150.214.1.36 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
150.214.182.247	attackbots	Jun 4 17:29:32 vps46666688 sshd[6993]: Failed password for root from 150.214.182.247 port 45752 ssh2 ...	2020-06-05 05:37:59
150.214.168.161	attackbotsspam	SSH bruteforce	2019-12-07 19:37:33
150.214.168.161	attackspambots	SSH Bruteforce attempt	2019-11-14 13:30:24
150.214.168.161	attackspambots	Nov 13 15:50:59 serwer sshd\[370\]: Invalid user jboss from 150.214.168.161 port 33362 Nov 13 15:50:59 serwer sshd\[370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.168.161 Nov 13 15:51:01 serwer sshd\[370\]: Failed password for invalid user jboss from 150.214.168.161 port 33362 ssh2 ...	2019-11-13 23:48:06
150.214.141.180	attack	SSH Scan	2019-10-22 01:18:53
150.214.141.180	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/150.214.141.180/ ES - 1H : (48) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ES NAME ASN : ASN198096 IP : 150.214.141.180 CIDR : 150.214.0.0/16 PREFIX COUNT : 2 UNIQUE IP COUNT : 67584 ATTACKS DETECTED ASN198096 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-19 18:33:50 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-20 03:45:22
150.214.141.180	attackspambots	Invalid user pi from 150.214.141.180 port 58532	2019-10-19 00:39:25
150.214.136.51	attackspambots	Aug 21 03:11:50 php2 sshd\[15793\]: Invalid user mirc from 150.214.136.51 Aug 21 03:11:50 php2 sshd\[15793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=morfeo.us.es Aug 21 03:11:52 php2 sshd\[15793\]: Failed password for invalid user mirc from 150.214.136.51 port 44114 ssh2 Aug 21 03:16:56 php2 sshd\[16231\]: Invalid user xtn from 150.214.136.51 Aug 21 03:16:56 php2 sshd\[16231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=morfeo.us.es	2019-08-21 21:23:19
150.214.136.51	attackbots	Aug 19 03:19:56 nextcloud sshd\[5154\]: Invalid user mock from 150.214.136.51 Aug 19 03:19:56 nextcloud sshd\[5154\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.136.51 Aug 19 03:19:58 nextcloud sshd\[5154\]: Failed password for invalid user mock from 150.214.136.51 port 41382 ssh2 ...	2019-08-19 09:20:38
150.214.136.51	attackspam	Aug 17 08:45:38 hcbb sshd\[19739\]: Invalid user norcon from 150.214.136.51 Aug 17 08:45:38 hcbb sshd\[19739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=morfeo.us.es Aug 17 08:45:40 hcbb sshd\[19739\]: Failed password for invalid user norcon from 150.214.136.51 port 55214 ssh2 Aug 17 08:50:54 hcbb sshd\[20180\]: Invalid user admin from 150.214.136.51 Aug 17 08:50:54 hcbb sshd\[20180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=morfeo.us.es	2019-08-18 03:05:31
150.214.136.51	attack	Aug 16 23:01:33 srv-4 sshd\[32269\]: Invalid user guest from 150.214.136.51 Aug 16 23:01:33 srv-4 sshd\[32269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.136.51 Aug 16 23:01:35 srv-4 sshd\[32269\]: Failed password for invalid user guest from 150.214.136.51 port 44778 ssh2 ...	2019-08-17 09:31:06
150.214.136.51	attackbotsspam	Lines containing failures of 150.214.136.51 Aug 12 23:11:47 echo390 sshd[7851]: Invalid user sofia from 150.214.136.51 port 53650 Aug 12 23:11:47 echo390 sshd[7851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.136.51 Aug 12 23:11:49 echo390 sshd[7851]: Failed password for invalid user sofia from 150.214.136.51 port 53650 ssh2 Aug 12 23:11:49 echo390 sshd[7851]: Received disconnect from 150.214.136.51 port 53650:11: Bye Bye [preauth] Aug 12 23:11:49 echo390 sshd[7851]: Disconnected from invalid user sofia 150.214.136.51 port 53650 [preauth] Aug 12 23:40:20 echo390 sshd[13006]: Invalid user devopsuser from 150.214.136.51 port 53130 Aug 12 23:40:20 echo390 sshd[13006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.214.136.51 Aug 12 23:40:22 echo390 sshd[13006]: Failed password for invalid user devopsuser from 150.214.136.51 port 53130 ssh2 Aug 12 23:40:22 echo390 sshd[13006]: R........ ------------------------------	2019-08-13 06:27:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 150.214.1.36
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36453
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;150.214.1.36.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:51:47 CST 2022
;; MSG SIZE  rcvd: 105

