134.209.11.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.209.110.226	attackspambots	Sep 16 17:11:56 *** sshd[26451]: User root from 134.209.110.226 not allowed because not listed in AllowUsers	2020-09-17 01:38:34
134.209.110.226	attack	Invalid user sanjay from 134.209.110.226 port 52566	2020-09-16 17:55:25
134.209.110.226	attack	Aug 29 22:24:34 lnxweb62 sshd[27950]: Failed password for root from 134.209.110.226 port 58006 ssh2 Aug 29 22:28:32 lnxweb62 sshd[29907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.110.226 Aug 29 22:28:34 lnxweb62 sshd[29907]: Failed password for invalid user webmaster from 134.209.110.226 port 38656 ssh2	2020-08-30 04:50:12
134.209.110.226	attackspambots	Invalid user user from 134.209.110.226 port 32994	2020-08-29 14:57:52
134.209.111.46	attack	Unauthorized connection attempt detected from IP address 134.209.111.46 to port 6379	2020-08-03 20:01:21
134.209.115.206	attack	Apr 2 23:49:49 eventyay sshd[15103]: Failed password for root from 134.209.115.206 port 57396 ssh2 Apr 2 23:53:12 eventyay sshd[15266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 Apr 2 23:53:15 eventyay sshd[15266]: Failed password for invalid user xiaoyun from 134.209.115.206 port 41028 ssh2 ...	2020-04-03 06:01:06
134.209.115.206	attackbotsspam	Mar 23 01:45:51 163-172-32-151 sshd[4247]: Invalid user field from 134.209.115.206 port 46346 ...	2020-03-23 10:05:23
134.209.115.206	attack	SSH login attempts @ 2020-02-29 14:33:56	2020-03-22 17:16:22
134.209.115.206	attackspambots	Jan 8 18:31:25 pi sshd[8905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 Jan 8 18:31:27 pi sshd[8905]: Failed password for invalid user tomcat from 134.209.115.206 port 38380 ssh2	2020-03-20 05:24:06
134.209.115.206	attackspambots	2020-03-10T13:48:24.295180abusebot-6.cloudsearch.cf sshd[5402]: Invalid user alex from 134.209.115.206 port 43264 2020-03-10T13:48:24.301074abusebot-6.cloudsearch.cf sshd[5402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 2020-03-10T13:48:24.295180abusebot-6.cloudsearch.cf sshd[5402]: Invalid user alex from 134.209.115.206 port 43264 2020-03-10T13:48:26.285210abusebot-6.cloudsearch.cf sshd[5402]: Failed password for invalid user alex from 134.209.115.206 port 43264 ssh2 2020-03-10T13:52:04.922828abusebot-6.cloudsearch.cf sshd[5586]: Invalid user onion from 134.209.115.206 port 51310 2020-03-10T13:52:04.929525abusebot-6.cloudsearch.cf sshd[5586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 2020-03-10T13:52:04.922828abusebot-6.cloudsearch.cf sshd[5586]: Invalid user onion from 134.209.115.206 port 51310 2020-03-10T13:52:06.783147abusebot-6.cloudsearch.cf sshd[5586]: Fai ...	2020-03-11 01:46:37
134.209.112.160	attackspam	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-03-09 04:36:34
134.209.115.206	attackbotsspam	Mar 8 13:31:26 localhost sshd[56409]: Invalid user root^1234 from 134.209.115.206 port 41640 Mar 8 13:31:26 localhost sshd[56409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 Mar 8 13:31:26 localhost sshd[56409]: Invalid user root^1234 from 134.209.115.206 port 41640 Mar 8 13:31:28 localhost sshd[56409]: Failed password for invalid user root^1234 from 134.209.115.206 port 41640 ssh2 Mar 8 13:37:56 localhost sshd[56896]: Invalid user alicante from 134.209.115.206 port 48094 ...	2020-03-08 21:52:02
134.209.117.122	attack	134.209.117.122 - - [08/Mar/2020:05:19:02 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.117.122 - - [08/Mar/2020:05:19:03 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-08 15:51:42
134.209.115.206	attackbotsspam	2020-03-01T07:08:07.882369shield sshd\[5329\]: Invalid user hldmserver from 134.209.115.206 port 33912 2020-03-01T07:08:07.890392shield sshd\[5329\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206 2020-03-01T07:08:09.822266shield sshd\[5329\]: Failed password for invalid user hldmserver from 134.209.115.206 port 33912 ssh2 2020-03-01T07:10:43.679380shield sshd\[5714\]: Invalid user www from 134.209.115.206 port 51878 2020-03-01T07:10:43.684544shield sshd\[5714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.115.206	2020-03-01 15:51:26
134.209.117.122	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-02-29 14:10:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.11.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40627
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.11.21.			IN	A

;; AUTHORITY SECTION:
.			455	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 17:25:12 CST 2022
;; MSG SIZE  rcvd: 106

