213.227.139.73

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	port scan	2023-01-30 22:03:18
attack	Scan port	2022-10-11 12:49:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.227.139.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;213.227.139.73.			IN	A

;; AUTHORITY SECTION:
.			143	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101002 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 11 12:49:50 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 73.139.227.213.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 73.139.227.213.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.186	attackspam	2020-08-05T12:44:12.401406lavrinenko.info sshd[17459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root 2020-08-05T12:44:14.105008lavrinenko.info sshd[17459]: Failed password for root from 112.85.42.186 port 54180 ssh2 2020-08-05T12:44:12.401406lavrinenko.info sshd[17459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root 2020-08-05T12:44:14.105008lavrinenko.info sshd[17459]: Failed password for root from 112.85.42.186 port 54180 ssh2 2020-08-05T12:44:16.652380lavrinenko.info sshd[17459]: Failed password for root from 112.85.42.186 port 54180 ssh2 ...	2020-08-05 19:15:59
189.254.242.60	attack	Aug 5 06:57:13 vps639187 sshd\[3854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.254.242.60 user=root Aug 5 06:57:15 vps639187 sshd\[3854\]: Failed password for root from 189.254.242.60 port 57936 ssh2 Aug 5 07:01:35 vps639187 sshd\[3962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.254.242.60 user=root ...	2020-08-05 19:12:45
182.253.68.122	attack	SSH Brute Force	2020-08-05 19:01:08
176.31.102.37	attack	Aug 5 11:13:54 mout sshd[27695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.102.37 user=root Aug 5 11:13:57 mout sshd[27695]: Failed password for root from 176.31.102.37 port 56013 ssh2	2020-08-05 19:02:50
63.82.55.6	attack	Lines containing failures of 63.82.55.6 Aug 5 05:38:50 v2hgb postfix/smtpd[12616]: connect from poshostnameion.shoofgoal.com[63.82.55.6] Aug x@x Aug 5 05:38:51 v2hgb postfix/smtpd[12616]: disconnect from poshostnameion.shoofgoal.com[63.82.55.6] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=63.82.55.6	2020-08-05 19:11:11
189.4.151.102	attackspam	" "	2020-08-05 18:48:53
104.236.100.42	attack	104.236.100.42 - - [05/Aug/2020:10:45:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [05/Aug/2020:10:45:27 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [05/Aug/2020:10:45:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1909 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-05 19:01:25
167.99.69.130	attackbots	2020-08-05 08:37:01,626 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.69.130 2020-08-05 09:16:27,997 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.69.130 2020-08-05 09:55:23,850 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.69.130 2020-08-05 10:33:49,496 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.69.130 2020-08-05 11:12:30,292 fail2ban.actions [937]: NOTICE [sshd] Ban 167.99.69.130 ...	2020-08-05 19:10:54
193.95.247.90	attack	Fail2Ban Ban Triggered (2)	2020-08-05 19:12:06
106.12.84.4	attackspam	Lines containing failures of 106.12.84.4 Aug 3 09:39:01 shared02 sshd[5853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.4 user=r.r Aug 3 09:39:02 shared02 sshd[5853]: Failed password for r.r from 106.12.84.4 port 58078 ssh2 Aug 3 09:39:03 shared02 sshd[5853]: Received disconnect from 106.12.84.4 port 58078:11: Bye Bye [preauth] Aug 3 09:39:03 shared02 sshd[5853]: Disconnected from authenticating user r.r 106.12.84.4 port 58078 [preauth] Aug 3 09:44:04 shared02 sshd[7925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.84.4 user=r.r Aug 3 09:44:06 shared02 sshd[7925]: Failed password for r.r from 106.12.84.4 port 45668 ssh2 Aug 3 09:44:06 shared02 sshd[7925]: Received disconnect from 106.12.84.4 port 45668:11: Bye Bye [preauth] Aug 3 09:44:06 shared02 sshd[7925]: Disconnected from authenticating user r.r 106.12.84.4 port 45668 [preauth] ........ ----------------------------------------------- http	2020-08-05 19:00:22
37.59.47.61	attackbots	37.59.47.61 - - [05/Aug/2020:11:42:23 +0100] "POST /wp-login.php HTTP/1.1" 200 6981 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 37.59.47.61 - - [05/Aug/2020:11:44:28 +0100] "POST /wp-login.php HTTP/1.1" 200 6981 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 37.59.47.61 - - [05/Aug/2020:11:45:47 +0100] "POST /wp-login.php HTTP/1.1" 200 6981 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-05 18:48:36
145.239.80.175	attackspambots	postfix	2020-08-05 18:42:17
49.207.185.52	attackbotsspam	Aug 5 09:37:44 ws26vmsma01 sshd[122174]: Failed password for root from 49.207.185.52 port 33446 ssh2 ...	2020-08-05 19:01:54
119.96.120.113	attack	2020-08-05T03:48:00.572778vps-d63064a2 sshd[122005]: User root from 119.96.120.113 not allowed because not listed in AllowUsers 2020-08-05T03:48:00.625061vps-d63064a2 sshd[122005]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.120.113 user=root 2020-08-05T03:48:00.572778vps-d63064a2 sshd[122005]: User root from 119.96.120.113 not allowed because not listed in AllowUsers 2020-08-05T03:48:02.335853vps-d63064a2 sshd[122005]: Failed password for invalid user root from 119.96.120.113 port 54990 ssh2 ...	2020-08-05 19:22:05
51.89.136.104	attack	frenzy	2020-08-05 19:19:01

Recently Reported IPs

5.126.109.139	192.84.123.48	160.209.66.40	157.57.60.171
132.96.118.110	218.54.79.189	123.23.76.132	250.154.106.13
201.67.132.160	220.113.81.65	17.116.238.200	246.205.21.36
252.18.229.99	187.194.108.155	8.183.155.91	192.214.102.191
21.46.158.104	185.65.153.108	212.167.124.5	219.159.175.122