134.175.121.145

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH/22 MH Probe, BF, Hack -	2019-11-07 22:45:15
attackbotsspam	Oct 31 17:46:17 sachi sshd\[13061\]: Invalid user zhangfei from 134.175.121.145 Oct 31 17:46:17 sachi sshd\[13061\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.145 Oct 31 17:46:19 sachi sshd\[13061\]: Failed password for invalid user zhangfei from 134.175.121.145 port 60930 ssh2 Oct 31 17:50:32 sachi sshd\[13386\]: Invalid user kokeshi from 134.175.121.145 Oct 31 17:50:32 sachi sshd\[13386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.145	2019-11-01 17:26:14
attack	Oct 25 14:09:14 *** sshd[14334]: User root from 134.175.121.145 not allowed because not listed in AllowUsers	2019-10-25 22:10:05
attackbotsspam	leo_www	2019-10-24 22:10:01

Comments on same subnet:

IP	Type	Details	Datetime
134.175.121.80	attack	detected by Fail2Ban	2020-09-27 07:36:46
134.175.121.80	attackspam	$f2bV_matches	2020-09-27 00:09:30
134.175.121.80	attackbotsspam	Sep 26 03:41:40 NPSTNNYC01T sshd[4898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 Sep 26 03:41:42 NPSTNNYC01T sshd[4898]: Failed password for invalid user postgres from 134.175.121.80 port 50898 ssh2 Sep 26 03:46:38 NPSTNNYC01T sshd[5991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 ...	2020-09-26 15:59:31
134.175.121.80	attackbotsspam	Aug 30 22:45:17 django-0 sshd[14686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root Aug 30 22:45:20 django-0 sshd[14686]: Failed password for root from 134.175.121.80 port 39258 ssh2 ...	2020-08-31 07:29:17
134.175.121.80	attack	Aug 21 19:51:10 pve1 sshd[17192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 Aug 21 19:51:12 pve1 sshd[17192]: Failed password for invalid user uranus from 134.175.121.80 port 49766 ssh2 ...	2020-08-22 02:19:52
134.175.121.80	attackspam	2020-08-10T12:28:06.662141centos sshd[24481]: Failed password for root from 134.175.121.80 port 56476 ssh2 2020-08-10T12:30:32.236080centos sshd[24975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root 2020-08-10T12:30:34.327044centos sshd[24975]: Failed password for root from 134.175.121.80 port 42402 ssh2 ...	2020-08-10 18:59:58
134.175.121.80	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-08 05:52:51
134.175.121.80	attackspambots	Aug 2 20:36:39 tdfoods sshd\[1894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root Aug 2 20:36:41 tdfoods sshd\[1894\]: Failed password for root from 134.175.121.80 port 60976 ssh2 Aug 2 20:39:56 tdfoods sshd\[2293\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root Aug 2 20:39:58 tdfoods sshd\[2293\]: Failed password for root from 134.175.121.80 port 41458 ssh2 Aug 2 20:43:05 tdfoods sshd\[2608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root	2020-08-03 16:02:50
134.175.121.80	attack	Jul 31 23:40:07 rocket sshd[3019]: Failed password for root from 134.175.121.80 port 35300 ssh2 Jul 31 23:42:50 rocket sshd[3302]: Failed password for root from 134.175.121.80 port 49008 ssh2 ...	2020-08-01 08:38:59
134.175.121.80	attackbotsspam	Jul 27 22:13:08 jane sshd[10018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 Jul 27 22:13:10 jane sshd[10018]: Failed password for invalid user wujh from 134.175.121.80 port 42698 ssh2 ...	2020-07-28 05:15:36
134.175.121.80	attackbotsspam	Jul 25 16:35:15 mail sshd\[51380\]: Invalid user user from 134.175.121.80 Jul 25 16:35:15 mail sshd\[51380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 ...	2020-07-26 07:08:07
134.175.121.80	attackbots	Jul 20 14:30:17 ns381471 sshd[15891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 Jul 20 14:30:19 ns381471 sshd[15891]: Failed password for invalid user lz from 134.175.121.80 port 36078 ssh2	2020-07-20 22:15:39
134.175.121.80	attackbots	Jul 4 12:03:21 web1 sshd[4472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root Jul 4 12:03:23 web1 sshd[4472]: Failed password for root from 134.175.121.80 port 40064 ssh2 Jul 4 12:09:04 web1 sshd[6181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root Jul 4 12:09:06 web1 sshd[6181]: Failed password for root from 134.175.121.80 port 43238 ssh2 Jul 4 12:10:44 web1 sshd[6633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 user=root Jul 4 12:10:46 web1 sshd[6633]: Failed password for root from 134.175.121.80 port 36150 ssh2 Jul 4 12:12:20 web1 sshd[7004]: Invalid user squid from 134.175.121.80 port 57302 Jul 4 12:12:20 web1 sshd[7004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 Jul 4 12:12:20 web1 sshd[7004]: Invalid user squid from 1 ...	2020-07-04 11:43:03
134.175.121.80	attack	Jun 27 14:38:50 firewall sshd[4111]: Invalid user debian from 134.175.121.80 Jun 27 14:38:52 firewall sshd[4111]: Failed password for invalid user debian from 134.175.121.80 port 44640 ssh2 Jun 27 14:41:03 firewall sshd[4141]: Invalid user guest3 from 134.175.121.80 ...	2020-06-28 02:19:56
134.175.121.80	attackbots	Jun 22 09:32:17 havingfunrightnow sshd[721]: Failed password for root from 134.175.121.80 port 35024 ssh2 Jun 22 09:37:40 havingfunrightnow sshd[798]: Failed password for root from 134.175.121.80 port 58122 ssh2 Jun 22 09:39:12 havingfunrightnow sshd[858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.121.80 ...	2020-06-22 16:16:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.175.121.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32651
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.175.121.145.		IN	A

