City: Amsterdam
Region: North Holland
Country: Netherlands
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Jul 20 22:41:20 vps687878 sshd\[23118\]: Invalid user deployer from 134.209.94.189 port 57326 Jul 20 22:41:20 vps687878 sshd\[23118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.94.189 Jul 20 22:41:21 vps687878 sshd\[23118\]: Failed password for invalid user deployer from 134.209.94.189 port 57326 ssh2 Jul 20 22:49:08 vps687878 sshd\[23888\]: Invalid user yoshino from 134.209.94.189 port 40848 Jul 20 22:49:08 vps687878 sshd\[23888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.94.189 ... |
2020-07-21 04:52:42 |
| attackspam | Jun 28 22:36:06 inter-technics sshd[6797]: Invalid user m1 from 134.209.94.189 port 32778 Jun 28 22:36:06 inter-technics sshd[6797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.94.189 Jun 28 22:36:06 inter-technics sshd[6797]: Invalid user m1 from 134.209.94.189 port 32778 Jun 28 22:36:07 inter-technics sshd[6797]: Failed password for invalid user m1 from 134.209.94.189 port 32778 ssh2 Jun 28 22:39:01 inter-technics sshd[6938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.94.189 user=mysql Jun 28 22:39:03 inter-technics sshd[6938]: Failed password for mysql from 134.209.94.189 port 60802 ssh2 ... |
2020-06-29 04:40:55 |
| attackbotsspam | Jun 25 00:42:41 ns381471 sshd[583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.94.189 Jun 25 00:42:43 ns381471 sshd[583]: Failed password for invalid user diana from 134.209.94.189 port 59990 ssh2 |
2020-06-25 06:43:46 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 134.209.94.166 | attackbots | 1598474912 - 08/27/2020 03:48:32 Host: 134.209.94.166/134.209.94.166 Port: 8080 TCP Blocked ... |
2020-08-27 09:02:41 |
| 134.209.94.94 | attackbots | DATE:2019-07-12 02:07:49, IP:134.209.94.94, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc) |
2019-07-12 08:13:44 |
| 134.209.94.94 | attackspam | port scan and connect, tcp 23 (telnet) |
2019-07-11 15:00:18 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.94.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.94.189. IN A
;; AUTHORITY SECTION:
. 429 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020062401 1800 900 604800 86400
;; Query time: 171 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 25 06:43:42 CST 2020
;; MSG SIZE rcvd: 118Host 189.94.209.134.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 189.94.209.134.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 35.210.215.0 | attackbotsspam | Bad bot/spoofed identity |
2020-05-04 19:00:41 |
| 186.224.238.253 | attackbotsspam | May 4 12:44:43 eventyay sshd[15267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.224.238.253 May 4 12:44:45 eventyay sshd[15267]: Failed password for invalid user vicki from 186.224.238.253 port 39504 ssh2 May 4 12:47:40 eventyay sshd[15382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.224.238.253 ... |
2020-05-04 19:39:34 |
| 162.243.144.114 | attack | Unauthorized connection attempt detected from IP address 162.243.144.114 to port 7574 [T] |
2020-05-04 19:08:07 |
| 185.175.93.104 | attackspambots | 05/04/2020-12:43:13.543817 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-05-04 19:06:46 |
| 72.71.173.40 | attackspam | Fail2Ban Ban Triggered HTTP Bot Harvester Detected |
2020-05-04 19:41:01 |
| 132.145.168.119 | attackspambots | 132.145.168.119 - - [03/May/2020:20:49:40 -0700] "GET /horde/imp/test.php HTTP/1.1" 404 132.145.168.119 - - [03/May/2020:20:49:40 -0700] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 404 132.145.168.119 - - [03/May/2020:20:49:41 -0700] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 404 |
2020-05-04 19:37:00 |
| 85.93.20.248 | attackbots | firewall-block, port(s): 3392/tcp |
2020-05-04 19:20:06 |
| 212.95.110.30 | attackspambots | Scanning |
2020-05-04 19:07:23 |
| 181.48.225.126 | attackbotsspam | May 4 08:25:38 nextcloud sshd\[28986\]: Invalid user bhq from 181.48.225.126 May 4 08:25:38 nextcloud sshd\[28986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.225.126 May 4 08:25:40 nextcloud sshd\[28986\]: Failed password for invalid user bhq from 181.48.225.126 port 35320 ssh2 |
2020-05-04 19:31:22 |
| 59.145.211.194 | attackbots | May 4 05:45:35 server sshd[55270]: Failed password for invalid user lo from 59.145.211.194 port 2881 ssh2 May 4 05:48:54 server sshd[57534]: Failed password for invalid user jay from 59.145.211.194 port 33651 ssh2 May 4 05:49:45 server sshd[58099]: Failed password for invalid user lukas from 59.145.211.194 port 15326 ssh2 |
2020-05-04 19:33:58 |
| 193.202.45.202 | attackspambots | 5080/udp 5060/udp... [2020-04-13/05-03]50pkt,2pt.(udp) |
2020-05-04 19:04:55 |
| 82.148.31.136 | attackbots | May 4 08:25:51 host sshd[35989]: Invalid user alberto from 82.148.31.136 port 35038 ... |
2020-05-04 19:20:31 |
| 35.204.42.60 | attackspambots | 35.204.42.60 - - \[04/May/2020:09:06:35 +0200\] "POST /wp-login.php HTTP/1.0" 200 6827 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 35.204.42.60 - - \[04/May/2020:09:06:36 +0200\] "POST /wp-login.php HTTP/1.0" 200 6642 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 35.204.42.60 - - \[04/May/2020:09:06:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 6639 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-05-04 19:28:31 |
| 108.75.217.97 | attackbots | 2020-05-04T11:14:11.596383 sshd[10788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.75.217.97 user=root 2020-05-04T11:14:13.371929 sshd[10788]: Failed password for root from 108.75.217.97 port 38262 ssh2 2020-05-04T11:17:27.132484 sshd[10883]: Invalid user musikbot from 108.75.217.97 port 45848 ... |
2020-05-04 19:35:54 |
| 61.221.229.170 | attackbotsspam | firewall-block, port(s): 81/tcp |
2020-05-04 19:25:05 |