193.242.150.144

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Svyazresurs-Kuban LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 193.242.150.144 to port 445 [T]	2020-08-25 03:12:49
attack	Unauthorized connection attempt from IP address 193.242.150.144 on Port 445(SMB)	2020-08-18 23:54:08
attackspambots	Unauthorized connection attempt detected from IP address 193.242.150.144 to port 445 [T]	2020-05-11 03:18:16
attackbots	Unauthorized connection attempt detected from IP address 193.242.150.144 to port 445	2020-01-23 15:28:42

Comments on same subnet:

IP	Type	Details	Datetime
193.242.150.157	attack	Unauthorized connection attempt from IP address 193.242.150.157 on Port 445(SMB)	2020-07-25 02:10:34
193.242.150.157	attackbots	Honeypot attack, port: 445, PTR: 157-150-dynamic.b2b-telecom.ru.	2020-01-26 00:16:16

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 193.242.150.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48451
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;193.242.150.144.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019053101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 01 11:56:55 CST 2019
;; MSG SIZE  rcvd: 119

Host info

144.150.242.193.in-addr.arpa domain name pointer 144-150-dynamic.b2b-telecom.ru.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
144.150.242.193.in-addr.arpa	name = 144-150-dynamic.b2b-telecom.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.112.142.155	attackbots	Mar 20 22:45:23 mail.srvfarm.net postfix/smtpd[2947801]: NOQUEUE: reject: RCPT from unknown[217.112.142.155]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 20 22:51:52 mail.srvfarm.net postfix/smtpd[2948466]: NOQUEUE: reject: RCPT from unknown[217.112.142.155]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 20 22:51:52 mail.srvfarm.net postfix/smtpd[2947808]: NOQUEUE: reject: RCPT from unknown[217.112.142.155]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 20 22:51:57 mail.srvfarm.net postfix/smtpd[2945805]: NOQUEUE: reject: RCPT from unknown[217.112.142.155]: 450 4.1.8	2020-03-21 10:29:41
104.248.35.239	attackspambots	$f2bV_matches	2020-03-21 12:21:00
210.22.116.45	attackspam	Mar 21 05:10:37 markkoudstaal sshd[21100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.22.116.45 Mar 21 05:10:39 markkoudstaal sshd[21100]: Failed password for invalid user rainelle from 210.22.116.45 port 54456 ssh2 Mar 21 05:13:43 markkoudstaal sshd[21486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.22.116.45	2020-03-21 12:22:37
181.48.28.13	attackbots	Mar 21 06:46:24 hosting sshd[9498]: Invalid user isabelle from 181.48.28.13 port 34288 Mar 21 06:46:24 hosting sshd[9498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.28.13 Mar 21 06:46:24 hosting sshd[9498]: Invalid user isabelle from 181.48.28.13 port 34288 Mar 21 06:46:26 hosting sshd[9498]: Failed password for invalid user isabelle from 181.48.28.13 port 34288 ssh2 Mar 21 06:54:48 hosting sshd[10087]: Invalid user gpadmin from 181.48.28.13 port 34164 ...	2020-03-21 12:29:21
106.54.29.199	attackbotsspam	Mar 20 23:46:20 ns3042688 sshd\[23535\]: Invalid user cybill from 106.54.29.199 Mar 20 23:46:20 ns3042688 sshd\[23535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.29.199 Mar 20 23:46:21 ns3042688 sshd\[23535\]: Failed password for invalid user cybill from 106.54.29.199 port 46380 ssh2 Mar 20 23:50:02 ns3042688 sshd\[24003\]: Invalid user sphinx from 106.54.29.199 Mar 20 23:50:02 ns3042688 sshd\[24003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.29.199 ...	2020-03-21 10:33:27
80.82.77.193	attackspam	03/20/2020-23:55:11.231395 80.82.77.193 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2020-03-21 12:08:32
