154.73.2.13 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Africa

Internet Service Provider: Telemedia (Pty) Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 21 16:36:12 host sshd\[27892\]: Invalid user xerxes from 154.73.2.13 Aug 21 16:36:12 host sshd\[27892\]: Failed password for invalid user xerxes from 154.73.2.13 port 34128 ssh2 Aug 21 16:40:45 host sshd\[28989\]: Failed password for root from 154.73.2.13 port 43518 ssh2 ...	2020-08-22 05:18:02

Type

Details

Datetime

attack

Aug 21 16:36:12 host sshd\[27892\]: Invalid user xerxes from 154.73.2.13
Aug 21 16:36:12 host sshd\[27892\]: Failed password for invalid user xerxes from 154.73.2.13 port 34128 ssh2
Aug 21 16:40:45 host sshd\[28989\]: Failed password for root from 154.73.2.13 port 43518 ssh2
...

2020-08-22 05:18:02

Comments on same subnet:

IP	Type	Details	Datetime
154.73.214.110	attack	TCP (SYN) 154.73.214.110:33216 -> port 23, len 44	2020-10-06 06:58:35
154.73.214.110	attackbotsspam	TCP (SYN) 154.73.214.110:33216 -> port 23, len 44	2020-10-05 23:10:47
154.73.214.110	attackspambots	Automatic report - Port Scan Attack	2020-10-05 15:09:14
154.73.203.180	attackspam	Email rejected due to spam filtering	2020-08-01 21:44:51
154.73.24.26	attackbotsspam	Jan 22 05:56:24 haigwepa sshd[29970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.24.26 Jan 22 05:56:25 haigwepa sshd[29970]: Failed password for invalid user dircreate from 154.73.24.26 port 54011 ssh2 ...	2020-01-22 13:38:58
154.73.203.132	attackspambots	Brute force SMTP login attempts.	2020-01-03 15:35:23
154.73.203.189	attackspambots	email spam	2019-12-19 19:31:20
154.73.22.107	attackspambots	Oct 6 06:24:23 venus sshd\[21996\]: Invalid user Admin3@1 from 154.73.22.107 port 38958 Oct 6 06:24:23 venus sshd\[21996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Oct 6 06:24:25 venus sshd\[21996\]: Failed password for invalid user Admin3@1 from 154.73.22.107 port 38958 ssh2 ...	2019-10-06 14:43:14
154.73.22.107	attackspambots	Oct 4 02:23:27 sachi sshd\[22037\]: Invalid user Vivi@123 from 154.73.22.107 Oct 4 02:23:27 sachi sshd\[22037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Oct 4 02:23:30 sachi sshd\[22037\]: Failed password for invalid user Vivi@123 from 154.73.22.107 port 53829 ssh2 Oct 4 02:29:27 sachi sshd\[22536\]: Invalid user ZaQ1XsW2CdE3 from 154.73.22.107 Oct 4 02:29:27 sachi sshd\[22536\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107	2019-10-04 20:46:10
154.73.22.107	attack	Sep 26 18:06:46 web9 sshd\[10734\]: Invalid user swk from 154.73.22.107 Sep 26 18:06:46 web9 sshd\[10734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 26 18:06:48 web9 sshd\[10734\]: Failed password for invalid user swk from 154.73.22.107 port 55447 ssh2 Sep 26 18:12:00 web9 sshd\[11683\]: Invalid user l from 154.73.22.107 Sep 26 18:12:00 web9 sshd\[11683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107	2019-09-27 12:12:32
154.73.22.107	attack	Sep 26 12:12:11 web9 sshd\[5357\]: Invalid user Alphanetworks from 154.73.22.107 Sep 26 12:12:12 web9 sshd\[5357\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 26 12:12:14 web9 sshd\[5357\]: Failed password for invalid user Alphanetworks from 154.73.22.107 port 33577 ssh2 Sep 26 12:17:09 web9 sshd\[6247\]: Invalid user hans_dir645 from 154.73.22.107 Sep 26 12:17:09 web9 sshd\[6247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107	2019-09-27 06:22:34
154.73.22.107	attackspam	Sep 26 18:33:08 microserver sshd[61818]: Invalid user coen from 154.73.22.107 port 54755 Sep 26 18:33:08 microserver sshd[61818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 26 18:33:09 microserver sshd[61818]: Failed password for invalid user coen from 154.73.22.107 port 54755 ssh2 Sep 26 18:38:57 microserver sshd[62505]: Invalid user gitlab_ci from 154.73.22.107 port 47098 Sep 26 18:38:57 microserver sshd[62505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 26 18:50:48 microserver sshd[64275]: Invalid user vt from 154.73.22.107 port 60018 Sep 26 18:50:48 microserver sshd[64275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 26 18:50:50 microserver sshd[64275]: Failed password for invalid user vt from 154.73.22.107 port 60018 ssh2 Sep 26 18:56:46 microserver sshd[64970]: Invalid user janes from 154.73.22.107 port 52360 Sep 26 18	2019-09-27 01:34:41
154.73.22.107	attackbotsspam	Sep 24 01:36:00 markkoudstaal sshd[26335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 24 01:36:02 markkoudstaal sshd[26335]: Failed password for invalid user ftpuser from 154.73.22.107 port 50736 ssh2 Sep 24 01:41:35 markkoudstaal sshd[26884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107	2019-09-24 08:06:16
154.73.22.107	attackspambots	Sep 8 12:33:49 itv-usvr-01 sshd[22363]: Invalid user postgres from 154.73.22.107 Sep 8 12:33:49 itv-usvr-01 sshd[22363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.73.22.107 Sep 8 12:33:49 itv-usvr-01 sshd[22363]: Invalid user postgres from 154.73.22.107 Sep 8 12:33:52 itv-usvr-01 sshd[22363]: Failed password for invalid user postgres from 154.73.22.107 port 54125 ssh2 Sep 8 12:38:57 itv-usvr-01 sshd[22553]: Invalid user postgres from 154.73.22.107	2019-09-14 23:03:27
154.73.215.110	attack	Automatic report - Port Scan Attack	2019-09-14 02:59:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.73.2.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29383
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;154.73.2.13.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082101 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 22 05:17:59 CST 2020
;; MSG SIZE  rcvd: 115

