134.122.102.103

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.122.102.200	attackspambots	134.122.102.200 - - [08/Aug/2020:04:59:16 +0100] "POST /wp-login.php HTTP/1.1" 200 2079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.102.200 - - [08/Aug/2020:04:59:26 +0100] "POST /wp-login.php HTTP/1.1" 200 2083 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.102.200 - - [08/Aug/2020:04:59:27 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-08 12:03:09
134.122.102.200	attack	134.122.102.200 - - \[24/Jul/2020:15:45:55 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.122.102.200 - - \[24/Jul/2020:15:46:06 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.122.102.200 - - \[24/Jul/2020:15:46:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-07-25 01:01:26
134.122.102.200	attackbotsspam	134.122.102.200 - - [22/Jul/2020:20:59:44 +0200] "GET /wp-login.php HTTP/1.1" 200 6310 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.102.200 - - [22/Jul/2020:20:59:45 +0200] "POST /wp-login.php HTTP/1.1" 200 6561 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.102.200 - - [22/Jul/2020:20:59:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-23 04:38:10
134.122.102.200	attackbots	familiengesundheitszentrum-fulda.de 134.122.102.200 [23/Jun/2020:10:07:54 +0200] "POST /wp-login.php HTTP/1.1" 200 6077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" familiengesundheitszentrum-fulda.de 134.122.102.200 [23/Jun/2020:10:07:54 +0200] "POST /wp-login.php HTTP/1.1" 200 6038 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-23 17:29:19
134.122.102.158	attack	nft/Honeypot	2020-04-17 08:13:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.102.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.122.102.103.		IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:09:10 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 103.102.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.102.122.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.237.57.252	attackbotsspam	Jun 16 05:51:05 minden010 sshd[30660]: Failed password for root from 212.237.57.252 port 46144 ssh2 Jun 16 05:54:46 minden010 sshd[31211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.57.252 Jun 16 05:54:49 minden010 sshd[31211]: Failed password for invalid user admin from 212.237.57.252 port 46462 ssh2 ...	2020-06-16 12:39:29
146.185.25.173	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-16 12:18:38
92.63.194.238	attackbotsspam	Hit honeypot r.	2020-06-16 12:07:11
187.108.255.14	attackbots	Automatic report - XMLRPC Attack	2020-06-16 12:08:02
190.8.149.148	attackbots	SSH invalid-user multiple login try	2020-06-16 12:29:10
179.93.149.17	attackspam	Jun 16 06:05:32 localhost sshd\[8211\]: Invalid user samp from 179.93.149.17 Jun 16 06:05:32 localhost sshd\[8211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.93.149.17 Jun 16 06:05:34 localhost sshd\[8211\]: Failed password for invalid user samp from 179.93.149.17 port 54123 ssh2 Jun 16 06:10:41 localhost sshd\[8481\]: Invalid user akhan from 179.93.149.17 Jun 16 06:10:41 localhost sshd\[8481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.93.149.17 ...	2020-06-16 12:13:45
15.206.14.199	attackbotsspam	Jun 15 23:55:12 Tower sshd[9020]: Connection from 15.206.14.199 port 56922 on 192.168.10.220 port 22 rdomain "" Jun 15 23:55:14 Tower sshd[9020]: Invalid user ares from 15.206.14.199 port 56922 Jun 15 23:55:14 Tower sshd[9020]: error: Could not get shadow information for NOUSER Jun 15 23:55:14 Tower sshd[9020]: Failed password for invalid user ares from 15.206.14.199 port 56922 ssh2 Jun 15 23:55:14 Tower sshd[9020]: Received disconnect from 15.206.14.199 port 56922:11: Bye Bye [preauth] Jun 15 23:55:14 Tower sshd[9020]: Disconnected from invalid user ares 15.206.14.199 port 56922 [preauth]	2020-06-16 12:08:55
58.58.47.110	attack	$f2bV_matches	2020-06-16 12:27:40
24.104.182.172	attackbotsspam	/Wizard/autobuilds.txt	2020-06-16 12:33:28
114.35.184.215	attackspam	114.35.184.215 - - [16/Jun/2020:05:54:57 +0200] "GET / HTTP/1.1" 400 0 "-" "-"	2020-06-16 12:34:27
200.17.0.32	attackspambots	Lines containing failures of 200.17.0.32 (max 1000) Jun 16 04:45:36 localhost sshd[1976]: Invalid user harlan from 200.17.0.32 port 41782 Jun 16 04:45:36 localhost sshd[1976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.17.0.32 Jun 16 04:45:38 localhost sshd[1976]: Failed password for invalid user harlan from 200.17.0.32 port 41782 ssh2 Jun 16 04:45:40 localhost sshd[1976]: Received disconnect from 200.17.0.32 port 41782:11: Bye Bye [preauth] Jun 16 04:45:40 localhost sshd[1976]: Disconnected from invalid user harlan 200.17.0.32 port 41782 [preauth] Jun 16 04:48:52 localhost sshd[2766]: User r.r from 200.17.0.32 not allowed because listed in DenyUsers Jun 16 04:48:52 localhost sshd[2766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.17.0.32 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=200.17.0.32	2020-06-16 12:05:35
61.154.14.234	attackbotsspam	$f2bV_matches	2020-06-16 12:15:27
93.123.73.198	attackbotsspam	Compromised user logged in from this IP.	2020-06-16 12:02:17
46.38.150.203	attackbots	Jun 16 04:11:55 mail postfix/smtpd[71380]: warning: unknown[46.38.150.203]: SASL LOGIN authentication failed: generic failure Jun 16 04:11:58 mail postfix/smtpd[74224]: warning: unknown[46.38.150.203]: SASL LOGIN authentication failed: generic failure Jun 16 04:12:37 mail postfix/smtpd[75104]: warning: unknown[46.38.150.203]: SASL LOGIN authentication failed: generic failure ...	2020-06-16 12:15:46
109.234.39.55	attackspambots	Jun 16 06:00:13 vps333114 sshd[26891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-109-234-39-55.hosted-by-vdsina.ru Jun 16 06:00:15 vps333114 sshd[26891]: Failed password for invalid user postgres from 109.234.39.55 port 33064 ssh2 ...	2020-06-16 12:18:55

Recently Reported IPs

3.144.99.13	156.218.141.190	172.68.120.136	93.41.132.101
117.205.51.39	125.163.3.59	84.246.151.175	131.196.236.143
178.51.159.76	220.176.162.101	220.185.10.219	175.5.68.177
181.171.78.136	117.211.146.21	185.169.100.141	155.133.122.1
156.227.14.203	31.130.176.36	197.55.134.246	51.36.76.117