162.243.4.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jul 2 10:28:14 server sshd\[173755\]: Invalid user jun from 162.243.4.134 Jul 2 10:28:14 server sshd\[173755\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Jul 2 10:28:15 server sshd\[173755\]: Failed password for invalid user jun from 162.243.4.134 port 46660 ssh2 ...	2019-10-09 16:13:42
attack	fail2ban	2019-09-22 02:09:23
attack	Sep 12 13:38:34 hcbb sshd\[13723\]: Invalid user admin from 162.243.4.134 Sep 12 13:38:34 hcbb sshd\[13723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Sep 12 13:38:36 hcbb sshd\[13723\]: Failed password for invalid user admin from 162.243.4.134 port 58450 ssh2 Sep 12 13:44:48 hcbb sshd\[14347\]: Invalid user admin from 162.243.4.134 Sep 12 13:44:48 hcbb sshd\[14347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134	2019-09-13 08:10:59
attackbots	/var/log/secure-20190901:Aug 28 20:22:47 XXX sshd[39918]: Invalid user benjamin from 162.243.4.134 port 47842	2019-09-11 23:09:32
attack	Sep 2 00:17:13 vps200512 sshd\[15532\]: Invalid user life from 162.243.4.134 Sep 2 00:17:13 vps200512 sshd\[15532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Sep 2 00:17:14 vps200512 sshd\[15532\]: Failed password for invalid user life from 162.243.4.134 port 33726 ssh2 Sep 2 00:20:52 vps200512 sshd\[15668\]: Invalid user zaleski from 162.243.4.134 Sep 2 00:20:52 vps200512 sshd\[15668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134	2019-09-02 12:29:19
attack	Aug 31 02:26:01 aiointranet sshd\[12643\]: Invalid user bigman from 162.243.4.134 Aug 31 02:26:01 aiointranet sshd\[12643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Aug 31 02:26:03 aiointranet sshd\[12643\]: Failed password for invalid user bigman from 162.243.4.134 port 54212 ssh2 Aug 31 02:30:19 aiointranet sshd\[13045\]: Invalid user wp from 162.243.4.134 Aug 31 02:30:19 aiointranet sshd\[13045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134	2019-08-31 20:40:20
attack	Aug 25 10:10:58 herz-der-gamer sshd[15426]: Invalid user kpaul from 162.243.4.134 port 41728 Aug 25 10:10:58 herz-der-gamer sshd[15426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Aug 25 10:10:58 herz-der-gamer sshd[15426]: Invalid user kpaul from 162.243.4.134 port 41728 Aug 25 10:11:00 herz-der-gamer sshd[15426]: Failed password for invalid user kpaul from 162.243.4.134 port 41728 ssh2 ...	2019-08-25 19:27:11
attack	Aug 12 06:46:30 * sshd[10038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Aug 12 06:46:33 * sshd[10038]: Failed password for invalid user publisher from 162.243.4.134 port 48780 ssh2	2019-08-12 13:27:03
attack	Jul 19 01:59:41 plusreed sshd[21778]: Invalid user steam from 162.243.4.134 ...	2019-07-19 15:37:29
attackbots	Jul 18 08:24:51 plusreed sshd[8275]: Invalid user support from 162.243.4.134 ...	2019-07-18 20:32:27
attackspam	Jul 18 00:37:59 MK-Soft-VM5 sshd\[425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 user=root Jul 18 00:38:02 MK-Soft-VM5 sshd\[425\]: Failed password for root from 162.243.4.134 port 39460 ssh2 Jul 18 00:42:27 MK-Soft-VM5 sshd\[452\]: Invalid user ubnt from 162.243.4.134 port 36824 ...	2019-07-18 08:48:23
attackspambots	Jul 7 13:37:28 MK-Soft-VM3 sshd\[21140\]: Invalid user keng from 162.243.4.134 port 52922 Jul 7 13:37:28 MK-Soft-VM3 sshd\[21140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Jul 7 13:37:29 MK-Soft-VM3 sshd\[21140\]: Failed password for invalid user keng from 162.243.4.134 port 52922 ssh2 ...	2019-07-08 02:11:18
attackbots	Jul 2 06:17:06 localhost sshd\[16207\]: Invalid user dasusr1 from 162.243.4.134 port 53230 Jul 2 06:17:06 localhost sshd\[16207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 ...	2019-07-02 15:42:26
attackspam	Jun 28 15:37:18 nextcloud sshd\[16600\]: Invalid user sang from 162.243.4.134 Jun 28 15:37:18 nextcloud sshd\[16600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134 Jun 28 15:37:19 nextcloud sshd\[16600\]: Failed password for invalid user sang from 162.243.4.134 port 32794 ssh2 ...	2019-06-29 05:35:43

Comments on same subnet:

IP	Type	Details	Datetime
