123.30.149.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Vietnam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Failed password for invalid user butter from 123.30.149.34 port 43127 ssh2	2020-08-30 21:12:03
attackspam	Aug 28 16:01:07 dignus sshd[18800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 user=root Aug 28 16:01:09 dignus sshd[18800]: Failed password for root from 123.30.149.34 port 48329 ssh2 Aug 28 16:03:13 dignus sshd[19030]: Invalid user postgres from 123.30.149.34 port 35658 Aug 28 16:03:13 dignus sshd[19030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 Aug 28 16:03:14 dignus sshd[19030]: Failed password for invalid user postgres from 123.30.149.34 port 35658 ssh2 ...	2020-08-29 07:44:54
attackspam	Aug 28 17:10:41 XXX sshd[51775]: Invalid user admin from 123.30.149.34 port 33200	2020-08-29 02:26:18
attackbotsspam	Aug 26 23:35:39 nuernberg-4g-01 sshd[8883]: Failed password for root from 123.30.149.34 port 49575 ssh2 Aug 26 23:38:33 nuernberg-4g-01 sshd[9845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 Aug 26 23:38:35 nuernberg-4g-01 sshd[9845]: Failed password for invalid user admin from 123.30.149.34 port 43799 ssh2	2020-08-27 07:09:03
attack	Triggered by Fail2Ban at Ares web server	2020-08-22 21:27:57
attackspam	2020-08-15 15:44:23.494557-0500 localhost sshd[8908]: Failed password for root from 123.30.149.34 port 51380 ssh2	2020-08-16 06:54:22
attackbotsspam	frenzy	2020-08-15 18:31:23
attackbots	Invalid user dama from 123.30.149.34 port 38543	2020-07-24 01:13:15
attackspambots	Jul 15 03:57:08 vps687878 sshd\[21855\]: Failed password for invalid user ftp2 from 123.30.149.34 port 47145 ssh2 Jul 15 04:00:41 vps687878 sshd\[22228\]: Invalid user mrm from 123.30.149.34 port 43113 Jul 15 04:00:41 vps687878 sshd\[22228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 Jul 15 04:00:43 vps687878 sshd\[22228\]: Failed password for invalid user mrm from 123.30.149.34 port 43113 ssh2 Jul 15 04:04:18 vps687878 sshd\[22565\]: Invalid user jack from 123.30.149.34 port 39077 Jul 15 04:04:18 vps687878 sshd\[22565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 ...	2020-07-15 10:25:03
attackspam	Multiple SSH authentication failures from 123.30.149.34	2020-07-01 04:25:03
attackbotsspam	Invalid user matthieu from 123.30.149.34 port 51232	2020-06-27 15:46:31
attackspambots	2020-06-18T14:02:07.301438vps751288.ovh.net sshd\[23925\]: Invalid user ss3server from 123.30.149.34 port 60704 2020-06-18T14:02:07.315157vps751288.ovh.net sshd\[23925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34 2020-06-18T14:02:09.034293vps751288.ovh.net sshd\[23925\]: Failed password for invalid user ss3server from 123.30.149.34 port 60704 ssh2 2020-06-18T14:06:39.298789vps751288.ovh.net sshd\[23959\]: Invalid user school from 123.30.149.34 port 60348 2020-06-18T14:06:39.306804vps751288.ovh.net sshd\[23959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.34	2020-06-18 23:55:38
attackbots	fail2ban -- 123.30.149.34 ...	2020-06-17 16:08:03
attack	Invalid user backup from 123.30.149.34 port 33716	2020-05-27 06:54:02

Comments on same subnet:

