134.209.164.153

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port 22 Scan, PTR: None	2019-12-03 15:59:36

Comments on same subnet:

IP	Type	Details	Datetime
134.209.164.184	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-08 03:15:19
134.209.164.184	attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-07 19:29:21
134.209.164.184	attack	Sep 11 18:24:26 sshgateway sshd\[23662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184 user=root Sep 11 18:24:28 sshgateway sshd\[23662\]: Failed password for root from 134.209.164.184 port 40618 ssh2 Sep 11 18:26:06 sshgateway sshd\[23817\]: Invalid user sniffer from 134.209.164.184	2020-09-12 00:35:26
134.209.164.184	attackspambots	Sep 11 09:04:32 ns308116 sshd[6068]: Invalid user ovhuser from 134.209.164.184 port 45016 Sep 11 09:04:32 ns308116 sshd[6068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184 Sep 11 09:04:34 ns308116 sshd[6068]: Failed password for invalid user ovhuser from 134.209.164.184 port 45016 ssh2 Sep 11 09:09:51 ns308116 sshd[11481]: Invalid user teamspeak from 134.209.164.184 port 47584 Sep 11 09:09:51 ns308116 sshd[11481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184 ...	2020-09-11 16:35:29
134.209.164.184	attack	Port Scan ...	2020-09-11 08:44:57
134.209.164.184	attackbotsspam	" "	2020-09-08 23:45:52
134.209.164.184	attack	Jul 25 21:33:02 server sshd[8121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184 Jul 25 21:33:04 server sshd[8121]: Failed password for invalid user slview from 134.209.164.184 port 52236 ssh2 Jul 25 21:37:29 server sshd[8319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184 Jul 25 21:37:30 server sshd[8319]: Failed password for invalid user Joshua from 134.209.164.184 port 45358 ssh2	2020-09-08 15:21:22
134.209.164.184	attackbotsspam	Multiport scan 144 ports : 155 869 969 1046 1073 1104 1226 1228 1468 2232 2620 2631 2760 2831 3074 3130 3370 3637 4524 4585 4664 4675 4701 4964 5244 5375 5514 5796 5917 6056 6148 6831 6846 6952 7425 7616 7617 7824 7921 9022 9180 9505 9840 10250 10707 10894 11001 11384 11606 11657 11804 12157 12349 12418 12483 12899 13020 13055 14790 14893 15838 15959 16136 16303 16580 17046 17543 17627 18268 18369 18702 18933 18934(x2) 19328 19677 19716 20191 20223 20243 20258 20543 20828 20961 21039 21453 21804 22079 22217 22478 22853 23500 23941 24222 24248 24327 24334 24435 24590 24717 24760 24963 25504 25543 25687 25724 25824 26129 26132 26238 26413 26424 26493 26833 26876 27055 27315 27549 27729 27851 28275 28475 28562 28635 28643 28830 28923 29575 29635 29899 29964 30090 30577 30702 31050 31304 31392 31745 31779 31897 32149 32245 32413 32418 32643	2020-09-08 07:52:58
134.209.164.184	attack	TCP (SYN) 134.209.164.184:42780 -> port 2620, len 44	2020-09-06 20:29:53
134.209.164.184	attackspam	firewall-block, port(s): 7921/tcp	2020-09-06 12:09:40
134.209.164.184	attackbots	Sep 5 22:11:45 lnxded64 sshd[4648]: Failed password for root from 134.209.164.184 port 40082 ssh2 Sep 5 22:11:45 lnxded64 sshd[4648]: Failed password for root from 134.209.164.184 port 40082 ssh2 Sep 5 22:16:44 lnxded64 sshd[5876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184	2020-09-06 04:32:52
134.209.164.184	attackbots	fail2ban -- 134.209.164.184 ...	2020-08-28 03:30:38
134.209.164.184	attackspam	TCP (SYN) 134.209.164.184:53798 -> port 29575, len 44	2020-08-27 20:55:30
134.209.164.184	attack	Port scanning [2 denied]	2020-08-24 15:03:56
134.209.164.184	attack	Aug 24 01:06:16 cosmoit sshd[24476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.164.184	2020-08-24 08:19:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.164.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.164.153.		IN	A

