134.209.198.166

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.209.198.163	attackspambots	Port probing on unauthorized port 33176	2020-04-28 16:23:51
134.209.198.245	attack	Lines containing failures of 134.209.198.245 (max 1000) Apr 24 00:14:28 ks3373544 sshd[31336]: Did not receive identification string from 134.209.198.245 port 49702 Apr 24 00:14:34 ks3373544 sshd[31385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.198.245 user=r.r Apr 24 00:14:35 ks3373544 sshd[31385]: Failed password for r.r from 134.209.198.245 port 44202 ssh2 Apr 24 00:14:35 ks3373544 sshd[31385]: Received disconnect from 134.209.198.245 port 44202:11: Normal Shutdown, Thank you for playing [preauth] Apr 24 00:14:35 ks3373544 sshd[31385]: Disconnected from 134.209.198.245 port 44202 [preauth] Apr 24 00:14:45 ks3373544 sshd[31456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.198.245 user=r.r Apr 24 00:14:46 ks3373544 sshd[31456]: Failed password for r.r from 134.209.198.245 port 44832 ssh2 Apr 24 00:14:46 ks3373544 sshd[31456]: Received disconnect from 134.209.198......... ------------------------------	2020-04-24 23:54:05
134.209.198.245	attackspam	SSH Brute-Forcing (server1)	2020-04-24 16:36:13
134.209.198.213	attack	Sep 16 13:52:19 plex sshd[26962]: Invalid user kevin from 134.209.198.213 port 38972	2019-09-16 19:54:27

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.198.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40166
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.198.166.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 03 01:21:13 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 166.198.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 166.198.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.20.11	attack	Jun 8 16:27:41 pkdns2 sshd\[15730\]: Failed password for root from 117.50.20.11 port 33786 ssh2Jun 8 16:28:59 pkdns2 sshd\[15768\]: Failed password for root from 117.50.20.11 port 48722 ssh2Jun 8 16:30:13 pkdns2 sshd\[15874\]: Failed password for root from 117.50.20.11 port 35424 ssh2Jun 8 16:31:31 pkdns2 sshd\[15922\]: Failed password for root from 117.50.20.11 port 50360 ssh2Jun 8 16:32:42 pkdns2 sshd\[15960\]: Failed password for root from 117.50.20.11 port 37062 ssh2Jun 8 16:34:05 pkdns2 sshd\[16000\]: Failed password for root from 117.50.20.11 port 51998 ssh2 ...	2020-06-08 23:08:44
192.42.116.22	attackbotsspam	2020-06-08T12:06:56.941904homeassistant sshd[11180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.42.116.22 user=root 2020-06-08T12:06:59.520694homeassistant sshd[11180]: Failed password for root from 192.42.116.22 port 54706 ssh2 ...	2020-06-08 22:57:18
49.128.172.117	attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-06-08 22:59:10
103.130.214.207	attack	fail2ban -- 103.130.214.207 ...	2020-06-08 22:39:22
94.182.197.202	attackbots	94.182.197.202 - - \[08/Jun/2020:15:08:03 +0200\] "POST /wp-login.php HTTP/1.0" 200 5508 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 94.182.197.202 - - \[08/Jun/2020:15:08:07 +0200\] "POST /wp-login.php HTTP/1.0" 200 5345 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 94.182.197.202 - - \[08/Jun/2020:15:08:09 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-06-08 22:40:45
211.252.85.24	attack	$f2bV_matches	2020-06-08 22:49:07
139.159.230.104	attackspam	Port Scan detected! ...	2020-06-08 22:42:25
137.74.44.162	attackbotsspam	Jun 8 14:38:16 vps639187 sshd\[4587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.44.162 user=root Jun 8 14:38:18 vps639187 sshd\[4587\]: Failed password for root from 137.74.44.162 port 46643 ssh2 Jun 8 14:41:42 vps639187 sshd\[4603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.44.162 user=root ...	2020-06-08 22:37:18
109.168.18.114	attackbots	Jun 8 13:45:52 localhost sshd[39930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.18.168.109.dsl.static.ip.kpnqwest.it user=root Jun 8 13:45:54 localhost sshd[39930]: Failed password for root from 109.168.18.114 port 41813 ssh2 Jun 8 13:49:24 localhost sshd[40372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.18.168.109.dsl.static.ip.kpnqwest.it user=root Jun 8 13:49:26 localhost sshd[40372]: Failed password for root from 109.168.18.114 port 34017 ssh2 Jun 8 13:53:10 localhost sshd[40791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.18.168.109.dsl.static.ip.kpnqwest.it user=root Jun 8 13:53:11 localhost sshd[40791]: Failed password for root from 109.168.18.114 port 43923 ssh2 ...	2020-06-08 22:46:00
138.68.80.235	attack	138.68.80.235 - - [08/Jun/2020:14:55:35 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.80.235 - - [08/Jun/2020:15:01:48 +0200] "POST /xmlrpc.php HTTP/1.1" 403 16468 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-08 23:09:58
103.53.72.20	attack	103.53.72.20	2020-06-08 23:12:39
68.183.95.140	attackbotsspam	68.183.95.140 - - \[08/Jun/2020:15:29:04 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 68.183.95.140 - - \[08/Jun/2020:15:29:05 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 68.183.95.140 - - \[08/Jun/2020:15:29:06 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-06-08 23:09:21
49.235.158.195	attackspambots	Jun 8 16:15:24 pve1 sshd[22718]: Failed password for root from 49.235.158.195 port 36630 ssh2 ...	2020-06-08 22:50:04
167.172.62.15	attackspam	Jun 8 16:40:22 nas sshd[31671]: Failed password for root from 167.172.62.15 port 34914 ssh2 Jun 8 16:57:11 nas sshd[32113]: Failed password for root from 167.172.62.15 port 36086 ssh2 ...	2020-06-08 23:15:36
185.153.133.88	attackspambots	[08/Jun/2020:16:21:51 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1" [08/Jun/2020:16:21:57 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1"	2020-06-08 22:52:11

Recently Reported IPs

174.255.178.134	101.80.74.81	148.61.71.150	17.158.82.237
129.210.82.205	118.61.95.112	37.123.126.110	132.49.33.230
190.166.17.12	2600:1011:b105:962c:4ded:f570:dae5:9642	176.234.15.131	182.61.26.36
153.0.61.40	194.71.56.15	157.26.127.254	150.140.92.249
55.62.1.52	113.162.185.116	116.96.157.150	212.125.137.106