Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Unitymedia BW GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:
Type Details Datetime
attack
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/134.3.232.196/ 
 
 DE - 1H : (76)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : DE 
 NAME ASN : ASN6830 
 
 IP : 134.3.232.196 
 
 CIDR : 134.3.128.0/17 
 
 PREFIX COUNT : 755 
 
 UNIQUE IP COUNT : 12137216 
 
 
 ATTACKS DETECTED ASN6830 :  
  1H - 1 
  3H - 6 
  6H - 9 
 12H - 13 
 24H - 21 
 
 DateTime : 2019-10-28 06:47:27 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-28 14:44:41
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.3.232.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14799
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.3.232.196.			IN	A

;; AUTHORITY SECTION:
.			376	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102800 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 14:44:36 CST 2019
;; MSG SIZE  rcvd: 117
Host info
196.232.3.134.in-addr.arpa domain name pointer HSI-KBW-134-3-232-196.hsi14.kabel-badenwuerttemberg.de.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.232.3.134.in-addr.arpa	name = HSI-KBW-134-3-232-196.hsi14.kabel-badenwuerttemberg.de.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
118.175.168.50 attack
port scan/probe/communication attempt; port 23
2019-11-28 08:33:01
218.92.0.158 attack
Nov 27 19:18:17 plusreed sshd[8705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.158  user=root
Nov 27 19:18:20 plusreed sshd[8705]: Failed password for root from 218.92.0.158 port 57004 ssh2
...
2019-11-28 08:21:17
222.186.190.92 attack
Nov 27 18:58:37 sshd[945]: Connection from 222.186.190.92 port 16704 on server
Nov 27 18:58:38 sshd[945]: Failed none for root from 222.186.190.92 port 16704 ssh2
Nov 27 18:58:38 sshd[945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92  user=root
Nov 27 18:58:40 sshd[945]: Failed password for root from 222.186.190.92 port 16704 ssh2
Nov 27 18:58:43 sshd[945]: Failed password for root from 222.186.190.92 port 16704 ssh2
Nov 27 18:58:46 sshd[945]: Failed password for root from 222.186.190.92 port 16704 ssh2
Nov 27 18:58:49 sshd[945]: Failed password for root from 222.186.190.92 port 16704 ssh2
Nov 27 18:58:52 sshd[945]: Failed password for root from 222.186.190.92 port 16704 ssh2
Nov 27 18:58:52 sshd[945]: Disconnecting: Too many authentication failures for root from 222.186.190.92 port 16704 ssh2 [preauth]
Nov 27 18:58:52 sshd[945]: PAM 4 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92  user=root
Nov 27 18:58:55 ss
2019-11-28 08:42:38
185.74.4.106 attackbots
Portscan or hack attempt detected by psad/fwsnort
2019-11-28 08:39:50
212.129.53.177 attack
2019-11-27T23:58:14.428190centos sshd\[23172\]: Invalid user news from 212.129.53.177 port 20009
2019-11-27T23:58:14.433325centos sshd\[23172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=es17.homesyspro.com
2019-11-27T23:58:16.700032centos sshd\[23172\]: Failed password for invalid user news from 212.129.53.177 port 20009 ssh2
2019-11-28 08:06:57
120.71.75.172 attackspambots
port scan/probe/communication attempt; port 23
2019-11-28 08:08:50
106.12.74.238 attack
Nov 28 00:52:31 OPSO sshd\[28782\]: Invalid user hewage from 106.12.74.238 port 42026
Nov 28 00:52:31 OPSO sshd\[28782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.238
Nov 28 00:52:33 OPSO sshd\[28782\]: Failed password for invalid user hewage from 106.12.74.238 port 42026 ssh2
Nov 28 00:59:19 OPSO sshd\[29944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.238  user=root
