City: unknown
Region: unknown
Country: United States
Internet Service Provider: DigitalOcean LLC
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | firewall-block, port(s): 53413/udp |
2019-07-02 07:40:32 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 134.209.95.102 | attackspambots | Honeypot attack, port: 4567, PTR: PTR record not found |
2020-06-21 07:03:03 |
| 134.209.95.125 | attackspambots | Port Scan |
2020-05-29 23:17:37 |
| 134.209.95.125 | attackspambots | May 27 13:50:17 debian-2gb-nbg1-2 kernel: \[12839011.829150\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.209.95.125 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=8657 PROTO=TCP SPT=50618 DPT=10885 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-05-28 02:04:44 |
| 134.209.95.125 | attack | " " |
2020-05-24 19:58:56 |
| 134.209.95.75 | attackbots | Apr 14 08:15:05 prod4 sshd\[27045\]: Failed password for root from 134.209.95.75 port 45262 ssh2 Apr 14 08:15:05 prod4 sshd\[27052\]: Invalid user admin from 134.209.95.75 Apr 14 08:15:07 prod4 sshd\[27052\]: Failed password for invalid user admin from 134.209.95.75 port 51064 ssh2 ... |
2020-04-14 14:49:27 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.95.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20390
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.95.4. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 07:40:27 CST 2019
;; MSG SIZE rcvd: 116Host 4.95.209.134.in-addr.arpa. not found: 3(NXDOMAIN)Server: 67.207.67.2
Address: 67.207.67.2#53
** server can't find 4.95.209.134.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 218.63.200.208 | attack | 1433/tcp [2019-07-11]1pkt |
2019-07-11 19:50:07 |
| 80.245.117.214 | attack | [portscan] Port scan |
2019-07-11 19:57:58 |
| 77.42.116.6 | attackspam | 23/tcp [2019-07-11]1pkt |
2019-07-11 19:02:18 |
| 185.244.25.212 | attack | firewall-block, port(s): 23/tcp |
2019-07-11 19:28:32 |
| 177.55.150.248 | attackbots | failed_logins |
2019-07-11 19:13:11 |
| 27.211.109.146 | attackbots | Jul 10 13:32:08 h2570396 sshd[25973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.211.109.146 user=r.r Jul 10 13:32:09 h2570396 sshd[25973]: Failed password for r.r from 27.211.109.146 port 30469 ssh2 Jul 10 13:32:12 h2570396 sshd[25973]: Failed password for r.r from 27.211.109.146 port 30469 ssh2 Jul 10 13:32:14 h2570396 sshd[25973]: Failed password for r.r from 27.211.109.146 port 30469 ssh2 Jul 10 13:32:16 h2570396 sshd[25973]: Failed password for r.r from 27.211.109.146 port 30469 ssh2 Jul 10 13:32:19 h2570396 sshd[25973]: Failed password for r.r from 27.211.109.146 port 30469 ssh2 Jul 10 13:32:21 h2570396 sshd[25973]: Failed password for r.r from 27.211.109.146 port 30469 ssh2 Jul 10 13:32:21 h2570396 sshd[25973]: Disconnecting: Too many authentication failures for r.r from 27.211.109.146 port 30469 ssh2 [preauth] Jul 10 13:32:21 h2570396 sshd[25973]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh r........ ------------------------------- |
2019-07-11 19:40:07 |
| 51.38.37.128 | attackspam | Invalid user misp from 51.38.37.128 port 54151 |
2019-07-11 19:43:39 |
| 193.32.163.123 | attackspambots | Jul 11 11:16:11 rpi sshd[19605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.123 Jul 11 11:16:13 rpi sshd[19605]: Failed password for invalid user admin from 193.32.163.123 port 34715 ssh2 |
2019-07-11 19:09:03 |
| 185.176.27.42 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-07-11 19:11:30 |
| 42.116.248.148 | attackbots | 60001/tcp [2019-07-11]1pkt |
2019-07-11 18:55:55 |
| 27.50.62.78 | attack | 445/tcp [2019-07-11]1pkt |
2019-07-11 19:30:39 |
| 43.228.225.60 | attack | SMTP-sasl brute force ... |
2019-07-11 19:22:51 |
| 119.1.84.130 | attackbots | vps1:sshd-InvalidUser |
2019-07-11 19:51:35 |
| 84.201.184.53 | attack | " " |
2019-07-11 19:20:09 |
| 181.64.237.178 | attack | 445/tcp [2019-07-11]1pkt |
2019-07-11 19:53:28 |