212.73.150.142

Basic Info

City: unknown

Region: unknown

Country: Bulgaria

Internet Service Provider: RedCluster Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH login attempts with user root.	2020-04-13 18:07:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.73.150.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55962
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.73.150.142.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041300 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 13 18:07:51 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 142.150.73.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.150.73.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.116.212.214	attackspambots	Nov 29 19:43:07 site2 sshd\[37706\]: Failed password for root from 14.116.212.214 port 38258 ssh2Nov 29 19:47:24 site2 sshd\[37939\]: Invalid user gjtriathlon from 14.116.212.214Nov 29 19:47:26 site2 sshd\[37939\]: Failed password for invalid user gjtriathlon from 14.116.212.214 port 54796 ssh2Nov 29 19:51:36 site2 sshd\[37995\]: Invalid user library from 14.116.212.214Nov 29 19:51:38 site2 sshd\[37995\]: Failed password for invalid user library from 14.116.212.214 port 43106 ssh2 ...	2019-11-30 02:00:19
89.108.155.50	attackbotsspam	port scan/probe/communication attempt	2019-11-30 02:07:16
113.172.159.180	attackbotsspam	ILLEGAL ACCESS smtp	2019-11-30 02:12:06
104.248.156.157	attack	2019-11-29T12:09:24.5043711495-001 sshd\[35069\]: Invalid user sehmbey from 104.248.156.157 port 53672 2019-11-29T12:09:24.5075681495-001 sshd\[35069\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.156.157 2019-11-29T12:09:26.1702821495-001 sshd\[35069\]: Failed password for invalid user sehmbey from 104.248.156.157 port 53672 ssh2 2019-11-29T12:14:02.0179441495-001 sshd\[35220\]: Invalid user pass1234 from 104.248.156.157 port 34144 2019-11-29T12:14:02.0269601495-001 sshd\[35220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.156.157 2019-11-29T12:14:04.8545671495-001 sshd\[35220\]: Failed password for invalid user pass1234 from 104.248.156.157 port 34144 ssh2 ...	2019-11-30 01:40:12
167.172.236.75	attackbots	Nov 29 15:38:27 reporting1 sshd[15738]: Invalid user hm from 167.172.236.75 Nov 29 15:38:27 reporting1 sshd[15738]: Failed password for invalid user hm from 167.172.236.75 port 41232 ssh2 Nov 29 15:58:31 reporting1 sshd[24155]: Invalid user hillel from 167.172.236.75 Nov 29 15:58:31 reporting1 sshd[24155]: Failed password for invalid user hillel from 167.172.236.75 port 35088 ssh2 Nov 29 16:01:38 reporting1 sshd[25855]: User r.r from 167.172.236.75 not allowed because not listed in AllowUsers Nov 29 16:01:38 reporting1 sshd[25855]: Failed password for invalid user r.r from 167.172.236.75 port 44740 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=167.172.236.75	2019-11-30 01:43:42
106.12.99.233	attackspambots	$f2bV_matches	2019-11-30 02:15:49
37.49.229.168	attackbotsspam	Port scan	2019-11-30 01:50:28
123.23.50.146	attackbotsspam	Spam Timestamp : 29-Nov-19 14:16 BlockList Provider combined abuse (548)	2019-11-30 01:40:28
103.56.113.69	attack	$f2bV_matches	2019-11-30 01:37:18
54.39.44.47	attackspam	Invalid user groh from 54.39.44.47 port 33566	2019-11-30 01:49:06
114.67.68.30	attackbots	Nov 29 22:07:12 itv-usvr-01 sshd[9688]: Invalid user uo from 114.67.68.30 Nov 29 22:07:12 itv-usvr-01 sshd[9688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.68.30 Nov 29 22:07:12 itv-usvr-01 sshd[9688]: Invalid user uo from 114.67.68.30 Nov 29 22:07:14 itv-usvr-01 sshd[9688]: Failed password for invalid user uo from 114.67.68.30 port 50568 ssh2 Nov 29 22:11:09 itv-usvr-01 sshd[9933]: Invalid user gehrke from 114.67.68.30	2019-11-30 01:59:49
221.217.59.118	attack	firewall-block, port(s): 1433/tcp	2019-11-30 02:10:10
188.225.18.181	attackbotsspam	firewall-block, port(s): 2010/tcp, 3334/tcp, 3401/tcp, 3489/tcp, 4577/tcp, 5231/tcp, 7782/tcp, 11110/tcp, 22000/tcp, 50389/tcp	2019-11-30 02:13:11
91.121.41.48	attack	port scan/probe/communication attempt	2019-11-30 02:06:44
159.138.153.141	attackbotsspam	Automatic report - Banned IP Access	2019-11-30 02:06:25

Recently Reported IPs

116.241.7.104	113.210.200.154	159.152.25.121	222.247.113.142
176.15.120.136	99.16.240.182	159.224.189.40	14.190.30.127
200.108.165.10	193.37.212.100	51.178.2.79	160.156.46.123
14.170.106.10	78.189.202.253	49.235.142.79	103.145.12.66
85.117.32.86	202.88.216.242	180.101.248.148	211.222.173.42