194.150.68.145

Basic Info

City: unknown

Region: unknown

Country: Iran (Islamic Republic of)

Internet Service Provider: Sanaye va Danesh Rafe Iranian Kish International Company (PJS)

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	k+ssh-bruteforce	2020-03-30 04:14:40
attackbotsspam	Invalid user export from 194.150.68.145 port 38706	2020-03-27 21:45:44
attackbotsspam	5x Failed Password	2020-03-20 17:13:16
attack	Mar 19 13:51:14 Invalid user gerrit2 from 194.150.68.145 port 58588	2020-03-20 02:15:42
attackspambots	Mar 18 14:18:14 h2779839 sshd[11627]: Invalid user compose from 194.150.68.145 port 47110 Mar 18 14:18:14 h2779839 sshd[11627]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 Mar 18 14:18:14 h2779839 sshd[11627]: Invalid user compose from 194.150.68.145 port 47110 Mar 18 14:18:17 h2779839 sshd[11627]: Failed password for invalid user compose from 194.150.68.145 port 47110 ssh2 Mar 18 14:22:40 h2779839 sshd[11700]: Invalid user servers from 194.150.68.145 port 55380 Mar 18 14:22:40 h2779839 sshd[11700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 Mar 18 14:22:40 h2779839 sshd[11700]: Invalid user servers from 194.150.68.145 port 55380 Mar 18 14:22:42 h2779839 sshd[11700]: Failed password for invalid user servers from 194.150.68.145 port 55380 ssh2 Mar 18 14:26:56 h2779839 sshd[11766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=19 ...	2020-03-18 21:36:29
attack	Mar 5 15:23:09 webhost01 sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 Mar 5 15:23:11 webhost01 sshd[10391]: Failed password for invalid user git from 194.150.68.145 port 45480 ssh2 ...	2020-03-05 20:28:34
attack	Mar 2 21:48:21 vps691689 sshd[20650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 Mar 2 21:48:23 vps691689 sshd[20650]: Failed password for invalid user admin from 194.150.68.145 port 47556 ssh2 Mar 2 21:56:27 vps691689 sshd[20914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 ...	2020-03-03 04:59:43
attackbotsspam	$f2bV_matches_ltvn	2020-02-20 06:48:10
attackspam	Feb 18 00:58:54 server sshd\[4722\]: Invalid user cyrus from 194.150.68.145 Feb 18 00:58:54 server sshd\[4722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 Feb 18 00:58:55 server sshd\[4722\]: Failed password for invalid user cyrus from 194.150.68.145 port 54082 ssh2 Feb 18 01:08:51 server sshd\[6574\]: Invalid user theodora from 194.150.68.145 Feb 18 01:08:51 server sshd\[6574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 ...	2020-02-18 09:47:38
attack	2020-02-15T09:45:28.8187051495-001 sshd[41239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 2020-02-15T09:45:28.8155741495-001 sshd[41239]: Invalid user psu from 194.150.68.145 port 46600 2020-02-15T09:45:31.0309061495-001 sshd[41239]: Failed password for invalid user psu from 194.150.68.145 port 46600 ssh2 2020-02-15T10:47:08.2941741495-001 sshd[44320]: Invalid user rugumayo from 194.150.68.145 port 52804 2020-02-15T10:47:08.2977361495-001 sshd[44320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 2020-02-15T10:47:08.2941741495-001 sshd[44320]: Invalid user rugumayo from 194.150.68.145 port 52804 2020-02-15T10:47:10.1186051495-001 sshd[44320]: Failed password for invalid user rugumayo from 194.150.68.145 port 52804 ssh2 2020-02-15T10:49:31.6847021495-001 sshd[44477]: Invalid user 0racl38i from 194.150.68.145 port 44368 2020-02-15T10:49:31.6878931495-001 sshd[44477]: pam_ ...	2020-02-16 00:17:53
attack	Feb 15 08:13:59 MK-Soft-VM3 sshd[23911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.68.145 Feb 15 08:14:00 MK-Soft-VM3 sshd[23911]: Failed password for invalid user zabbix from 194.150.68.145 port 39052 ssh2 ...	2020-02-15 15:40:59
attack	20 attempts against mh-ssh on cloud.magehost.pro	2020-01-11 15:26:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 194.150.68.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33359
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;194.150.68.145.			IN	A

