36.80.109.150 - IPInfo

Basic Info

City: Bandung

Region: West Java

Country: Indonesia

Internet Service Provider: Esia

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
36.80.109.152	attack	Sun, 21 Jul 2019 07:35:02 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 02:08:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.80.109.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59016
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;36.80.109.150.			IN	A

;; AUTHORITY SECTION:
.			192	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020102401 1800 900 604800 86400

;; Query time: 167 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 25 10:36:53 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 150.109.80.36.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.136, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 150.109.80.36.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.119.181.7	attackspambots	(From darren@custompicsfromairplane.com) Hello Aerial Impressions will be photographing businesses and homes in Tonganoxie, Kansas and throughout most of the USA from Sept 17th. Aerial photographs of Ford Scott D Dc would make a great addition to your advertising material and photos of your home will make a awesome wall hanging. We shoot 30+ images from various aspects from an airplane (we do not use drones) and deliver digitally free from any copyright. Only $249 per location. For more info, schedule and bookings please visit www.custompicsfromairplane.com Regards Aerial Impressions	2019-09-13 05:21:04
112.81.113.58	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-09-13 05:11:11
222.186.15.110	attackbots	Sep 13 03:37:05 webhost01 sshd[32537]: Failed password for root from 222.186.15.110 port 10899 ssh2 ...	2019-09-13 04:52:54
221.162.255.86	attack	Automatic report	2019-09-13 04:43:19
177.16.125.101	attack	2019-09-12T20:55:00.035989abusebot-5.cloudsearch.cf sshd\[10066\]: Invalid user welcome from 177.16.125.101 port 60855	2019-09-13 05:03:56
216.83.53.207	attack	19/9/12@10:47:31: FAIL: Alarm-Intrusion address from=216.83.53.207 ...	2019-09-13 05:29:00
54.38.82.14	attackspam	Sep 12 15:41:15 vps200512 sshd\[16113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 user=root Sep 12 15:41:17 vps200512 sshd\[16113\]: Failed password for root from 54.38.82.14 port 55869 ssh2 Sep 12 15:41:18 vps200512 sshd\[16115\]: Invalid user admin from 54.38.82.14 Sep 12 15:41:18 vps200512 sshd\[16115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 Sep 12 15:41:19 vps200512 sshd\[16115\]: Failed password for invalid user admin from 54.38.82.14 port 39591 ssh2	2019-09-13 04:46:12
121.203.196.135	attackspam	Sep 12 17:47:24 www sshd\[133780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.203.196.135 user=root Sep 12 17:47:26 www sshd\[133780\]: Failed password for root from 121.203.196.135 port 6044 ssh2 Sep 12 17:47:27 www sshd\[133782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.203.196.135 user=root ...	2019-09-13 05:27:56
201.150.5.14	attack	Sep 12 22:35:35 DAAP sshd[32173]: Invalid user ubuntu from 201.150.5.14 port 60044 Sep 12 22:35:35 DAAP sshd[32173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.150.5.14 Sep 12 22:35:35 DAAP sshd[32173]: Invalid user ubuntu from 201.150.5.14 port 60044 Sep 12 22:35:37 DAAP sshd[32173]: Failed password for invalid user ubuntu from 201.150.5.14 port 60044 ssh2 ...	2019-09-13 05:05:34
114.41.192.70	attackspam	23/tcp 23/tcp 23/tcp [2019-09-10/12]3pkt	2019-09-13 05:07:16
121.166.187.237	attack	Sep 12 17:05:54 lenivpn01 kernel: \[533553.956427\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=121.166.187.237 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=32712 DF PROTO=TCP SPT=56248 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 12 17:05:55 lenivpn01 kernel: \[533554.961447\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=121.166.187.237 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=32713 DF PROTO=TCP SPT=56248 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Sep 12 17:05:57 lenivpn01 kernel: \[533556.977574\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=121.166.187.237 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=47 ID=32714 DF PROTO=TCP SPT=56248 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 ...	2019-09-13 04:51:22
131.221.168.90	attackspambots	445/tcp 445/tcp 445/tcp... [2019-07-17/09-11]6pkt,1pt.(tcp)	2019-09-13 05:20:46
221.4.223.107	attack	Sep 12 05:51:58 eddieflores sshd\[9639\]: Invalid user steam from 221.4.223.107 Sep 12 05:51:58 eddieflores sshd\[9639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.4.223.107 Sep 12 05:52:00 eddieflores sshd\[9639\]: Failed password for invalid user steam from 221.4.223.107 port 59696 ssh2 Sep 12 05:56:33 eddieflores sshd\[9998\]: Invalid user admin1 from 221.4.223.107 Sep 12 05:56:33 eddieflores sshd\[9998\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.4.223.107	2019-09-13 04:44:08
8.9.8.240	attack	Sep 12 16:10:33 xxxxxxx0 sshd[19084]: Invalid user linuxadmin from 8.9.8.240 port 49348 Sep 12 16:10:33 xxxxxxx0 sshd[19084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.9.8.240 Sep 12 16:10:35 xxxxxxx0 sshd[19084]: Failed password for invalid user linuxadmin from 8.9.8.240 port 49348 ssh2 Sep 12 16:24:26 xxxxxxx0 sshd[21871]: Invalid user ts3server from 8.9.8.240 port 47450 Sep 12 16:24:26 xxxxxxx0 sshd[21871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.9.8.240 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=8.9.8.240	2019-09-13 05:20:25
138.68.4.175	attack	Sep 12 09:18:02 hcbb sshd\[22043\]: Invalid user ts3 from 138.68.4.175 Sep 12 09:18:02 hcbb sshd\[22043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.175 Sep 12 09:18:04 hcbb sshd\[22043\]: Failed password for invalid user ts3 from 138.68.4.175 port 38358 ssh2 Sep 12 09:24:21 hcbb sshd\[22628\]: Invalid user user1 from 138.68.4.175 Sep 12 09:24:21 hcbb sshd\[22628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.4.175	2019-09-13 04:54:27

Recently Reported IPs

185.63.153.204	89.40.206.154	80.182.156.194	80.182.156.110
70.32.2.223	40.126.14.164	137.220.178.154	157.230.48.236
203.76.244.114	74.119.32.245	182.133.237.182	103.57.83.254
73.105.31.174	160.113.1.238	185.62.253.137	185.63.252.200
185.63.252.244	185.63.252.210	91.114.52.206	157.245.53.55