134.175.93.141

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Mar 30 09:18:13 ns382633 sshd\[19576\]: Invalid user gid from 134.175.93.141 port 33232 Mar 30 09:18:13 ns382633 sshd\[19576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.93.141 Mar 30 09:18:15 ns382633 sshd\[19576\]: Failed password for invalid user gid from 134.175.93.141 port 33232 ssh2 Mar 30 09:27:05 ns382633 sshd\[21334\]: Invalid user jgu from 134.175.93.141 port 39804 Mar 30 09:27:05 ns382633 sshd\[21334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.93.141	2020-03-30 16:48:18
attack	Automatic report - SSH Brute-Force Attack	2020-03-13 00:25:24
attackbots	Mar 8 22:54:07 nextcloud sshd\[23641\]: Invalid user ftpuser from 134.175.93.141 Mar 8 22:54:07 nextcloud sshd\[23641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.93.141 Mar 8 22:54:08 nextcloud sshd\[23641\]: Failed password for invalid user ftpuser from 134.175.93.141 port 56320 ssh2	2020-03-09 06:50:57

Type

Details

Datetime

attackspam

Mar 30 09:18:13 ns382633 sshd\[19576\]: Invalid user gid from 134.175.93.141 port 33232
Mar 30 09:18:13 ns382633 sshd\[19576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.93.141
Mar 30 09:18:15 ns382633 sshd\[19576\]: Failed password for invalid user gid from 134.175.93.141 port 33232 ssh2
Mar 30 09:27:05 ns382633 sshd\[21334\]: Invalid user jgu from 134.175.93.141 port 39804
Mar 30 09:27:05 ns382633 sshd\[21334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.93.141

2020-03-30 16:48:18

attack

Automatic report - SSH Brute-Force Attack

2020-03-13 00:25:24

attackbots

Mar  8 22:54:07 nextcloud sshd\[23641\]: Invalid user ftpuser from 134.175.93.141
Mar  8 22:54:07 nextcloud sshd\[23641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.93.141
Mar  8 22:54:08 nextcloud sshd\[23641\]: Failed password for invalid user ftpuser from 134.175.93.141 port 56320 ssh2

2020-03-09 06:50:57

Comments on same subnet:

