189.213.42.64 - IPInfo

Basic Info

City: Mexico City

Region: Mexico City

Country: Mexico

Internet Service Provider: Axtel S.A.B. de C.V.

Hostname: unknown

Organization: Axtel, S.A.B. de C.V.

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-08-12 03:48:57

Comments on same subnet:

IP	Type	Details	Datetime
189.213.42.170	attackbotsspam	Automatic report - Port Scan Attack	2020-06-07 12:15:37
189.213.42.182	attackspambots	unauthorized connection attempt	2020-02-07 17:49:43
189.213.42.182	attackspam	Unauthorized connection attempt detected from IP address 189.213.42.182 to port 23 [J]	2020-01-05 02:36:02
189.213.42.53	attackspam	Unauthorized connection attempt detected from IP address 189.213.42.53 to port 23	2019-12-29 18:45:55
189.213.42.184	attackbots	Automatic report - Port Scan Attack	2019-11-05 19:51:19
189.213.42.104	attackbotsspam	Automatic report - Port Scan	2019-10-11 04:35:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.42.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7735
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.213.42.64.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 12 03:48:52 CST 2019
;; MSG SIZE  rcvd: 117

Host info

64.42.213.189.in-addr.arpa domain name pointer 189-213-42-64.static.axtel.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
64.42.213.189.in-addr.arpa	name = 189-213-42-64.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.235.19.122	attackbots	2020-05-25T20:16:48.150913centos sshd[23238]: Failed password for invalid user odoo from 201.235.19.122 port 52562 ssh2 2020-05-25T20:18:21.315179centos sshd[23377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.235.19.122 user=root 2020-05-25T20:18:23.556368centos sshd[23377]: Failed password for root from 201.235.19.122 port 33330 ssh2 ...	2020-05-26 03:43:45
49.72.111.139	attackspambots	Invalid user guest from 49.72.111.139 port 49392	2020-05-26 03:33:02
134.175.121.80	attackbotsspam	$f2bV_matches	2020-05-26 04:01:16
49.235.240.21	attack	...	2020-05-26 03:31:42
27.71.227.198	attackbotsspam	May 25 18:12:49 pornomens sshd\[6628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.227.198 user=root May 25 18:12:51 pornomens sshd\[6628\]: Failed password for root from 27.71.227.198 port 45966 ssh2 May 25 18:17:16 pornomens sshd\[6685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.227.198 user=root ...	2020-05-26 03:38:04
80.211.22.40	attackspam	May 25 07:22:27 pixelmemory sshd[509763]: Failed password for invalid user solana from 80.211.22.40 port 56906 ssh2 May 25 07:26:25 pixelmemory sshd[513813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.22.40 user=root May 25 07:26:27 pixelmemory sshd[513813]: Failed password for root from 80.211.22.40 port 48740 ssh2 May 25 07:30:11 pixelmemory sshd[517379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.22.40 user=root May 25 07:30:13 pixelmemory sshd[517379]: Failed password for root from 80.211.22.40 port 40568 ssh2 ...	2020-05-26 03:28:21
180.76.172.227	attackspambots	TCP (SYN) 180.76.172.227:54452 -> port 11473, len 44	2020-05-26 03:51:36
14.29.148.201	attack	Invalid user assaad from 14.29.148.201 port 49294	2020-05-26 03:38:17
51.38.191.126	attackbotsspam	SSH bruteforce	2020-05-26 03:31:30
189.240.225.205	attackspambots	May 26 03:01:58 NG-HHDC-SVS-001 sshd[1801]: Invalid user tour from 189.240.225.205 ...	2020-05-26 03:45:25
188.217.48.144	attackbots	Invalid user imapuser from 188.217.48.144 port 52730	2020-05-26 03:46:27
180.250.55.195	attackbots	Invalid user emily from 180.250.55.195 port 36336	2020-05-26 03:51:23
27.128.201.88	attackbotsspam	$f2bV_matches	2020-05-26 03:37:48
200.133.39.71	attackbots	May 25 21:06:36 vps687878 sshd\[2671\]: Failed password for invalid user marek from 200.133.39.71 port 58872 ssh2 May 25 21:10:41 vps687878 sshd\[3281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.71 user=root May 25 21:10:42 vps687878 sshd\[3281\]: Failed password for root from 200.133.39.71 port 37716 ssh2 May 25 21:14:47 vps687878 sshd\[3617\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.39.71 user=root May 25 21:14:48 vps687878 sshd\[3617\]: Failed password for root from 200.133.39.71 port 44786 ssh2 ...	2020-05-26 03:44:18
82.64.153.14	attackspambots	May 25 19:26:11 MainVPS sshd[8885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 user=root May 25 19:26:13 MainVPS sshd[8885]: Failed password for root from 82.64.153.14 port 46102 ssh2 May 25 19:29:41 MainVPS sshd[11555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 user=root May 25 19:29:42 MainVPS sshd[11555]: Failed password for root from 82.64.153.14 port 52476 ssh2 May 25 19:33:03 MainVPS sshd[13971]: Invalid user poll from 82.64.153.14 port 58838 ...	2020-05-26 03:27:26

Recently Reported IPs

87.174.174.210	76.147.152.197	27.190.44.71	216.154.207.205
12.196.94.70	71.68.221.132	27.102.207.69	111.108.210.101
191.193.33.125	113.10.138.57	116.7.193.57	219.191.50.68
113.56.42.197	67.71.223.62	45.234.47.33	68.198.120.169
169.227.235.5	91.220.63.94	62.80.167.71	96.111.129.188