Nov 28 00:59:21 OPSO sshd\[29944\]: Failed password for root from 106.12.74.238 port 47756 ssh2
2019-11-28 08:11:57
202.191.56.69 attackbots
Nov 27 06:35:55 server sshd\[23641\]: Failed password for invalid user send from 202.191.56.69 port 46496 ssh2
Nov 28 01:51:47 server sshd\[22531\]: Invalid user developer from 202.191.56.69
Nov 28 01:51:47 server sshd\[22531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.69 
Nov 28 01:51:49 server sshd\[22531\]: Failed password for invalid user developer from 202.191.56.69 port 46416 ssh2
Nov 28 01:57:49 server sshd\[23979\]: Invalid user www from 202.191.56.69
Nov 28 01:57:49 server sshd\[23979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.69 
...
2019-11-28 08:22:37
49.88.112.113 attack
Nov 27 19:23:14 plusreed sshd[9849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113  user=root
Nov 27 19:23:17 plusreed sshd[9849]: Failed password for root from 49.88.112.113 port 46545 ssh2
...
2019-11-28 08:24:12
45.82.153.79 attack
Nov 28 01:20:17 srv01 postfix/smtpd\[14409\]: warning: unknown\[45.82.153.79\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Nov 28 01:20:39 srv01 postfix/smtpd\[14409\]: warning: unknown\[45.82.153.79\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Nov 28 01:29:32 srv01 postfix/smtpd\[1172\]: warning: unknown\[45.82.153.79\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Nov 28 01:29:54 srv01 postfix/smtpd\[1172\]: warning: unknown\[45.82.153.79\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Nov 28 01:37:45 srv01 postfix/smtpd\[3510\]: warning: unknown\[45.82.153.79\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2019-11-28 08:42:18
165.22.121.222 attackbots
Excessive Port-Scanning
2019-11-28 08:20:55
175.204.91.168 attackbots
Nov 28 00:54:26 markkoudstaal sshd[20038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168
Nov 28 00:54:28 markkoudstaal sshd[20038]: Failed password for invalid user guest from 175.204.91.168 port 43632 ssh2
Nov 28 01:01:45 markkoudstaal sshd[20654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.204.91.168
2019-11-28 08:36:53
192.157.236.124 attack
Nov 28 00:11:41 124388 sshd[14445]: Invalid user yoyo from 192.157.236.124 port 35632
Nov 28 00:11:41 124388 sshd[14445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.157.236.124
Nov 28 00:11:41 124388 sshd[14445]: Invalid user yoyo from 192.157.236.124 port 35632
Nov 28 00:11:42 124388 sshd[14445]: Failed password for invalid user yoyo from 192.157.236.124 port 35632 ssh2
Nov 28 00:14:34 124388 sshd[14473]: Invalid user test from 192.157.236.124 port 43746
2019-11-28 08:27:50
112.85.42.171 attack
Nov 28 02:03:59 sauna sshd[58200]: Failed password for root from 112.85.42.171 port 37798 ssh2
Nov 28 02:04:13 sauna sshd[58200]: error: maximum authentication attempts exceeded for root from 112.85.42.171 port 37798 ssh2 [preauth]
...
2019-11-28 08:13:16
181.41.216.143 attack
Nov 28 07:16:06 staklim-malang postfix/smtpd[20431]: 57C4D227CE: reject: RCPT from unknown[181.41.216.143]: 550 5.1.1 : Recipient address rejected: User unknown in local recipient table; from=<27cm1ch9dwnre@zspo.ru> to= proto=ESMTP helo=<[181.41.216.131]>
...
2019-11-28 08:40:04

Recently Reported IPs

217.68.213.232 222.183.74.126 245.59.70.66 209.16.250.0
74.52.63.26 211.219.215.57 202.12.213.220 64.181.185.30
170.154.170.177 182.179.222.127 122.112.161.13 177.37.164.63
62.219.126.200 62.136.71.35 25.237.32.223 185.53.225.26
177.238.136.172 242.254.22.81 129.204.40.149 74.184.200.53