2.73.53.139 - IPInfo

Basic Info

City: Almaty

Region: Almaty

Country: Kazakhstan

Internet Service Provider: Kcell JSC

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Honeypot attack, port: 445, PTR: 2-73-53-139.kcell.kz.	2020-05-29 07:05:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.73.53.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47239
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.73.53.139.			IN	A

;; AUTHORITY SECTION:
.			533	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052802 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 29 07:05:14 CST 2020
;; MSG SIZE  rcvd: 115

Host info

139.53.73.2.in-addr.arpa domain name pointer 2-73-53-139.kcell.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.53.73.2.in-addr.arpa	name = 2-73-53-139.kcell.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.232.191.78	attackbotsspam	Jun 2 12:42:31 km20725 sshd[8701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.191.78 user=r.r Jun 2 12:42:33 km20725 sshd[8701]: Failed password for r.r from 191.232.191.78 port 42128 ssh2 Jun 2 12:42:33 km20725 sshd[8701]: Received disconnect from 191.232.191.78 port 42128:11: Bye Bye [preauth] Jun 2 12:42:33 km20725 sshd[8701]: Disconnected from authenticating user r.r 191.232.191.78 port 42128 [preauth] Jun 2 12:47:15 km20725 sshd[8973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.191.78 user=r.r Jun 2 12:47:17 km20725 sshd[8973]: Failed password for r.r from 191.232.191.78 port 38746 ssh2 Jun 2 12:47:18 km20725 sshd[8973]: Received disconnect from 191.232.191.78 port 38746:11: Bye Bye [preauth] Jun 2 12:47:18 km20725 sshd[8973]: Disconnected from authenticating user r.r 191.232.191.78 port 38746 [preauth] Jun 2 12:48:48 km20725 sshd[9043]: pam_unix(ssh........ -------------------------------	2020-06-06 06:17:33
87.251.74.50	attack	$f2bV_matches	2020-06-06 06:25:58
185.234.219.224	attackspambots	Jun 05 23:14:30 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=185.234.219.224, lip=192.168.100.101, session=\\ Jun 05 23:24:02 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=185.234.219.224, lip=192.168.100.101, session=\\ Jun 05 23:29:36 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=185.234.219.224, lip=192.168.100.101, session=\<2E4c9VynRAC56tvg\>\ Jun 05 23:39:07 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=185.234.219.224, lip=192.168.100.101, session=\\ Jun 05 23:44:39 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=185.234.219.224, lip=192.168.100.101, session=\<5IbvKl2nUgC56tvg\>\ Jun 05 23:	2020-06-06 06:02:48
185.202.2.147	attackspambots	Fail2Ban Ban Triggered	2020-06-06 06:13:55
85.204.66.172	attackbots	Honeypot attack, port: 81, PTR: ppp084204066172.access.hol.gr.	2020-06-06 06:22:20
222.186.180.223	attackbots	Jun 5 22:01:34 hcbbdb sshd\[8676\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Jun 5 22:01:36 hcbbdb sshd\[8676\]: Failed password for root from 222.186.180.223 port 58126 ssh2 Jun 5 22:01:58 hcbbdb sshd\[8699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Jun 5 22:02:00 hcbbdb sshd\[8699\]: Failed password for root from 222.186.180.223 port 15372 ssh2 Jun 5 22:02:19 hcbbdb sshd\[8759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root	2020-06-06 06:15:15
62.99.90.10	attackspam	Unauthorized SSH login attempts	2020-06-06 06:13:37
20.185.42.182	attack	Unauthorized connection attempt detected from IP address 20.185.42.182 to port 23	2020-06-06 06:31:29
49.232.161.243	attackspambots	Jun 6 00:31:06 lukav-desktop sshd\[25022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.243 user=root Jun 6 00:31:08 lukav-desktop sshd\[25022\]: Failed password for root from 49.232.161.243 port 36858 ssh2 Jun 6 00:35:16 lukav-desktop sshd\[25128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.243 user=root Jun 6 00:35:18 lukav-desktop sshd\[25128\]: Failed password for root from 49.232.161.243 port 57306 ssh2 Jun 6 00:39:28 lukav-desktop sshd\[25271\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.161.243 user=root	2020-06-06 06:02:01
5.78.240.147	attack	(imapd) Failed IMAP login from 5.78.240.147 (IR/Iran/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 6 00:56:57 ir1 dovecot[2885757]: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=5.78.240.147, lip=5.63.12.44, session=	2020-06-06 06:12:39
175.24.81.178	attackbotsspam	Jun 5 22:17:38 minden010 sshd[1798]: Failed password for root from 175.24.81.178 port 33416 ssh2 Jun 5 22:22:13 minden010 sshd[3575]: Failed password for root from 175.24.81.178 port 33910 ssh2 ...	2020-06-06 06:24:39
186.238.15.218	attackbotsspam	Honeypot attack, port: 445, PTR: 186-238-15-218.customer.tdatabrasil.net.br.	2020-06-06 06:04:28
194.26.29.53	attack	[MK-VM6] Blocked by UFW	2020-06-06 06:07:52
111.229.92.17	attack	$f2bV_matches	2020-06-06 06:00:51
108.195.133.61	attack	Honeypot attack, port: 81, PTR: 108-195-133-61.uvs.irvnca.sbcglobal.net.	2020-06-06 06:18:46

Recently Reported IPs

45.64.237.125	236.121.112.88	33.134.214.66	141.145.17.142
111.74.136.2	118.141.237.74	181.97.182.98	122.209.245.178
186.195.171.238	26.163.82.76	50.169.93.255	13.127.197.238
53.168.236.52	245.210.131.83	107.64.146.134	77.64.144.153
213.166.52.0	83.51.241.90	218.249.72.168	55.51.213.203