Host info

36.1.214.150.in-addr.arpa domain name pointer fundaciondescubre01.cica.es.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
36.1.214.150.in-addr.arpa	name = fundaciondescubre01.cica.es.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.69.43.42	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-07 12:13:03
171.103.166.146	attackspambots	Honeypot attack, port: 445, PTR: 171-103-166-146.static.asianet.co.th.	2020-05-07 12:37:19
195.54.167.76	attack	May 7 05:57:37 debian-2gb-nbg1-2 kernel: \[11082744.891607\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.76 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=16213 PROTO=TCP SPT=43306 DPT=32620 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-07 12:17:04
180.252.206.51	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-07 12:23:52
183.89.105.210	attack	Honeypot attack, port: 445, PTR: mx-ll-183.89.105-210.dynamic.3bb.in.th.	2020-05-07 12:03:39
14.166.228.181	attackspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-05-07 12:12:17
193.148.69.157	attackspam	May 6 21:51:40 server1 sshd\[18810\]: Invalid user zl from 193.148.69.157 May 6 21:51:40 server1 sshd\[18810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.148.69.157 May 6 21:51:42 server1 sshd\[18810\]: Failed password for invalid user zl from 193.148.69.157 port 50816 ssh2 May 6 21:57:20 server1 sshd\[20676\]: Invalid user nmap from 193.148.69.157 May 6 21:57:20 server1 sshd\[20676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.148.69.157 ...	2020-05-07 12:35:25
206.189.156.18	attack	SSH login attempts.	2020-05-07 12:18:49
222.252.16.71	attack	May 7 03:57:45 IngegnereFirenze sshd[18316]: Failed password for invalid user spark from 222.252.16.71 port 18441 ssh2 ...	2020-05-07 12:06:52
103.145.12.87	attackspambots	[2020-05-07 00:18:11] NOTICE[1157][C-00000d1e] chan_sip.c: Call from '' (103.145.12.87:52586) to extension '9441482455983' rejected because extension not found in context 'public'. [2020-05-07 00:18:11] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-07T00:18:11.176-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9441482455983",SessionID="0x7f5f100fbea8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.87/52586",ACLName="no_extension_match" [2020-05-07 00:18:21] NOTICE[1157][C-00000d1f] chan_sip.c: Call from '' (103.145.12.87:51202) to extension '011442037698349' rejected because extension not found in context 'public'. [2020-05-07 00:18:21] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-07T00:18:21.371-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037698349",SessionID="0x7f5f108b1628",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103. ...	2020-05-07 12:20:41
119.28.177.36	attackspambots	2020-05-07T03:59:45.940578abusebot-2.cloudsearch.cf sshd[780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.177.36 user=root 2020-05-07T03:59:47.721557abusebot-2.cloudsearch.cf sshd[780]: Failed password for root from 119.28.177.36 port 50494 ssh2 2020-05-07T04:03:16.057822abusebot-2.cloudsearch.cf sshd[809]: Invalid user test from 119.28.177.36 port 53726 2020-05-07T04:03:16.063587abusebot-2.cloudsearch.cf sshd[809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.177.36 2020-05-07T04:03:16.057822abusebot-2.cloudsearch.cf sshd[809]: Invalid user test from 119.28.177.36 port 53726 2020-05-07T04:03:17.813990abusebot-2.cloudsearch.cf sshd[809]: Failed password for invalid user test from 119.28.177.36 port 53726 ssh2 2020-05-07T04:06:44.850580abusebot-2.cloudsearch.cf sshd[920]: Invalid user toor from 119.28.177.36 port 56966 ...	2020-05-07 12:26:55
195.206.105.217	attackbots	port scan and connect, tcp 22 (ssh)	2020-05-07 12:28:42
59.102.18.24	attackspam	Honeypot attack, port: 5555, PTR: 59-102-18-24.tpgi.com.au.	2020-05-07 12:39:53
167.172.242.40	attack	Tool over my email	2020-05-07 12:17:24
104.248.187.165	attackbots	firewall-block, port(s): 31825/tcp	2020-05-07 12:32:09

Recently Reported IPs

150.188.128.10	150.204.241.37	150.22.1.15	150.229.0.235
150.230.145.51	150.230.168.178	150.230.10.121	150.230.194.24
150.229.0.204	150.204.254.81	150.220.59.51	150.230.23.142
150.230.171.230	150.230.238.120	150.230.37.149	150.230.53.147
150.230.74.139	150.230.253.137	150.230.38.225	150.230.84.163