159.65.144.64	attack	Mar 21 10:50:44 itv-usvr-02 sshd[20756]: Invalid user jingyun from 159.65.144.64 port 38282 Mar 21 10:50:44 itv-usvr-02 sshd[20756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.144.64 Mar 21 10:50:44 itv-usvr-02 sshd[20756]: Invalid user jingyun from 159.65.144.64 port 38282 Mar 21 10:50:46 itv-usvr-02 sshd[20756]: Failed password for invalid user jingyun from 159.65.144.64 port 38282 ssh2 Mar 21 10:55:13 itv-usvr-02 sshd[20866]: Invalid user au from 159.65.144.64 port 56386	2020-03-21 12:06:08
103.126.103.90	attack	Invalid user ask from 103.126.103.90 port 53850	2020-03-21 10:44:41
188.131.217.33	attackspam	Mar 21 04:49:33 minden010 sshd[25725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.217.33 Mar 21 04:49:35 minden010 sshd[25725]: Failed password for invalid user tsadmin from 188.131.217.33 port 57972 ssh2 Mar 21 04:55:07 minden010 sshd[27940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.217.33 ...	2020-03-21 12:11:47
138.68.72.7	attack	Mar 21 04:54:38 h2646465 sshd[19429]: Invalid user cas from 138.68.72.7 Mar 21 04:54:38 h2646465 sshd[19429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.72.7 Mar 21 04:54:38 h2646465 sshd[19429]: Invalid user cas from 138.68.72.7 Mar 21 04:54:41 h2646465 sshd[19429]: Failed password for invalid user cas from 138.68.72.7 port 54616 ssh2 Mar 21 05:02:37 h2646465 sshd[22636]: Invalid user oracle from 138.68.72.7 Mar 21 05:02:37 h2646465 sshd[22636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.72.7 Mar 21 05:02:37 h2646465 sshd[22636]: Invalid user oracle from 138.68.72.7 Mar 21 05:02:39 h2646465 sshd[22636]: Failed password for invalid user oracle from 138.68.72.7 port 60702 ssh2 Mar 21 05:06:17 h2646465 sshd[23938]: Invalid user ubuntu from 138.68.72.7 ...	2020-03-21 12:20:06
51.75.23.214	attackspambots	51.75.23.214 - - [21/Mar/2020:00:47:35 +0100] "GET /wp-login.php HTTP/1.1" 200 6463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.75.23.214 - - [21/Mar/2020:00:47:37 +0100] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.75.23.214 - - [21/Mar/2020:00:47:38 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-21 10:28:44
23.97.180.45	attackbots	Mar 21 00:51:05 firewall sshd[17002]: Invalid user celery from 23.97.180.45 Mar 21 00:51:07 firewall sshd[17002]: Failed password for invalid user celery from 23.97.180.45 port 60660 ssh2 Mar 21 00:55:02 firewall sshd[17344]: Invalid user gmodserver from 23.97.180.45 ...	2020-03-21 12:17:18
195.231.3.146	attackbotsspam	Mar 21 00:11:05 mail.srvfarm.net postfix/smtpd[2950706]: lost connection after CONNECT from unknown[195.231.3.146] Mar 21 00:11:09 mail.srvfarm.net postfix/smtpd[3128536]: lost connection after CONNECT from unknown[195.231.3.146] Mar 21 00:17:45 mail.srvfarm.net postfix/smtpd[3128542]: lost connection after CONNECT from unknown[195.231.3.146] Mar 21 00:17:50 mail.srvfarm.net postfix/smtpd[3128541]: lost connection after CONNECT from unknown[195.231.3.146] Mar 21 00:20:45 mail.srvfarm.net postfix/smtpd[2950706]: warning: unknown[195.231.3.146]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-03-21 10:30:33
167.99.155.36	attackbotsspam	Invalid user oracle from 167.99.155.36 port 44122	2020-03-21 10:33:04
59.127.195.93	attackspambots	SSH Brute-Force attacks	2020-03-21 10:45:31

Recently Reported IPs

77.247.110.66	178.128.23.162	185.220.101.65	117.165.102.152
80.14.47.171	80.11.44.112	187.67.67.232	125.76.246.102
41.169.18.58	169.197.108.206	25.210.108.4	139.9.43.28
223.220.250.173	218.23.236.17	114.252.35.61	183.82.114.15
104.228.63.173	212.58.119.126	46.174.191.30	116.228.53.173