134.119.194.102

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: velia.net Internetdienste GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SIPVicious Scanner Detection, PTR: PTR record not found	2019-12-05 21:50:32
attackspambots	SIPVicious Scanner Detection	2019-12-01 04:20:04
attack	134.119.194.102 was recorded 5 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-28 07:28:54
attack	firewall-block, port(s): 5060/udp, 5070/udp	2019-11-21 21:15:41

Comments on same subnet:

IP	Type	Details	Datetime
134.119.194.231	attackspam	GET: /wp-admin/	2019-07-02 12:50:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.119.194.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25277
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.119.194.102.		IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112003 1800 900 604800 86400

;; Query time: 451 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 21 21:15:33 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 102.194.119.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.194.119.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.168.193.71	attack	Automatic report - XMLRPC Attack	2020-06-03 21:05:51
92.223.109.146	attack	G CORE Fraud scam bastard ! FUCK YOUR ASSHOLE Wed Jun 03 @ 10:45am SPAM[ip_blacklist] 92.223.109.146 bounce@telekom.com	2020-06-03 21:14:42
106.13.1.245	attack	Jun 3 13:49:04 PorscheCustomer sshd[4107]: Failed password for root from 106.13.1.245 port 52962 ssh2 Jun 3 13:52:33 PorscheCustomer sshd[4292]: Failed password for root from 106.13.1.245 port 42170 ssh2 ...	2020-06-03 21:29:06
220.133.232.206	attack	" "	2020-06-03 21:12:37
162.243.136.91	attackbotsspam	Fail2Ban Ban Triggered	2020-06-03 21:04:07
177.43.236.178	attackbotsspam	Jun 3 03:07:44 php1 sshd\[2329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.236.178 user=root Jun 3 03:07:45 php1 sshd\[2329\]: Failed password for root from 177.43.236.178 port 37468 ssh2 Jun 3 03:11:51 php1 sshd\[2793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.236.178 user=root Jun 3 03:11:53 php1 sshd\[2793\]: Failed password for root from 177.43.236.178 port 39200 ssh2 Jun 3 03:16:03 php1 sshd\[3128\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.236.178 user=root	2020-06-03 21:22:28
201.17.94.152	attackspambots	Automatic report - XMLRPC Attack	2020-06-03 21:32:58
138.68.226.234	attackbots	Jun 3 14:24:44 home sshd[18423]: Failed password for root from 138.68.226.234 port 55330 ssh2 Jun 3 14:28:16 home sshd[18775]: Failed password for root from 138.68.226.234 port 58960 ssh2 ...	2020-06-03 21:10:08
222.186.175.150	attack	Jun 3 15:42:57 vps sshd[299979]: Failed password for root from 222.186.175.150 port 34306 ssh2 Jun 3 15:43:01 vps sshd[299979]: Failed password for root from 222.186.175.150 port 34306 ssh2 Jun 3 15:43:04 vps sshd[299979]: Failed password for root from 222.186.175.150 port 34306 ssh2 Jun 3 15:43:07 vps sshd[299979]: Failed password for root from 222.186.175.150 port 34306 ssh2 Jun 3 15:43:10 vps sshd[299979]: Failed password for root from 222.186.175.150 port 34306 ssh2 ...	2020-06-03 21:43:28
222.186.30.59	attack	Jun 3 18:22:53 gw1 sshd[20452]: Failed password for root from 222.186.30.59 port 29295 ssh2 Jun 3 18:22:55 gw1 sshd[20452]: Failed password for root from 222.186.30.59 port 29295 ssh2 ...	2020-06-03 21:28:27
188.166.37.57	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-03 21:15:30
150.158.104.229	attackspambots	Jun 3 11:46:32 vlre-nyc-1 sshd\[9849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.158.104.229 user=root Jun 3 11:46:34 vlre-nyc-1 sshd\[9849\]: Failed password for root from 150.158.104.229 port 47604 ssh2 Jun 3 11:53:38 vlre-nyc-1 sshd\[10033\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.158.104.229 user=root Jun 3 11:53:40 vlre-nyc-1 sshd\[10033\]: Failed password for root from 150.158.104.229 port 39018 ssh2 Jun 3 11:56:08 vlre-nyc-1 sshd\[10096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.158.104.229 user=root ...	2020-06-03 21:20:38
153.127.44.210	attack	153.127.44.210 - - [03/Jun/2020:12:56:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 153.127.44.210 - - [03/Jun/2020:12:56:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 153.127.44.210 - - [03/Jun/2020:12:56:09 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-03 21:24:48
178.125.135.184	attackspam	xmlrpc attack	2020-06-03 21:09:21
51.81.53.159	attack	(sshd) Failed SSH login from 51.81.53.159 (US/United States/ip-51-81-53-159.losthost.com.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 3 13:21:52 instance-20200224-1146 sshd[2240]: Did not receive identification string from 51.81.53.159 port 48320 Jun 3 13:22:37 instance-20200224-1146 sshd[2287]: Invalid user ansible from 51.81.53.159 port 57034 Jun 3 13:22:44 instance-20200224-1146 sshd[2290]: Invalid user ansible from 51.81.53.159 port 51308 Jun 3 13:23:06 instance-20200224-1146 sshd[2302]: Invalid user butter from 51.81.53.159 port 56688 Jun 3 13:23:14 instance-20200224-1146 sshd[2314]: Invalid user postgres from 51.81.53.159 port 51010	2020-06-03 21:33:42

Recently Reported IPs

178.47.152.211	201.124.131.216	91.236.40.141	192.3.126.69
200.233.225.218	112.55.101.80	165.227.54.5	49.70.127.239
165.227.55.21	111.36.153.61	163.172.138.68	75.232.77.138
214.232.242.245	245.223.230.183	17.211.204.142	250.177.156.2
226.64.241.16	174.12.232.111	182.137.150.167	249.80.139.83