112.91.149.134

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Zhuhai Dou Men Qu de Chang Fang Chan Co Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Nov 6 23:15:33 SilenceServices sshd[11591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 Nov 6 23:15:35 SilenceServices sshd[11591]: Failed password for invalid user 89532E 11 from 112.91.149.134 port 36626 ssh2 Nov 6 23:19:39 SilenceServices sshd[15246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134	2019-11-07 06:32:00
attackbotsspam	Nov 5 08:30:13 MK-Soft-Root2 sshd[9236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 Nov 5 08:30:15 MK-Soft-Root2 sshd[9236]: Failed password for invalid user magnamawah$27mn from 112.91.149.134 port 46236 ssh2 ...	2019-11-05 15:49:09
attackbotsspam	Nov 2 18:30:03 server sshd\[28003\]: Invalid user ahah from 112.91.149.134 port 46262 Nov 2 18:30:03 server sshd\[28003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 Nov 2 18:30:05 server sshd\[28003\]: Failed password for invalid user ahah from 112.91.149.134 port 46262 ssh2 Nov 2 18:34:18 server sshd\[7520\]: Invalid user avenir from 112.91.149.134 port 46114 Nov 2 18:34:18 server sshd\[7520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134	2019-11-03 01:13:41
attack	Invalid user gk from 112.91.149.134 port 55924	2019-10-30 07:17:37
attackspambots	sshd jail - ssh hack attempt	2019-10-29 17:25:46
attackspambots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 user=root Failed password for root from 112.91.149.134 port 50220 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 user=root Failed password for root from 112.91.149.134 port 54966 ssh2 Invalid user admin from 112.91.149.134 port 59722	2019-10-25 06:05:34
attack	Oct 10 14:58:47 sso sshd[32214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 Oct 10 14:58:49 sso sshd[32214]: Failed password for invalid user Haslo!23 from 112.91.149.134 port 60074 ssh2 ...	2019-10-10 21:47:03
attack	2019-08-23 06:51:57,914 fail2ban.actions [878]: NOTICE [sshd] Ban 112.91.149.134 2019-08-23 10:06:05,036 fail2ban.actions [878]: NOTICE [sshd] Ban 112.91.149.134 2019-08-23 13:15:02,028 fail2ban.actions [878]: NOTICE [sshd] Ban 112.91.149.134 ...	2019-09-13 16:23:28
attackspambots	Aug 20 22:14:39 localhost sshd\[14970\]: Invalid user webrun from 112.91.149.134 port 45888 Aug 20 22:14:39 localhost sshd\[14970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.149.134 Aug 20 22:14:41 localhost sshd\[14970\]: Failed password for invalid user webrun from 112.91.149.134 port 45888 ssh2	2019-08-21 04:26:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.91.149.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61719
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.91.149.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 10:30:28 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 134.149.91.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 134.149.91.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.220.199	attackbotsspam	Mar 15 18:17:48 yesfletchmain sshd\[9328\]: User root from 167.99.220.199 not allowed because not listed in AllowUsers Mar 15 18:17:48 yesfletchmain sshd\[9328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.220.199 user=root Mar 15 18:17:50 yesfletchmain sshd\[9328\]: Failed password for invalid user root from 167.99.220.199 port 60504 ssh2 Mar 15 18:22:35 yesfletchmain sshd\[9653\]: User root from 167.99.220.199 not allowed because not listed in AllowUsers Mar 15 18:22:35 yesfletchmain sshd\[9653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.220.199 user=root ...	2019-10-14 06:06:17
211.195.12.33	attackspam	Oct 13 17:28:36 xtremcommunity sshd\[489570\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.195.12.33 user=root Oct 13 17:28:38 xtremcommunity sshd\[489570\]: Failed password for root from 211.195.12.33 port 52850 ssh2 Oct 13 17:32:55 xtremcommunity sshd\[489629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.195.12.33 user=root Oct 13 17:32:57 xtremcommunity sshd\[489629\]: Failed password for root from 211.195.12.33 port 44391 ssh2 Oct 13 17:37:21 xtremcommunity sshd\[489741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.195.12.33 user=root ...	2019-10-14 05:58:58
