134.209.102.154

Basic Info

City: Singapore

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.209.102.122	botsattackproxynormal	A	2022-05-21 11:19:18
134.209.102.130	attackbots	TCP port : 28022	2020-08-05 18:36:53
134.209.102.130	attackbotsspam	Aug 3 14:20:37 debian-2gb-nbg1-2 kernel: \[18715708.698407\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.209.102.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=14318 PROTO=TCP SPT=57050 DPT=7203 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-04 02:55:14
134.209.102.130	attackspam	Hits on port : 6000 30022	2020-08-02 17:09:25
134.209.102.196	attack	$f2bV_matches	2020-07-24 12:36:30
134.209.102.196	attack	Jul 16 15:39:58 OPSO sshd\[20598\]: Invalid user guest from 134.209.102.196 port 33780 Jul 16 15:39:58 OPSO sshd\[20598\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jul 16 15:40:00 OPSO sshd\[20598\]: Failed password for invalid user guest from 134.209.102.196 port 33780 ssh2 Jul 16 15:43:39 OPSO sshd\[21861\]: Invalid user csgo from 134.209.102.196 port 58374 Jul 16 15:43:39 OPSO sshd\[21861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196	2020-07-17 05:08:37
134.209.102.196	attackspam	Jul 14 15:14:20 jane sshd[32021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jul 14 15:14:22 jane sshd[32021]: Failed password for invalid user postgres from 134.209.102.196 port 59372 ssh2 ...	2020-07-14 23:01:56
134.209.102.196	attackbots	Invalid user tsbot from 134.209.102.196 port 43134	2020-07-12 05:37:45
134.209.102.196	attackbotsspam	Jun 30 18:01:28 gw1 sshd[5984]: Failed password for root from 134.209.102.196 port 50066 ssh2 Jun 30 18:04:56 gw1 sshd[6148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 ...	2020-07-01 03:35:50
134.209.102.196	attackbots	Jun 19 05:58:12 vmd48417 sshd[27819]: Failed password for root from 134.209.102.196 port 55742 ssh2	2020-06-19 12:16:59
134.209.102.196	attack	Jun 14 17:26:49 ws22vmsma01 sshd[56487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 14 17:26:51 ws22vmsma01 sshd[56487]: Failed password for invalid user uftp from 134.209.102.196 port 38892 ssh2 ...	2020-06-15 04:29:12
134.209.102.196	attackspam	Jun 14 10:36:18 gestao sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 14 10:36:20 gestao sshd[10391]: Failed password for invalid user stephan from 134.209.102.196 port 60794 ssh2 Jun 14 10:40:04 gestao sshd[10574]: Failed password for root from 134.209.102.196 port 34020 ssh2 ...	2020-06-14 17:54:52
134.209.102.196	attackbotsspam	Jun 12 18:58:10 kapalua sshd\[520\]: Invalid user usuario from 134.209.102.196 Jun 12 18:58:10 kapalua sshd\[520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 12 18:58:12 kapalua sshd\[520\]: Failed password for invalid user usuario from 134.209.102.196 port 49552 ssh2 Jun 12 19:02:14 kapalua sshd\[855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 user=root Jun 12 19:02:17 kapalua sshd\[855\]: Failed password for root from 134.209.102.196 port 52176 ssh2	2020-06-13 18:37:50
134.209.102.196	attackbotsspam	Jun 7 14:03:29 serwer sshd\[19589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 user=root Jun 7 14:03:31 serwer sshd\[19589\]: Failed password for root from 134.209.102.196 port 47380 ssh2 Jun 7 14:07:19 serwer sshd\[20029\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 user=root ...	2020-06-07 22:21:47
134.209.102.93	attackspam	Invalid user agx from 134.209.102.93 port 54402	2020-05-23 18:59:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.102.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.102.154.		IN	A