IP	Type	Details	Datetime
123.30.149.76	attack	(sshd) Failed SSH login from 123.30.149.76 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 3 17:29:47 server2 sshd[20878]: Invalid user arkserver from 123.30.149.76 port 51796 Oct 3 17:29:48 server2 sshd[20878]: Failed password for invalid user arkserver from 123.30.149.76 port 51796 ssh2 Oct 3 17:34:17 server2 sshd[21704]: Invalid user minecraft from 123.30.149.76 port 56520 Oct 3 17:34:20 server2 sshd[21704]: Failed password for invalid user minecraft from 123.30.149.76 port 56520 ssh2 Oct 3 17:38:31 server2 sshd[22315]: Invalid user postgres from 123.30.149.76 port 60162	2020-10-04 04:34:50
123.30.149.76	attackbots	Oct 3 11:02:35 scw-gallant-ride sshd[12402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.76	2020-10-03 20:41:09
123.30.149.76	attackbotsspam	$f2bV_matches	2020-10-03 12:07:07
123.30.149.76	attackbots	$f2bV_matches	2020-10-03 06:49:02
123.30.149.92	attack	(sshd) Failed SSH login from 123.30.149.92 (VN/Vietnam/static.vnpt.vn): 5 in the last 3600 secs	2020-09-23 20:08:22
123.30.149.92	attackspambots	2020-09-22T00:51:52.539467morrigan.ad5gb.com sshd[2093287]: Failed password for invalid user alumni from 123.30.149.92 port 63654 ssh2	2020-09-23 12:30:00
123.30.149.92	attackbotsspam	Sep 22 19:05:32 mail sshd[414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.92 Sep 22 19:05:34 mail sshd[414]: Failed password for invalid user setup from 123.30.149.92 port 40625 ssh2 ...	2020-09-23 04:15:49
123.30.149.92	attackspam	Sep 13 16:06:47 *** sshd[31583]: User root from 123.30.149.92 not allowed because not listed in AllowUsers	2020-09-14 02:07:30
123.30.149.92	attackspambots	Sep 13 00:26:01 jane sshd[19537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.92 Sep 13 00:26:04 jane sshd[19537]: Failed password for invalid user castis from 123.30.149.92 port 34841 ssh2 ...	2020-09-13 18:04:17
123.30.149.76	attackspam	Sep 12 20:30:26 rancher-0 sshd[8351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.76 user=root Sep 12 20:30:29 rancher-0 sshd[8351]: Failed password for root from 123.30.149.76 port 52207 ssh2 ...	2020-09-13 03:21:16
123.30.149.76	attackspambots	...	2020-09-12 19:26:52
123.30.149.76	attack	2020-09-03T11:47:07.689586mail.broermann.family sshd[22313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.76 2020-09-03T11:47:07.685419mail.broermann.family sshd[22313]: Invalid user joshua from 123.30.149.76 port 35900 2020-09-03T11:47:08.990561mail.broermann.family sshd[22313]: Failed password for invalid user joshua from 123.30.149.76 port 35900 ssh2 2020-09-03T11:49:40.466327mail.broermann.family sshd[22383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.76 user=root 2020-09-03T11:49:42.439703mail.broermann.family sshd[22383]: Failed password for root from 123.30.149.76 port 54471 ssh2 ...	2020-09-03 21:46:20
123.30.149.76	attackbots	2020-09-02T22:00:26.173781paragon sshd[16398]: Invalid user administrator from 123.30.149.76 port 54512 2020-09-02T22:00:26.177724paragon sshd[16398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.76 2020-09-02T22:00:26.173781paragon sshd[16398]: Invalid user administrator from 123.30.149.76 port 54512 2020-09-02T22:00:28.359654paragon sshd[16398]: Failed password for invalid user administrator from 123.30.149.76 port 54512 ssh2 2020-09-02T22:04:34.131723paragon sshd[16460]: Invalid user sale from 123.30.149.76 port 57279 ...	2020-09-03 13:28:47
123.30.149.76	attackspambots	2020-09-02T22:00:26.173781paragon sshd[16398]: Invalid user administrator from 123.30.149.76 port 54512 2020-09-02T22:00:26.177724paragon sshd[16398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.149.76 2020-09-02T22:00:26.173781paragon sshd[16398]: Invalid user administrator from 123.30.149.76 port 54512 2020-09-02T22:00:28.359654paragon sshd[16398]: Failed password for invalid user administrator from 123.30.149.76 port 54512 ssh2 2020-09-02T22:04:34.131723paragon sshd[16460]: Invalid user sale from 123.30.149.76 port 57279 ...	2020-09-03 05:42:44
123.30.149.92	attackbotsspam	Invalid user user1 from 123.30.149.92 port 37787	2020-08-30 15:23:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.30.149.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40973
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.30.149.34.			IN	A

;; AUTHORITY SECTION:
.			579	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052602 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 27 06:53:59 CST 2020
;; MSG SIZE  rcvd: 117

