41.90.150.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kenya

Internet Service Provider: Safaricom Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	2020-06-30 07:14:07.181724-0500 localhost smtpd[16205]: NOQUEUE: reject: RCPT from unknown[41.90.150.48]: 554 5.7.1 Service unavailable; Client host [41.90.150.48] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/41.90.150.48 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[41.90.150.48]>	2020-07-01 03:31:31

Type

Details

Datetime

attackspambots

2020-06-30 07:14:07.181724-0500  localhost smtpd[16205]: NOQUEUE: reject: RCPT from unknown[41.90.150.48]: 554 5.7.1 Service unavailable; Client host [41.90.150.48] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/41.90.150.48 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[41.90.150.48]>

2020-07-01 03:31:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.90.150.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56377
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.90.150.48.			IN	A

;; AUTHORITY SECTION:
.			198	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020063001 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 01 03:31:28 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 48.150.90.41.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.150.90.41.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.78.201.48	attack	Aug 15 10:16:15 vps200512 sshd\[12943\]: Invalid user rashid from 41.78.201.48 Aug 15 10:16:15 vps200512 sshd\[12943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.78.201.48 Aug 15 10:16:18 vps200512 sshd\[12943\]: Failed password for invalid user rashid from 41.78.201.48 port 49864 ssh2 Aug 15 10:22:00 vps200512 sshd\[13150\]: Invalid user dragos from 41.78.201.48 Aug 15 10:22:00 vps200512 sshd\[13150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.78.201.48	2019-08-15 22:31:22
178.128.37.180	attackspam	$f2bV_matches	2019-08-15 21:32:01
178.27.198.66	attackbotsspam	Aug 14 06:55:17 shared02 sshd[3255]: Invalid user alex from 178.27.198.66 Aug 14 06:55:17 shared02 sshd[3255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.27.198.66 Aug 14 06:55:20 shared02 sshd[3255]: Failed password for invalid user alex from 178.27.198.66 port 38730 ssh2 Aug 14 06:55:20 shared02 sshd[3255]: Received disconnect from 178.27.198.66 port 38730:11: Bye Bye [preauth] Aug 14 06:55:20 shared02 sshd[3255]: Disconnected from 178.27.198.66 port 38730 [preauth] Aug 14 07:01:03 shared02 sshd[8332]: Invalid user oraprod from 178.27.198.66 Aug 14 07:01:03 shared02 sshd[8332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.27.198.66 Aug 14 07:01:05 shared02 sshd[8332]: Failed password for invalid user oraprod from 178.27.198.66 port 44908 ssh2 Aug 14 07:01:06 shared02 sshd[8332]: Received disconnect from 178.27.198.66 port 44908:11: Bye Bye [preauth] Aug 14 07:01:06 shared02........ -------------------------------	2019-08-15 21:48:15
209.97.169.136	attack	Aug 15 13:14:44 vps691689 sshd[27976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 Aug 15 13:14:46 vps691689 sshd[27976]: Failed password for invalid user casper from 209.97.169.136 port 45654 ssh2 Aug 15 13:20:06 vps691689 sshd[28167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.169.136 ...	2019-08-15 21:56:48
191.100.24.188	attackspam	Aug 15 13:30:46 web8 sshd\[9002\]: Invalid user web from 191.100.24.188 Aug 15 13:30:46 web8 sshd\[9002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.100.24.188 Aug 15 13:30:48 web8 sshd\[9002\]: Failed password for invalid user web from 191.100.24.188 port 46204 ssh2 Aug 15 13:37:47 web8 sshd\[12128\]: Invalid user chad from 191.100.24.188 Aug 15 13:37:47 web8 sshd\[12128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.100.24.188	2019-08-15 21:55:05
77.247.110.31	attackspambots	" "	2019-08-15 22:07:19
51.38.186.244	attackbots	Aug 15 15:36:59 SilenceServices sshd[7590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.244 Aug 15 15:37:01 SilenceServices sshd[7590]: Failed password for invalid user julies from 51.38.186.244 port 59722 ssh2 Aug 15 15:41:19 SilenceServices sshd[10981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.244	2019-08-15 21:43:49
49.36.6.191	attack	ssh failed login	2019-08-15 22:04:05
68.183.43.47	attackspam	Aug 15 11:25:43 server postfix/smtpd[27911]: NOQUEUE: reject: RCPT from mx.trying.harrowingness.top[68.183.43.47]: 554 5.7.1 Service unavailable; Client host [68.183.43.47] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2019-08-15 21:30:43
123.142.192.18	attackspambots	Aug 15 10:11:41 xtremcommunity sshd\[16212\]: Invalid user confluence from 123.142.192.18 port 37528 Aug 15 10:11:41 xtremcommunity sshd\[16212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.192.18 Aug 15 10:11:43 xtremcommunity sshd\[16212\]: Failed password for invalid user confluence from 123.142.192.18 port 37528 ssh2 Aug 15 10:17:13 xtremcommunity sshd\[16506\]: Invalid user cassy from 123.142.192.18 port 58970 Aug 15 10:17:13 xtremcommunity sshd\[16506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.142.192.18 ...	2019-08-15 22:30:14
35.195.238.142	attack	Aug 15 11:25:29 rpi sshd[17241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.195.238.142 Aug 15 11:25:31 rpi sshd[17241]: Failed password for invalid user rv from 35.195.238.142 port 42722 ssh2	2019-08-15 21:45:15
104.168.147.8	attackspam	Postfix SMTP rejection ...	2019-08-15 22:45:15
223.100.160.5	attack	Aug 15 14:26:48 srv206 sshd[17330]: Invalid user dev from 223.100.160.5 ...	2019-08-15 21:54:29
150.223.0.8	attackbots	Aug 15 00:06:01 auw2 sshd\[7776\]: Invalid user dev from 150.223.0.8 Aug 15 00:06:01 auw2 sshd\[7776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.0.8 Aug 15 00:06:03 auw2 sshd\[7776\]: Failed password for invalid user dev from 150.223.0.8 port 59826 ssh2 Aug 15 00:09:20 auw2 sshd\[8156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.223.0.8 user=root Aug 15 00:09:22 auw2 sshd\[8156\]: Failed password for root from 150.223.0.8 port 46087 ssh2	2019-08-15 21:47:33
185.180.14.91	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-15 21:31:37

Recently Reported IPs

213.202.233.161	85.247.0.210	161.122.138.40	29.74.249.203
204.93.183.55	85.50.37.103	212.175.35.194	8.209.2.88
43.86.3.127	120.159.40.90	217.174.105.16	70.120.158.225
94.239.243.130	92.118.114.141	152.0.70.139	113.250.150.116
155.14.93.54	92.111.21.129	239.92.104.118	27.160.194.170