150.242.213.189

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Changtong Net Tech Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Jun 3 05:58:07 host sshd[30861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 user=root Jun 3 05:58:09 host sshd[30861]: Failed password for root from 150.242.213.189 port 45736 ssh2 ...	2020-06-03 13:01:04
attackbots	May 28 17:27:26 gw1 sshd[18624]: Failed password for root from 150.242.213.189 port 41536 ssh2 ...	2020-05-28 20:49:24
attack	May 23 08:59:53 *** sshd[3996]: Invalid user ijp from 150.242.213.189	2020-05-23 18:55:45
attackspam	May 22 03:48:43 XXX sshd[26199]: Invalid user aig from 150.242.213.189 port 34852	2020-05-22 16:53:29
attackbotsspam	Invalid user usuario from 150.242.213.189 port 39100	2020-05-16 19:30:05
attack	firewall-block, port(s): 19101/tcp	2020-04-26 00:34:20
attackspam	prod11 ...	2020-04-19 13:07:30
attackspam	Apr 12 05:34:02 ip-172-31-62-245 sshd\[2405\]: Failed password for root from 150.242.213.189 port 60938 ssh2\ Apr 12 05:35:59 ip-172-31-62-245 sshd\[2418\]: Failed password for root from 150.242.213.189 port 56678 ssh2\ Apr 12 05:36:57 ip-172-31-62-245 sshd\[2427\]: Invalid user vetturini from 150.242.213.189\ Apr 12 05:36:59 ip-172-31-62-245 sshd\[2427\]: Failed password for invalid user vetturini from 150.242.213.189 port 42276 ssh2\ Apr 12 05:38:00 ip-172-31-62-245 sshd\[2433\]: Failed password for root from 150.242.213.189 port 56106 ssh2\	2020-04-12 15:04:07
attack	SSH Brute-Forcing (server2)	2020-03-30 13:21:43
attackspam	Mar 27 04:09:15 game-panel sshd[27811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Mar 27 04:09:17 game-panel sshd[27811]: Failed password for invalid user xox from 150.242.213.189 port 57670 ssh2 Mar 27 04:12:45 game-panel sshd[27938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189	2020-03-27 12:13:54
attack	Mar 8 05:48:16 dev0-dcde-rnet sshd[2869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Mar 8 05:48:18 dev0-dcde-rnet sshd[2869]: Failed password for invalid user demo from 150.242.213.189 port 43912 ssh2 Mar 8 05:50:57 dev0-dcde-rnet sshd[2887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189	2020-03-08 18:56:44
attackbots	Mar 3 09:47:06 NPSTNNYC01T sshd[19998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Mar 3 09:47:08 NPSTNNYC01T sshd[19998]: Failed password for invalid user omsagent from 150.242.213.189 port 60502 ssh2 Mar 3 09:51:52 NPSTNNYC01T sshd[20180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 ...	2020-03-03 22:56:39
attack	Oct 29 12:38:34 minden010 sshd[25920]: Failed password for root from 150.242.213.189 port 50428 ssh2 Oct 29 12:42:25 minden010 sshd[28414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Oct 29 12:42:27 minden010 sshd[28414]: Failed password for invalid user dashboard from 150.242.213.189 port 55286 ssh2 ...	2019-10-29 19:47:43
attack	Oct 28 09:36:32 MK-Soft-VM3 sshd[10501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Oct 28 09:36:34 MK-Soft-VM3 sshd[10501]: Failed password for invalid user PAssw0rd from 150.242.213.189 port 46728 ssh2 ...	2019-10-28 17:26:55
attack	SSH Bruteforce attempt	2019-10-21 17:36:04
attack	Oct 11 06:18:27 legacy sshd[22468]: Failed password for root from 150.242.213.189 port 49898 ssh2 Oct 11 06:22:26 legacy sshd[22529]: Failed password for root from 150.242.213.189 port 54844 ssh2 ...	2019-10-11 12:33:08
