3.121.29.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: A100 ROW GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 30 22:51:47 cvbnet sshd[12522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.121.29.134 Oct 30 22:51:49 cvbnet sshd[12522]: Failed password for invalid user fletcher from 3.121.29.134 port 34500 ssh2 ...	2019-10-31 06:03:06

Type

Details

Datetime

attack

Oct 30 22:51:47 cvbnet sshd[12522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.121.29.134 
Oct 30 22:51:49 cvbnet sshd[12522]: Failed password for invalid user fletcher from 3.121.29.134 port 34500 ssh2
...

2019-10-31 06:03:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.121.29.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.121.29.134.			IN	A

;; AUTHORITY SECTION:
.			584	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103001 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 06:03:03 CST 2019
;; MSG SIZE  rcvd: 116

Host info

134.29.121.3.in-addr.arpa domain name pointer ec2-3-121-29-134.eu-central-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.29.121.3.in-addr.arpa	name = ec2-3-121-29-134.eu-central-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.124.100.30	attack	Mar 19 15:20:55 vzhost sshd[1792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.100.30 user=r.r Mar 19 15:20:57 vzhost sshd[1792]: Failed password for r.r from 103.124.100.30 port 38568 ssh2 Mar 19 15:24:44 vzhost sshd[2492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.100.30 user=r.r Mar 19 15:24:46 vzhost sshd[2492]: Failed password for r.r from 103.124.100.30 port 44196 ssh2 Mar 19 15:28:18 vzhost sshd[3269]: Invalid user radio from 103.124.100.30 Mar 19 15:28:18 vzhost sshd[3269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.124.100.30 Mar 19 15:28:20 vzhost sshd[3269]: Failed password for invalid user radio from 103.124.100.30 port 48346 ssh2 Mar 19 15:32:05 vzhost sshd[4178]: Invalid user cpaneleximscanner from 103.124.100.30 Mar 19 15:32:05 vzhost sshd[4178]: pam_unix(sshd:auth): authentication failure; logname= ........ -------------------------------	2020-03-21 04:56:49
117.7.142.106	attack	Multiple SSH login attempts.	2020-03-21 05:06:27
167.99.196.120	attack	Mar 19 21:56:14 datentool sshd[6555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.196.120 user=r.r Mar 19 21:56:16 datentool sshd[6555]: Failed password for r.r from 167.99.196.120 port 36920 ssh2 Mar 19 22:09:18 datentool sshd[6693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.196.120 user=r.r Mar 19 22:09:20 datentool sshd[6693]: Failed password for r.r from 167.99.196.120 port 41520 ssh2 Mar 19 22:14:22 datentool sshd[6734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.196.120 user=r.r Mar 19 22:14:24 datentool sshd[6734]: Failed password for r.r from 167.99.196.120 port 49428 ssh2 Mar 19 22:19:31 datentool sshd[6762]: Invalid user dan from 167.99.196.120 Mar 19 22:19:31 datentool sshd[6762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.196.120 Mar 19 22:19:33 date........ -------------------------------	2020-03-21 05:04:37
94.53.199.250	attackbotsspam	DATE:2020-03-20 14:01:22, IP:94.53.199.250, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-03-21 05:01:50
212.162.151.66	attackspambots	Password spray	2020-03-21 05:24:16
162.243.131.55	attackspambots	Attempts against Pop3/IMAP	2020-03-21 04:58:10
178.24.245.200	attackspam	1584709452 - 03/20/2020 14:04:12 Host: 178.24.245.200/178.24.245.200 Port: 445 TCP Blocked	2020-03-21 05:14:53
