3.121.29.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: A100 ROW GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 30 22:51:47 cvbnet sshd[12522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.121.29.134 Oct 30 22:51:49 cvbnet sshd[12522]: Failed password for invalid user fletcher from 3.121.29.134 port 34500 ssh2 ...	2019-10-31 06:03:06

Type

Details

Datetime

attack

Oct 30 22:51:47 cvbnet sshd[12522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.121.29.134 
Oct 30 22:51:49 cvbnet sshd[12522]: Failed password for invalid user fletcher from 3.121.29.134 port 34500 ssh2
...

2019-10-31 06:03:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.121.29.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.121.29.134.			IN	A

;; AUTHORITY SECTION:
.			584	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103001 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 06:03:03 CST 2019
;; MSG SIZE  rcvd: 116

Host info

134.29.121.3.in-addr.arpa domain name pointer ec2-3-121-29-134.eu-central-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.29.121.3.in-addr.arpa	name = ec2-3-121-29-134.eu-central-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
72.53.65.61	attack	HTTP wp-login.php - 72-53-65-61.cpe.distributel.net	2019-09-26 13:46:00
68.183.204.162	attackspambots	Sep 25 18:57:47 web1 sshd\[6352\]: Invalid user vagrant from 68.183.204.162 Sep 25 18:57:47 web1 sshd\[6352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Sep 25 18:57:49 web1 sshd\[6352\]: Failed password for invalid user vagrant from 68.183.204.162 port 38728 ssh2 Sep 25 19:02:15 web1 sshd\[6722\]: Invalid user support from 68.183.204.162 Sep 25 19:02:15 web1 sshd\[6722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162	2019-09-26 13:07:08
222.186.173.119	attackbots	2019-09-26T05:01:11.317596abusebot.cloudsearch.cf sshd\[18595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.119 user=root	2019-09-26 13:09:19
124.204.36.138	attackspam	Sep 26 06:36:02 vps691689 sshd[6815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.204.36.138 Sep 26 06:36:04 vps691689 sshd[6815]: Failed password for invalid user ch from 124.204.36.138 port 50961 ssh2 ...	2019-09-26 13:08:23
54.37.71.235	attackbotsspam	Sep 25 19:40:09 web9 sshd\[9221\]: Invalid user varmas from 54.37.71.235 Sep 25 19:40:09 web9 sshd\[9221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.71.235 Sep 25 19:40:11 web9 sshd\[9221\]: Failed password for invalid user varmas from 54.37.71.235 port 41400 ssh2 Sep 25 19:45:24 web9 sshd\[10156\]: Invalid user siva from 54.37.71.235 Sep 25 19:45:24 web9 sshd\[10156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.71.235	2019-09-26 13:51:05
49.235.137.58	attackspambots	Sep 25 19:13:56 friendsofhawaii sshd\[21924\]: Invalid user ftptest from 49.235.137.58 Sep 25 19:13:56 friendsofhawaii sshd\[21924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.137.58 Sep 25 19:13:58 friendsofhawaii sshd\[21924\]: Failed password for invalid user ftptest from 49.235.137.58 port 51404 ssh2 Sep 25 19:19:43 friendsofhawaii sshd\[22334\]: Invalid user alaraby from 49.235.137.58 Sep 25 19:19:43 friendsofhawaii sshd\[22334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.137.58	2019-09-26 13:41:38
192.42.116.16	attack	Sep 26 04:53:13 thevastnessof sshd[25401]: Failed password for root from 192.42.116.16 port 53864 ssh2 ...	2019-09-26 13:20:36
37.49.224.137	attackspambots	Port Scan detected from 37.49.224.137 (NL/Netherlands/-). 4 hits in the last 256 seconds	2019-09-26 13:46:30
162.247.74.217	attackbotsspam	Sep 26 04:47:57 thevastnessof sshd[25290]: Failed password for root from 162.247.74.217 port 46178 ssh2 ...	2019-09-26 13:47:27
111.68.103.226	attackspambots	Unauthorised access (Sep 26) SRC=111.68.103.226 LEN=40 TTL=241 ID=25012 TCP DPT=445 WINDOW=1024 SYN	2019-09-26 13:43:44
153.36.242.143	attackspam	Sep 26 05:18:53 marvibiene sshd[23016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Sep 26 05:18:55 marvibiene sshd[23016]: Failed password for root from 153.36.242.143 port 25501 ssh2 Sep 26 05:18:57 marvibiene sshd[23016]: Failed password for root from 153.36.242.143 port 25501 ssh2 Sep 26 05:18:53 marvibiene sshd[23016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Sep 26 05:18:55 marvibiene sshd[23016]: Failed password for root from 153.36.242.143 port 25501 ssh2 Sep 26 05:18:57 marvibiene sshd[23016]: Failed password for root from 153.36.242.143 port 25501 ssh2 ...	2019-09-26 13:28:34
222.186.30.152	attack	2019-09-26T12:08:41.936413enmeeting.mahidol.ac.th sshd\[8300\]: User root from 222.186.30.152 not allowed because not listed in AllowUsers 2019-09-26T12:08:42.313236enmeeting.mahidol.ac.th sshd\[8300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.152 user=root 2019-09-26T12:08:44.830098enmeeting.mahidol.ac.th sshd\[8300\]: Failed password for invalid user root from 222.186.30.152 port 21881 ssh2 ...	2019-09-26 13:15:43
132.145.170.174	attack	2019-09-26T05:52:06.237711lon01.zurich-datacenter.net sshd\[5171\]: Invalid user aj from 132.145.170.174 port 48904 2019-09-26T05:52:06.244310lon01.zurich-datacenter.net sshd\[5171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 2019-09-26T05:52:08.143705lon01.zurich-datacenter.net sshd\[5171\]: Failed password for invalid user aj from 132.145.170.174 port 48904 ssh2 2019-09-26T05:56:13.805076lon01.zurich-datacenter.net sshd\[5241\]: Invalid user jhshin from 132.145.170.174 port 33958 2019-09-26T05:56:13.813637lon01.zurich-datacenter.net sshd\[5241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 ...	2019-09-26 13:16:21
23.129.64.100	attack	Sep 26 03:56:55 thevastnessof sshd[24058]: error: maximum authentication attempts exceeded for root from 23.129.64.100 port 43014 ssh2 [preauth] ...	2019-09-26 13:04:48
77.247.110.201	attack	\[2019-09-26 01:20:58\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '77.247.110.201:51663' - Wrong password \[2019-09-26 01:20:58\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-26T01:20:58.919-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5532",SessionID="0x7f1e1c0bf258",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.201/51663",Challenge="0dd63073",ReceivedChallenge="0dd63073",ReceivedHash="05eda28b22cef40544507e94d24d8f5a" \[2019-09-26 01:21:27\] NOTICE\[1948\] chan_sip.c: Registration from '\' failed for '77.247.110.201:59850' - Wrong password \[2019-09-26 01:21:27\] SECURITY\[2006\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-26T01:21:27.153-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="12345678980",SessionID="0x7f1e1c011788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.1	2019-09-26 13:43:02

Recently Reported IPs

244.42.205.57	210.234.72.243	83.251.139.85	207.117.77.114
63.144.215.81	137.116.228.219	22.40.46.151	14.34.180.211
84.7.29.70	215.219.68.185	238.50.54.0	255.167.143.105
47.7.18.28	150.95.82.79	187.161.153.159	168.75.101.159
71.111.39.171	37.230.81.194	103.16.97.132	185.64.55.14