124.158.147.21

Basic Info

City: Jakarta

Region: Jakarta

Country: Indonesia

Internet Service Provider: PT iForte Global Internet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 124.158.147.21 on Port 445(SMB)	2020-05-12 04:03:52
attackspambots	Unauthorised access (Apr 30) SRC=124.158.147.21 LEN=52 TTL=116 ID=17067 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-01 05:55:07

Comments on same subnet:

IP	Type	Details	Datetime
124.158.147.86	attack	unauthorized connection attempt	2020-02-26 18:12:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.158.147.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.158.147.21.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020043001 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 05:55:03 CST 2020
;; MSG SIZE  rcvd: 118

Host info

21.147.158.124.in-addr.arpa domain name pointer 21.147.158.124.in-addr.arpa.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.147.158.124.in-addr.arpa	name = 21.147.158.124.in-addr.arpa.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.99.56.117	attackbots	Apr 13 04:41:01 NPSTNNYC01T sshd[19656]: Failed password for root from 192.99.56.117 port 43682 ssh2 Apr 13 04:45:21 NPSTNNYC01T sshd[20378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.56.117 Apr 13 04:45:23 NPSTNNYC01T sshd[20378]: Failed password for invalid user postgres from 192.99.56.117 port 55916 ssh2 ...	2020-04-13 17:50:40
172.14.68.177	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-13 17:51:11
103.72.144.228	attack	2020-04-13T08:30:47.713442randservbullet-proofcloud-66.localdomain sshd[2015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.72.144.228 user=root 2020-04-13T08:30:49.820713randservbullet-proofcloud-66.localdomain sshd[2015]: Failed password for root from 103.72.144.228 port 41834 ssh2 2020-04-13T08:45:07.614779randservbullet-proofcloud-66.localdomain sshd[2106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.72.144.228 user=root 2020-04-13T08:45:09.451881randservbullet-proofcloud-66.localdomain sshd[2106]: Failed password for root from 103.72.144.228 port 55418 ssh2 ...	2020-04-13 18:12:25
59.80.30.174	attack	Apr 13 10:38:30 hell sshd[724]: Failed password for root from 59.80.30.174 port 37300 ssh2 ...	2020-04-13 18:00:10
159.192.143.249	attack	2020-04-13T09:26:33.451785shield sshd\[28977\]: Invalid user admin from 159.192.143.249 port 38938 2020-04-13T09:26:33.454707shield sshd\[28977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.143.249 2020-04-13T09:26:35.577279shield sshd\[28977\]: Failed password for invalid user admin from 159.192.143.249 port 38938 ssh2 2020-04-13T09:30:37.350173shield sshd\[29761\]: Invalid user jkapkea from 159.192.143.249 port 44844 2020-04-13T09:30:37.353184shield sshd\[29761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.143.249	2020-04-13 18:11:45
139.59.67.82	attackspambots	Apr 12 23:26:56 web9 sshd\[28037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.67.82 user=root Apr 12 23:26:58 web9 sshd\[28037\]: Failed password for root from 139.59.67.82 port 48598 ssh2 Apr 12 23:29:43 web9 sshd\[28471\]: Invalid user admin from 139.59.67.82 Apr 12 23:29:43 web9 sshd\[28471\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.67.82 Apr 12 23:29:45 web9 sshd\[28471\]: Failed password for invalid user admin from 139.59.67.82 port 33518 ssh2	2020-04-13 17:50:17
222.186.175.163	attackbotsspam	Apr 13 11:16:40 combo sshd[18039]: Failed password for root from 222.186.175.163 port 29304 ssh2 Apr 13 11:16:43 combo sshd[18039]: Failed password for root from 222.186.175.163 port 29304 ssh2 Apr 13 11:16:46 combo sshd[18039]: Failed password for root from 222.186.175.163 port 29304 ssh2 ...	2020-04-13 18:22:21
62.4.54.158	attack	Apr 13 09:23:49 mail.srvfarm.net postfix/smtpd[775967]: NOQUEUE: reject: RCPT from unknown[62.4.54.158]: 554 5.7.1 Service unavailable; Client host [62.4.54.158] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?62.4.54.158; from= to= proto=ESMTP helo= Apr 13 09:23:50 mail.srvfarm.net postfix/smtpd[775967]: NOQUEUE: reject: RCPT from unknown[62.4.54.158]: 554 5.7.1 Service unavailable; Client host [62.4.54.158] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?62.4.54.158; from= to= proto=ESMTP helo= Apr 13 09:23:50 mail.srvfarm.net postfix/smtpd[775967]: NOQUEUE: reject: RCPT from unknown[62.4.54.158]: 554 5.7.1 Service unavailable; Client host [62.4.54.158] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?62.4.54.158; from= to= proto=ESMTP helo= Apr 13 09:23:5	2020-04-13 18:16:58
49.235.87.213	attackspambots	Apr 13 11:38:53 host01 sshd[3706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.87.213 Apr 13 11:38:55 host01 sshd[3706]: Failed password for invalid user desadm from 49.235.87.213 port 36228 ssh2 Apr 13 11:43:20 host01 sshd[5162]: Failed password for root from 49.235.87.213 port 56618 ssh2 ...	2020-04-13 17:53:17
105.255.158.250	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-04-13 18:07:19
200.29.106.65	attackspambots	Apr 13 12:20:44 pkdns2 sshd\[28038\]: Failed password for root from 200.29.106.65 port 54338 ssh2Apr 13 12:20:47 pkdns2 sshd\[28041\]: Invalid user shit from 200.29.106.65Apr 13 12:20:49 pkdns2 sshd\[28041\]: Failed password for invalid user shit from 200.29.106.65 port 54876 ssh2Apr 13 12:20:53 pkdns2 sshd\[28043\]: Failed password for root from 200.29.106.65 port 55512 ssh2Apr 13 12:20:57 pkdns2 sshd\[28046\]: Failed password for root from 200.29.106.65 port 56008 ssh2Apr 13 12:21:02 pkdns2 sshd\[28051\]: Failed password for root from 200.29.106.65 port 56554 ssh2 ...	2020-04-13 17:58:14
79.104.45.218	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-13 17:49:09
36.80.189.135	attackbots	Unauthorized connection attempt from IP address 36.80.189.135 on Port 445(SMB)	2020-04-13 18:12:43
5.107.225.100	attackbotsspam	Unauthorized connection attempt from IP address 5.107.225.100 on Port 445(SMB)	2020-04-13 18:06:02
66.181.186.73	attackbotsspam	Unauthorized connection attempt from IP address 66.181.186.73 on Port 445(SMB)	2020-04-13 17:52:55

Recently Reported IPs

52.184.29.153	204.112.61.135	196.215.73.184	153.177.202.51
42.145.102.205	20.36.37.172	173.238.104.178	182.23.170.8
185.194.45.81	160.178.122.80	105.164.252.44	46.10.154.136
177.126.135.129	113.88.240.34	129.161.72.237	193.175.4.76
45.67.235.29	106.117.217.247	5.191.114.97	58.97.240.0