162.243.42.225	attackbots	2020-09-25T18:49:09.3420041495-001 sshd[44787]: Invalid user frappe from 162.243.42.225 port 53566 2020-09-25T18:49:09.3450321495-001 sshd[44787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 2020-09-25T18:49:09.3420041495-001 sshd[44787]: Invalid user frappe from 162.243.42.225 port 53566 2020-09-25T18:49:11.6215341495-001 sshd[44787]: Failed password for invalid user frappe from 162.243.42.225 port 53566 ssh2 2020-09-25T18:54:31.5499451495-001 sshd[44965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 user=root 2020-09-25T18:54:32.6974861495-001 sshd[44965]: Failed password for root from 162.243.42.225 port 35548 ssh2 ...	2020-09-26 07:39:47
162.243.42.225	attackbotsspam	TCP (SYN) 162.243.42.225:50965 -> port 31302, len 44	2020-09-26 00:52:51
162.243.42.225	attackbots	Sep 25 08:42:46 jane sshd[8685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 Sep 25 08:42:48 jane sshd[8685]: Failed password for invalid user git from 162.243.42.225 port 54698 ssh2 ...	2020-09-25 16:28:56
162.243.42.225	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 3684 resulting in total of 5 scans from 162.243.0.0/16 block.	2020-09-08 20:37:59
162.243.42.225	attackbotsspam	firewall-block, port(s): 3684/tcp	2020-09-08 12:31:05
162.243.42.225	attackspam	Aug 21 06:10:06 OPSO sshd\[23690\]: Invalid user tb from 162.243.42.225 port 56850 Aug 21 06:10:06 OPSO sshd\[23690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 Aug 21 06:10:08 OPSO sshd\[23690\]: Failed password for invalid user tb from 162.243.42.225 port 56850 ssh2 Aug 21 06:15:28 OPSO sshd\[25370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 user=root Aug 21 06:15:29 OPSO sshd\[25370\]: Failed password for root from 162.243.42.225 port 38184 ssh2	2020-08-21 12:20:26
162.243.42.225	attackspambots	Aug 20 15:21:33 PorscheCustomer sshd[20980]: Failed password for root from 162.243.42.225 port 56044 ssh2 Aug 20 15:24:43 PorscheCustomer sshd[21070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 Aug 20 15:24:44 PorscheCustomer sshd[21070]: Failed password for invalid user rdy from 162.243.42.225 port 38754 ssh2 ...	2020-08-20 21:39:12
162.243.42.225	attack	srv02 Mass scanning activity detected Target: 31056 ..	2020-08-15 23:54:53
162.243.42.225	attackspam	Aug 8 05:58:40 debian-2gb-nbg1-2 kernel: \[19117568.050875\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=162.243.42.225 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=9172 PROTO=TCP SPT=52605 DPT=2969 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-08 12:52:35
162.243.42.225	attackbotsspam	Port Scan ...	2020-07-29 23:50:48
162.243.41.77	attackbots	TCP ports : 21412 / 29757	2020-07-29 18:32:23
162.243.42.225	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-07-27 19:37:41
162.243.42.225	attackspam	(sshd) Failed SSH login from 162.243.42.225 (US/United States/-): 5 in the last 3600 secs	2020-07-25 06:18:12
162.243.42.225	attack	Jul 24 00:09:02 inter-technics sshd[28962]: Invalid user ubuntu from 162.243.42.225 port 56316 Jul 24 00:09:02 inter-technics sshd[28962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.42.225 Jul 24 00:09:02 inter-technics sshd[28962]: Invalid user ubuntu from 162.243.42.225 port 56316 Jul 24 00:09:04 inter-technics sshd[28962]: Failed password for invalid user ubuntu from 162.243.42.225 port 56316 ssh2 Jul 24 00:14:53 inter-technics sshd[29328]: Invalid user david from 162.243.42.225 port 41130 ...	2020-07-24 07:18:32
162.243.42.225	attack	odoo8 ...	2020-07-07 01:05:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.4.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41958
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.4.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061702 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 18 20:44:02 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 134.4.243.162.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 134.4.243.162.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
