158.174.136.134

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Bahnhof AB

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	60001/tcp 60001/tcp [2019-10-26/27]2pkt	2019-10-29 00:04:17

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.174.136.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26407
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;158.174.136.134.		IN	A

;; AUTHORITY SECTION:
.			388	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 00:04:14 CST 2019
;; MSG SIZE  rcvd: 119

Host info

134.136.174.158.in-addr.arpa domain name pointer h-158-174-136-134.NA.cust.bahnhof.se.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.136.174.158.in-addr.arpa	name = h-158-174-136-134.NA.cust.bahnhof.se.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.170.255.24	attackbots	Dec 19 05:21:47 php1 sshd\[10859\]: Invalid user test from 107.170.255.24 Dec 19 05:21:47 php1 sshd\[10859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.255.24 Dec 19 05:21:49 php1 sshd\[10859\]: Failed password for invalid user test from 107.170.255.24 port 58949 ssh2 Dec 19 05:28:00 php1 sshd\[11514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.255.24 user=root Dec 19 05:28:02 php1 sshd\[11514\]: Failed password for root from 107.170.255.24 port 35242 ssh2	2019-12-19 23:38:59
147.135.163.83	attackbots	Dec 19 05:14:57 tdfoods sshd\[29413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip83.ip-147-135-163.eu user=root Dec 19 05:14:58 tdfoods sshd\[29413\]: Failed password for root from 147.135.163.83 port 33425 ssh2 Dec 19 05:21:38 tdfoods sshd\[30019\]: Invalid user administrator from 147.135.163.83 Dec 19 05:21:38 tdfoods sshd\[30019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip83.ip-147-135-163.eu Dec 19 05:21:40 tdfoods sshd\[30019\]: Failed password for invalid user administrator from 147.135.163.83 port 40167 ssh2	2019-12-19 23:36:18
158.69.195.175	attackbots	Dec 19 05:28:14 wbs sshd\[28817\]: Invalid user home from 158.69.195.175 Dec 19 05:28:14 wbs sshd\[28817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.ip-158-69-195.net Dec 19 05:28:15 wbs sshd\[28817\]: Failed password for invalid user home from 158.69.195.175 port 47174 ssh2 Dec 19 05:33:35 wbs sshd\[29322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.ip-158-69-195.net user=root Dec 19 05:33:37 wbs sshd\[29322\]: Failed password for root from 158.69.195.175 port 54006 ssh2	2019-12-19 23:38:14
45.148.10.51	attack	Trying out my SMTP servers: Out: 220 In: EHLO ylmf-pc Out: 250-mx5.tests.lm.gov.lv Out: 250-PIPELINING Out: 250-SIZE 31000000 Out: 250-ETRN Out: 250-ENHANCEDSTATUSCODES Out: 250-8BITMIME Out: 250 DSN In: AUTH LOGIN Out: 503 5.5.1 Error: authentication not enabled Out: 421 4.4.2 Error: timeout exceeded	2019-12-20 00:14:40
221.204.170.222	attackbots	Dec 19 20:50:45 gw1 sshd[26630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.204.170.222 Dec 19 20:50:47 gw1 sshd[26630]: Failed password for invalid user theon from 221.204.170.222 port 45662 ssh2 ...	2019-12-19 23:51:44
138.204.201.246	attack	Unauthorized connection attempt from IP address 138.204.201.246 on Port 445(SMB)	2019-12-20 00:18:33
191.232.198.212	attackbots	Dec 19 05:40:17 web9 sshd\[17500\]: Invalid user squid from 191.232.198.212 Dec 19 05:40:17 web9 sshd\[17500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.198.212 Dec 19 05:40:20 web9 sshd\[17500\]: Failed password for invalid user squid from 191.232.198.212 port 60446 ssh2 Dec 19 05:47:55 web9 sshd\[18778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.232.198.212 user=root Dec 19 05:47:58 web9 sshd\[18778\]: Failed password for root from 191.232.198.212 port 40874 ssh2	2019-12-20 00:14:00
121.15.2.178	attackspam	SSH bruteforce	2019-12-20 00:11:33
186.101.32.102	attack	Dec 19 05:16:19 web9 sshd\[13514\]: Invalid user patricia from 186.101.32.102 Dec 19 05:16:19 web9 sshd\[13514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102 Dec 19 05:16:21 web9 sshd\[13514\]: Failed password for invalid user patricia from 186.101.32.102 port 46598 ssh2 Dec 19 05:26:17 web9 sshd\[15086\]: Invalid user guest from 186.101.32.102 Dec 19 05:26:17 web9 sshd\[15086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.101.32.102	2019-12-19 23:40:15
138.36.204.234	attack	Dec 19 16:44:24 ArkNodeAT sshd\[7986\]: Invalid user weichung from 138.36.204.234 Dec 19 16:44:24 ArkNodeAT sshd\[7986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.36.204.234 Dec 19 16:44:26 ArkNodeAT sshd\[7986\]: Failed password for invalid user weichung from 138.36.204.234 port 38024 ssh2	2019-12-20 00:18:57
54.38.18.211	attackbotsspam	Dec 19 16:55:20 sd-53420 sshd\[3343\]: Invalid user vandeven from 54.38.18.211 Dec 19 16:55:20 sd-53420 sshd\[3343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.18.211 Dec 19 16:55:22 sd-53420 sshd\[3343\]: Failed password for invalid user vandeven from 54.38.18.211 port 55002 ssh2 Dec 19 17:00:29 sd-53420 sshd\[5330\]: User root from 54.38.18.211 not allowed because none of user's groups are listed in AllowGroups Dec 19 17:00:29 sd-53420 sshd\[5330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.18.211 user=root ...	2019-12-20 00:06:13
122.174.65.225	attackspambots	Dec 19 15:38:19 grey postfix/smtpd\[5369\]: NOQUEUE: reject: RCPT from unknown\[122.174.65.225\]: 554 5.7.1 Service unavailable\; Client host \[122.174.65.225\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?122.174.65.225\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-19 23:58:59
94.102.49.193	attack	firewall-block, port(s): 8080/tcp	2019-12-20 00:00:29
51.77.215.227	attack	Dec 19 16:38:23 nextcloud sshd\[31627\]: Invalid user hamada from 51.77.215.227 Dec 19 16:38:23 nextcloud sshd\[31627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.215.227 Dec 19 16:38:25 nextcloud sshd\[31627\]: Failed password for invalid user hamada from 51.77.215.227 port 53756 ssh2 ...	2019-12-20 00:12:30
45.82.153.141	attackbotsspam	Dec 19 17:07:08 relay postfix/smtpd\[20488\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 19 17:07:29 relay postfix/smtpd\[20460\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 19 17:07:31 relay postfix/smtpd\[20488\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 19 17:07:51 relay postfix/smtpd\[20506\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 19 17:09:36 relay postfix/smtpd\[20460\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-20 00:10:33

Recently Reported IPs

96.5.232.111	49.151.4.251	46.242.61.60	5.139.217.202
194.36.191.169	128.71.131.68	235.84.78.227	45.243.178.79
42.118.151.119	37.190.61.233	201.164.44.130	83.126.58.188
183.82.18.123	181.23.79.60	178.127.59.252	154.132.93.210
177.131.108.68	171.96.217.241	221.0.92.241	150.107.143.114