134.209.146.49

Basic Info

City: Bengaluru

Region: Karnataka

Country: India

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	WordPress login Brute force / Web App Attack	2020-04-06 07:16:26

Comments on same subnet:

IP	Type	Details	Datetime
134.209.146.100	attackspambots	SSH login attempts.	2020-10-06 04:07:13
134.209.146.100	attack	(sshd) Failed SSH login from 134.209.146.100 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 5 04:33:33 optimus sshd[9540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 user=root Oct 5 04:33:35 optimus sshd[9540]: Failed password for root from 134.209.146.100 port 35738 ssh2 Oct 5 04:37:49 optimus sshd[10850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 user=root Oct 5 04:37:52 optimus sshd[10850]: Failed password for root from 134.209.146.100 port 42836 ssh2 Oct 5 04:41:56 optimus sshd[12085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 user=root	2020-10-05 20:05:53
134.209.146.100	attackspambots	$f2bV_matches	2020-09-21 20:10:14
134.209.146.100	attackbotsspam	Sep 21 00:30:08 firewall sshd[11330]: Failed password for root from 134.209.146.100 port 58166 ssh2 Sep 21 00:34:31 firewall sshd[11450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 user=root Sep 21 00:34:33 firewall sshd[11450]: Failed password for root from 134.209.146.100 port 41756 ssh2 ...	2020-09-21 12:02:00
134.209.146.100	attackspambots	Sep 20 20:17:02 lavrea sshd[96545]: Invalid user test1 from 134.209.146.100 port 59768 ...	2020-09-21 03:53:15
134.209.146.100	attack	detected by Fail2Ban	2020-08-30 20:25:18
134.209.146.100	attackbotsspam	Lines containing failures of 134.209.146.100 (max 1000) Aug 21 01:44:05 Tosca sshd[4139030]: Invalid user rakesh from 134.209.146.100 port 55960 Aug 21 01:44:05 Tosca sshd[4139030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 Aug 21 01:44:07 Tosca sshd[4139030]: Failed password for invalid user rakesh from 134.209.146.100 port 55960 ssh2 Aug 21 01:44:07 Tosca sshd[4139030]: Received disconnect from 134.209.146.100 port 55960:11: Bye Bye [preauth] Aug 21 01:44:07 Tosca sshd[4139030]: Disconnected from invalid user rakesh 134.209.146.100 port 55960 [preauth] Aug 21 01:54:11 Tosca sshd[4147234]: Invalid user test from 134.209.146.100 port 40372 Aug 21 01:54:11 Tosca sshd[4147234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 Aug 21 01:54:13 Tosca sshd[4147234]: Failed password for invalid user test from 134.209.146.100 port 40372 ssh2 Aug 21 01:54:15 Tosc........ ------------------------------	2020-08-23 04:10:53
134.209.146.100	attackspam	Lines containing failures of 134.209.146.100 (max 1000) Aug 21 01:44:05 Tosca sshd[4139030]: Invalid user rakesh from 134.209.146.100 port 55960 Aug 21 01:44:05 Tosca sshd[4139030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 Aug 21 01:44:07 Tosca sshd[4139030]: Failed password for invalid user rakesh from 134.209.146.100 port 55960 ssh2 Aug 21 01:44:07 Tosca sshd[4139030]: Received disconnect from 134.209.146.100 port 55960:11: Bye Bye [preauth] Aug 21 01:44:07 Tosca sshd[4139030]: Disconnected from invalid user rakesh 134.209.146.100 port 55960 [preauth] Aug 21 01:54:11 Tosca sshd[4147234]: Invalid user test from 134.209.146.100 port 40372 Aug 21 01:54:11 Tosca sshd[4147234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.100 Aug 21 01:54:13 Tosca sshd[4147234]: Failed password for invalid user test from 134.209.146.100 port 40372 ssh2 Aug 21 01:54:15 Tosc........ ------------------------------	2020-08-22 06:45:43