;; AUTHORITY SECTION:
.			276	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120300 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 03 15:59:33 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 153.164.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 153.164.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
108.173.246.188	attackspam	Honeypot attack, port: 5555, PTR: d108-173-246-188.abhsia.telus.net.	2020-02-20 16:44:01
103.42.57.65	attackspam	Invalid user www from 103.42.57.65 port 51752	2020-02-20 16:25:21
74.222.4.12	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 16:56:19
81.214.54.234	attackbotsspam	Automatic report - Port Scan Attack	2020-02-20 16:29:16
123.20.58.253	attackbotsspam	1582174407 - 02/20/2020 05:53:27 Host: 123.20.58.253/123.20.58.253 Port: 445 TCP Blocked	2020-02-20 16:45:55
211.72.117.101	attackbotsspam	Feb 20 06:41:10 lnxmysql61 sshd[16438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Feb 20 06:41:10 lnxmysql61 sshd[16438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101	2020-02-20 16:44:53
122.161.196.221	attackbots	1582174410 - 02/20/2020 05:53:30 Host: 122.161.196.221/122.161.196.221 Port: 445 TCP Blocked	2020-02-20 16:42:14
84.131.101.74	attack	Automatic report - Port Scan Attack	2020-02-20 16:58:24
81.177.6.55	attackbots	Feb 20 08:40:56 vmd17057 sshd[25137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.177.6.55 Feb 20 08:40:58 vmd17057 sshd[25137]: Failed password for invalid user rabbitmq from 81.177.6.55 port 41890 ssh2 ...	2020-02-20 16:57:08
128.199.52.45	attackspam	2020-02-20T05:07:36.463581homeassistant sshd[22541]: Invalid user gitlab-runner from 128.199.52.45 port 46502 2020-02-20T05:07:36.470186homeassistant sshd[22541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 ...	2020-02-20 16:41:53
221.11.39.50	attackbotsspam	Unauthorized access to SSH at 20/Feb/2020:08:14:43 +0000.	2020-02-20 16:40:54
43.228.66.154	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 16:35:19
222.119.161.155	attackbots	Feb 20 09:07:20 OPSO sshd\[1815\]: Invalid user sinusbot from 222.119.161.155 port 44944 Feb 20 09:07:20 OPSO sshd\[1815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.119.161.155 Feb 20 09:07:22 OPSO sshd\[1815\]: Failed password for invalid user sinusbot from 222.119.161.155 port 44944 ssh2 Feb 20 09:13:03 OPSO sshd\[2195\]: Invalid user gnats from 222.119.161.155 port 55238 Feb 20 09:13:03 OPSO sshd\[2195\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.119.161.155	2020-02-20 16:26:18
177.63.253.178	attackbots	Feb 19 08:50:31 new sshd[17302]: reveeclipse mapping checking getaddrinfo for 177-63-253-178.dsl.telesp.net.br [177.63.253.178] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 19 08:50:33 new sshd[17302]: Failed password for invalid user cnc from 177.63.253.178 port 48894 ssh2 Feb 19 08:50:33 new sshd[17302]: Received disconnect from 177.63.253.178: 11: Bye Bye [preauth] Feb 19 08:54:15 new sshd[18421]: reveeclipse mapping checking getaddrinfo for 177-63-253-178.dsl.telesp.net.br [177.63.253.178] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 19 08:54:17 new sshd[18421]: Failed password for invalid user alex from 177.63.253.178 port 57568 ssh2 Feb 19 08:54:17 new sshd[18421]: Received disconnect from 177.63.253.178: 11: Bye Bye [preauth] Feb 19 08:57:50 new sshd[19584]: reveeclipse mapping checking getaddrinfo for 177-63-253-178.dsl.telesp.net.br [177.63.253.178] failed - POSSIBLE BREAK-IN ATTEMPT! Feb 19 08:57:52 new sshd[19584]: Failed password for invalid user jenkins from 177.63.2........ -------------------------------	2020-02-20 16:41:30
171.244.43.52	attackbotsspam	Feb 20 09:16:06 server sshd[1783491]: Failed password for invalid user lasse from 171.244.43.52 port 60006 ssh2 Feb 20 09:19:50 server sshd[1785583]: Failed password for invalid user nx from 171.244.43.52 port 60264 ssh2 Feb 20 09:23:41 server sshd[1788197]: Failed password for invalid user lasse from 171.244.43.52 port 60530 ssh2	2020-02-20 16:43:24

Recently Reported IPs

188.219.5.27	216.197.202.43	210.53.159.74	26.84.180.131
228.53.22.36	109.248.105.151	171.180.194.185	157.23.11.217
177.75.154.6	187.102.53.62	73.68.46.209	142.4.10.45
148.101.67.102	36.235.82.206	27.147.221.45	183.163.41.218
5.231.194.243	233.139.250.240	164.105.11.209	54.6.253.42