;; AUTHORITY SECTION:
.			248	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102400 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 24 22:09:56 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 145.121.175.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.121.175.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.68.136.152	attackbots	Brute forcing Wordpress login	2019-11-05 14:10:34
119.163.250.237	attackbots	Nov 5 05:53:12 localhost sshd\[16751\]: Invalid user pi from 119.163.250.237 port 28934 Nov 5 05:53:13 localhost sshd\[16751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.163.250.237 Nov 5 05:53:14 localhost sshd\[16751\]: Failed password for invalid user pi from 119.163.250.237 port 28934 ssh2	2019-11-05 14:04:26
176.213.131.67	attackbotsspam	[portscan] Port scan	2019-11-05 14:04:59
107.189.11.238	attackspambots	Nov 5 07:53:25 server sshd\[23643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.11.238 user=root Nov 5 07:53:27 server sshd\[23643\]: Failed password for root from 107.189.11.238 port 35026 ssh2 Nov 5 07:53:28 server sshd\[23644\]: Received disconnect from 107.189.11.238: 3: com.jcraft.jsch.JSchException: Auth fail Nov 5 07:53:31 server sshd\[23650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.189.11.238 user=root Nov 5 07:53:33 server sshd\[23650\]: Failed password for root from 107.189.11.238 port 35091 ssh2 ...	2019-11-05 13:57:03
182.61.59.143	attackspam	$f2bV_matches	2019-11-05 14:28:24
68.183.84.15	attack	Nov 5 06:54:54 [host] sshd[31471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.84.15 user=root Nov 5 06:54:56 [host] sshd[31471]: Failed password for root from 68.183.84.15 port 40008 ssh2 Nov 5 06:59:11 [host] sshd[31555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.84.15 user=root	2019-11-05 14:03:21
213.221.254.230	attackbotsspam	Nov 5 06:31:43 SilenceServices sshd[18339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.221.254.230 Nov 5 06:31:44 SilenceServices sshd[18339]: Failed password for invalid user tj from 213.221.254.230 port 36928 ssh2 Nov 5 06:35:19 SilenceServices sshd[19349]: Failed password for root from 213.221.254.230 port 45702 ssh2	2019-11-05 13:53:29
212.77.86.21	attack	Nov 5 06:26:03 lnxded64 sshd[14861]: Failed password for root from 212.77.86.21 port 40630 ssh2 Nov 5 06:26:03 lnxded64 sshd[14861]: Failed password for root from 212.77.86.21 port 40630 ssh2	2019-11-05 14:01:59
159.65.174.81	attackbotsspam	2019-11-05T06:46:48.466105scmdmz1 sshd\[4249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.174.81 user=root 2019-11-05T06:46:50.086441scmdmz1 sshd\[4249\]: Failed password for root from 159.65.174.81 port 42764 ssh2 2019-11-05T06:52:06.031162scmdmz1 sshd\[4611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.174.81 user=root ...	2019-11-05 13:58:54
183.15.120.117	attackspambots	Nov 5 06:12:44 bouncer sshd\[8932\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.15.120.117 user=root Nov 5 06:12:46 bouncer sshd\[8932\]: Failed password for root from 183.15.120.117 port 57852 ssh2 Nov 5 06:22:32 bouncer sshd\[8996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.15.120.117 user=root ...	2019-11-05 14:07:33
200.169.223.98	attack	Nov 5 12:27:14 webhost01 sshd[32337]: Failed password for root from 200.169.223.98 port 36068 ssh2 ...	2019-11-05 13:55:24
103.81.13.67	attackspambots	Unauthorised access (Nov 5) SRC=103.81.13.67 LEN=52 TTL=119 ID=30175 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-05 13:54:30
222.186.173.215	attackbots	F2B jail: sshd. Time: 2019-11-05 07:08:06, Reported by: VKReport	2019-11-05 14:14:44
106.75.7.70	attack	Nov 5 06:27:16 sd-53420 sshd\[18432\]: Invalid user checkout from 106.75.7.70 Nov 5 06:27:16 sd-53420 sshd\[18432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.70 Nov 5 06:27:18 sd-53420 sshd\[18432\]: Failed password for invalid user checkout from 106.75.7.70 port 46578 ssh2 Nov 5 06:32:16 sd-53420 sshd\[18834\]: Invalid user windows from 106.75.7.70 Nov 5 06:32:16 sd-53420 sshd\[18834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.7.70 ...	2019-11-05 14:07:57
79.25.165.147	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.25.165.147/ IT - 1H : (103) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 79.25.165.147 CIDR : 79.24.0.0/15 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 ATTACKS DETECTED ASN3269 : 1H - 2 3H - 6 6H - 15 12H - 36 24H - 64 DateTime : 2019-11-05 05:53:23 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-05 14:00:21

Recently Reported IPs

113.172.56.55	109.132.226.86	94.255.130.200	93.245.54.166
85.214.95.237	41.232.52.126	14.187.0.76	1.6.194.180
202.137.155.4	201.131.185.31	188.77.159.35	140.143.171.219
139.155.34.87	95.54.184.19	94.254.208.217	94.253.215.228
78.139.5.47	37.114.187.141	36.72.137.235	34.87.48.220