Host info

34.149.30.123.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
34.149.30.123.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
196.27.127.61	attack	Jul 27 16:23:27 eventyay sshd[6807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.27.127.61 Jul 27 16:23:29 eventyay sshd[6807]: Failed password for invalid user localadmin from 196.27.127.61 port 45606 ssh2 Jul 27 16:24:54 eventyay sshd[6903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.27.127.61 ...	2020-07-27 22:42:20
129.204.33.4	attackspam	leo_www	2020-07-27 22:30:12
112.105.121.91	attack	Jul 27 14:03:58 master sshd[5212]: Failed password for root from 112.105.121.91 port 41251 ssh2	2020-07-27 22:35:06
122.202.48.251	attack	reported through recidive - multiple failed attempts(SSH)	2020-07-27 22:58:21
62.149.29.51	attackbots	[MonJul2713:01:09.0618262020][:error][pid22826:tid139903453071104][client62.149.29.51:26010][client62.149.29.51]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\<\?script\\|\<\?\(\?:i\?frame\?src\\|a\?href$\?=\?$\?:ogg\\|tls\\|ssl\\|gopher\\|zlib\\|\(ht\\|f$tps\?\)\\\\\\\\:/\\|document\\\\\\\\.write\?\\\\\\\\$\\|\(\?:\<\\|\<\?/$\?$\?:\(\?:java\\|vb$script\\|applet\\|activex\\|chrome\\|qx\?ss\\|embed\)\\|\<\?/\?i\?frame\\\\\\\\b\\|\<\?imgsrc\?=\\|\<\?basehref\?=\)"atARGS:message.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1139"][id"340148"][rev"156"][msg"Atomicorp.comWAFRules:PotentialCrossSiteScriptingAttack"][data"\	2020-07-27 22:19:52
117.221.45.16	attackbotsspam	1595850859 - 07/27/2020 13:54:19 Host: 117.221.45.16/117.221.45.16 Port: 445 TCP Blocked	2020-07-27 22:59:11
220.130.10.13	attack	2020-07-27T08:13:22.136260server.mjenks.net sshd[3822320]: Invalid user edy from 220.130.10.13 port 60304 2020-07-27T08:13:22.142038server.mjenks.net sshd[3822320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.130.10.13 2020-07-27T08:13:22.136260server.mjenks.net sshd[3822320]: Invalid user edy from 220.130.10.13 port 60304 2020-07-27T08:13:23.803607server.mjenks.net sshd[3822320]: Failed password for invalid user edy from 220.130.10.13 port 60304 ssh2 2020-07-27T08:18:07.982286server.mjenks.net sshd[3822756]: Invalid user ibmadm from 220.130.10.13 port 54922 ...	2020-07-27 22:35:53
191.235.82.109	attack	Jul 27 13:49:13 abendstille sshd\[29992\]: Invalid user admin from 191.235.82.109 Jul 27 13:49:13 abendstille sshd\[29992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.82.109 Jul 27 13:49:15 abendstille sshd\[29992\]: Failed password for invalid user admin from 191.235.82.109 port 46712 ssh2 Jul 27 13:54:24 abendstille sshd\[2650\]: Invalid user git from 191.235.82.109 Jul 27 13:54:24 abendstille sshd\[2650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.235.82.109 ...	2020-07-27 22:55:53
157.230.132.100	attack	Jul 27 19:41:40 gw1 sshd[10463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.132.100 Jul 27 19:41:42 gw1 sshd[10463]: Failed password for invalid user kbkim from 157.230.132.100 port 42164 ssh2 ...	2020-07-27 22:59:34
132.148.28.20	attackspam	132.148.28.20 - - [27/Jul/2020:12:54:54 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.28.20 - - [27/Jul/2020:12:54:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1977 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.28.20 - - [27/Jul/2020:12:54:57 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-27 22:31:04
218.92.0.215	attackbotsspam	Jul 27 15:36:31 rocket sshd[19545]: Failed password for root from 218.92.0.215 port 57002 ssh2 Jul 27 15:36:42 rocket sshd[19562]: Failed password for root from 218.92.0.215 port 40474 ssh2 ...	2020-07-27 22:52:23
125.46.11.67	attackspambots	Port scanning [4 denied]	2020-07-27 22:53:29
61.177.172.54	attack	Jul 27 16:15:16 santamaria sshd\[15908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.54 user=root Jul 27 16:15:18 santamaria sshd\[15908\]: Failed password for root from 61.177.172.54 port 13734 ssh2 Jul 27 16:15:35 santamaria sshd\[15910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.54 user=root ...	2020-07-27 22:26:51
139.59.69.76	attack	$f2bV_matches	2020-07-27 22:41:17
80.82.77.212	attackbots	Jul 27 16:22:02 debian-2gb-nbg1-2 kernel: \[18118227.316073\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.77.212 DST=195.201.40.59 LEN=130 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=UDP SPT=45845 DPT=17 LEN=110	2020-07-27 22:45:01

Recently Reported IPs

102.124.199.68	113.183.162.229	37.74.221.20	60.60.136.37
166.229.221.194	113.144.207.34	72.88.215.82	79.184.40.193
100.19.42.182	195.224.130.10	124.39.129.158	211.72.45.156
159.192.63.146	107.155.132.167	61.136.61.26	64.103.47.141
106.248.96.116	178.157.234.112	189.94.90.41	89.187.178.188