attackspambots	2019-10-03T06:16:55.917823shield sshd\[7021\]: Invalid user user1 from 150.242.213.189 port 59772 2019-10-03T06:16:55.922022shield sshd\[7021\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 2019-10-03T06:16:57.841711shield sshd\[7021\]: Failed password for invalid user user1 from 150.242.213.189 port 59772 ssh2 2019-10-03T06:21:03.306973shield sshd\[7655\]: Invalid user jeffrey from 150.242.213.189 port 37466 2019-10-03T06:21:03.311246shield sshd\[7655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189	2019-10-03 15:05:05
attackspambots	Sep 23 07:12:47 taivassalofi sshd[70725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Sep 23 07:12:49 taivassalofi sshd[70725]: Failed password for invalid user polycom from 150.242.213.189 port 46464 ssh2 ...	2019-09-23 14:01:59
attack	Sep 15 06:08:27 MK-Soft-VM4 sshd\[15957\]: Invalid user 123 from 150.242.213.189 port 38592 Sep 15 06:08:27 MK-Soft-VM4 sshd\[15957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Sep 15 06:08:29 MK-Soft-VM4 sshd\[15957\]: Failed password for invalid user 123 from 150.242.213.189 port 38592 ssh2 ...	2019-09-15 17:45:00
attack	2019-09-02T08:47:00.772641abusebot-8.cloudsearch.cf sshd\[4616\]: Invalid user xh from 150.242.213.189 port 56460	2019-09-02 17:04:36
attackspambots	Aug 28 06:50:53 mail sshd\[6661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Aug 28 06:50:55 mail sshd\[6661\]: Failed password for invalid user internat123 from 150.242.213.189 port 55772 ssh2 Aug 28 06:55:17 mail sshd\[7212\]: Invalid user postgres from 150.242.213.189 port 45638 Aug 28 06:55:17 mail sshd\[7212\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Aug 28 06:55:19 mail sshd\[7212\]: Failed password for invalid user postgres from 150.242.213.189 port 45638 ssh2	2019-08-28 13:05:29
attack	Aug 24 17:47:42 TORMINT sshd\[29279\]: Invalid user remote from 150.242.213.189 Aug 24 17:47:42 TORMINT sshd\[29279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Aug 24 17:47:44 TORMINT sshd\[29279\]: Failed password for invalid user remote from 150.242.213.189 port 59484 ssh2 ...	2019-08-25 06:06:54
attackspam	Aug 10 00:16:40 mail sshd\[31781\]: Failed password for invalid user wanker from 150.242.213.189 port 35620 ssh2 Aug 10 00:36:01 mail sshd\[32034\]: Invalid user nfsnobody from 150.242.213.189 port 44476 Aug 10 00:36:01 mail sshd\[32034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 ...	2019-08-10 07:53:58
attack	Aug 3 11:02:20 TORMINT sshd\[30583\]: Invalid user tomcat from 150.242.213.189 Aug 3 11:02:20 TORMINT sshd\[30583\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Aug 3 11:02:22 TORMINT sshd\[30583\]: Failed password for invalid user tomcat from 150.242.213.189 port 54742 ssh2 ...	2019-08-04 07:45:54
attack	Jul 25 00:55:02 MainVPS sshd[29623]: Invalid user sales1 from 150.242.213.189 port 42152 Jul 25 00:55:02 MainVPS sshd[29623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Jul 25 00:55:02 MainVPS sshd[29623]: Invalid user sales1 from 150.242.213.189 port 42152 Jul 25 00:55:05 MainVPS sshd[29623]: Failed password for invalid user sales1 from 150.242.213.189 port 42152 ssh2 Jul 25 01:00:13 MainVPS sshd[30134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 user=root Jul 25 01:00:15 MainVPS sshd[30134]: Failed password for root from 150.242.213.189 port 39374 ssh2 ...	2019-07-25 07:44:34
attackspambots	Jul 17 23:01:14 h2177944 sshd\[20143\]: Invalid user anurag from 150.242.213.189 port 53638 Jul 17 23:01:14 h2177944 sshd\[20143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Jul 17 23:01:16 h2177944 sshd\[20143\]: Failed password for invalid user anurag from 150.242.213.189 port 53638 ssh2 Jul 17 23:06:38 h2177944 sshd\[20249\]: Invalid user hamish from 150.242.213.189 port 54052 ...	2019-07-18 05:07:15
