134.209.21.195

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.209.213.153	attackspambots	DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks UA removed	2020-04-10 21:46:41
134.209.214.75	attack	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-03-10 02:49:14
134.209.214.75	attackbotsspam	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-02-27 02:50:10
134.209.216.249	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-18 15:48:37
134.209.214.165	attackbots	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2019-12-04 22:34:43
134.209.211.153	attack	134.209.211.153 - - \[19/Nov/2019:09:56:30 +0100\] "POST /wp-login.php HTTP/1.0" 200 4474 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.209.211.153 - - \[19/Nov/2019:09:56:32 +0100\] "POST /wp-login.php HTTP/1.0" 200 4287 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.209.211.153 - - \[19/Nov/2019:09:56:33 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-19 16:59:07
134.209.216.249	attackbots	miraniessen.de 134.209.216.249 \[12/Nov/2019:08:02:34 +0100\] "POST /wp-login.php HTTP/1.1" 200 5974 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" miraniessen.de 134.209.216.249 \[12/Nov/2019:08:02:37 +0100\] "POST /wp-login.php HTTP/1.1" 200 5975 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-12 22:28:04
134.209.211.153	attack	134.209.211.153 - - \[11/Nov/2019:14:46:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 3909 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.209.211.153 - - \[11/Nov/2019:14:46:40 +0100\] "POST /wp-login.php HTTP/1.0" 200 4410 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.209.211.153 - - \[11/Nov/2019:14:46:53 +0100\] "POST /wp-login.php HTTP/1.0" 200 4408 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-11 21:56:33
134.209.211.153	attackspambots	fail2ban honeypot	2019-10-31 00:31:51
134.209.219.234	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-29 16:38:34
134.209.210.100	attackbotsspam	134.209.210.100 - - [26/Oct/2019:22:28:57 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.210.100 - - [26/Oct/2019:22:28:57 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.210.100 - - [26/Oct/2019:22:28:58 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.210.100 - - [26/Oct/2019:22:28:58 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.210.100 - - [26/Oct/2019:22:29:02 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.210.100 - - [26/Oct/2019:22:29:02 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-27 04:51:08
134.209.218.189	attackbotsspam	ssh intrusion attempt	2019-10-25 19:44:40
134.209.21.229	attackbots	port scan and connect, tcp 23 (telnet)	2019-10-21 00:59:08
134.209.211.153	attack	villaromeo.de 134.209.211.153 \[14/Oct/2019:21:30:45 +0200\] "POST /wp-login.php HTTP/1.1" 200 2061 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" villaromeo.de 134.209.211.153 \[14/Oct/2019:21:30:51 +0200\] "POST /wp-login.php HTTP/1.1" 200 2025 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-15 03:41:06
134.209.216.249	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-14 01:13:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.21.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33967
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.209.21.195.			IN	A

;; AUTHORITY SECTION:
.			384	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 21:07:08 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 195.21.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 195.21.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
59.127.225.203	attackspambots	Honeypot attack, port: 81, PTR: 59-127-225-203.HINET-IP.hinet.net.	2020-06-04 04:17:43
92.241.78.114	attackspam	Honeypot attack, port: 445, PTR: host-92-241-78-114-customer.wanex.net.	2020-06-04 04:45:51
222.186.175.183	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-04 04:18:38
66.70.173.63	attack	Jun 4 03:13:01 webhost01 sshd[12226]: Failed password for root from 66.70.173.63 port 57524 ssh2 ...	2020-06-04 04:27:21
188.213.49.176	attackspam	(mod_security) mod_security (id:210492) triggered by 188.213.49.176 (RO/Romania/-): 5 in the last 3600 secs	2020-06-04 04:37:41
185.222.50.214	attackbots	4 failed login attempts (2 lockout(s)) from IP: 185.222.50.214 Last user attempted: autoinformed	2020-06-04 04:16:06
96.127.158.234	attackbots	Unauthorized connection attempt detected from IP address 96.127.158.234 to port 2323	2020-06-04 04:42:45
95.27.46.68	attackspam	Unauthorized connection attempt from IP address 95.27.46.68 on Port 445(SMB)	2020-06-04 04:40:55
211.23.45.26	attack	Honeypot attack, port: 81, PTR: 211-23-45-26.HINET-IP.hinet.net.	2020-06-04 04:23:19
222.186.42.136	attackspam	Unauthorized connection attempt detected from IP address 222.186.42.136 to port 22	2020-06-04 04:20:58
220.134.117.211	attackspambots	Honeypot attack, port: 81, PTR: 220-134-117-211.HINET-IP.hinet.net.	2020-06-04 04:23:44
51.91.125.179	attackbotsspam	Jun 3 22:13:40 nextcloud sshd\[23192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.125.179 user=root Jun 3 22:13:42 nextcloud sshd\[23192\]: Failed password for root from 51.91.125.179 port 34192 ssh2 Jun 3 22:16:58 nextcloud sshd\[27859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.125.179 user=root	2020-06-04 04:21:42
222.186.190.14	attackspambots	Jun 3 22:29:29 OPSO sshd\[26481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root Jun 3 22:29:31 OPSO sshd\[26481\]: Failed password for root from 222.186.190.14 port 42677 ssh2 Jun 3 22:29:33 OPSO sshd\[26481\]: Failed password for root from 222.186.190.14 port 42677 ssh2 Jun 3 22:29:36 OPSO sshd\[26481\]: Failed password for root from 222.186.190.14 port 42677 ssh2 Jun 3 22:29:38 OPSO sshd\[26547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root	2020-06-04 04:35:52
213.217.0.101	attack	Jun 3 23:15:57 debian kernel: [117921.130539] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=213.217.0.101 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=42282 PROTO=TCP SPT=50716 DPT=6919 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-04 04:20:31
80.106.74.137	attackbotsspam	Honeypot attack, port: 81, PTR: ocamha.static.otenet.gr.	2020-06-04 04:22:41

Recently Reported IPs

134.209.213.98	134.209.20.214	134.209.199.15	134.209.229.229
134.209.216.226	134.209.226.84	134.209.236.103	104.22.1.163
134.209.230.146	134.209.23.11	134.209.235.156	134.209.24.95
134.209.237.111	134.209.25.155	134.209.249.219	134.209.23.64
134.209.244.13	134.209.25.40	134.209.250.149	134.209.253.84