134.209.102.147

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	134.209.102.147 - - [08/Jan/2020:14:06:44 +0100] "POST /wp-login.php HTTP/1.1" 200 3121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.102.147 - - [08/Jan/2020:14:06:45 +0100] "POST /wp-login.php HTTP/1.1" 200 3100 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-01-08 21:33:46
attack	134.209.102.147 - - \[02/Dec/2019:06:38:33 +0100\] "POST /wp-login.php HTTP/1.0" 200 6655 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.209.102.147 - - \[02/Dec/2019:06:38:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 6493 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.209.102.147 - - \[02/Dec/2019:06:38:40 +0100\] "POST /wp-login.php HTTP/1.0" 200 6492 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-02 14:20:17
attackbots	[munged]::443 134.209.102.147 - - [11/Nov/2019:08:38:14 +0100] "POST /[munged]: HTTP/1.1" 200 7915 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-11 16:12:25
attackbots	[31/Oct/2019:00:25:27 +0100] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-31 08:17:08
attackbotsspam	www.villaromeo.de 134.209.102.147 \[29/Oct/2019:07:15:14 +0100\] "POST /wp-login.php HTTP/1.1" 200 2068 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.villaromeo.de 134.209.102.147 \[29/Oct/2019:07:15:16 +0100\] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-29 18:47:39
attackbotsspam	www.handydirektreparatur.de 134.209.102.147 \[21/Oct/2019:20:37:13 +0200\] "POST /wp-login.php HTTP/1.1" 200 5665 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.handydirektreparatur.de 134.209.102.147 \[21/Oct/2019:20:37:17 +0200\] "POST /wp-login.php HTTP/1.1" 200 5621 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-22 03:17:01

Comments on same subnet:

