116.197.134.159

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.197.134.98	attackbots	Jun 23 03:41:21 server sshd\[12396\]: Invalid user recepcion from 116.197.134.98 Jun 23 03:41:21 server sshd\[12396\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.197.134.98 Jun 23 03:41:23 server sshd\[12396\]: Failed password for invalid user recepcion from 116.197.134.98 port 42198 ssh2 ...	2019-07-17 12:54:33

Type

Details

Datetime

116.197.134.98

attackbots

Jun 23 03:41:21 server sshd\[12396\]: Invalid user recepcion from 116.197.134.98
Jun 23 03:41:21 server sshd\[12396\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.197.134.98
Jun 23 03:41:23 server sshd\[12396\]: Failed password for invalid user recepcion from 116.197.134.98 port 42198 ssh2
...

2019-07-17 12:54:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.197.134.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60187
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.197.134.159.		IN	A

;; AUTHORITY SECTION:
.			170	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 18:56:01 CST 2022
;; MSG SIZE  rcvd: 108

Host info

159.134.197.116.in-addr.arpa domain name pointer 159-134smkn53-jakarta.fiber.net.id.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
159.134.197.116.in-addr.arpa	name = 159-134smkn53-jakarta.fiber.net.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.6.133.148	attackbotsspam	Unauthorized connection attempt from IP address 117.6.133.148 on Port 445(SMB)	2019-08-31 00:19:58
195.154.43.23	attack	\[2019-08-30 12:26:21\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-30T12:26:21.585-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01116136995593",SessionID="0x7f7b302cefa8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.43.23/59203",ACLName="no_extension_match" \[2019-08-30 12:28:06\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-30T12:28:06.426-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901116136995593",SessionID="0x7f7b301c17c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.43.23/61286",ACLName="no_extension_match" \[2019-08-30 12:29:52\] SECURITY\[1837\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-30T12:29:52.711-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="801116136995593",SessionID="0x7f7b30be0af8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.43.23/53812",ACLName="no_exte	2019-08-31 00:38:36
125.106.60.190	attack	Lines containing failures of 125.106.60.190 Aug 30 09:23:28 nextcloud sshd[31300]: Invalid user admin from 125.106.60.190 port 49321 Aug 30 09:23:28 nextcloud sshd[31300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.106.60.190 Aug 30 09:23:29 nextcloud sshd[31300]: Failed password for invalid user admin from 125.106.60.190 port 49321 ssh2 Aug 30 09:23:31 nextcloud sshd[31300]: Failed password for invalid user admin from 125.106.60.190 port 49321 ssh2 Aug 30 09:23:34 nextcloud sshd[31300]: Failed password for invalid user admin from 125.106.60.190 port 49321 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.106.60.190	2019-08-31 00:25:52
80.211.60.98	attackbots	Aug 30 16:06:46 web8 sshd\[16174\]: Invalid user manager from 80.211.60.98 Aug 30 16:06:46 web8 sshd\[16174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.60.98 Aug 30 16:06:49 web8 sshd\[16174\]: Failed password for invalid user manager from 80.211.60.98 port 34424 ssh2 Aug 30 16:11:09 web8 sshd\[18438\]: Invalid user edi from 80.211.60.98 Aug 30 16:11:09 web8 sshd\[18438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.60.98	2019-08-31 00:16:05
40.76.40.239	attackbots	Aug 30 06:25:28 auw2 sshd\[5007\]: Invalid user christian from 40.76.40.239 Aug 30 06:25:28 auw2 sshd\[5007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.40.239 Aug 30 06:25:30 auw2 sshd\[5007\]: Failed password for invalid user christian from 40.76.40.239 port 37714 ssh2 Aug 30 06:29:59 auw2 sshd\[5337\]: Invalid user ethernet from 40.76.40.239 Aug 30 06:29:59 auw2 sshd\[5337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.76.40.239	2019-08-31 00:35:44
37.49.224.137	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-08-30 23:39:03
113.177.134.148	attackbotsspam	until 2019-08-30T05:24:20+01:00, observations: 2, account names: 1	2019-08-30 23:48:16
86.101.251.123	attack	Automatic report - Banned IP Access	2019-08-31 00:04:28
129.211.82.124	attack	Aug 30 17:21:03 vpn01 sshd\[17533\]: Invalid user yap from 129.211.82.124 Aug 30 17:21:03 vpn01 sshd\[17533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.82.124 Aug 30 17:21:05 vpn01 sshd\[17533\]: Failed password for invalid user yap from 129.211.82.124 port 34468 ssh2	2019-08-31 00:03:57
1.172.19.57	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(08301000)	2019-08-31 00:23:05
103.219.206.37	attackbotsspam	Unauthorized connection attempt from IP address 103.219.206.37 on Port 445(SMB)	2019-08-30 23:48:48
110.232.67.103	attackspambots	Unauthorized connection attempt from IP address 110.232.67.103 on Port 445(SMB)	2019-08-31 00:19:01
78.111.244.110	attack	Unauthorized connection attempt from IP address 78.111.244.110 on Port 445(SMB)	2019-08-30 23:34:40
190.210.42.83	attack	Aug 30 16:23:22 herz-der-gamer sshd[7408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.210.42.83 user=root Aug 30 16:23:25 herz-der-gamer sshd[7408]: Failed password for root from 190.210.42.83 port 58994 ssh2 Aug 30 16:32:54 herz-der-gamer sshd[7639]: Invalid user test from 190.210.42.83 port 53684 ...	2019-08-30 23:45:27
157.230.13.28	attack	Aug 30 17:29:50 mail sshd\[7062\]: Invalid user nk from 157.230.13.28 port 37784 Aug 30 17:29:50 mail sshd\[7062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.13.28 ...	2019-08-31 00:43:08

Recently Reported IPs

116.197.133.81	116.197.134.157	116.197.134.153	116.197.134.169
116.197.134.166	116.197.134.130	114.104.19.228	116.197.134.198
116.197.134.222	116.197.134.227	116.197.134.242	116.197.134.235
116.197.134.49	116.197.134.72	116.197.134.77	116.197.134.57
116.197.134.250	114.104.19.232	114.104.19.239	114.104.19.242