;; AUTHORITY SECTION:
.			471	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022102400 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 25 00:46:46 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 154.102.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.102.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.48.101.184	attackbotsspam	Aug 11 07:56:56 propaganda sshd[29630]: Connection from 83.48.101.184 port 22655 on 10.0.0.160 port 22 rdomain "" Aug 11 07:56:57 propaganda sshd[29630]: Connection closed by 83.48.101.184 port 22655 [preauth]	2020-08-12 04:16:01
151.80.46.138	attackbotsspam	[portscan] Port scan	2020-08-12 04:22:39
59.52.168.246	attackspambots	[H1.VM7] Blocked by UFW	2020-08-12 04:31:56
2600:3000:1511:200::1e	attackbots	Tried to connect (4x) -	2020-08-12 04:12:10
186.113.18.109	attackbotsspam	Aug 11 16:29:42 firewall sshd[12595]: Failed password for root from 186.113.18.109 port 42432 ssh2 Aug 11 16:33:18 firewall sshd[12709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.113.18.109 user=root Aug 11 16:33:20 firewall sshd[12709]: Failed password for root from 186.113.18.109 port 42790 ssh2 ...	2020-08-12 04:08:42
134.209.96.131	attack	(sshd) Failed SSH login from 134.209.96.131 (SG/Singapore/-): 5 in the last 3600 secs	2020-08-12 04:45:10
122.176.55.10	attack	Aug 11 14:32:44 buvik sshd[25589]: Failed password for root from 122.176.55.10 port 25635 ssh2 Aug 11 14:34:48 buvik sshd[25830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.176.55.10 user=root Aug 11 14:34:50 buvik sshd[25830]: Failed password for root from 122.176.55.10 port 46675 ssh2 ...	2020-08-12 04:26:13
218.59.200.44	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-12 04:43:59
124.123.179.148	attackspam	1597147481 - 08/11/2020 14:04:41 Host: 124.123.179.148/124.123.179.148 Port: 445 TCP Blocked ...	2020-08-12 04:31:22
194.61.24.177	attackspambots	...	2020-08-12 04:25:12
51.254.220.61	attackbotsspam	2020-08-11 13:45:54,874 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 14:23:37,265 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 15:01:29,910 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 15:38:07,174 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 2020-08-11 16:14:55,262 fail2ban.actions [937]: NOTICE [sshd] Ban 51.254.220.61 ...	2020-08-12 04:32:52
139.59.161.78	attackspam	Aug 12 01:59:26 lunarastro sshd[29887]: Failed password for root from 139.59.161.78 port 33680 ssh2 Aug 12 02:07:19 lunarastro sshd[30061]: Failed password for root from 139.59.161.78 port 41170 ssh2	2020-08-12 04:40:36
66.249.79.200	attackbots	[Tue Aug 11 19:04:43.267312 2020] [:error] [pid 12131:tid 140198558357248] [client 66.249.79.200:64633] [client 66.249.79.200] ModSecurity: Access denied with code 403 (phase 2). Pattern match "((?:[~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>][^~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>]*?){12})" at ARGS:id. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1255"] [id "942430"] [msg "Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12)"] [data "Matched Data: :prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal- found within ARGS:id: 2454:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-7-13-maret-2017"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "pla ...	2020-08-12 04:31:06
36.93.83.209	attackbotsspam	2020-08-11T16:01:10.657425+02:00 lumpi kernel: [22444059.532440] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=36.93.83.209 DST=78.46.199.189 LEN=48 TOS=0x00 PREC=0x00 TTL=115 ID=31510 DF PROTO=TCP SPT=59316 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 ...	2020-08-12 04:33:25
185.10.68.228	attack	Firewall Dropped Connection	2020-08-12 04:38:22

Recently Reported IPs

185.161.85.110	94.167.249.32	206.133.42.63	9.34.207.2
96.121.175.60	36.14.8.121	2.198.107.73	80.166.238.186
221.228.88.101	234.211.70.234	196.4.183.9	0.34.82.159
107.89.74.154	175.20.67.189	86.89.107.143	200.94.226.19
2.228.176.70	156.68.154.46	14.173.24.132	100.167.154.58