134.0.97.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Iskratelecom CJSC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorised access (Sep 25) SRC=134.0.97.53 LEN=40 TTL=56 ID=46534 TCP DPT=8080 WINDOW=40724 SYN Unauthorised access (Sep 24) SRC=134.0.97.53 LEN=40 TTL=56 ID=26454 TCP DPT=8080 WINDOW=40257 SYN	2019-09-25 09:43:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.0.97.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17906
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.0.97.53.			IN	A

;; AUTHORITY SECTION:
.			456	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092401 1800 900 604800 86400

;; Query time: 87 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 25 09:43:53 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 53.97.0.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.97.0.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.12.52.239	attack	Automatic report - Banned IP Access	2019-10-10 15:08:27
83.111.151.245	attackspambots	(sshd) Failed SSH login from 83.111.151.245 (AE/United Arab Emirates/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 06:19:52 server2 sshd[25149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.111.151.245 user=root Oct 10 06:19:54 server2 sshd[25149]: Failed password for root from 83.111.151.245 port 56324 ssh2 Oct 10 06:41:03 server2 sshd[25774]: Invalid user user from 83.111.151.245 port 46590 Oct 10 06:41:06 server2 sshd[25774]: Failed password for invalid user user from 83.111.151.245 port 46590 ssh2 Oct 10 06:46:23 server2 sshd[25906]: Invalid user bage from 83.111.151.245 port 36834	2019-10-10 15:13:03
51.77.144.50	attackspam	Oct 10 01:34:28 vtv3 sshd\[11113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 user=root Oct 10 01:34:30 vtv3 sshd\[11113\]: Failed password for root from 51.77.144.50 port 47762 ssh2 Oct 10 01:38:11 vtv3 sshd\[12989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 user=root Oct 10 01:38:13 vtv3 sshd\[12989\]: Failed password for root from 51.77.144.50 port 60180 ssh2 Oct 10 01:41:53 vtv3 sshd\[14890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 user=root Oct 10 01:53:20 vtv3 sshd\[20425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.144.50 user=root Oct 10 01:53:22 vtv3 sshd\[20425\]: Failed password for root from 51.77.144.50 port 53394 ssh2 Oct 10 01:57:05 vtv3 sshd\[22328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.14	2019-10-10 15:00:29
103.92.84.102	attack	Oct 10 06:32:28 ns381471 sshd[1259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102 Oct 10 06:32:29 ns381471 sshd[1259]: Failed password for invalid user 123Panel from 103.92.84.102 port 39904 ssh2 Oct 10 06:37:44 ns381471 sshd[1461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.84.102	2019-10-10 14:58:54
111.225.204.32	attack	Fail2Ban - FTP Abuse Attempt	2019-10-10 14:50:11
182.61.179.164	attack	Oct 10 07:08:27 www sshd\[109759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.179.164 user=root Oct 10 07:08:30 www sshd\[109759\]: Failed password for root from 182.61.179.164 port 51372 ssh2 Oct 10 07:13:05 www sshd\[110049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.179.164 user=root ...	2019-10-10 15:21:13
49.207.180.197	attackbots	Oct 10 09:42:37 server sshd\[9702\]: User root from 49.207.180.197 not allowed because listed in DenyUsers Oct 10 09:42:37 server sshd\[9702\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.180.197 user=root Oct 10 09:42:40 server sshd\[9702\]: Failed password for invalid user root from 49.207.180.197 port 4580 ssh2 Oct 10 09:46:56 server sshd\[21336\]: User root from 49.207.180.197 not allowed because listed in DenyUsers Oct 10 09:46:56 server sshd\[21336\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.180.197 user=root	2019-10-10 14:48:21
178.60.38.58	attackspambots	Oct 10 07:39:29 sauna sshd[69905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.60.38.58 Oct 10 07:39:31 sauna sshd[69905]: Failed password for invalid user Gerard_123 from 178.60.38.58 port 47069 ssh2 ...	2019-10-10 15:22:38
106.13.85.56	attackbots	Oct 5 23:26:13 nbi-634 sshd[29350]: User r.r from 106.13.85.56 not allowed because not listed in AllowUsers Oct 5 23:26:13 nbi-634 sshd[29350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.85.56 user=r.r Oct 5 23:26:15 nbi-634 sshd[29350]: Failed password for invalid user r.r from 106.13.85.56 port 54246 ssh2 Oct 5 23:26:15 nbi-634 sshd[29350]: Received disconnect from 106.13.85.56 port 54246:11: Bye Bye [preauth] Oct 5 23:26:15 nbi-634 sshd[29350]: Disconnected from 106.13.85.56 port 54246 [preauth] Oct 5 23:54:45 nbi-634 sshd[30365]: User r.r from 106.13.85.56 not allowed because not listed in AllowUsers Oct 5 23:54:45 nbi-634 sshd[30365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.85.56 user=r.r Oct 5 23:54:47 nbi-634 sshd[30365]: Failed password for invalid user r.r from 106.13.85.56 port 48840 ssh2 Oct 5 23:54:48 nbi-634 sshd[30365]: Received disconnect ........ -------------------------------	2019-10-10 15:12:17
81.22.45.115	attackspambots	10/10/2019-03:11:22.440407 81.22.45.115 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-10 15:17:51
182.61.166.148	attack	Oct 7 09:32:50 srv05 sshd[20525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.166.148 user=r.r Oct 7 09:32:51 srv05 sshd[20525]: Failed password for r.r from 182.61.166.148 port 57038 ssh2 Oct 7 09:32:52 srv05 sshd[20525]: Received disconnect from 182.61.166.148: 11: Bye Bye [preauth] Oct 7 09:55:34 srv05 sshd[21834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.166.148 user=r.r Oct 7 09:55:35 srv05 sshd[21834]: Failed password for r.r from 182.61.166.148 port 55422 ssh2 Oct 7 09:55:36 srv05 sshd[21834]: Received disconnect from 182.61.166.148: 11: Bye Bye [preauth] Oct 7 09:59:53 srv05 sshd[22017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.166.148 user=r.r Oct 7 09:59:55 srv05 sshd[22017]: Failed password for r.r from 182.61.166.148 port 40102 ssh2 Oct 7 09:59:55 srv05 sshd[22017]: Received disconnect from........ -------------------------------	2019-10-10 15:07:45
200.105.183.118	attack	$f2bV_matches	2019-10-10 14:51:01
175.6.247.195	attackbots	" "	2019-10-10 15:01:16
27.205.202.72	attack	Automatic report - Port Scan	2019-10-10 14:44:56
94.23.218.74	attack	Oct 10 06:15:05 web8 sshd\[6789\]: Invalid user Absolut2017 from 94.23.218.74 Oct 10 06:15:05 web8 sshd\[6789\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.218.74 Oct 10 06:15:07 web8 sshd\[6789\]: Failed password for invalid user Absolut2017 from 94.23.218.74 port 59926 ssh2 Oct 10 06:18:40 web8 sshd\[8593\]: Invalid user contrasena!23 from 94.23.218.74 Oct 10 06:18:40 web8 sshd\[8593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.218.74	2019-10-10 14:50:25

Recently Reported IPs

90.205.75.201	66.220.155.135	160.169.179.176	169.194.130.211
15.62.99.5	32.101.230.11	47.104.103.95	61.53.16.56
109.237.117.62	117.122.104.206	52.104.127.46	80.33.10.222
227.243.178.8	136.175.30.80	64.125.92.82	83.37.225.236
202.152.215.211	52.184.37.92	36.69.172.28	35.236.77.105