134.209.192.136 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 134.209.192.136 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 33/100

Host and Network Information

• Tags: Bruteforce, Brute-Force, cowrie, malicious, portscan, sftp, ssh, SSH

• View other sources: Spamhaus VirusTotal

• Country: Netherlands
• Network:
• Noticed: 4 times
• Protocols Attacked: ssh
• Countries Attacked: Poland, Sweden
• Passive DNS Results: wiskers.app

Open Ports Detected

10027 10038 102 1028 113 1521 1800 2002 2222 2345 26 3001 4444 5002 5009 502 5224 5431 5640 5800 7001 7003 7218 800 8009 8024 8116 8122 8147 8800 8908 9002 9005 9024 9211 9236 9300 9443 9530 9811 9999

Map

Whois Information

• NetRange: 134.209.0.0 - 134.209.255.255
• CIDR: 134.209.0.0/16
• NetName: DIGITALOCEAN-134-209-0-0
• NetHandle: NET-134-209-0-0-1
• Parent: NET134 (NET-134-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS14061
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 2018-10-18
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/134.209.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 101 Ave of the Americas
• Address: FL2
• City: New York
• StateProv: NY
• PostalCode: 10013
• Country: US
• RegDate: 2012-05-14
• Updated: 2023-10-23
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-347-875-6044
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-347-875-6044
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: ABUSE5232-ARIN
• OrgAbuseName: Abuse, DigitalOcean
• OrgAbusePhone: +1-347-875-6044
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN

Links to attack logs

****** digitaloceantoronto-ssh-bruteforce-ip-list-2025-02-25