134.209.253.24

Basic Info

City: Frankfurt am Main

Region: Hesse

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.209.253.165	attackspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-04-05 02:50:14
134.209.253.14	attack	Sep 8 10:16:56 vmd17057 sshd\[28207\]: Invalid user vmuser from 134.209.253.14 port 38748 Sep 8 10:16:56 vmd17057 sshd\[28207\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.14 Sep 8 10:16:57 vmd17057 sshd\[28207\]: Failed password for invalid user vmuser from 134.209.253.14 port 38748 ssh2 ...	2019-09-08 17:35:26
134.209.253.14	attackbots	Sep 7 05:29:24 saschabauer sshd[19792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.14 Sep 7 05:29:27 saschabauer sshd[19792]: Failed password for invalid user postgres from 134.209.253.14 port 54846 ssh2	2019-09-07 11:31:58
134.209.253.14	attackbotsspam	Sep 7 02:13:10 saschabauer sshd[28186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.14 Sep 7 02:13:13 saschabauer sshd[28186]: Failed password for invalid user teamspeak from 134.209.253.14 port 58976 ssh2	2019-09-07 08:27:25
134.209.253.126	attackbotsspam	Sep 6 11:06:27 lcdev sshd\[30825\]: Invalid user pass from 134.209.253.126 Sep 6 11:06:27 lcdev sshd\[30825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 Sep 6 11:06:29 lcdev sshd\[30825\]: Failed password for invalid user pass from 134.209.253.126 port 43682 ssh2 Sep 6 11:10:28 lcdev sshd\[31236\]: Invalid user 1234 from 134.209.253.126 Sep 6 11:10:28 lcdev sshd\[31236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126	2019-09-07 05:14:04
134.209.253.126	attack	Sep 2 10:21:27 vmd17057 sshd\[21754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 user=root Sep 2 10:21:29 vmd17057 sshd\[21754\]: Failed password for root from 134.209.253.126 port 60538 ssh2 Sep 2 10:29:55 vmd17057 sshd\[22421\]: Invalid user bugraerguven from 134.209.253.126 port 60924 Sep 2 10:29:55 vmd17057 sshd\[22421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 ...	2019-09-02 16:30:28
134.209.253.126	attack	Aug 28 06:21:23 game-panel sshd[8805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 Aug 28 06:21:26 game-panel sshd[8805]: Failed password for invalid user github from 134.209.253.126 port 56714 ssh2 Aug 28 06:25:27 game-panel sshd[9143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126	2019-08-28 14:35:31
134.209.253.126	attackbotsspam	Aug 25 20:57:52 hb sshd\[10998\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 user=root Aug 25 20:57:54 hb sshd\[10998\]: Failed password for root from 134.209.253.126 port 40082 ssh2 Aug 25 21:02:04 hb sshd\[11412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 user=root Aug 25 21:02:06 hb sshd\[11412\]: Failed password for root from 134.209.253.126 port 57820 ssh2 Aug 25 21:06:11 hb sshd\[11787\]: Invalid user power from 134.209.253.126 Aug 25 21:06:11 hb sshd\[11787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126	2019-08-26 05:17:37
134.209.253.126	attack	Aug 19 18:48:08 lcdev sshd\[28128\]: Invalid user sarah from 134.209.253.126 Aug 19 18:48:08 lcdev sshd\[28128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126 Aug 19 18:48:10 lcdev sshd\[28128\]: Failed password for invalid user sarah from 134.209.253.126 port 40406 ssh2 Aug 19 18:52:22 lcdev sshd\[28540\]: Invalid user user01 from 134.209.253.126 Aug 19 18:52:22 lcdev sshd\[28540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.126	2019-08-20 12:58:45
134.209.253.14	attack	Aug 17 11:31:32 mail sshd[7596]: Invalid user gonzalo from 134.209.253.14 Aug 17 11:31:32 mail sshd[7596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.253.14 Aug 17 11:31:32 mail sshd[7596]: Invalid user gonzalo from 134.209.253.14 Aug 17 11:31:34 mail sshd[7596]: Failed password for invalid user gonzalo from 134.209.253.14 port 50656 ssh2 Aug 17 11:39:45 mail sshd[8618]: Invalid user bandit from 134.209.253.14 ...	2019-08-17 21:24:51

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 134.209.253.24
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47351
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;134.209.253.24.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:54:55 CST 2021
;; MSG SIZE  rcvd: 43