34.66.28.207	attackspambots	Dec 19 19:41:58 ip-172-31-62-245 sshd\[19672\]: Invalid user wochatz from 34.66.28.207\ Dec 19 19:42:00 ip-172-31-62-245 sshd\[19672\]: Failed password for invalid user wochatz from 34.66.28.207 port 49716 ssh2\ Dec 19 19:46:50 ip-172-31-62-245 sshd\[19733\]: Failed password for root from 34.66.28.207 port 53582 ssh2\ Dec 19 19:51:31 ip-172-31-62-245 sshd\[19770\]: Invalid user ajith from 34.66.28.207\ Dec 19 19:51:33 ip-172-31-62-245 sshd\[19770\]: Failed password for invalid user ajith from 34.66.28.207 port 58176 ssh2\	2019-12-20 03:56:21
165.231.101.137	attackbotsspam	Spam	2019-12-20 03:51:26
157.147.135.26	attack	Dec 19 17:33:14 debian-2gb-vpn-nbg1-1 kernel: [1144356.233928] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=157.147.135.26 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=36 ID=39567 PROTO=TCP SPT=23425 DPT=23 WINDOW=29612 RES=0x00 SYN URGP=0	2019-12-20 04:18:55
101.109.83.140	attack	SSH Brute Force, server-1 sshd[26108]: Failed password for invalid user porcher from 101.109.83.140 port 52536 ssh2	2019-12-20 04:11:53
173.61.110.178	attackspam	attempted RDP connections to honeypot	2019-12-20 04:07:29
121.79.131.234	attackspambots	Dec 19 21:26:07 server sshd\[493\]: Invalid user server from 121.79.131.234 Dec 19 21:26:07 server sshd\[493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.79.131.234 Dec 19 21:26:09 server sshd\[493\]: Failed password for invalid user server from 121.79.131.234 port 43860 ssh2 Dec 19 21:40:13 server sshd\[4348\]: Invalid user backup from 121.79.131.234 Dec 19 21:40:13 server sshd\[4348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.79.131.234 ...	2019-12-20 04:02:47
207.154.234.102	attackbots	SSH brute-force: detected 30 distinct usernames within a 24-hour window.	2019-12-20 03:43:17
139.59.78.236	attackspambots	Brute-force attempt banned	2019-12-20 04:17:27
142.54.101.146	attack	Dec 19 20:21:34 MK-Soft-VM5 sshd[2243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.54.101.146 Dec 19 20:21:36 MK-Soft-VM5 sshd[2243]: Failed password for invalid user support from 142.54.101.146 port 40425 ssh2 ...	2019-12-20 03:56:47
112.85.42.237	attackspam	Dec 19 22:39:19 debian-2gb-vpn-nbg1-1 kernel: [1162720.754924] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=112.85.42.237 DST=78.46.192.101 LEN=923 TOS=0x00 PREC=0x00 TTL=42 ID=16490 DF PROTO=TCP SPT=31767 DPT=22 WINDOW=229 RES=0x00 ACK PSH URGP=0	2019-12-20 03:47:31
210.74.11.97	attackbots	Dec 19 20:07:44 ArkNodeAT sshd\[27330\]: Invalid user mutant from 210.74.11.97 Dec 19 20:07:44 ArkNodeAT sshd\[27330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.74.11.97 Dec 19 20:07:47 ArkNodeAT sshd\[27330\]: Failed password for invalid user mutant from 210.74.11.97 port 53918 ssh2	2019-12-20 03:44:10
191.254.178.46	attack	Unauthorized connection attempt detected from IP address 191.254.178.46 to port 8080	2019-12-20 04:04:38
37.46.121.192	attack	Dec 18 13:42:33 xxxx sshd[4174]: Address 37.46.121.192 maps to vten1.netvinum.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 18 13:42:33 xxxx sshd[4174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.46.121.192 user=r.r Dec 18 13:42:36 xxxx sshd[4174]: Failed password for r.r from 37.46.121.192 port 59271 ssh2 Dec 18 13:42:38 xxxx sshd[4176]: Address 37.46.121.192 maps to vten1.netvinum.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Dec 18 13:42:38 xxxx sshd[4176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.46.121.192 user=r.r Dec 18 13:42:39 xxxx sshd[4176]: Failed password for r.r from 37.46.121.192 port 59968 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.46.121.192	2019-12-20 04:16:33
80.82.78.20	attack	firewall-block, port(s): 30303/tcp, 38383/tcp, 38384/tcp, 38387/tcp, 38388/tcp, 39392/tcp, 39393/tcp, 39394/tcp	2019-12-20 04:14:01
18.194.72.164	attackspambots	Automatic report - XMLRPC Attack	2019-12-20 04:08:05

Recently Reported IPs

123.57.12.19	114.233.120.6	222.234.2.134	130.61.119.68
46.101.69.51	106.75.122.81	31.44.89.132	124.159.151.58
202.137.155.100	189.125.67.102	193.112.19.164	216.83.56.179
43.229.61.215	194.204.236.164	86.127.159.135	182.176.186.217
58.151.77.38	124.158.175.50	141.105.66.252	191.53.251.141