201.139.204.213

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
201.139.204.150	attackspam	attempted connection to port 445	2020-03-05 02:47:41
201.139.204.150	attackbots	SMB Server BruteForce Attack	2020-02-17 10:05:49
201.139.204.150	attackbots	Unauthorised access (Jan 5) SRC=201.139.204.150 LEN=40 TTL=243 ID=13696 TCP DPT=445 WINDOW=1024 SYN	2020-01-06 07:48:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.139.204.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30393
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;201.139.204.213.		IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 16:28:03 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 213.204.139.201.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.204.139.201.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.98.9.5	attackspambots	Sep 6 00:50:25 webserver postfix/smtpd\[4451\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 00:51:57 webserver postfix/smtpd\[3538\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 00:54:56 webserver postfix/smtpd\[4684\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 00:56:32 webserver postfix/smtpd\[4451\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 00:59:20 webserver postfix/smtpd\[3538\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-06 07:05:58
42.112.56.55	attackspam	Sep 6 00:44:19 lnxded64 sshd[13581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.112.56.55	2019-09-06 07:09:36
200.77.186.206	attack	2019-09-05 14:07:25 H=(litosat.it) [200.77.186.206]:44594 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-05 14:07:27 H=(litosat.it) [200.77.186.206]:44594 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-09-05 14:07:28 H=(litosat.it) [200.77.186.206]:44594 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-09-06 06:35:09
193.194.89.146	attackspam	Automatic report - Banned IP Access	2019-09-06 07:02:57
51.38.179.179	attackspam	Sep 5 21:03:29 dev0-dcde-rnet sshd[22278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.179.179 Sep 5 21:03:32 dev0-dcde-rnet sshd[22278]: Failed password for invalid user 123456 from 51.38.179.179 port 59618 ssh2 Sep 5 21:07:32 dev0-dcde-rnet sshd[22310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.179.179	2019-09-06 06:33:51
172.96.95.37	attackspam	Looking for resource vulnerabilities	2019-09-06 06:41:40
3.90.9.169	attack	Sep 5 12:27:39 hanapaa sshd\[21855\]: Invalid user www from 3.90.9.169 Sep 5 12:27:39 hanapaa sshd\[21855\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-90-9-169.compute-1.amazonaws.com Sep 5 12:27:41 hanapaa sshd\[21855\]: Failed password for invalid user www from 3.90.9.169 port 55794 ssh2 Sep 5 12:32:02 hanapaa sshd\[22363\]: Invalid user nagios from 3.90.9.169 Sep 5 12:32:02 hanapaa sshd\[22363\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-90-9-169.compute-1.amazonaws.com	2019-09-06 06:34:54
218.98.26.162	attackbotsspam	2019-09-05T21:40:45.303610Z e3617fd9e692 New connection: 218.98.26.162:46802 (172.17.0.6:2222) [session: e3617fd9e692] 2019-09-05T22:35:53.764471Z 06a33d63544d New connection: 218.98.26.162:15417 (172.17.0.6:2222) [session: 06a33d63544d]	2019-09-06 06:36:57
180.126.78.55	attackspam	Fail2Ban - FTP Abuse Attempt	2019-09-06 07:04:07
187.112.122.90	attackspam	Lines containing failures of 187.112.122.90 Sep 5 18:12:20 install sshd[14004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.112.122.90 user=www-data Sep 5 18:12:22 install sshd[14004]: Failed password for www-data from 187.112.122.90 port 40446 ssh2 Sep 5 18:12:22 install sshd[14004]: Received disconnect from 187.112.122.90 port 40446:11: Bye Bye [preauth] Sep 5 18:12:22 install sshd[14004]: Disconnected from authenticating user www-data 187.112.122.90 port 40446 [preauth] Sep 5 18:17:36 install sshd[14980]: Invalid user ubuntu from 187.112.122.90 port 26143 Sep 5 18:17:36 install sshd[14980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.112.122.90 Sep 5 18:17:38 install sshd[14980]: Failed password for invalid user ubuntu from 187.112.122.90 port 26143 ssh2 Sep 5 18:17:38 install sshd[14980]: Received disconnect from 187.112.122.90 port 26143:11: Bye Bye [preauth] Sep........ ------------------------------	2019-09-06 06:37:26
132.232.19.182	attackspam	Sep 5 22:37:37 server sshd\[28720\]: Invalid user plex from 132.232.19.182 port 53964 Sep 5 22:37:37 server sshd\[28720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.19.182 Sep 5 22:37:39 server sshd\[28720\]: Failed password for invalid user plex from 132.232.19.182 port 53964 ssh2 Sep 5 22:42:17 server sshd\[3929\]: Invalid user user from 132.232.19.182 port 42132 Sep 5 22:42:17 server sshd\[3929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.19.182	2019-09-06 07:01:49
106.12.28.10	attack	Sep 5 11:10:48 eddieflores sshd\[22955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.10 user=root Sep 5 11:10:49 eddieflores sshd\[22955\]: Failed password for root from 106.12.28.10 port 52240 ssh2 Sep 5 11:15:50 eddieflores sshd\[23373\]: Invalid user admins from 106.12.28.10 Sep 5 11:15:50 eddieflores sshd\[23373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.10 Sep 5 11:15:52 eddieflores sshd\[23373\]: Failed password for invalid user admins from 106.12.28.10 port 38808 ssh2	2019-09-06 06:50:36
89.223.27.66	attackbots	Sep 5 12:00:00 web1 sshd\[23597\]: Invalid user tomas from 89.223.27.66 Sep 5 12:00:00 web1 sshd\[23597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.223.27.66 Sep 5 12:00:02 web1 sshd\[23597\]: Failed password for invalid user tomas from 89.223.27.66 port 38766 ssh2 Sep 5 12:04:10 web1 sshd\[23972\]: Invalid user myftp from 89.223.27.66 Sep 5 12:04:10 web1 sshd\[23972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.223.27.66	2019-09-06 06:29:32
185.7.78.31	attackbotsspam	DATE:2019-09-05 21:06:43, IP:185.7.78.31, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-09-06 07:02:29
61.172.238.14	attack	Sep 5 12:46:51 web9 sshd\[32054\]: Invalid user sinus from 61.172.238.14 Sep 5 12:46:51 web9 sshd\[32054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.172.238.14 Sep 5 12:46:53 web9 sshd\[32054\]: Failed password for invalid user sinus from 61.172.238.14 port 49128 ssh2 Sep 5 12:50:14 web9 sshd\[32731\]: Invalid user password from 61.172.238.14 Sep 5 12:50:14 web9 sshd\[32731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.172.238.14	2019-09-06 06:55:59

Recently Reported IPs

201.111.8.181	201.139.204.218	201.148.23.225	201.151.193.234
201.182.180.39	201.184.145.58	201.190.210.73	201.216.26.248
201.238.242.38	201.249.57.5	201.249.87.201	201.249.189.139
201.28.93.30	201.62.79.110	202.133.2.214	202.136.89.227
202.10.63.254	202.163.127.244	202.165.47.45	202.166.59.220