91.134.188.144

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: OVH SAS

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Mar 31 00:31:35 debian-2gb-nbg1-2 kernel: \[7866550.946836\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=91.134.188.144 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=TCP SPT=53 DPT=58017 WINDOW=29200 RES=0x00 ACK SYN URGP=0	2020-03-31 09:17:12

Type

Details

Datetime

attackspam

Mar 31 00:31:35 debian-2gb-nbg1-2 kernel: \[7866550.946836\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=91.134.188.144 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=49 ID=0 DF PROTO=TCP SPT=53 DPT=58017 WINDOW=29200 RES=0x00 ACK SYN URGP=0

2020-03-31 09:17:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.134.188.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63875
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.134.188.144.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033001 1800 900 604800 86400

;; Query time: 92 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 09:17:07 CST 2020
;; MSG SIZE  rcvd: 118

Host info

144.188.134.91.in-addr.arpa domain name pointer dataraise.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
144.188.134.91.in-addr.arpa	name = dataraise.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.86.228.18	attackspambots	445/tcp 445/tcp 445/tcp... [2019-07-16/09-10]5pkt,1pt.(tcp)	2019-09-11 04:45:25
80.252.156.38	attackbots	Unauthorized connection attempt from IP address 80.252.156.38 on Port 445(SMB)	2019-09-11 05:17:49
106.13.140.52	attackbotsspam	Sep 10 23:41:27 www sshd\[28093\]: Invalid user vnc from 106.13.140.52Sep 10 23:41:29 www sshd\[28093\]: Failed password for invalid user vnc from 106.13.140.52 port 44510 ssh2Sep 10 23:50:28 www sshd\[28395\]: Invalid user ts3 from 106.13.140.52 ...	2019-09-11 05:11:10
111.38.25.81	attackspambots	Unauthorised access (Sep 10) SRC=111.38.25.81 LEN=52 TTL=47 ID=55562 DF TCP DPT=23 WINDOW=5840 SYN	2019-09-11 04:53:23
42.242.164.142	attack	Sep 10 12:52:52 m1 sshd[32487]: Failed password for r.r from 42.242.164.142 port 55613 ssh2 Sep 10 12:52:54 m1 sshd[32487]: Failed password for r.r from 42.242.164.142 port 55613 ssh2 Sep 10 12:52:57 m1 sshd[32487]: Failed password for r.r from 42.242.164.142 port 55613 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=42.242.164.142	2019-09-11 05:04:44
95.188.75.162	attackspambots	Sep 10 18:48:59 eventyay sshd[2251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.188.75.162 Sep 10 18:49:02 eventyay sshd[2251]: Failed password for invalid user Oracle from 95.188.75.162 port 56440 ssh2 Sep 10 18:55:44 eventyay sshd[2390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.188.75.162 ...	2019-09-11 05:11:32
27.56.62.96	attackspambots	Unauthorized connection attempt from IP address 27.56.62.96 on Port 445(SMB)	2019-09-11 05:03:53
194.61.24.46	attack	21 attempts against mh_ha-misbehave-ban on seed.magehost.pro	2019-09-11 05:16:18
51.15.50.79	attackspambots	Reported by AbuseIPDB proxy server.	2019-09-11 04:47:19
79.137.72.171	attack	Sep 10 20:39:18 web8 sshd\[14167\]: Invalid user ftp-user from 79.137.72.171 Sep 10 20:39:18 web8 sshd\[14167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171 Sep 10 20:39:20 web8 sshd\[14167\]: Failed password for invalid user ftp-user from 79.137.72.171 port 41551 ssh2 Sep 10 20:45:55 web8 sshd\[17378\]: Invalid user gmodserver from 79.137.72.171 Sep 10 20:45:55 web8 sshd\[17378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171	2019-09-11 05:00:31
45.23.108.9	attack	Sep 11 00:23:49 itv-usvr-01 sshd[17557]: Invalid user ftpuser from 45.23.108.9 Sep 11 00:23:49 itv-usvr-01 sshd[17557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.23.108.9 Sep 11 00:23:49 itv-usvr-01 sshd[17557]: Invalid user ftpuser from 45.23.108.9 Sep 11 00:23:50 itv-usvr-01 sshd[17557]: Failed password for invalid user ftpuser from 45.23.108.9 port 38520 ssh2 Sep 11 00:29:29 itv-usvr-01 sshd[17761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.23.108.9 user=mysql Sep 11 00:29:32 itv-usvr-01 sshd[17761]: Failed password for mysql from 45.23.108.9 port 41959 ssh2	2019-09-11 05:00:51
119.235.24.244	attackspambots	$f2bV_matches_ltvn	2019-09-11 05:02:09
182.75.130.38	attack	Jul 8 03:35:11 mercury auth[4932]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=182.75.130.38 ...	2019-09-11 05:19:15
45.238.121.200	attackspambots	Admin login attempt	2019-09-11 05:03:09
181.143.157.242	attack	Autoban 181.143.157.242 AUTH/CONNECT	2019-09-11 05:06:28

Recently Reported IPs

120.230.118.85	159.203.100.71	51.91.158.58	1.177.117.207
109.238.187.90	192.162.0.21	103.78.80.123	45.79.82.183
183.145.208.22	41.226.0.23	139.59.147.204	18.170.163.55
211.103.222.147	114.230.144.129	106.67.58.157	205.120.24.83
78.94.246.112	180.215.204.136	149.91.88.140	120.132.117.50