134.209.146.64	attack	Aug 3 08:19:01 Tower sshd[38283]: Connection from 134.209.146.64 port 51518 on 192.168.10.220 port 22 rdomain "" Aug 3 08:19:03 Tower sshd[38283]: Failed password for root from 134.209.146.64 port 51518 ssh2 Aug 3 08:19:03 Tower sshd[38283]: Received disconnect from 134.209.146.64 port 51518:11: Bye Bye [preauth] Aug 3 08:19:03 Tower sshd[38283]: Disconnected from authenticating user root 134.209.146.64 port 51518 [preauth]	2020-08-04 03:35:47
134.209.146.64	attackbotsspam	Jul 28 20:29:56 xxxxxxx1 sshd[4659]: Invalid user liuziyu from 134.209.146.64 port 43002 Jul 28 20:29:56 xxxxxxx1 sshd[4659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.64 Jul 28 20:29:58 xxxxxxx1 sshd[4659]: Failed password for invalid user liuziyu from 134.209.146.64 port 43002 ssh2 Jul 28 20:31:25 xxxxxxx1 sshd[4930]: Invalid user junshang from 134.209.146.64 port 60636 Jul 28 20:31:25 xxxxxxx1 sshd[4930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.64 Jul 28 20:31:27 xxxxxxx1 sshd[4930]: Failed password for invalid user junshang from 134.209.146.64 port 60636 ssh2 Jul 28 20:32:09 xxxxxxx1 sshd[4959]: Invalid user icn from 134.209.146.64 port 40820 Jul 28 20:32:09 xxxxxxx1 sshd[4959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.64 Jul 28 20:32:10 xxxxxxx1 sshd[4959]: Failed password for invalid user ic........ ------------------------------	2020-07-30 03:06:05
134.209.146.200	attackbotsspam	Invalid user lis from 134.209.146.200 port 19143	2020-06-18 03:06:41
134.209.146.214	attackbotsspam	Login Attempt	2019-07-31 15:00:39
134.209.146.214	attackspam	langenachtfulda.de 134.209.146.214 \[29/Jul/2019:19:38:41 +0200\] "POST /wp-login.php HTTP/1.1" 200 5994 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" langenachtfulda.de 134.209.146.214 \[29/Jul/2019:19:38:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 5988 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-30 05:45:59
134.209.146.247	attackbotsspam	2019-07-18T04:58:18.094349enmeeting.mahidol.ac.th sshd\[16125\]: Invalid user acer from 134.209.146.247 port 57592 2019-07-18T04:58:18.108284enmeeting.mahidol.ac.th sshd\[16125\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.146.247 2019-07-18T04:58:19.708320enmeeting.mahidol.ac.th sshd\[16125\]: Failed password for invalid user acer from 134.209.146.247 port 57592 ssh2 ...	2019-07-18 06:47:03
134.209.146.63	attack	Received: from mail-06.ayconcept.com (134.209.146.63) Subject: iPhone XS Max, iPad, Samsung, Macbook Pro, Dell Chrome..$200 USD Wholesale price List.. BUY NOW!!! From: Ms Lawrence Date: Mon, 24 Jun 2019 04:19:02 -0700 Return-Path: info@intellectechinc.co.uk Hello, We are Intellectech INC, we are premier provider of Consumer Electronics, brand new sealed inbox Mobile phones,Laptops, wholesale and distribution solutions. Dell Chrome Laptops, Apple Macbooks pro and air, iPads , brand new iPhones good price bulk prices contact us Skype : webuyproducts@outlook.com Add us on Whatsapp: +1 321 421 9415 Wholesale and bulk orders at Cheaper Rate!!! Shipping from USA, Buy from 10 and above and get a very good prices plus 3 units free. Wholesale prices for resellers. Buy 10 Units and get 3 Unit free. Buy 20 Units and get 6 Unit free. OFFER VALID TILL October 1ST 2019 Shipping DHL/FEDEX/OTHER TRUSTABLE COURIER WITHIN 24HRS.. Tracking number will be	2019-06-24 22:37:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.146.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62506
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.146.49.			IN	A