IP	Type	Details	Datetime
134.209.102.122	botsattackproxynormal	A	2022-05-21 11:19:18
134.209.102.130	attackbots	TCP port : 28022	2020-08-05 18:36:53
134.209.102.130	attackbotsspam	Aug 3 14:20:37 debian-2gb-nbg1-2 kernel: \[18715708.698407\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.209.102.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=14318 PROTO=TCP SPT=57050 DPT=7203 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-04 02:55:14
134.209.102.130	attackspam	Hits on port : 6000 30022	2020-08-02 17:09:25
134.209.102.196	attack	$f2bV_matches	2020-07-24 12:36:30
134.209.102.196	attack	Jul 16 15:39:58 OPSO sshd\[20598\]: Invalid user guest from 134.209.102.196 port 33780 Jul 16 15:39:58 OPSO sshd\[20598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jul 16 15:40:00 OPSO sshd\[20598\]: Failed password for invalid user guest from 134.209.102.196 port 33780 ssh2 Jul 16 15:43:39 OPSO sshd\[21861\]: Invalid user csgo from 134.209.102.196 port 58374 Jul 16 15:43:39 OPSO sshd\[21861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196	2020-07-17 05:08:37
134.209.102.196	attackspam	Jul 14 15:14:20 jane sshd[32021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jul 14 15:14:22 jane sshd[32021]: Failed password for invalid user postgres from 134.209.102.196 port 59372 ssh2 ...	2020-07-14 23:01:56
134.209.102.196	attackbots	Invalid user tsbot from 134.209.102.196 port 43134	2020-07-12 05:37:45
134.209.102.196	attackbotsspam	Jun 30 18:01:28 gw1 sshd[5984]: Failed password for root from 134.209.102.196 port 50066 ssh2 Jun 30 18:04:56 gw1 sshd[6148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 ...	2020-07-01 03:35:50
134.209.102.196	attackbots	Jun 19 05:58:12 vmd48417 sshd[27819]: Failed password for root from 134.209.102.196 port 55742 ssh2	2020-06-19 12:16:59
134.209.102.196	attack	Jun 14 17:26:49 ws22vmsma01 sshd[56487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 14 17:26:51 ws22vmsma01 sshd[56487]: Failed password for invalid user uftp from 134.209.102.196 port 38892 ssh2 ...	2020-06-15 04:29:12
134.209.102.196	attackspam	Jun 14 10:36:18 gestao sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 14 10:36:20 gestao sshd[10391]: Failed password for invalid user stephan from 134.209.102.196 port 60794 ssh2 Jun 14 10:40:04 gestao sshd[10574]: Failed password for root from 134.209.102.196 port 34020 ssh2 ...	2020-06-14 17:54:52
134.209.102.196	attackbotsspam	Jun 12 18:58:10 kapalua sshd\[520\]: Invalid user usuario from 134.209.102.196 Jun 12 18:58:10 kapalua sshd\[520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 12 18:58:12 kapalua sshd\[520\]: Failed password for invalid user usuario from 134.209.102.196 port 49552 ssh2 Jun 12 19:02:14 kapalua sshd\[855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 user=root Jun 12 19:02:17 kapalua sshd\[855\]: Failed password for root from 134.209.102.196 port 52176 ssh2	2020-06-13 18:37:50
134.209.102.196	attackbotsspam	Jun 7 14:03:29 serwer sshd\[19589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 user=root Jun 7 14:03:31 serwer sshd\[19589\]: Failed password for root from 134.209.102.196 port 47380 ssh2 Jun 7 14:07:19 serwer sshd\[20029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 user=root ...	2020-06-07 22:21:47
134.209.102.93	attackspam	Invalid user agx from 134.209.102.93 port 54402	2020-05-23 18:59:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.102.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.102.147.		IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019053000 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 30 22:42:35 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 147.102.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 147.102.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.4.184.218	attack	Sep 29 02:59:20 web9 sshd\[10891\]: Invalid user webuser from 186.4.184.218 Sep 29 02:59:20 web9 sshd\[10891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.184.218 Sep 29 02:59:22 web9 sshd\[10891\]: Failed password for invalid user webuser from 186.4.184.218 port 41828 ssh2 Sep 29 03:04:33 web9 sshd\[11901\]: Invalid user web1 from 186.4.184.218 Sep 29 03:04:33 web9 sshd\[11901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.184.218	2019-09-29 23:58:15
91.121.136.44	attackspam	Sep 29 20:24:39 areeb-Workstation sshd[28589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.136.44 Sep 29 20:24:41 areeb-Workstation sshd[28589]: Failed password for invalid user sopna from 91.121.136.44 port 36490 ssh2 ...	2019-09-30 00:15:45
185.176.27.98	attackspambots	09/29/2019-18:06:19.112615 185.176.27.98 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-30 00:27:55
122.243.208.109	attackbots	Automated reporting of FTP Brute Force	2019-09-30 00:14:53
111.125.82.91	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 29-09-2019 13:05:13.	2019-09-30 00:38:40
175.5.173.76	attackbots	Automated reporting of FTP Brute Force	2019-09-30 00:02:57
13.127.64.191	attackbots	Invalid user rootme from 13.127.64.191 port 48168	2019-09-30 00:43:25
67.55.92.90	attackbotsspam	Sep 29 13:10:13 shared-1 sshd\[16880\]: Invalid user xbian from 67.55.92.90Sep 29 13:18:26 shared-1 sshd\[16906\]: Invalid user jamesm from 67.55.92.90 ...	2019-09-30 00:29:41
168.228.128.55	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/168.228.128.55/ BR - 1H : (1242) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN52859 IP : 168.228.128.55 CIDR : 168.228.128.0/24 PREFIX COUNT : 12 UNIQUE IP COUNT : 3072 WYKRYTE ATAKI Z ASN52859 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery	2019-09-30 00:10:30
124.156.241.52	attackbotsspam	1098/tcp 18080/tcp 32785/udp... [2019-08-06/09-28]12pkt,9pt.(tcp),3pt.(udp)	2019-09-30 00:33:05
191.53.61.246	attackspambots	Automatic report - Port Scan Attack	2019-09-30 00:36:21
94.177.214.200	attackbotsspam	Sep 29 14:55:05 dedicated sshd[15058]: Invalid user user from 94.177.214.200 port 46168	2019-09-30 00:19:33
45.32.112.173	attackbotsspam	Sep 29 06:15:28 kapalua sshd\[30071\]: Invalid user felipe from 45.32.112.173 Sep 29 06:15:28 kapalua sshd\[30071\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.32.112.173 Sep 29 06:15:31 kapalua sshd\[30071\]: Failed password for invalid user felipe from 45.32.112.173 port 52304 ssh2 Sep 29 06:19:42 kapalua sshd\[30552\]: Invalid user loyal from 45.32.112.173 Sep 29 06:19:42 kapalua sshd\[30552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.32.112.173	2019-09-30 00:21:12
104.131.185.1	attack	miraniessen.de 104.131.185.1 \[29/Sep/2019:14:05:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" miraniessen.de 104.131.185.1 \[29/Sep/2019:14:05:54 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-09-30 00:00:39
98.207.32.236	attackspam	2019-09-29T13:42:21.178383abusebot.cloudsearch.cf sshd\[15372\]: Invalid user pi from 98.207.32.236 port 48098	2019-09-30 00:09:33

Recently Reported IPs

175.236.192.129	78.38.76.7	90.2.32.146	38.115.196.118
180.235.242.42	222.109.145.134	222.109.145.4	91.200.115.136
228.228.212.204	209.100.24.20	61.244.55.11	147.41.174.214
65.30.179.66	61.161.170.230	66.191.7.234	126.95.144.150
38.132.109.216	49.120.228.21	74.176.21.120	109.167.161.109