2.134.3.58 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
2.134.32.134	attackspambots	2019-10-23 19:56:55 1iNKsQ-000421-Qp SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19700 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:57:02 1iNKsX-00042A-CO SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19756 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 19:57:07 1iNKsc-00042j-JG SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19784 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 02:09:42
2.134.37.244	attack	CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.	2019-12-30 23:14:10

Type

Details

Datetime

2.134.32.134

attackspambots

2019-10-23 19:56:55 1iNKsQ-000421-Qp SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19700 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-10-23 19:57:02 1iNKsX-00042A-CO SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19756 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-10-23 19:57:07 1iNKsc-00042j-JG SMTP connection from \(2.134.32.134.megaline.telecom.kz\) \[2.134.32.134\]:19784 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-01-30 02:09:42

2.134.37.244

attack

CloudCIX Reconnaissance Scan Detected, PTR: 2.134.37.244.megaline.telecom.kz.

2019-12-30 23:14:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.3.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13222
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.134.3.58.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 16:27:18 CST 2022
;; MSG SIZE  rcvd: 103

Host info

58.3.134.2.in-addr.arpa domain name pointer 2.134.3.58.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
58.3.134.2.in-addr.arpa	name = 2.134.3.58.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.240.68.183	attackspambots	2019-09-15 04:26:36 H=(client-201.240.68.183.speedy.net.pe) [201.240.68.183] F=: Unrouteable address ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=201.240.68.183	2019-09-15 19:06:43
193.70.114.154	attackbotsspam	Sep 15 04:37:59 Ubuntu-1404-trusty-64-minimal sshd\[1442\]: Invalid user kody from 193.70.114.154 Sep 15 04:37:59 Ubuntu-1404-trusty-64-minimal sshd\[1442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154 Sep 15 04:38:01 Ubuntu-1404-trusty-64-minimal sshd\[1442\]: Failed password for invalid user kody from 193.70.114.154 port 42126 ssh2 Sep 15 04:50:09 Ubuntu-1404-trusty-64-minimal sshd\[12412\]: Invalid user ug from 193.70.114.154 Sep 15 04:50:09 Ubuntu-1404-trusty-64-minimal sshd\[12412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154	2019-09-15 18:25:04
222.186.52.124	attack	2019-09-14 UTC: 14x - root(14x)	2019-09-15 17:55:46
178.62.4.64	attack	Invalid user mc from 178.62.4.64 port 59046	2019-09-15 18:57:29
202.72.245.122	attack	Unauthorised access (Sep 15) SRC=202.72.245.122 LEN=40 TTL=244 ID=50449 TCP DPT=445 WINDOW=1024 SYN	2019-09-15 18:00:41
67.207.94.17	attackspambots	Sep 15 11:54:19 srv206 sshd[23263]: Invalid user ash from 67.207.94.17 ...	2019-09-15 19:26:48
222.186.30.165	attackbotsspam	2019-09-15T17:39:46.512997enmeeting.mahidol.ac.th sshd\[29967\]: User root from 222.186.30.165 not allowed because not listed in AllowUsers 2019-09-15T17:39:46.926040enmeeting.mahidol.ac.th sshd\[29967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.165 user=root 2019-09-15T17:39:49.391118enmeeting.mahidol.ac.th sshd\[29967\]: Failed password for invalid user root from 222.186.30.165 port 57212 ssh2 ...	2019-09-15 18:47:05
149.129.244.23	attack	Sep 15 10:58:39 mail sshd\[4177\]: Invalid user ij from 149.129.244.23 Sep 15 10:58:39 mail sshd\[4177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.244.23 Sep 15 10:58:41 mail sshd\[4177\]: Failed password for invalid user ij from 149.129.244.23 port 55830 ssh2 ...	2019-09-15 18:50:02
191.250.53.38	attackbots	DATE:2019-09-15 12:45:28, IP:191.250.53.38, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-09-15 19:35:50
178.93.18.43	attack	Sep 15 01:03:56 our-server-hostname postfix/smtpd[18080]: connect from unknown[178.93.18.43] Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep 15 01:04:00 our-server-hostname postfix/smtpd[18080]: lost connection after RCPT from unknown[178.93.18.43] Sep 15 01:04:00 our-server-hostname postfix/smtpd[18080]: disconnect from unknown[178.93.18.43] Sep 15 01:32:00 our-server-hostname postfix/smtpd[9160]: connect from unknown[178.93.18.43] Sep x@x Sep 15 01:32:04 our-server-hostname postfix/smtpd[9160]: lost connection after RCPT from unknown[178.93.18.43] Sep 15 01:32:04 our-server-hostname postfix/smtpd[9160]: disconnect from unknown[178.93.18.43] Sep 15 04:06:52 our-server-hostname postfix/smtpd[3646]: connect from unknown[178.93.18.43] Sep x@x Sep x@x Sep x@x Sep 15 04:06:57 our-server-hostname postfix/smtpd[3646]: lost connection after RCPT from unknown[178.93.18.43] Sep 15 04:06:57 our-server-hostname postfix/smtpd[3646]: disconnect from unknown[178.93.18.43] Sep 15 05:05:28........ -------------------------------	2019-09-15 18:10:19
156.217.77.220	attackbotsspam	Lines containing failures of 156.217.77.220 (max 1000) Sep 15 08:30:00 Server sshd[346]: Invalid user admin from 156.217.77.220 port 49029 Sep 15 08:30:00 Server sshd[346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.217.77.220 Sep 15 08:30:02 Server sshd[346]: Failed password for invalid user admin from 156.217.77.220 port 49029 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.217.77.220	2019-09-15 19:34:17
151.80.60.151	attack	Sep 15 01:24:31 ny01 sshd[19071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.60.151 Sep 15 01:24:32 ny01 sshd[19071]: Failed password for invalid user test from 151.80.60.151 port 36586 ssh2 Sep 15 01:28:57 ny01 sshd[20483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.60.151	2019-09-15 19:30:10
115.238.116.115	attackspambots	Sep 15 13:03:56 MK-Soft-Root2 sshd\[13752\]: Invalid user bx from 115.238.116.115 port 27430 Sep 15 13:03:56 MK-Soft-Root2 sshd\[13752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.116.115 Sep 15 13:03:58 MK-Soft-Root2 sshd\[13752\]: Failed password for invalid user bx from 115.238.116.115 port 27430 ssh2 ...	2019-09-15 19:22:10
184.105.139.86	attack	Portscan or hack attempt detected by psad/fwsnort	2019-09-15 18:49:25
51.68.46.156	attackspambots	$f2bV_matches	2019-09-15 18:05:27

Recently Reported IPs

2.133.80.228	2.134.233.89	2.133.198.61	2.135.115.7
2.135.158.173	2.134.63.235	2.135.67.231	2.135.129.119
2.137.85.79	2.137.94.243	2.139.110.10	2.136.41.229
2.139.226.122	2.135.223.134	2.136.22.145	2.138.251.195
2.139.214.76	2.142.180.193	2.147.152.70	2.140.97.21