198.58.11.20	attack	Mar 20 13:59:11 mail.srvfarm.net postfix/smtpd[2768625]: NOQUEUE: reject: RCPT from unknown[198.58.11.20]: 554 5.7.1 Service unavailable; Client host [198.58.11.20] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?198.58.11.20; from= to= proto=ESMTP helo=<20.11.58.198.pixmultilink.com.br> Mar 20 13:59:12 mail.srvfarm.net postfix/smtpd[2768625]: NOQUEUE: reject: RCPT from unknown[198.58.11.20]: 554 5.7.1 Service unavailable; Client host [198.58.11.20] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?198.58.11.20; from= to= proto=ESMTP helo=<20.11.58.198.pixmultilink.com.br> Mar 20 13:59:13 mail.srvfarm.net postfix/smtpd[2768625]: NOQUEUE: reject: RCPT from unknown[198.58.11.20]: 554 5.7.1 Service unavailable; Client host [198.58.11.20] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?198.58.11.20; from=	2020-03-21 04:47:59
211.23.44.58	attackbotsspam	Mar 20 19:31:31 main sshd[2027]: Failed password for invalid user permlink from 211.23.44.58 port 46187 ssh2 Mar 20 19:47:08 main sshd[2320]: Failed password for invalid user storm from 211.23.44.58 port 21522 ssh2 Mar 20 19:55:17 main sshd[2441]: Failed password for invalid user bogdan from 211.23.44.58 port 11328 ssh2 Mar 20 20:03:01 main sshd[2564]: Failed password for invalid user caitlen from 211.23.44.58 port 51133 ssh2 Mar 20 20:13:18 main sshd[2764]: Failed password for invalid user shangzengqiang from 211.23.44.58 port 40967 ssh2 Mar 20 20:21:17 main sshd[2884]: Failed password for invalid user aubrey from 211.23.44.58 port 30779 ssh2 Mar 20 20:29:06 main sshd[2995]: Failed password for invalid user sunsoft from 211.23.44.58 port 20612 ssh2	2020-03-21 04:53:39
195.24.207.114	attack	k+ssh-bruteforce	2020-03-21 05:06:11
113.21.113.130	attackspambots	(mod_security) mod_security (id:230011) triggered by 113.21.113.130 (NC/New Caledonia/host-113-21-113-130.canl.nc): 5 in the last 3600 secs	2020-03-21 05:16:59
185.176.27.6	attackbots	Mar 20 21:36:46 debian-2gb-nbg1-2 kernel: \[6995707.104863\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=15072 PROTO=TCP SPT=53575 DPT=7091 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-21 04:51:25
46.152.207.173	attack	Mar 20 11:54:25 home sshd[555]: Invalid user nigel from 46.152.207.173 port 53798 Mar 20 11:54:25 home sshd[555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.152.207.173 Mar 20 11:54:25 home sshd[555]: Invalid user nigel from 46.152.207.173 port 53798 Mar 20 11:54:27 home sshd[555]: Failed password for invalid user nigel from 46.152.207.173 port 53798 ssh2 Mar 20 12:08:26 home sshd[763]: Invalid user ruth from 46.152.207.173 port 53984 Mar 20 12:08:26 home sshd[763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.152.207.173 Mar 20 12:08:26 home sshd[763]: Invalid user ruth from 46.152.207.173 port 53984 Mar 20 12:08:28 home sshd[763]: Failed password for invalid user ruth from 46.152.207.173 port 53984 ssh2 Mar 20 12:12:30 home sshd[827]: Invalid user mirc from 46.152.207.173 port 37064 Mar 20 12:12:31 home sshd[827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.152.207.173	2020-03-21 05:13:00
181.231.83.162	attack	Mar 20 15:40:05 ms-srv sshd[5295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.231.83.162 Mar 20 15:40:07 ms-srv sshd[5295]: Failed password for invalid user lawanda from 181.231.83.162 port 35683 ssh2	2020-03-21 05:16:47
208.94.242.251	attackspam	$f2bV_matches	2020-03-21 05:13:21

Recently Reported IPs

244.42.205.57	210.234.72.243	83.251.139.85	207.117.77.114
63.144.215.81	137.116.228.219	22.40.46.151	14.34.180.211
84.7.29.70	215.219.68.185	238.50.54.0	255.167.143.105
47.7.18.28	150.95.82.79	187.161.153.159	168.75.101.159
71.111.39.171	37.230.81.194	103.16.97.132	185.64.55.14