'

Host info

24.253.209.134.in-addr.arpa domain name pointer kraken-2-0-80-20000-fra1-0.0.0.0-0.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
24.253.209.134.in-addr.arpa	name = kraken-2-0-80-20000-fra1-0.0.0.0-0.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.28.167	attack	SSH Brute Force, server-1 sshd[31542]: Failed password for root from 104.236.28.167 port 40738 ssh2	2019-10-17 01:43:14
197.51.160.51	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-17 01:50:25
185.97.104.10	attack	Fail2Ban Ban Triggered	2019-10-17 02:04:37
210.133.240.226	attack	Spam emails used this IP address for the URLs in their messages. This kind of spam had the following features.: - They passed the SPF authentication checks. - They used networks 210.133.240.0/22 (netname: BOOT-NET) for their SMTP servers. - They used the following domains for the email addresses and URLs.: anybodyamazed.jp, askappliance.jp, hamburgermotorboat.jp, holidayarchitectural.jp, 5dfis3r.com, 5iami22.com, d8hchg5.com, myp8tkm.com, wh422c8.com, wxzimgi.com, classificationclarity.com, swampcapsule.com, tagcorps.com, etc. - Those URLs used the following name sever pairs.: -- ns1.anyaltitude.jp and ns2 -- ns1.abandonedemigrate.com and ns2 -- ns1.greetincline.jp and ns2 -- ns1.himprotestant.jp and ns2 -- ns1.swampcapsule.com and ns2 -- ns1.yybuijezu.com and ns2	2019-10-17 02:07:14
91.236.24.15	attackbotsspam	$f2bV_matches	2019-10-17 02:22:26
198.108.67.36	attack	firewall-block, port(s): 1234/tcp	2019-10-17 02:12:23
198.108.67.101	attackspambots	firewall-block, port(s): 8808/tcp	2019-10-17 01:53:27
114.43.180.150	attack	Unauthorised access (Oct 16) SRC=114.43.180.150 LEN=40 PREC=0x20 TTL=51 ID=27854 TCP DPT=23 WINDOW=12666 SYN	2019-10-17 02:03:08
165.227.210.71	attackbotsspam	Oct 16 15:20:43 * sshd[21614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.210.71 Oct 16 15:20:45 * sshd[21614]: Failed password for invalid user ionut from 165.227.210.71 port 54172 ssh2	2019-10-17 02:00:17
51.75.70.30	attackspambots	SSH Brute Force, server-1 sshd[31532]: Failed password for invalid user password123 from 51.75.70.30 port 51903 ssh2	2019-10-17 01:44:52
45.87.184.11	attack	Wed Oct 16 13:15:40 2019 \[pid 1950\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:44 2019 \[pid 1954\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:48 2019 \[pid 1959\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:51 2019 \[pid 1964\] \[admin\] FAIL LOGIN: Client "45.87.184.11" Wed Oct 16 13:15:54 2019 \[pid 1970\] \[admin\] FAIL LOGIN: Client "45.87.184.11"	2019-10-17 02:18:48
202.152.1.67	attackspambots	Invalid user cn from 202.152.1.67 port 53070	2019-10-17 02:11:19
41.221.52.130	attack	Unauthorised access (Oct 16) SRC=41.221.52.130 LEN=40 TTL=243 ID=41616 TCP DPT=1433 WINDOW=1024 SYN	2019-10-17 02:13:44
102.68.17.48	attackspam	Oct 16 13:59:48 localhost sshd\[31208\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root Oct 16 13:59:50 localhost sshd\[31208\]: Failed password for root from 102.68.17.48 port 41258 ssh2 Oct 16 14:23:01 localhost sshd\[31529\]: Invalid user 00 from 102.68.17.48 port 55362 ...	2019-10-17 01:56:12
212.110.128.74	attack	F2B jail: sshd. Time: 2019-10-16 17:19:09, Reported by: VKReport	2019-10-17 02:17:42

Recently Reported IPs

178.205.230.91	185.140.102.15	190.185.119.13	190.94.136.99
195.3.129.219	198.199.92.41	176.122.100.10	20.51.255.113
27.213.103.160	34.96.130.23	35.176.206.61	42.235.163.53
45.118.159.74	54.174.157.133	59.93.19.108	64.227.35.222
68.183.127.104	82.149.156.104	85.11.113.119	85.66.9.7