124.158.169.34

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Indonesia Comnets Plus

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 124.158.169.34 on Port 445(SMB)	2020-01-03 18:53:29

Comments on same subnet:

IP	Type	Details	Datetime
124.158.169.178	attack	Unauthorized connection attempt from IP address 124.158.169.178 on Port 445(SMB)	2020-08-19 22:31:25
124.158.169.178	attackspambots	Port Scanner	2020-07-05 20:02:37
124.158.169.178	attackbotsspam	Port Scanner	2020-06-04 12:52:59
124.158.169.226	attack	1582174649 - 02/20/2020 05:57:29 Host: 124.158.169.226/124.158.169.226 Port: 445 TCP Blocked	2020-02-20 13:06:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.158.169.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47533
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.158.169.34.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010300 1800 900 604800 86400

;; Query time: 153 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 18:53:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 34.169.158.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.169.158.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.110.24.21	attackspambots	Unauthorized connection attempt detected from IP address 41.110.24.21 to port 1433 [J]	2020-02-05 03:01:51
52.187.163.117	attack	Feb 4 19:02:10 pornomens sshd\[32449\]: Invalid user weng123 from 52.187.163.117 port 39902 Feb 4 19:02:10 pornomens sshd\[32449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.187.163.117 Feb 4 19:02:12 pornomens sshd\[32449\]: Failed password for invalid user weng123 from 52.187.163.117 port 39902 ssh2 ...	2020-02-05 03:01:35
169.239.159.52	attackbots	Feb 4 14:49:18 grey postfix/smtpd\[23104\]: NOQUEUE: reject: RCPT from unknown\[169.239.159.52\]: 554 5.7.1 Service unavailable\; Client host \[169.239.159.52\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=169.239.159.52\; from=\ to=\ proto=ESMTP helo=\<\[169.239.159.52\]\> ...	2020-02-05 02:43:29
190.151.105.182	attackbotsspam	Feb 4 06:23:13 mockhub sshd[7899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.151.105.182 Feb 4 06:23:14 mockhub sshd[7899]: Failed password for invalid user otrs from 190.151.105.182 port 41730 ssh2 ...	2020-02-05 02:40:04
134.73.27.46	attackspambots	2019-05-11 05:45:04 1hPIwa-0001Tf-DF SMTP connection from animated.proanimakers.com $animated.sappmobile.icu$ \[134.73.27.46\]:50480 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-11 05:46:54 1hPIyM-0001Vg-DM SMTP connection from animated.proanimakers.com $animated.sappmobile.icu$ \[134.73.27.46\]:36057 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-11 05:47:43 1hPIz9-0001WE-Dn SMTP connection from animated.proanimakers.com $animated.sappmobile.icu$ \[134.73.27.46\]:60429 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 02:42:25
51.15.204.78	attackspambots	51.15.204.78 was recorded 5 times by 5 hosts attempting to connect to the following ports: 161. Incident counter (4h, 24h, all-time): 5, 10, 10	2020-02-05 03:00:32
106.12.61.168	attack	Feb 4 18:59:27 vps58358 sshd\[6383\]: Invalid user 123456 from 106.12.61.168Feb 4 18:59:28 vps58358 sshd\[6383\]: Failed password for invalid user 123456 from 106.12.61.168 port 50396 ssh2Feb 4 19:04:09 vps58358 sshd\[6401\]: Invalid user taras from 106.12.61.168Feb 4 19:04:11 vps58358 sshd\[6401\]: Failed password for invalid user taras from 106.12.61.168 port 33114 ssh2Feb 4 19:08:31 vps58358 sshd\[6423\]: Invalid user sobols from 106.12.61.168Feb 4 19:08:33 vps58358 sshd\[6423\]: Failed password for invalid user sobols from 106.12.61.168 port 41160 ssh2 ...	2020-02-05 02:41:01
134.209.32.184	attackbots	2019-03-03 17:16:28 1h0Tmu-0003Zb-3I SMTP connection from barometer.excelarabi.com $cattle.sabkefarda.host$ \[134.209.32.184\]:33127 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-03 17:16:42 1h0Tn8-0003ae-0X SMTP connection from barometer.excelarabi.com $alert.sabkefarda.host$ \[134.209.32.184\]:48779 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-03 17:17:25 1h0Tnp-0003bn-Aj SMTP connection from barometer.excelarabi.com $suspect.sabkefarda.host$ \[134.209.32.184\]:48321 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 03:07:16
148.66.142.135	attackbotsspam	Unauthorized connection attempt detected from IP address 148.66.142.135 to port 2220 [J]	2020-02-05 02:51:00
139.59.38.169	attack	Feb 4 14:49:15 ks10 sshd[2414428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.38.169 Feb 4 14:49:17 ks10 sshd[2414428]: Failed password for invalid user xademo from 139.59.38.169 port 43542 ssh2 ...	2020-02-05 02:41:57
221.219.70.26	attackspambots	Feb 4 14:02:13 *** sshd[12239]: Invalid user bagnyk from 221.219.70.26	2020-02-05 03:13:59
134.73.27.35	attack	2019-05-10 09:43:03 1hP0BL-00085u-2g SMTP connection from behave.proanimakers.com $behave.hookitfc.icu$ \[134.73.27.35\]:60597 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-10 09:43:04 1hP0BL-00085w-P9 SMTP connection from behave.proanimakers.com $behave.hookitfc.icu$ \[134.73.27.35\]:57609 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-10 09:44:11 1hP0CR-00087q-0Q SMTP connection from behave.proanimakers.com $behave.hookitfc.icu$ \[134.73.27.35\]:51965 I=\[193.107.90.29\]:25 closed by DROP in ACL ...	2020-02-05 02:49:17
151.45.238.48	attackspam	Helo	2020-02-05 03:05:39
134.209.27.242	attack	2019-05-07 01:37:09 1hNnAT-0001rE-KG SMTP connection from grade.behinmahd.com $clever.nikorohlcke.icu$ \[134.209.27.242\]:34032 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-07 01:40:27 1hNnDf-0001yS-4o SMTP connection from grade.behinmahd.com $plain.nikorohlcke.icu$ \[134.209.27.242\]:34926 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-07 01:40:45 1hNnDx-0001yl-RD SMTP connection from grade.behinmahd.com $awoke.nikorohlcke.icu$ \[134.209.27.242\]:40999 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 03:16:24
222.186.175.181	attack	$f2bV_matches	2020-02-05 03:11:33

Recently Reported IPs

203.72.152.209	103.87.24.34	99.117.193.240	115.28.30.229
73.126.229.112	144.54.51.15	85.154.76.77	34.145.103.242
148.60.163.102	181.241.124.41	33.2.187.234	113.169.80.26
80.252.137.27	110.137.160.225	62.28.23.130	196.219.39.250
106.13.21.24	34.227.113.80	10.208.203.105	150.129.57.235