Host info

21.11.209.134.in-addr.arpa domain name pointer 302013.cloudwaysapps.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.11.209.134.in-addr.arpa	name = 302013.cloudwaysapps.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.41.175.161	attackspambots	Feb 12 19:02:04 MK-Soft-Root2 sshd[1167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.41.175.161 Feb 12 19:02:06 MK-Soft-Root2 sshd[1167]: Failed password for invalid user dun from 78.41.175.161 port 45956 ssh2 ...	2020-02-13 02:03:11
35.206.156.221	attackspambots	Feb 12 18:47:16 markkoudstaal sshd[13401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.206.156.221 Feb 12 18:47:18 markkoudstaal sshd[13401]: Failed password for invalid user jupyter from 35.206.156.221 port 39662 ssh2 Feb 12 18:50:23 markkoudstaal sshd[13950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.206.156.221	2020-02-13 02:24:28
159.192.166.83	attackspam	Lines containing failures of 159.192.166.83 auth.log:Feb 12 14:30:57 omfg sshd[25735]: Connection from 159.192.166.83 port 56067 on 78.46.60.40 port 22 auth.log:Feb 12 14:30:57 omfg sshd[25736]: Connection from 159.192.166.83 port 56118 on 78.46.60.41 port 22 auth.log:Feb 12 14:30:57 omfg sshd[25737]: Connection from 159.192.166.83 port 56127 on 78.46.60.42 port 22 auth.log:Feb 12 14:31:00 omfg sshd[25735]: Did not receive identification string from 159.192.166.83 auth.log:Feb 12 14:31:00 omfg sshd[25736]: Did not receive identification string from 159.192.166.83 auth.log:Feb 12 14:31:00 omfg sshd[25737]: Did not receive identification string from 159.192.166.83 auth.log:Feb 12 14:31:07 omfg sshd[25738]: Connection from 159.192.166.83 port 64650 on 78.46.60.16 port 22 auth.log:Feb 12 14:31:07 omfg sshd[25739]: Connection from 159.192.166.83 port 64869 on 78.46.60.40 port 22 auth.log:Feb 12 14:31:07 omfg sshd[25740]: Connection from 159.192.166.83 port 64884 on 78.46.60.5........ ------------------------------	2020-02-13 01:53:00
177.1.214.207	attackbots	Automatic report - Banned IP Access	2020-02-13 02:16:38
77.68.81.58	attackspam	Brute forcing email accounts	2020-02-13 02:05:17
185.132.231.240	attack	Unauthorised access (Feb 12) SRC=185.132.231.240 LEN=44 TTL=246 ID=43929 DF TCP DPT=23 WINDOW=14600 SYN	2020-02-13 01:48:52
178.34.163.202	attack	Feb 12 15:28:21 django sshd[119349]: Invalid user router from 178.34.163.202 Feb 12 15:28:22 django sshd[119349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.34.163.202 Feb 12 15:28:24 django sshd[119349]: Failed password for invalid user router from 178.34.163.202 port 10444 ssh2 Feb 12 15:28:24 django sshd[119350]: Connection closed by 178.34.163.202 Feb 12 15:28:31 django sshd[119359]: Invalid user router from 178.34.163.202 Feb 12 15:28:31 django sshd[119359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.34.163.202 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.34.163.202	2020-02-13 02:24:50
86.26.174.232	attack	Automatic report - Port Scan Attack	2020-02-13 01:50:03
78.186.125.210	attack	Automatic report - Port Scan Attack	2020-02-13 02:17:01
80.78.71.69	attack	Lines containing failures of 80.78.71.69 auth.log:Feb 12 14:38:27 omfg sshd[27827]: Connection from 80.78.71.69 port 63201 on 78.46.60.16 port 22 auth.log:Feb 12 14:38:27 omfg sshd[27827]: Did not receive identification string from 80.78.71.69 auth.log:Feb 12 14:38:27 omfg sshd[27828]: Connection from 80.78.71.69 port 51841 on 78.46.60.42 port 22 auth.log:Feb 12 14:38:27 omfg sshd[27828]: Did not receive identification string from 80.78.71.69 auth.log:Feb 12 14:38:30 omfg sshd[27829]: Connection from 80.78.71.69 port 60172 on 78.46.60.16 port 22 auth.log:Feb 12 14:38:30 omfg sshd[27831]: Connection from 80.78.71.69 port 64343 on 78.46.60.42 port 22 auth.log:Feb 12 14:38:30 omfg sshd[27829]: Invalid user support from 80.78.71.69 auth.log:Feb 12 14:38:32 omfg sshd[27829]: Connection closed by 80.78.71.69 port 60172 [preauth] auth.log:Feb 12 14:38:32 omfg sshd[27831]: Invalid user support from 80.78.71.69 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.78.71	2020-02-13 02:22:27
117.34.118.44	attackbotsspam	1581520569 - 02/12/2020 16:16:09 Host: 117.34.118.44/117.34.118.44 Port: 445 TCP Blocked	2020-02-13 02:27:05
59.127.27.45	attackspam	20/2/12@08:43:27: FAIL: Alarm-Telnet address from=59.127.27.45 20/2/12@08:43:27: FAIL: Alarm-Telnet address from=59.127.27.45 ...	2020-02-13 01:51:28
103.193.174.234	attackspam	Feb 12 17:48:01 lukav-desktop sshd\[29647\]: Invalid user ZAQ!xsw2 from 103.193.174.234 Feb 12 17:48:01 lukav-desktop sshd\[29647\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.193.174.234 Feb 12 17:48:03 lukav-desktop sshd\[29647\]: Failed password for invalid user ZAQ!xsw2 from 103.193.174.234 port 49209 ssh2 Feb 12 17:50:11 lukav-desktop sshd\[29671\]: Invalid user test from 103.193.174.234 Feb 12 17:50:11 lukav-desktop sshd\[29671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.193.174.234	2020-02-13 02:02:39
162.243.131.120	attackbotsspam	firewall-block, port(s): 465/tcp	2020-02-13 02:04:52
51.83.104.120	attack	$f2bV_matches	2020-02-13 02:12:09

Recently Reported IPs

134.191.221.82	134.19.232.179	134.209.123.183	134.195.101.47
134.209.119.112	134.209.128.68	134.209.142.30	134.209.137.10
134.209.132.137	134.209.145.77	134.209.147.186	134.209.129.1
134.209.149.56	134.209.150.123	134.209.153.159	134.209.144.120
134.209.150.58	134.209.149.240	134.209.154.90	134.209.158.22