;; AUTHORITY SECTION:
.			476	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011002 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 15:26:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 145.68.150.194.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.68.150.194.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
73.129.11.75	attackspambots	Apr 21 08:36:36 ubuntu sshd[656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.129.11.75 Apr 21 08:36:38 ubuntu sshd[656]: Failed password for invalid user don from 73.129.11.75 port 3012 ssh2 Apr 21 08:40:27 ubuntu sshd[1008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.129.11.75	2019-08-01 17:15:36
103.249.100.12	attack	SSH Brute-Force reported by Fail2Ban	2019-08-01 18:17:39
51.77.149.236	attackspam	Aug 1 11:48:07 vps647732 sshd[21454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.149.236 Aug 1 11:48:09 vps647732 sshd[21454]: Failed password for invalid user openbravo from 51.77.149.236 port 48508 ssh2 ...	2019-08-01 17:56:00
94.21.243.204	attackbotsspam	Aug 1 08:58:52 localhost sshd\[23182\]: Invalid user jy from 94.21.243.204 port 55844 Aug 1 08:58:52 localhost sshd\[23182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.21.243.204 ...	2019-08-01 18:22:07
118.24.3.193	attackspambots	Aug 1 04:37:04 xb3 sshd[20790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.3.193 user=r.r Aug 1 04:37:06 xb3 sshd[20790]: Failed password for r.r from 118.24.3.193 port 39151 ssh2 Aug 1 04:37:06 xb3 sshd[20790]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] Aug 1 05:23:11 xb3 sshd[7835]: Failed password for invalid user bruno from 118.24.3.193 port 52120 ssh2 Aug 1 05:23:11 xb3 sshd[7835]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] Aug 1 05:27:00 xb3 sshd[3763]: Failed password for invalid user edward from 118.24.3.193 port 41211 ssh2 Aug 1 05:27:00 xb3 sshd[3763]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] Aug 1 05:30:39 xb3 sshd[32153]: Failed password for invalid user user1 from 118.24.3.193 port 58624 ssh2 Aug 1 05:30:39 xb3 sshd[32153]: Received disconnect from 118.24.3.193: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?i	2019-08-01 17:10:38
64.31.33.70	attackbots	\[2019-08-01 05:23:32\] NOTICE\[2288\] chan_sip.c: Registration from '"5027" \' failed for '64.31.33.70:5281' - Wrong password \[2019-08-01 05:23:32\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-01T05:23:32.801-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5027",SessionID="0x7ff4d00cdaf8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/64.31.33.70/5281",Challenge="0cf526cc",ReceivedChallenge="0cf526cc",ReceivedHash="435b940988270990ddc71776585cd96b" \[2019-08-01 05:23:32\] NOTICE\[2288\] chan_sip.c: Registration from '"5027" \' failed for '64.31.33.70:5281' - Wrong password \[2019-08-01 05:23:32\] SECURITY\[2326\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-01T05:23:32.906-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5027",SessionID="0x7ff4d00ec4d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/64.3	2019-08-01 17:28:51
138.118.5.133	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: cliente-138.118.5-133.netsulonline.com.br.	2019-08-01 17:12:43
180.126.15.107	attack	(sshd) Failed SSH login from 180.126.15.107 (CN/China/-): 5 in the last 3600 secs	2019-08-01 17:44:21
142.93.58.123	attackspambots	2019-08-01T05:26:33.780172abusebot-8.cloudsearch.cf sshd\[16483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.58.123 user=root	2019-08-01 17:24:56
86.97.67.91	attack	SSH Server BruteForce Attack	2019-08-01 17:17:35
193.33.111.217	attack	Aug 1 12:15:19 areeb-Workstation sshd\[24665\]: Invalid user buildbot from 193.33.111.217 Aug 1 12:15:19 areeb-Workstation sshd\[24665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.33.111.217 Aug 1 12:15:20 areeb-Workstation sshd\[24665\]: Failed password for invalid user buildbot from 193.33.111.217 port 53702 ssh2 ...	2019-08-01 17:19:08
166.62.86.209	attack	166.62.86.209 - - [01/Aug/2019:05:25:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.86.209 - - [01/Aug/2019:05:25:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.86.209 - - [01/Aug/2019:05:25:34 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.86.209 - - [01/Aug/2019:05:25:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.86.209 - - [01/Aug/2019:05:25:35 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.86.209 - - [01/Aug/2019:05:25:36 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-01 17:19:46
103.114.105.73	attackbotsspam	Aug 1 10:25:05 itv-usvr-01 sshd[1041]: Invalid user admin from 103.114.105.73	2019-08-01 17:35:00
49.69.35.26	attackbots	Fail2Ban	2019-08-01 18:10:17
165.227.96.190	attackbots	Invalid user jie from 165.227.96.190 port 45736	2019-08-01 17:17:04

Recently Reported IPs

177.228.78.205	51.252.87.30	14.240.55.95	36.75.220.191
60.160.28.187	114.231.42.206	61.1.235.174	121.6.1.80
202.218.128.207	178.41.187.18	177.152.38.93	104.196.154.201
76.170.69.190	59.42.37.48	212.34.113.99	192.85.91.209
201.235.129.90	46.10.135.187	14.233.234.200	93.95.100.174