134.255.252.170

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Active 1 GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Lines containing failures of 134.255.252.170 May 2 22:55:45 newdogma sshd[12841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.252.170 user=r.r May 2 22:55:47 newdogma sshd[12841]: Failed password for r.r from 134.255.252.170 port 52514 ssh2 May 2 22:55:48 newdogma sshd[12841]: Received disconnect from 134.255.252.170 port 52514:11: Bye Bye [preauth] May 2 22:55:48 newdogma sshd[12841]: Disconnected from authenticating user r.r 134.255.252.170 port 52514 [preauth] May 2 23:09:21 newdogma sshd[13161]: Invalid user harvey from 134.255.252.170 port 51446 May 2 23:09:21 newdogma sshd[13161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.252.170 May 2 23:09:22 newdogma sshd[13161]: Failed password for invalid user harvey from 134.255.252.170 port 51446 ssh2 May 2 23:09:23 newdogma sshd[13161]: Received disconnect from 134.255.252.170 port 51446:11: Bye Bye [preauth] ........ ------------------------------	2020-05-04 04:05:10

Type

Details

Datetime

attackbotsspam

Lines containing failures of 134.255.252.170
May  2 22:55:45 newdogma sshd[12841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.252.170  user=r.r
May  2 22:55:47 newdogma sshd[12841]: Failed password for r.r from 134.255.252.170 port 52514 ssh2
May  2 22:55:48 newdogma sshd[12841]: Received disconnect from 134.255.252.170 port 52514:11: Bye Bye [preauth]
May  2 22:55:48 newdogma sshd[12841]: Disconnected from authenticating user r.r 134.255.252.170 port 52514 [preauth]
May  2 23:09:21 newdogma sshd[13161]: Invalid user harvey from 134.255.252.170 port 51446
May  2 23:09:21 newdogma sshd[13161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.252.170 
May  2 23:09:22 newdogma sshd[13161]: Failed password for invalid user harvey from 134.255.252.170 port 51446 ssh2
May  2 23:09:23 newdogma sshd[13161]: Received disconnect from 134.255.252.170 port 51446:11: Bye Bye [preauth]
........
------------------------------

2020-05-04 04:05:10

Comments on same subnet:

IP	Type	Details	Datetime
134.255.252.153	attackbotsspam	Invalid user am from 134.255.252.153 port 54556	2020-04-23 04:04:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.255.252.170
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61596
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.255.252.170.		IN	A

;; AUTHORITY SECTION:
.			413	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050301 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon May 04 04:05:07 CST 2020
;; MSG SIZE  rcvd: 119

Host info

170.252.255.134.in-addr.arpa domain name pointer vps-zap516081-1.zap-srv.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
170.252.255.134.in-addr.arpa	name = vps-zap516081-1.zap-srv.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.60.37.105	attack	Apr 9 23:37:24 DAAP sshd[15454]: Invalid user user2 from 77.60.37.105 port 58790 Apr 9 23:37:24 DAAP sshd[15454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.60.37.105 Apr 9 23:37:24 DAAP sshd[15454]: Invalid user user2 from 77.60.37.105 port 58790 Apr 9 23:37:27 DAAP sshd[15454]: Failed password for invalid user user2 from 77.60.37.105 port 58790 ssh2 Apr 9 23:40:46 DAAP sshd[15682]: Invalid user test from 77.60.37.105 port 59124 ...	2020-04-10 05:56:32
107.173.34.202	attack	2020-04-09T21:55:32.182163shield sshd\[29049\]: Invalid user deploy from 107.173.34.202 port 58188 2020-04-09T21:55:32.186864shield sshd\[29049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.34.202 2020-04-09T21:55:34.792601shield sshd\[29049\]: Failed password for invalid user deploy from 107.173.34.202 port 58188 ssh2 2020-04-09T21:57:26.907677shield sshd\[29160\]: Invalid user admin from 107.173.34.202 port 54522 2020-04-09T21:57:26.912290shield sshd\[29160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.34.202	2020-04-10 06:05:33
114.237.194.135	attackspambots	SpamScore above: 10.0	2020-04-10 05:53:06
61.74.180.44	attackspam	$f2bV_matches	2020-04-10 05:55:29
62.148.227.149	attack	trying to access non-authorized port	2020-04-10 05:51:41
46.101.171.183	attack	Detected by Maltrail	2020-04-10 06:27:39
125.99.173.162	attackbotsspam	Apr 9 21:17:55 localhost sshd\[23611\]: Invalid user db2inst1 from 125.99.173.162 port 3092 Apr 9 21:17:55 localhost sshd\[23611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.99.173.162 Apr 9 21:17:57 localhost sshd\[23611\]: Failed password for invalid user db2inst1 from 125.99.173.162 port 3092 ssh2 ...	2020-04-10 06:00:31
195.110.34.149	attackspam	Apr 9 23:53:40 vps sshd[5032]: Failed password for postgres from 195.110.34.149 port 34406 ssh2 Apr 9 23:57:23 vps sshd[5248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.110.34.149 Apr 9 23:57:24 vps sshd[5248]: Failed password for invalid user m1 from 195.110.34.149 port 40250 ssh2 ...	2020-04-10 06:03:05
70.122.247.113	attackbots	Apr 9 23:53:07 silence02 sshd[30638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.122.247.113 Apr 9 23:53:09 silence02 sshd[30638]: Failed password for invalid user newuser from 70.122.247.113 port 60151 ssh2 Apr 10 00:00:51 silence02 sshd[31214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.122.247.113	2020-04-10 06:07:55
37.187.101.60	attackbotsspam	k+ssh-bruteforce	2020-04-10 06:18:40
158.255.212.111	attack	Tried sshing with brute force.	2020-04-10 06:20:30
51.83.40.227	attackbotsspam	Apr 9 23:53:55 localhost sshd\[29093\]: Invalid user fmaster from 51.83.40.227 Apr 9 23:53:55 localhost sshd\[29093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.40.227 Apr 9 23:53:57 localhost sshd\[29093\]: Failed password for invalid user fmaster from 51.83.40.227 port 43266 ssh2 Apr 9 23:57:19 localhost sshd\[29273\]: Invalid user jaxson from 51.83.40.227 Apr 9 23:57:19 localhost sshd\[29273\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.40.227 ...	2020-04-10 06:12:05
211.253.24.250	attackbotsspam	Apr 9 23:57:48 sip sshd[4249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.24.250 Apr 9 23:57:50 sip sshd[4249]: Failed password for invalid user openldap from 211.253.24.250 port 56179 ssh2 Apr 10 00:03:52 sip sshd[6505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.24.250	2020-04-10 06:12:45
182.56.185.21	attackspambots	Automatic report - Port Scan Attack	2020-04-10 06:11:38
190.205.162.113	attackbots	20/4/9@18:17:14: FAIL: Alarm-Network address from=190.205.162.113 ...	2020-04-10 06:19:55

Recently Reported IPs

94.226.90.252	45.172.108.89	122.116.219.214	85.105.15.70
88.234.185.89	103.100.208.33	1.6.181.79	87.123.159.38
62.234.17.74	218.25.171.125	37.187.18.95	149.202.75.199
118.24.72.100	46.99.139.71	187.134.163.223	186.50.144.240
52.200.80.202	3.87.46.206	110.158.243.255	20.185.239.81