148.70.26.85	attack	Oct 14 00:50:15 sauna sshd[171462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.26.85 Oct 14 00:50:16 sauna sshd[171462]: Failed password for invalid user Russia@1 from 148.70.26.85 port 55044 ssh2 ...	2019-10-14 06:02:53
222.186.31.136	attackspam	Oct 13 23:40:44 vpn01 sshd[27442]: Failed password for root from 222.186.31.136 port 43149 ssh2 ...	2019-10-14 06:00:57
142.93.33.62	attackspam	2019-10-13T22:00:45.901895shield sshd\[30414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62 user=root 2019-10-13T22:00:47.954555shield sshd\[30414\]: Failed password for root from 142.93.33.62 port 58256 ssh2 2019-10-13T22:04:22.536469shield sshd\[31341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62 user=root 2019-10-13T22:04:24.044595shield sshd\[31341\]: Failed password for root from 142.93.33.62 port 41006 ssh2 2019-10-13T22:07:58.775722shield sshd\[942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.33.62 user=root	2019-10-14 06:14:10
104.244.76.201	attackspambots	" "	2019-10-14 06:36:21
220.152.112.114	attackspam	postfix (unknown user, SPF fail or relay access denied)	2019-10-14 06:24:38
222.186.175.161	attack	Oct 13 22:01:36 sshgateway sshd\[19597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Oct 13 22:01:38 sshgateway sshd\[19597\]: Failed password for root from 222.186.175.161 port 48654 ssh2 Oct 13 22:01:56 sshgateway sshd\[19597\]: error: maximum authentication attempts exceeded for root from 222.186.175.161 port 48654 ssh2 \[preauth\]	2019-10-14 06:25:31
62.234.67.109	attack	Oct 13 20:13:54 work-partkepr sshd\[6945\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.67.109 user=root Oct 13 20:13:56 work-partkepr sshd\[6945\]: Failed password for root from 62.234.67.109 port 55170 ssh2 ...	2019-10-14 06:24:24
106.13.10.207	attackspambots	Oct 13 17:52:50 ny01 sshd[12731]: Failed password for root from 106.13.10.207 port 41082 ssh2 Oct 13 17:57:41 ny01 sshd[13565]: Failed password for root from 106.13.10.207 port 50926 ssh2	2019-10-14 06:17:07
81.22.45.116	attackspam	10/13/2019-23:59:46.915440 81.22.45.116 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-14 06:08:01
115.159.185.71	attackbotsspam	Oct 13 23:27:48 meumeu sshd[31297]: Failed password for root from 115.159.185.71 port 35142 ssh2 Oct 13 23:32:25 meumeu sshd[32146]: Failed password for root from 115.159.185.71 port 45736 ssh2 ...	2019-10-14 05:57:35
157.230.27.47	attack	Oct 13 12:03:32 sachi sshd\[18618\]: Invalid user qwerty12345 from 157.230.27.47 Oct 13 12:03:32 sachi sshd\[18618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47 Oct 13 12:03:34 sachi sshd\[18618\]: Failed password for invalid user qwerty12345 from 157.230.27.47 port 37614 ssh2 Oct 13 12:07:46 sachi sshd\[18966\]: Invalid user Bizz@2017 from 157.230.27.47 Oct 13 12:07:46 sachi sshd\[18966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.27.47	2019-10-14 06:13:03
51.255.197.164	attackbotsspam	Oct 14 00:17:34 SilenceServices sshd[18325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164 Oct 14 00:17:36 SilenceServices sshd[18325]: Failed password for invalid user P@$$w0rt12345 from 51.255.197.164 port 34748 ssh2 Oct 14 00:21:49 SilenceServices sshd[19459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164	2019-10-14 06:34:08
192.163.197.138	attackspambots	2019-10-13T21:15:28.214550hub.schaetter.us sshd\[19438\]: Invalid user Eclipse2017 from 192.163.197.138 port 34266 2019-10-13T21:15:28.227734hub.schaetter.us sshd\[19438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.197.138 2019-10-13T21:15:30.281219hub.schaetter.us sshd\[19438\]: Failed password for invalid user Eclipse2017 from 192.163.197.138 port 34266 ssh2 2019-10-13T21:18:58.198324hub.schaetter.us sshd\[19480\]: Invalid user P@ssw0rd01 from 192.163.197.138 port 44194 2019-10-13T21:18:58.209311hub.schaetter.us sshd\[19480\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.197.138 ...	2019-10-14 05:51:03

Recently Reported IPs

93.174.93.164	209.85.221.50	112.230.212.93	198.46.255.34
49.146.39.250	134.73.161.190	229.13.105.42	210.217.24.246
135.159.128.126	216.71.252.62	118.24.38.53	37.156.71.104
182.117.177.182	45.95.32.220	233.113.137.221	175.140.138.193
84.183.111.120	27.50.161.27	91.230.31.54	103.133.104.133