IP	Type	Details	Datetime
134.175.93.231	attackspambots	PHP Info File Request - Possible PHP Version Scan	2020-08-12 14:02:07
134.175.93.162	attackbots	Brute force SMTP login attempted. ...	2019-08-10 06:04:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.175.93.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.175.93.141.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030801 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 06:50:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 141.93.175.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.93.175.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.248.47.183	attackbots	Automatic report - Port Scan Attack	2019-08-07 14:42:42
106.13.38.59	attackspam	Aug 7 01:59:40 dedicated sshd[9317]: Invalid user demo from 106.13.38.59 port 11229	2019-08-07 14:09:48
185.142.236.35	attackbotsspam	destination ports 0, 27016, 8478	2019-08-07 13:45:07
45.73.12.218	attack	Aug 6 23:33:39 ks10 sshd[15968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.73.12.218 Aug 6 23:33:41 ks10 sshd[15968]: Failed password for invalid user user1 from 45.73.12.218 port 47068 ssh2 ...	2019-08-07 14:42:17
157.230.255.16	attackbots	Aug 7 09:26:38 yabzik sshd[1733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.255.16 Aug 7 09:26:41 yabzik sshd[1733]: Failed password for invalid user www from 157.230.255.16 port 47736 ssh2 Aug 7 09:31:54 yabzik sshd[3667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.255.16	2019-08-07 14:35:46
149.202.170.60	attackspam	Automatic report - Banned IP Access	2019-08-07 14:17:07
193.201.224.241	attackbots	Aug 7 00:57:18 [HOSTNAME] sshd[4448]: Invalid user admin from 193.201.224.241 port 30074 Aug 7 00:57:43 [HOSTNAME] sshd[4501]: Invalid user support from 193.201.224.241 port 1633 Aug 7 00:57:47 [HOSTNAME] sshd[4514]: Invalid user admin from 193.201.224.241 port 22709 ...	2019-08-07 14:17:42
115.213.130.200	attackspambots	Aug 6 00:35:16 zimbra sshd[25714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.213.130.200 user=r.r Aug 6 00:35:18 zimbra sshd[25714]: Failed password for r.r from 115.213.130.200 port 46196 ssh2 Aug 6 00:35:20 zimbra sshd[25714]: Failed password for r.r from 115.213.130.200 port 46196 ssh2 Aug 6 00:35:23 zimbra sshd[25714]: Failed password for r.r from 115.213.130.200 port 46196 ssh2 Aug 6 00:35:26 zimbra sshd[25714]: Failed password for r.r from 115.213.130.200 port 46196 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.213.130.200	2019-08-07 14:31:46
202.146.1.188	attack	Unauthorised access (Aug 7) SRC=202.146.1.188 LEN=48 TTL=119 ID=9599 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-07 13:48:55
23.129.64.184	attackspambots	Autoban 23.129.64.184 AUTH/CONNECT	2019-08-07 14:34:53
185.220.101.46	attackspam	Aug 7 07:30:54 s1 sshd\[14892\]: User root from 185.220.101.46 not allowed because not listed in AllowUsers Aug 7 07:30:54 s1 sshd\[14892\]: Failed password for invalid user root from 185.220.101.46 port 33359 ssh2 Aug 7 07:30:57 s1 sshd\[14894\]: Invalid user sansforensics from 185.220.101.46 port 40082 Aug 7 07:30:57 s1 sshd\[14894\]: Failed password for invalid user sansforensics from 185.220.101.46 port 40082 ssh2 Aug 7 07:31:00 s1 sshd\[14896\]: Invalid user elk_user from 185.220.101.46 port 45707 Aug 7 07:31:00 s1 sshd\[14896\]: Failed password for invalid user elk_user from 185.220.101.46 port 45707 ssh2 ...	2019-08-07 13:50:19
37.59.189.19	attack	Aug 7 08:27:33 ubuntu-2gb-nbg1-dc3-1 sshd[27046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.189.19 Aug 7 08:27:34 ubuntu-2gb-nbg1-dc3-1 sshd[27046]: Failed password for invalid user zfn from 37.59.189.19 port 35686 ssh2 ...	2019-08-07 14:49:26
84.242.96.142	attack	Aug 6 22:39:39 plusreed sshd[25536]: Invalid user password123 from 84.242.96.142 ...	2019-08-07 13:48:20
185.234.217.5	attackspambots	2019-08-07T01:53:24Z - RDP login failed multiple times. (185.234.217.5)	2019-08-07 14:47:52
151.21.130.106	attack	Aug 6 17:28:00 xtremcommunity sshd\[2720\]: Invalid user silvi from 151.21.130.106 port 50144 Aug 6 17:28:00 xtremcommunity sshd\[2720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.21.130.106 Aug 6 17:28:02 xtremcommunity sshd\[2720\]: Failed password for invalid user silvi from 151.21.130.106 port 50144 ssh2 Aug 6 17:33:58 xtremcommunity sshd\[10529\]: Invalid user stephen from 151.21.130.106 port 45312 Aug 6 17:33:58 xtremcommunity sshd\[10529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.21.130.106 ...	2019-08-07 14:34:09

Recently Reported IPs

49.83.139.131	222.252.33.64	90.120.221.127	134.209.65.40
156.0.159.27	208.167.249.67	2604:a880:400:d1::756:3001	109.228.17.200
60.244.115.168	174.219.133.11	162.144.49.165	54.36.148.249
120.70.103.27	111.67.207.70	113.172.147.175	11.230.53.159
157.245.2.27	87.119.200.21	3.232.4.7	139.59.76.205