46.21.2.140 - IPInfo

Basic Info

City: Rehburg-Loccum

Region: Lower Saxony

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
46.21.249.190	attack	2020-10-10T05:53:50.603150mail.broermann.family sshd[14078]: Failed password for invalid user thinker from 46.21.249.190 port 57074 ssh2 2020-10-10T05:57:44.198392mail.broermann.family sshd[14421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.21.249.190 user=root 2020-10-10T05:57:46.273826mail.broermann.family sshd[14421]: Failed password for root from 46.21.249.190 port 60828 ssh2 2020-10-10T06:01:10.015142mail.broermann.family sshd[14790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.21.249.190 user=root 2020-10-10T06:01:12.236296mail.broermann.family sshd[14790]: Failed password for root from 46.21.249.190 port 36336 ssh2 ...	2020-10-11 01:44:01
46.21.209.140	attackbotsspam	Autoban 46.21.209.140 AUTH/CONNECT	2020-10-10 04:43:44
46.21.209.140	attackbotsspam	Autoban 46.21.209.140 AUTH/CONNECT	2020-10-09 20:41:41
46.21.209.140	attack	Autoban 46.21.209.140 AUTH/CONNECT	2020-10-09 12:28:42
46.21.209.53	attack	Sep 13 18:37:15 mail.srvfarm.net postfix/smtps/smtpd[1230769]: warning: ip-46-21-209-53.nette.pl[46.21.209.53]: SASL PLAIN authentication failed: Sep 13 18:37:15 mail.srvfarm.net postfix/smtps/smtpd[1230769]: lost connection after AUTH from ip-46-21-209-53.nette.pl[46.21.209.53] Sep 13 18:37:39 mail.srvfarm.net postfix/smtpd[1230212]: warning: ip-46-21-209-53.nette.pl[46.21.209.53]: SASL PLAIN authentication failed: Sep 13 18:37:39 mail.srvfarm.net postfix/smtpd[1230212]: lost connection after AUTH from ip-46-21-209-53.nette.pl[46.21.209.53] Sep 13 18:45:53 mail.srvfarm.net postfix/smtpd[1232278]: warning: ip-46-21-209-53.nette.pl[46.21.209.53]: SASL PLAIN authentication failed:	2020-09-15 03:42:23
46.21.209.53	attackspambots	Sep 13 18:37:15 mail.srvfarm.net postfix/smtps/smtpd[1230769]: warning: ip-46-21-209-53.nette.pl[46.21.209.53]: SASL PLAIN authentication failed: Sep 13 18:37:15 mail.srvfarm.net postfix/smtps/smtpd[1230769]: lost connection after AUTH from ip-46-21-209-53.nette.pl[46.21.209.53] Sep 13 18:37:39 mail.srvfarm.net postfix/smtpd[1230212]: warning: ip-46-21-209-53.nette.pl[46.21.209.53]: SASL PLAIN authentication failed: Sep 13 18:37:39 mail.srvfarm.net postfix/smtpd[1230212]: lost connection after AUTH from ip-46-21-209-53.nette.pl[46.21.209.53] Sep 13 18:45:53 mail.srvfarm.net postfix/smtpd[1232278]: warning: ip-46-21-209-53.nette.pl[46.21.209.53]: SASL PLAIN authentication failed:	2020-09-14 19:39:33
46.21.212.134	attack	failed_logins	2020-09-01 14:20:36
46.21.249.141	attackspambots	Aug 12 04:54:28 ws26vmsma01 sshd[83716]: Failed password for root from 46.21.249.141 port 39162 ssh2 Aug 12 04:54:41 ws26vmsma01 sshd[83716]: error: maximum authentication attempts exceeded for root from 46.21.249.141 port 39162 ssh2 [preauth] ...	2020-08-12 12:56:57
46.21.249.141	attackspambots	SmallBizIT.US 1 packets to tcp(22)	2020-08-10 18:24:24
46.21.249.141	attackbotsspam	ET COMPROMISED Known Compromised or Hostile Host Traffic group 26 - port: 22 proto: tcp cat: Misc Attackbytes: 60	2020-08-10 01:10:14
46.21.249.141	attackspam	Aug 9 11:22:15 lnxded64 sshd[3625]: Failed password for root from 46.21.249.141 port 37090 ssh2 Aug 9 11:22:18 lnxded64 sshd[3625]: Failed password for root from 46.21.249.141 port 37090 ssh2 Aug 9 11:22:20 lnxded64 sshd[3625]: Failed password for root from 46.21.249.141 port 37090 ssh2 Aug 9 11:22:22 lnxded64 sshd[3625]: Failed password for root from 46.21.249.141 port 37090 ssh2	2020-08-09 17:24:09