;; AUTHORITY SECTION:
.			176	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040501 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 07:16:23 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 49.146.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.146.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.180.73.228	attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2019-11-24 06:31:52
80.82.70.239	attack	80.82.70.239 was recorded 75 times by 33 hosts attempting to connect to the following ports: 3619,3625,3621,3600,3623,3624,3618,3604,3605,7588,7584,7593,7595,7580,7594,7589,7591,7581,7582,7587,7597,7585,7592,7599,7598,7583,7590,7586,7596. Incident counter (4h, 24h, all-time): 75, 225, 8594	2019-11-24 06:38:03
192.34.62.227	attack	Nov 23 23:06:25 rotator sshd\[7602\]: Invalid user ekoinzynier from 192.34.62.227Nov 23 23:06:27 rotator sshd\[7602\]: Failed password for invalid user ekoinzynier from 192.34.62.227 port 40825 ssh2Nov 23 23:09:29 rotator sshd\[7628\]: Invalid user dwdevnet from 192.34.62.227Nov 23 23:09:32 rotator sshd\[7628\]: Failed password for invalid user dwdevnet from 192.34.62.227 port 43300 ssh2Nov 23 23:12:33 rotator sshd\[8392\]: Invalid user dwdev from 192.34.62.227Nov 23 23:12:35 rotator sshd\[8392\]: Failed password for invalid user dwdev from 192.34.62.227 port 45771 ssh2 ...	2019-11-24 06:12:45
92.63.194.115	attack	firewall-block, port(s): 20353/tcp, 20354/tcp	2019-11-24 06:30:18
37.187.127.13	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-11-24 06:13:18
178.207.160.6	attack	Nov 23 09:03:50 php1 sshd\[29431\]: Invalid user bar from 178.207.160.6 Nov 23 09:03:50 php1 sshd\[29431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.207.160.6 Nov 23 09:03:53 php1 sshd\[29431\]: Failed password for invalid user bar from 178.207.160.6 port 43634 ssh2 Nov 23 09:07:34 php1 sshd\[29759\]: Invalid user tya from 178.207.160.6 Nov 23 09:07:34 php1 sshd\[29759\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.207.160.6	2019-11-24 06:29:04
91.232.12.86	attackspambots	5x Failed Password	2019-11-24 06:43:13
114.220.10.183	attack	Nov 23 23:16:02 mx1 postfix/smtpd\[9817\]: warning: unknown\[114.220.10.183\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6Nov 23 23:16:22 mx1 postfix/smtpd\[9817\]: warning: unknown\[114.220.10.183\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6Nov 23 23:16:49 mx1 postfix/smtpd\[9816\]: warning: unknown\[114.220.10.183\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-24 06:31:32
60.2.99.126	attackbotsspam	(smtpauth) Failed SMTP AUTH login from 60.2.99.126 (CN/China/-): 5 in the last 3600 secs	2019-11-24 06:25:04
183.249.242.103	attack	Nov 23 15:38:25 SilenceServices sshd[15855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.249.242.103 Nov 23 15:38:27 SilenceServices sshd[15855]: Failed password for invalid user P@sw0rd from 183.249.242.103 port 43114 ssh2 Nov 23 15:44:32 SilenceServices sshd[17719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.249.242.103	2019-11-24 06:16:40
88.116.5.26	attack	2019-11-23 05:46:41 server sshd[33197]: Failed password for invalid user kaliyah from 88.116.5.26 port 42018 ssh2	2019-11-24 06:11:13
122.180.48.29	attackspambots	Invalid user wil from 122.180.48.29 port 52591	2019-11-24 06:17:39
80.82.65.74	attackspam	11/23/2019-17:04:06.662824 80.82.65.74 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-24 06:20:35
196.179.232.130	attackspambots	Unauthorized connection attempt from IP address 196.179.232.130 on Port 445(SMB)	2019-11-24 06:45:06
114.67.82.158	attackbotsspam	114.67.82.158 was recorded 103 times by 27 hosts attempting to connect to the following ports: 2375,2377,4243,2376. Incident counter (4h, 24h, all-time): 103, 328, 328	2019-11-24 06:28:20

Recently Reported IPs

69.76.236.167	99.30.60.198	218.72.200.32	180.43.54.104
174.112.194.158	196.104.55.28	90.224.111.92	5.97.129.175
54.72.136.52	12.149.161.89	1.123.228.167	104.40.93.99
129.208.134.182	179.82.62.121	100.18.211.80	79.27.96.162
183.209.229.160	108.25.98.236	134.122.96.154	153.165.36.163