134.169.109.83

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Technische Universitaet Carolo-Wilhelmina zu Braunschweig

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Multiple HTTP calls attempting to GET resources using common API calls or formats on port 8080	2020-04-30 08:08:03

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.169.109.83
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32010
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.169.109.83.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042905 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 30 08:07:59 CST 2020
;; MSG SIZE  rcvd: 118

Host info

83.109.169.134.in-addr.arpa domain name pointer scan3.sec.cs.tu-bs.de.
83.109.169.134.in-addr.arpa domain name pointer scan.sec.tu-braunschweig.de.
83.109.169.134.in-addr.arpa domain name pointer scan.sec.tu-bs.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
83.109.169.134.in-addr.arpa	name = scan.sec.tu-bs.de.
83.109.169.134.in-addr.arpa	name = scan.sec.tu-braunschweig.de.
83.109.169.134.in-addr.arpa	name = scan3.sec.cs.tu-bs.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.96.232.115	attackspam	Honeypot attack, port: 445, PTR: 115static.118-96-232.astinet.telkom.net.id.	2020-03-01 22:36:53
222.186.15.158	attackspam	03/01/2020-09:29:01.462536 222.186.15.158 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-01 22:31:39
138.121.72.68	attackbots	RDP Brute-Force (Grieskirchen RZ2)	2020-03-01 23:03:49
222.186.42.7	attackspambots	Unauthorized connection attempt detected from IP address 222.186.42.7 to port 22 [J]	2020-03-01 22:46:49
195.208.185.27	attackspambots	Mar 1 14:51:16 xeon sshd[24977]: Failed password for invalid user nathan from 195.208.185.27 port 59933 ssh2	2020-03-01 22:22:35
116.106.114.18	attack	Unauthorized connection attempt detected from IP address 116.106.114.18 to port 23 [J]	2020-03-01 23:09:12
222.186.30.218	attack	Fail2Ban Ban Triggered (2)	2020-03-01 22:24:48
182.16.178.178	attack	Sending SPAM email	2020-03-01 23:05:10
128.199.142.0	attackspam	Mar 1 14:25:13 haigwepa sshd[23804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.0 Mar 1 14:25:15 haigwepa sshd[23804]: Failed password for invalid user loyal from 128.199.142.0 port 55440 ssh2 ...	2020-03-01 22:57:28
201.231.6.63	attack	Brute force attempt	2020-03-01 22:32:14
54.38.241.162	attackbots	Feb 29 21:53:29 server sshd\[21407\]: Invalid user jenkins from 54.38.241.162 Feb 29 21:53:29 server sshd\[21407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-54-38-241.eu Feb 29 21:53:31 server sshd\[21407\]: Failed password for invalid user jenkins from 54.38.241.162 port 39234 ssh2 Mar 1 16:25:38 server sshd\[30903\]: Invalid user jill from 54.38.241.162 Mar 1 16:25:38 server sshd\[30903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-54-38-241.eu ...	2020-03-01 22:30:10
153.150.32.67	attack	2020-03-01T14:42:01.397951shield sshd\[28442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.150.32.67 user=root 2020-03-01T14:42:03.752727shield sshd\[28442\]: Failed password for root from 153.150.32.67 port 32961 ssh2 2020-03-01T14:44:48.391467shield sshd\[28801\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.150.32.67 user=root 2020-03-01T14:44:50.003812shield sshd\[28801\]: Failed password for root from 153.150.32.67 port 43823 ssh2 2020-03-01T14:47:26.545259shield sshd\[29207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.150.32.67 user=root	2020-03-01 22:59:02
223.244.236.232	attackspambots	Unauthorized connection attempt detected from IP address 223.244.236.232 to port 2323 [J]	2020-03-01 22:37:31
61.178.160.83	attackbotsspam	B: Magento admin pass test (wrong country)	2020-03-01 22:51:43
106.105.132.144	attackbotsspam	Honeypot attack, port: 81, PTR: 106.105.132.144.adsl.dynamic.seed.net.tw.	2020-03-01 22:29:41

Recently Reported IPs

192.99.11.195	103.118.87.90	92.118.234.242	45.236.131.60
250.98.212.212	64.227.37.54	195.54.166.35	106.54.253.152
134.122.22.127	177.73.248.18	138.207.201.171	125.164.105.83
51.83.171.12	191.238.212.50	107.175.83.14	160.155.113.19
130.0.25.194	181.30.28.111	210.73.222.200	139.59.66.101