46.21.249.141	attackspam	Aug 3 22:51:15 xxxxxxx5185820 sshd[12003]: reveeclipse mapping checking getaddrinfo for nalive.ru [46.21.249.141] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 3 22:51:15 xxxxxxx5185820 sshd[12003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.21.249.141 user=r.r Aug 3 22:51:17 xxxxxxx5185820 sshd[12003]: Failed password for r.r from 46.21.249.141 port 56940 ssh2 Aug 3 22:51:19 xxxxxxx5185820 sshd[12003]: Failed password for r.r from 46.21.249.141 port 56940 ssh2 Aug 3 22:51:21 xxxxxxx5185820 sshd[12003]: Failed password for r.r from 46.21.249.141 port 56940 ssh2 Aug 3 22:51:23 xxxxxxx5185820 sshd[12003]: Failed password for r.r from 46.21.249.141 port 56940 ssh2 Aug 3 22:51:25 xxxxxxx5185820 sshd[12003]: Failed password for r.r from 46.21.249.141 port 56940 ssh2 Aug 3 22:51:27 xxxxxxx5185820 sshd[12003]: Failed password for r.r from 46.21.249.141 port 56940 ssh2 Aug 3 22:51:27 xxxxxxx5185820 sshd[12003]: error: maximum ........ -------------------------------	2020-08-09 05:18:55
46.21.249.141	attackbotsspam	Aug 8 22:16:01 plg sshd[2759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.21.249.141 user=root Aug 8 22:16:02 plg sshd[2759]: Failed password for invalid user root from 46.21.249.141 port 57164 ssh2 Aug 8 22:16:05 plg sshd[2759]: Failed password for invalid user root from 46.21.249.141 port 57164 ssh2 Aug 8 22:16:08 plg sshd[2759]: Failed password for invalid user root from 46.21.249.141 port 57164 ssh2 Aug 8 22:16:11 plg sshd[2759]: Failed password for invalid user root from 46.21.249.141 port 57164 ssh2 Aug 8 22:16:13 plg sshd[2759]: Failed password for invalid user root from 46.21.249.141 port 57164 ssh2 Aug 8 22:16:16 plg sshd[2759]: Failed password for invalid user root from 46.21.249.141 port 57164 ssh2 Aug 8 22:16:16 plg sshd[2759]: error: maximum authentication attempts exceeded for invalid user root from 46.21.249.141 port 57164 ssh2 [preauth] ...	2020-08-09 04:18:13
46.21.249.141	attackspambots	$f2bV_matches	2020-08-08 06:35:45
46.21.249.141	attack	2020-08-07T13:30:29.719535galaxy.wi.uni-potsdam.de sshd[17608]: Failed password for root from 46.21.249.141 port 48758 ssh2 2020-08-07T13:30:31.927492galaxy.wi.uni-potsdam.de sshd[17608]: Failed password for root from 46.21.249.141 port 48758 ssh2 2020-08-07T13:30:34.185887galaxy.wi.uni-potsdam.de sshd[17608]: Failed password for root from 46.21.249.141 port 48758 ssh2 2020-08-07T13:30:36.162360galaxy.wi.uni-potsdam.de sshd[17608]: Failed password for root from 46.21.249.141 port 48758 ssh2 2020-08-07T13:30:38.082997galaxy.wi.uni-potsdam.de sshd[17608]: Failed password for root from 46.21.249.141 port 48758 ssh2 2020-08-07T13:30:40.286204galaxy.wi.uni-potsdam.de sshd[17608]: Failed password for root from 46.21.249.141 port 48758 ssh2 2020-08-07T13:30:40.286394galaxy.wi.uni-potsdam.de sshd[17608]: error: maximum authentication attempts exceeded for root from 46.21.249.141 port 48758 ssh2 [preauth] 2020-08-07T13:30:40.286424galaxy.wi.uni-potsdam.de sshd[17608]: Disconnecting: Too many au ...	2020-08-07 19:40:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 46.21.2.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40235
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;46.21.2.140.			IN	A

