134.3.232.196 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Unitymedia BW GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/134.3.232.196/ DE - 1H : (76) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN6830 IP : 134.3.232.196 CIDR : 134.3.128.0/17 PREFIX COUNT : 755 UNIQUE IP COUNT : 12137216 ATTACKS DETECTED ASN6830 : 1H - 1 3H - 6 6H - 9 12H - 13 24H - 21 DateTime : 2019-10-28 06:47:27 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-28 14:44:41

Type

Details

Datetime

attack

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/134.3.232.196/ 
 
 DE - 1H : (76)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : DE 
 NAME ASN : ASN6830 
 
 IP : 134.3.232.196 
 
 CIDR : 134.3.128.0/17 
 
 PREFIX COUNT : 755 
 
 UNIQUE IP COUNT : 12137216 
 
 
 ATTACKS DETECTED ASN6830 :  
  1H - 1 
  3H - 6 
  6H - 9 
 12H - 13 
 24H - 21 
 
 DateTime : 2019-10-28 06:47:27 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-28 14:44:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.3.232.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14799
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.3.232.196.			IN	A

;; AUTHORITY SECTION:
.			376	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 14:44:36 CST 2019
;; MSG SIZE  rcvd: 117

Host info

196.232.3.134.in-addr.arpa domain name pointer HSI-KBW-134-3-232-196.hsi14.kabel-badenwuerttemberg.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.232.3.134.in-addr.arpa	name = HSI-KBW-134-3-232-196.hsi14.kabel-badenwuerttemberg.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.38.48.127	attackbotsspam	Jul 5 02:01:40 core01 sshd\[32721\]: Invalid user oh from 51.38.48.127 port 36390 Jul 5 02:01:40 core01 sshd\[32721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 ...	2019-07-05 10:01:13
222.191.233.238	attack	'IP reached maximum auth failures for a one day block'	2019-07-05 09:49:11
120.209.164.118	attack	Brute force attack stopped by firewall	2019-07-05 10:02:48
111.230.8.40	attackbotsspam	Jul 5 01:15:17 dedicated sshd[19393]: Invalid user dev from 111.230.8.40 port 57076	2019-07-05 09:36:17
218.28.50.51	attack	Brute force attack stopped by firewall	2019-07-05 09:53:03
220.225.7.42	attack	Brute force attack stopped by firewall	2019-07-05 09:52:47
154.72.188.190	attackspambots	Sending SPAM email	2019-07-05 09:47:30
37.49.224.118	attack	Brute force attack stopped by firewall	2019-07-05 10:06:39
87.120.36.244	attackbots	2019-07-0502:01:32dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:59434:535Incorrectauthenticationdata\(set_id=abuse@mondo-it.ch\)2019-07-0502:01:48dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:38366:535Incorrectauthenticationdata\(set_id=abuse@myt-shirt.ch\)2019-07-0502:02:34dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:59678:535Incorrectauthenticationdata\(set_id=abuse@pescheria.ch\)2019-07-0502:03:05dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:45932:535Incorrectauthenticationdata\(set_id=abuse@purexis.ch\)2019-07-0502:03:36dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:32830:535Incorrectauthenticationdata\(set_id=abuse@rs-solution.ch\)2019-07-0502:03:41dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:33042:535Incorrectauthenticationdata\(set_id=abuse@rssolution.ch\)2019-07-0502:04:17dovecot_loginauthenticatorfailedfor\(server.com\)[87.120.36.244]:51384:535Incorrectauthenticationdata\(set_id=abuse@sh	2019-07-05 09:42:19
61.160.25.118	attackspambots	Brute force attack stopped by firewall	2019-07-05 09:37:58
147.135.244.25	attack	Jul 5 02:26:35 XXX sshd[51795]: Invalid user tester from 147.135.244.25 port 37922	2019-07-05 09:58:15
59.50.85.74	attackspam	Jul 4 17:54:17 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=59.50.85.74, lip=[munged], TLS: Disconnected	2019-07-05 09:48:29
222.184.86.186	attackspam	Brute force attack stopped by firewall	2019-07-05 09:57:34
190.64.71.38	attackspam	Brute force attempt	2019-07-05 10:06:08
58.210.126.206	attackspam	Brute force attack stopped by firewall	2019-07-05 10:04:46

Recently Reported IPs

217.68.213.232	222.183.74.126	245.59.70.66	209.16.250.0
74.52.63.26	211.219.215.57	202.12.213.220	64.181.185.30
170.154.170.177	182.179.222.127	122.112.161.13	177.37.164.63
62.219.126.200	62.136.71.35	25.237.32.223	185.53.225.26
177.238.136.172	242.254.22.81	129.204.40.149	74.184.200.53