Host info

13.2.73.154.in-addr.arpa domain name pointer porcupine.inet.telemedia.co.za.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
13.2.73.154.in-addr.arpa	name = porcupine.inet.telemedia.co.za.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.246.197.94	attackspambots	Unauthorized connection attempt from IP address 14.246.197.94 on Port 445(SMB)	2019-09-06 09:22:44
183.60.21.112	attackbotsspam	Brute force attempt	2019-09-06 09:21:41
132.232.43.115	attack	Sep 6 01:44:00 meumeu sshd[23712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.43.115 Sep 6 01:44:02 meumeu sshd[23712]: Failed password for invalid user dbuser from 132.232.43.115 port 43038 ssh2 Sep 6 01:49:19 meumeu sshd[24337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.43.115 ...	2019-09-06 09:30:37
89.29.201.14	attackspam	RDP Bruteforce	2019-09-06 09:41:34
79.1.212.37	attack	Sep 6 03:16:19 localhost sshd\[4600\]: Invalid user minecraft from 79.1.212.37 port 52562 Sep 6 03:16:19 localhost sshd\[4600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.1.212.37 Sep 6 03:16:20 localhost sshd\[4600\]: Failed password for invalid user minecraft from 79.1.212.37 port 52562 ssh2	2019-09-06 09:27:30
138.197.124.167	attackspam	/mysql/admin/index.php?lang=en	2019-09-06 09:36:59
105.23.240.230	attackbotsspam	Unauthorized connection attempt from IP address 105.23.240.230 on Port 445(SMB)	2019-09-06 09:28:00
106.13.125.84	attack	2019-09-06T00:55:23.998138abusebot-3.cloudsearch.cf sshd\[22863\]: Invalid user admin from 106.13.125.84 port 51478	2019-09-06 09:11:06
40.73.78.233	attack	2019-09-05T22:44:39.270100abusebot-2.cloudsearch.cf sshd\[20814\]: Invalid user trustno1 from 40.73.78.233 port 2560	2019-09-06 09:18:08
221.122.78.202	attackspambots	Sep 5 19:15:40 xtremcommunity sshd\[14539\]: Invalid user testing from 221.122.78.202 port 23139 Sep 5 19:15:40 xtremcommunity sshd\[14539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.122.78.202 Sep 5 19:15:42 xtremcommunity sshd\[14539\]: Failed password for invalid user testing from 221.122.78.202 port 23139 ssh2 Sep 5 19:19:27 xtremcommunity sshd\[14653\]: Invalid user hadoop from 221.122.78.202 port 41881 Sep 5 19:19:27 xtremcommunity sshd\[14653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.122.78.202 ...	2019-09-06 09:43:22
60.30.26.213	attack	Automatic report - Banned IP Access	2019-09-06 09:01:40
64.235.37.57	attack	REQUESTED PAGE: /HNAP1/	2019-09-06 08:59:51
206.189.190.32	attack	Sep 6 00:16:23 yabzik sshd[5066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.190.32 Sep 6 00:16:25 yabzik sshd[5066]: Failed password for invalid user test2 from 206.189.190.32 port 52940 ssh2 Sep 6 00:20:40 yabzik sshd[6702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.190.32	2019-09-06 08:56:52
172.81.237.242	attackspambots	Sep 5 10:37:22 php2 sshd\[32025\]: Invalid user 123456 from 172.81.237.242 Sep 5 10:37:22 php2 sshd\[32025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.237.242 Sep 5 10:37:24 php2 sshd\[32025\]: Failed password for invalid user 123456 from 172.81.237.242 port 48084 ssh2 Sep 5 10:42:18 php2 sshd\[32629\]: Invalid user alexis from 172.81.237.242 Sep 5 10:42:18 php2 sshd\[32629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.237.242	2019-09-06 09:42:59
18.208.246.180	attackbotsspam	by Amazon Technologies Inc.	2019-09-06 09:18:40

Recently Reported IPs

221.226.39.202	34.223.112.205	200.150.122.43	1.212.161.197
170.130.213.35	200.80.164.49	217.160.255.183	34.223.112.212
34.223.112.226	34.223.22.177	34.218.119.86	157.76.202.144
34.223.112.227	34.218.119.82	129.204.254.71	34.216.226.226
34.223.45.135	34.223.22.182	119.28.68.135	170.134.121.193