134.3.232.196 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Unitymedia BW GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/134.3.232.196/ DE - 1H : (76) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN6830 IP : 134.3.232.196 CIDR : 134.3.128.0/17 PREFIX COUNT : 755 UNIQUE IP COUNT : 12137216 ATTACKS DETECTED ASN6830 : 1H - 1 3H - 6 6H - 9 12H - 13 24H - 21 DateTime : 2019-10-28 06:47:27 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-28 14:44:41

Type

Details

Datetime

attack

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/134.3.232.196/ 
 
 DE - 1H : (76)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : DE 
 NAME ASN : ASN6830 
 
 IP : 134.3.232.196 
 
 CIDR : 134.3.128.0/17 
 
 PREFIX COUNT : 755 
 
 UNIQUE IP COUNT : 12137216 
 
 
 ATTACKS DETECTED ASN6830 :  
  1H - 1 
  3H - 6 
  6H - 9 
 12H - 13 
 24H - 21 
 
 DateTime : 2019-10-28 06:47:27 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-28 14:44:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.3.232.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14799
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.3.232.196.			IN	A

;; AUTHORITY SECTION:
.			376	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 14:44:36 CST 2019
;; MSG SIZE  rcvd: 117

Host info

196.232.3.134.in-addr.arpa domain name pointer HSI-KBW-134-3-232-196.hsi14.kabel-badenwuerttemberg.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.232.3.134.in-addr.arpa	name = HSI-KBW-134-3-232-196.hsi14.kabel-badenwuerttemberg.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.107.28.138	attackbotsspam	Unauthorized connection attempt from IP address 190.107.28.138 on Port 445(SMB)	2019-07-25 09:24:19
104.140.188.18	attackspam	Automatic report - Port Scan Attack	2019-07-25 09:04:12
209.17.96.250	attackbots	port scan and connect, tcp 80 (http)	2019-07-25 09:35:40
185.220.101.56	attack	Jul 25 00:48:47 [munged] sshd[11101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.56 user=root Jul 25 00:48:49 [munged] sshd[11101]: Failed password for root from 185.220.101.56 port 44727 ssh2	2019-07-25 09:04:31
210.245.51.2	attack	proto=tcp . spt=36055 . dpt=25 . (listed on Github Combined on 3 lists ) (941)	2019-07-25 08:58:20
179.33.189.150	attackbots	" "	2019-07-25 08:48:14
185.254.120.21	attackspam	RDP Bruteforce	2019-07-25 09:09:15
221.162.255.74	attackspambots	Invalid user redis from 221.162.255.74 port 57238	2019-07-25 09:21:03
123.207.237.192	attackspam	firewall-block, port(s): 445/tcp	2019-07-25 09:20:16
176.204.54.3	attackspam	Automatic report - Port Scan Attack	2019-07-25 08:51:00
37.114.180.249	attackspam	IP attempted unauthorised action	2019-07-25 09:20:38
180.126.63.39	attackbotsspam	Jul 25 01:30:43 mail sshd\[31025\]: Invalid user openhabian from 180.126.63.39 port 46945 Jul 25 01:30:43 mail sshd\[31025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.126.63.39 ...	2019-07-25 09:27:38
218.150.220.206	attack	Jul 24 20:52:46 vps sshd[14681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.150.220.206 Jul 24 20:52:48 vps sshd[14681]: Failed password for invalid user cron from 218.150.220.206 port 39636 ssh2 Jul 24 21:52:42 vps sshd[17132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.150.220.206 ...	2019-07-25 09:26:02
170.0.125.24	attack	2019-07-24 13:18:08 H=24-125-0-170.castelecom.com.br [170.0.125.24]:42164 I=[192.147.25.65]:25 sender verify fail for : Unrouteable address 2019-07-24 13:18:08 H=24-125-0-170.castelecom.com.br [170.0.125.24]:42164 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed 2019-07-24 13:18:08 H=24-125-0-170.castelecom.com.br [170.0.125.24]:42164 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed ...	2019-07-25 09:22:32
139.162.123.29	attackspambots	8000/tcp 8000/tcp 8000/tcp... [2019-05-24/07-24]68pkt,1pt.(tcp)	2019-07-25 09:31:54

Recently Reported IPs

217.68.213.232	222.183.74.126	245.59.70.66	209.16.250.0
74.52.63.26	211.219.215.57	202.12.213.220	64.181.185.30
170.154.170.177	182.179.222.127	122.112.161.13	177.37.164.63
62.219.126.200	62.136.71.35	25.237.32.223	185.53.225.26
177.238.136.172	242.254.22.81	129.204.40.149	74.184.200.53