189.213.48.198

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.213.48.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45004
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;189.213.48.198.			IN	A

;; AUTHORITY SECTION:
.			276	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:22:16 CST 2022
;; MSG SIZE  rcvd: 107

Host info

198.48.213.189.in-addr.arpa domain name pointer 189-213-48-198.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
198.48.213.189.in-addr.arpa	name = 189-213-48-198.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.135.164.126	attackspam	5.135.164.126 - - [23/Jun/2020:08:54:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2136 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.135.164.126 - - [23/Jun/2020:08:54:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.135.164.126 - - [23/Jun/2020:08:54:51 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-23 18:20:38
68.183.103.44	attackspambots	TCP (SYN) 68.183.103.44:57264 -> port 8081, len 44	2020-06-23 18:44:28
81.17.16.147	attackspam	CMS (WordPress or Joomla) login attempt.	2020-06-23 18:17:52
99.185.76.161	attack	IP blocked	2020-06-23 18:52:30
114.67.80.134	attackspam	2020-06-22 UTC: (23x) - benutzer,caro,darwin,gs,hanson,kiran,kys,lko,q3server,root(5x),teamspeak3,test(2x),testa,unlock,user,vboxuser,vmail,zimbra	2020-06-23 18:24:58
218.92.0.190	attack	Jun 23 15:41:32 dhoomketu sshd[979099]: Failed password for root from 218.92.0.190 port 55817 ssh2 Jun 23 15:41:28 dhoomketu sshd[979099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.190 user=root Jun 23 15:41:30 dhoomketu sshd[979099]: Failed password for root from 218.92.0.190 port 55817 ssh2 Jun 23 15:41:32 dhoomketu sshd[979099]: Failed password for root from 218.92.0.190 port 55817 ssh2 Jun 23 15:41:36 dhoomketu sshd[979099]: Failed password for root from 218.92.0.190 port 55817 ssh2 ...	2020-06-23 18:18:22
87.251.74.18	attack	Jun 23 12:23:08 debian-2gb-nbg1-2 kernel: \[15166459.495551\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.18 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=27744 PROTO=TCP SPT=54979 DPT=3390 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-23 18:36:37
185.173.35.33	attack	27017/tcp 1026/tcp 990/tcp... [2020-04-24/06-23]80pkt,54pt.(tcp),6pt.(udp)	2020-06-23 18:46:11
195.154.42.43	attackspambots	<6 unauthorized SSH connections	2020-06-23 18:15:19
95.156.156.143	attackspam	TCP (SYN) 95.156.156.143:58564 -> port 443, len 44	2020-06-23 18:18:45
61.177.172.54	attackbots	Jun 23 12:15:40 santamaria sshd\[30526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.54 user=root Jun 23 12:15:42 santamaria sshd\[30526\]: Failed password for root from 61.177.172.54 port 32182 ssh2 Jun 23 12:16:00 santamaria sshd\[30528\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.54 user=root ...	2020-06-23 18:22:21
77.55.237.160	attackspambots	2020-06-22 UTC: (19x) - a,ananda,daniel,gramm,jessie,ldx,oracle,paolo,root(6x),teamspeak,timo,user,user001,usuario	2020-06-23 18:42:02
100.26.241.148	attack	20 attempts against mh-ssh on river	2020-06-23 18:40:40
87.229.229.14	attackspam	Jun 23 06:49:37 ip-172-31-61-156 sshd[501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.229.229.14 user=root Jun 23 06:49:39 ip-172-31-61-156 sshd[501]: Failed password for root from 87.229.229.14 port 42971 ssh2 Jun 23 06:49:37 ip-172-31-61-156 sshd[501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.229.229.14 user=root Jun 23 06:49:39 ip-172-31-61-156 sshd[501]: Failed password for root from 87.229.229.14 port 42971 ssh2 Jun 23 06:53:19 ip-172-31-61-156 sshd[689]: Invalid user amsftp from 87.229.229.14 ...	2020-06-23 18:53:38
106.75.74.225	attack	TCP (SYN) 106.75.74.225:58914 -> port 51106, len 44	2020-06-23 18:37:11

Recently Reported IPs

142.252.26.6	103.132.250.107	115.55.71.207	60.13.138.50
90.102.31.217	123.5.19.230	27.45.34.250	109.111.153.214
112.173.225.159	104.21.10.191	114.237.40.212	117.197.3.240
194.44.247.218	93.107.69.212	201.210.247.51	218.144.115.4
116.240.85.41	103.141.202.2	198.204.249.220	0.118.68.186