;; AUTHORITY SECTION:
.			342	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101300 1800 900 604800 86400

;; Query time: 481 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 14 03:07:16 CST 2019
;; MSG SIZE  rcvd: 115

Host info

140.2.21.46.in-addr.arpa domain name pointer no-reverse.nexiu.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.2.21.46.in-addr.arpa	name = no-reverse.nexiu.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.98.111.219	attackbotsspam	Unauthorised access (Jul 22) SRC=181.98.111.219 LEN=40 TTL=48 ID=36813 TCP DPT=23 WINDOW=43921 SYN	2019-07-23 07:08:22
68.183.22.90	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-23 07:09:43
202.129.188.69	attack	Jul 22 22:33:11 MK-Soft-VM7 sshd\[29110\]: Invalid user kush from 202.129.188.69 port 51230 Jul 22 22:33:11 MK-Soft-VM7 sshd\[29110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.129.188.69 Jul 22 22:33:12 MK-Soft-VM7 sshd\[29110\]: Failed password for invalid user kush from 202.129.188.69 port 51230 ssh2 ...	2019-07-23 07:14:29
177.38.182.39	attack	[21/Jul/2019:07:41:42 -0400] "GET / HTTP/1.1" Chrome 51.0 UA	2019-07-23 06:51:48
122.228.19.80	attack	22.07.2019 22:27:06 Connection to port 9009 blocked by firewall	2019-07-23 06:57:45
218.92.0.179	attack	(sshd) Failed SSH login from 218.92.0.179 (-): 5 in the last 3600 secs	2019-07-23 06:43:43
81.22.45.219	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2019-07-23 07:07:21
188.166.241.93	attackbotsspam	Jul 22 14:25:48 mail sshd\[5690\]: Failed password for invalid user cba from 188.166.241.93 port 53176 ssh2 Jul 22 14:41:53 mail sshd\[6044\]: Invalid user proxyuser from 188.166.241.93 port 40020 Jul 22 14:41:53 mail sshd\[6044\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.241.93 ...	2019-07-23 06:44:29
107.150.59.98	attackbots	Unauthorized access detected from banned ip	2019-07-23 07:06:03
66.49.84.65	attackbots	Jul 23 00:48:44 s64-1 sshd[20191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.49.84.65 Jul 23 00:48:46 s64-1 sshd[20191]: Failed password for invalid user webmaster from 66.49.84.65 port 44832 ssh2 Jul 23 00:53:53 s64-1 sshd[20229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.49.84.65 ...	2019-07-23 06:55:03
177.154.239.247	attackbots	$f2bV_matches	2019-07-23 06:38:18
103.8.151.170	attack	Jul 22 09:08:41 debian sshd\[11607\]: Invalid user user1 from 103.8.151.170 port 38815 Jul 22 09:08:41 debian sshd\[11607\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.8.151.170 Jul 22 09:08:44 debian sshd\[11607\]: Failed password for invalid user user1 from 103.8.151.170 port 38815 ssh2 ...	2019-07-23 07:13:36
152.115.50.82	attackspambots	Jul 23 01:42:08 srv-4 sshd\[1857\]: Invalid user admin from 152.115.50.82 Jul 23 01:42:08 srv-4 sshd\[1857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.115.50.82 Jul 23 01:42:10 srv-4 sshd\[1857\]: Failed password for invalid user admin from 152.115.50.82 port 43358 ssh2 ...	2019-07-23 06:46:17
181.210.229.229	attackspambots	[21/Jul/2019:06:35:34 -0400] "GET / HTTP/1.1" Chrome 52.0 UA	2019-07-23 06:42:41
101.99.15.135	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 15:38:33,477 INFO [shellcode_manager] (101.99.15.135) no match, writing hexdump (f322d08c3fb5d4f3b4e61163854b6fff :2225040) - MS17010 (EternalBlue)	2019-07-23 07:19:44

Recently Reported IPs

167.128.51.14	82.68.107.48	95.173.186.10	32.241.176.152
182.138.158.233	153.91.106.96	60.76.158.46	181.94.194.150
84.166.114.250	52.221.202.84	178.216.26.179	223.211.215.66
178.208.162.101	219.116.147.200	203.214.47.255	123.210.127.98
177.4.188.99	209.186.224.41	65.54.112.47	97.218.155.133