attack	Jul 12 13:22:02 cac1d2 sshd\[434\]: Invalid user aman from 150.242.213.189 port 59472 Jul 12 13:22:02 cac1d2 sshd\[434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Jul 12 13:22:03 cac1d2 sshd\[434\]: Failed password for invalid user aman from 150.242.213.189 port 59472 ssh2 ...	2019-07-13 04:23:54
attack	Jul 1 06:06:41 pornomens sshd\[10791\]: Invalid user xian from 150.242.213.189 port 48730 Jul 1 06:06:41 pornomens sshd\[10791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189 Jul 1 06:06:44 pornomens sshd\[10791\]: Failed password for invalid user xian from 150.242.213.189 port 48730 ssh2 ...	2019-07-01 20:01:35
attackbots	Jun 27 02:00:17 Proxmox sshd\[12939\]: Invalid user bbb from 150.242.213.189 port 44152 Jun 27 02:00:17 Proxmox sshd\[12939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.242.213.189	2019-06-27 09:02:15
attackspambots	ports scanning	2019-06-23 13:50:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 150.242.213.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65236
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;150.242.213.189.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 02 07:46:40 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 189.213.242.150.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 189.213.242.150.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.183.19	attack	Invalid user csserver from 106.13.183.19 port 32848	2020-01-18 22:14:11
51.83.46.16	attackspambots	Invalid user mf from 51.83.46.16 port 52916	2020-01-18 22:20:41
140.143.246.53	attackspambots	Invalid user icc from 140.143.246.53 port 47728	2020-01-18 22:08:56
134.209.123.26	attack	Invalid user web from 134.209.123.26 port 46648	2020-01-18 22:09:41
164.132.44.25	attack	Invalid user farhan from 164.132.44.25 port 46316	2020-01-18 22:30:29
120.29.104.86	attackspam	20/1/18@07:59:25: FAIL: Alarm-Intrusion address from=120.29.104.86 ...	2020-01-18 22:36:40
203.81.78.180	attackbots	Unauthorized connection attempt detected from IP address 203.81.78.180 to port 2220 [J]	2020-01-18 22:25:11
128.199.184.127	attackbotsspam	Invalid user proxyuser from 128.199.184.127 port 41444	2020-01-18 22:10:26
179.124.34.8	attack	Jan 18 14:17:56 ns41 sshd[22745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.124.34.8	2020-01-18 22:28:47
51.75.121.191	attack	Jan 18 14:56:19 hosting180 sshd[17910]: Invalid user admin from 51.75.121.191 port 48743 ...	2020-01-18 22:21:40
114.67.84.230	attack	Invalid user zeus from 114.67.84.230 port 42574	2020-01-18 22:12:28
125.129.26.238	attackspam	Jan 18 04:16:49 kapalua sshd\[30007\]: Invalid user photos from 125.129.26.238 Jan 18 04:16:49 kapalua sshd\[30007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.129.26.238 Jan 18 04:16:50 kapalua sshd\[30007\]: Failed password for invalid user photos from 125.129.26.238 port 53162 ssh2 Jan 18 04:17:05 kapalua sshd\[30041\]: Invalid user jasmin from 125.129.26.238 Jan 18 04:17:05 kapalua sshd\[30041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.129.26.238	2020-01-18 22:35:11
122.51.5.240	attackbots	Invalid user test2 from 122.51.5.240 port 46584	2020-01-18 22:36:11
110.185.166.137	attackspambots	Invalid user Admin from 110.185.166.137 port 52172	2020-01-18 22:13:23
13.233.72.105	attackspam	Unauthorized connection attempt detected from IP address 13.233.72.105 to port 2220 [J]	2020-01-18 22:22:57

Recently Reported IPs

223.75.68.51	169.239.220.35	193.33.8.98	192.241.226.35
95.97.238.85	185.53.88.203	177.52.48.214	118.26.65.227
106.12.105.193	206.83.13.53	218.22.148.105	144.2.109.40
176.42.60.186	77.123.138.82	219.226.232.78	27.50.82.11
3.90.12.5	50.69.62.62	49.154.37.77	107.178.52.60