213-21-20.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.21.213.189.in-addr.arpa	name = 189-213-21-20.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.171.152.136	attack	Lines containing failures of 62.171.152.136 Mar 12 14:51:37 siirappi sshd[10963]: Invalid user trung from 62.171.152.136 port 48682 Mar 12 14:51:37 siirappi sshd[10963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.171.152.136 Mar 12 14:51:39 siirappi sshd[10963]: Failed password for invalid user trung from 62.171.152.136 port 48682 ssh2 Mar 12 14:51:39 siirappi sshd[10963]: Received disconnect from 62.171.152.136 port 48682:11: Bye Bye [preauth] Mar 12 14:51:39 siirappi sshd[10963]: Disconnected from 62.171.152.136 port 48682 [preauth] Mar 12 14:57:55 siirappi sshd[11033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.171.152.136 user=r.r Mar 12 14:57:57 siirappi sshd[11033]: Failed password for r.r from 62.171.152.136 port 48428 ssh2 Mar 12 14:57:57 siirappi sshd[11033]: Received disconnect from 62.171.152.136 port 48428:11: Bye Bye [preauth] Mar 12 14:57:57 siirappi sshd[11033]........ ------------------------------	2020-03-14 02:59:39
195.58.57.62	attack	Unauthorized connection attempt from IP address 195.58.57.62 on Port 445(SMB)	2020-03-14 03:09:41
222.186.15.10	attackspam	Mar 13 19:54:06 host sshd\[28249\]: User user from 222.186.15.10 not allowed because none of user's groups are listed in AllowGroups	2020-03-14 02:58:15
188.166.5.36	attack	Mar 13 17:33:21 ns382633 sshd\[30850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.36 user=root Mar 13 17:33:23 ns382633 sshd\[30850\]: Failed password for root from 188.166.5.36 port 39338 ssh2 Mar 13 17:38:02 ns382633 sshd\[31947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.36 user=root Mar 13 17:38:04 ns382633 sshd\[31947\]: Failed password for root from 188.166.5.36 port 53784 ssh2 Mar 13 17:41:49 ns382633 sshd\[345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.36 user=root	2020-03-14 03:27:09
120.79.154.53	attackspam	HTTP/80/443/8080 Probe, BF, WP, Hack -	2020-03-14 03:16:38
140.143.73.184	attackspam	Mar 13 19:16:00 vmd17057 sshd[6613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.73.184 Mar 13 19:16:02 vmd17057 sshd[6613]: Failed password for invalid user wrchang from 140.143.73.184 port 55794 ssh2 ...	2020-03-14 03:20:11
41.146.8.11	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.146.8.11/ ZA - 1H : (8) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ZA NAME ASN : ASN5713 IP : 41.146.8.11 CIDR : 41.144.0.0/13 PREFIX COUNT : 117 UNIQUE IP COUNT : 1794304 ATTACKS DETECTED ASN5713 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2020-03-13 13:45:11 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2020-03-14 03:08:27
114.118.31.36	attackbotsspam	Automatic report - Port Scan	2020-03-14 03:26:39
117.102.66.234	attackspam	Unauthorized connection attempt from IP address 117.102.66.234 on Port 445(SMB)	2020-03-14 03:08:04
218.246.34.214	attackbotsspam	Mar 13 17:24:45 localhost sshd[94134]: Invalid user masespectaculo from 218.246.34.214 port 42168 Mar 13 17:24:45 localhost sshd[94134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.246.34.214 Mar 13 17:24:45 localhost sshd[94134]: Invalid user masespectaculo from 218.246.34.214 port 42168 Mar 13 17:24:46 localhost sshd[94134]: Failed password for invalid user masespectaculo from 218.246.34.214 port 42168 ssh2 Mar 13 17:29:37 localhost sshd[94604]: Invalid user masespectaculo from 218.246.34.214 port 39918 ...	2020-03-14 03:07:08
191.6.35.40	attackspam	Unauthorized connection attempt from IP address 191.6.35.40 on Port 445(SMB)	2020-03-14 03:00:20
140.143.242.159	attackspam	Jan 25 12:45:48 pi sshd[27468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.242.159 Jan 25 12:45:50 pi sshd[27468]: Failed password for invalid user user0 from 140.143.242.159 port 34514 ssh2	2020-03-14 03:30:01
140.206.186.10	attack	Invalid user ghost from 140.206.186.10 port 52418	2020-03-14 03:18:15
179.98.161.174	attackspambots	Port probing on unauthorized port 8080	2020-03-14 02:55:17
211.219.114.39	attackbotsspam	Mar 13 20:08:45 prox sshd[13430]: Failed password for root from 211.219.114.39 port 44040 ssh2 Mar 13 20:16:39 prox sshd[20463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.219.114.39	2020-03-14 03:29:31

Recently Reported IPs

113.227.220.22	183.221.19.111	171.241.77.2	89.239.157.107
107.150.71.59	219.155.238.218	185.180.143.168	113.180.70.77
46.176.104.206	163.204.93.125	47.241.23.205	188.253.16.108
39.48.24.51	182.19.3.254	185.146.57.250	164.90.190.59
217.117.176.162	103.251.222.155	112.80.138.60	176.120.203.230