209.141.48.150

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Frantech Solutions

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	$f2bV_matches	2020-03-05 16:12:30

Comments on same subnet:

IP	Type	Details	Datetime
209.141.48.230	attackspambots	TCP (SYN) 209.141.48.230:39845 -> port 23, len 44	2020-09-08 01:32:52
209.141.48.230	attack	TCP (SYN) 209.141.48.230:58762 -> port 23, len 40	2020-09-07 16:57:24
209.141.48.68	attackbots	SSH Brute Force	2020-05-08 17:20:56
209.141.48.68	attackbotsspam	$f2bV_matches	2020-05-05 01:13:06
209.141.48.68	attackspambots	Apr 27 03:41:38 XXX sshd[62326]: Invalid user testu from 209.141.48.68 port 38728	2020-04-27 12:03:27
209.141.48.68	attackspambots	Automatic report BANNED IP	2020-04-25 19:04:41
209.141.48.68	attack	Apr 21 21:48:16 sip sshd[18801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.48.68 Apr 21 21:48:18 sip sshd[18801]: Failed password for invalid user hadoop1 from 209.141.48.68 port 53704 ssh2 Apr 21 21:51:20 sip sshd[19902]: Failed password for root from 209.141.48.68 port 42698 ssh2	2020-04-22 05:23:25
209.141.48.144	attack	Automatic report - XMLRPC Attack	2020-03-17 04:14:54
209.141.48.68	attack	$f2bV_matches	2020-02-27 03:43:27
209.141.48.86	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-13 21:55:56
209.141.48.68	attackspambots	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-02-04 20:48:20
209.141.48.68	attackspam	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-02-02 05:51:24
209.141.48.68	attackspambots	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-02-01 16:06:05
209.141.48.68	attack	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-01-15 03:18:41
209.141.48.68	attackbots	$f2bV_matches	2019-11-30 19:59:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.141.48.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;209.141.48.150.			IN	A

;; AUTHORITY SECTION:
.			256	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030500 1800 900 604800 86400

;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 16:12:26 CST 2020
;; MSG SIZE  rcvd: 118

Host info

150.48.141.209.in-addr.arpa domain name pointer tor.relay.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
150.48.141.209.in-addr.arpa	name = tor.relay.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.139.43.101	attackspambots	Apr 1 01:00:38 ns381471 sshd[25511]: Failed password for root from 123.139.43.101 port 19123 ssh2	2020-04-01 07:06:27
148.70.46.20	attackspam	Web scan/attack: detected 4 distinct attempts within a 12-hour window (ThinkPHP)	2020-04-01 07:20:39
111.179.217.246	attack	Brute force SMTP login attempted. ...	2020-04-01 07:28:56
77.123.20.173	attackbots	Apr 1 00:46:57 debian-2gb-nbg1-2 kernel: \[7953868.135635\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.123.20.173 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=19589 PROTO=TCP SPT=40553 DPT=3411 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-01 07:03:14
62.234.31.201	attack	2020-03-31T21:28:14.068064shield sshd\[5775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.31.201 user=root 2020-03-31T21:28:15.865883shield sshd\[5775\]: Failed password for root from 62.234.31.201 port 59266 ssh2 2020-03-31T21:30:25.167200shield sshd\[6219\]: Invalid user icmsectest from 62.234.31.201 port 56694 2020-03-31T21:30:25.171421shield sshd\[6219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.31.201 2020-03-31T21:30:26.954426shield sshd\[6219\]: Failed password for invalid user icmsectest from 62.234.31.201 port 56694 ssh2	2020-04-01 07:09:22
204.48.17.75	attackbotsspam	scan r	2020-04-01 07:35:17
111.161.74.121	attackspambots	SASL PLAIN auth failed: ruser=...	2020-04-01 07:34:53
86.136.161.201	attack	Mar 31 23:30:13 debian-2gb-nbg1-2 kernel: \[7949264.721349\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=86.136.161.201 DST=195.201.40.59 LEN=182 TOS=0x00 PREC=0x00 TTL=112 ID=46750 PROTO=UDP SPT=50726 DPT=54558 LEN=162	2020-04-01 07:29:26
111.19.162.80	attackbotsspam	SSH invalid-user multiple login attempts	2020-04-01 07:18:55
177.158.143.226	attackspambots	Automatic report - Port Scan Attack	2020-04-01 07:00:59
187.44.83.190	attackspambots	BR__<177>1585690229 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: {TCP} 187.44.83.190:62992	2020-04-01 07:04:18
123.11.1.208	attackbotsspam	Netgear DGN Device Remote Command Execution Vulnerability	2020-04-01 07:06:59
111.183.120.233	attackspam	Brute force SMTP login attempted. ...	2020-04-01 07:24:36
194.243.78.108	attackspambots	Unauthorized connection attempt from IP address 194.243.78.108 on Port 445(SMB)	2020-04-01 07:33:49
147.135.198.53	attackspam	Apr 1 04:19:27 gw1 sshd[13433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.198.53 Apr 1 04:19:29 gw1 sshd[13433]: Failed password for invalid user administrator from 147.135.198.53 port 42898 ssh2 ...	2020-04-01 07:21:07

Recently Reported IPs

197.219.94.47	136.228.172.194	198.199.94.40	182.160.33.116
138.197.202.164	217.87.186.164	36.72.213.227	180.218.5.140
42.118.218.7	36.75.140.79	180.143.124.48	110.46.15.136
213.87.13.223	112.133.229.67	219.92.117.140	71.196.78.254
180.183.56.185	178.62.52.111	14.162.235.100	111.240.9.9