2.134.10.103 - IPInfo

Basic Info

City: Karaganda

Region: Karaganda

Country: Kazakhstan

Internet Service Provider: JSC Kazakhtelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 2.134.10.103 on Port 445(SMB)	2019-11-29 02:59:51

Comments on same subnet:

IP	Type	Details	Datetime
2.134.106.217	attackbots	" "	2019-07-31 18:59:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.134.10.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2149
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.134.10.103.			IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112802 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 29 02:59:48 CST 2019
;; MSG SIZE  rcvd: 116

Host info

103.10.134.2.in-addr.arpa domain name pointer 2.134.10.103.megaline.telecom.kz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.10.134.2.in-addr.arpa	name = 2.134.10.103.megaline.telecom.kz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.55.128.109	attackspam	Mar 22 08:56:00 vpn01 sshd[2654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.128.109 Mar 22 08:56:02 vpn01 sshd[2654]: Failed password for invalid user xc from 45.55.128.109 port 46672 ssh2 ...	2020-03-22 16:16:20
5.135.182.84	attackbots	Mar 22 12:56:38 gw1 sshd[25888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.182.84 Mar 22 12:56:40 gw1 sshd[25888]: Failed password for invalid user ginnie from 5.135.182.84 port 58232 ssh2 ...	2020-03-22 15:58:58
106.13.74.82	attack	SSH login attempts @ 2020-03-13 02:18:28	2020-03-22 16:04:31
96.47.10.53	attack	$f2bV_matches	2020-03-22 15:55:52
110.80.142.84	attack	20 attempts against mh-ssh on cloud	2020-03-22 15:38:34
106.13.164.136	attackspambots	Invalid user lauri from 106.13.164.136 port 56636	2020-03-22 15:40:49
222.186.173.238	attackbotsspam	Mar 22 09:16:07 vpn01 sshd[3400]: Failed password for root from 222.186.173.238 port 16540 ssh2 Mar 22 09:16:09 vpn01 sshd[3400]: Failed password for root from 222.186.173.238 port 16540 ssh2 ...	2020-03-22 16:18:24
120.236.164.176	attackspam	smtp probe/invalid login attempt	2020-03-22 16:24:35
51.79.66.142	attackbots	ssh brute force	2020-03-22 16:09:25
65.74.177.90	attackbots	$f2bV_matches	2020-03-22 16:22:01
110.138.112.202	attackspam	Icarus honeypot on github	2020-03-22 16:11:05
117.5.73.117	attack	Automatic report - Port Scan Attack	2020-03-22 16:21:00
103.232.124.22	attackbotsspam	DATE:2020-03-22 04:49:58, IP:103.232.124.22, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-22 16:11:59
142.44.251.207	attackspambots	Mar 22 07:43:09 haigwepa sshd[30518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.251.207 Mar 22 07:43:11 haigwepa sshd[30518]: Failed password for invalid user kavo from 142.44.251.207 port 46263 ssh2 ...	2020-03-22 15:55:16
134.73.51.121	attackspam	Mar 22 04:34:05 mail.srvfarm.net postfix/smtpd[541939]: NOQUEUE: reject: RCPT from unknown[134.73.51.121]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 22 04:34:10 mail.srvfarm.net postfix/smtpd[543204]: NOQUEUE: reject: RCPT from unknown[134.73.51.121]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 22 04:34:10 mail.srvfarm.net postfix/smtpd[543207]: NOQUEUE: reject: RCPT from unknown[134.73.51.121]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 22 04:34:10 mail.srvfarm.net postfix/smtpd[543203]: NOQUEUE: reject: RCPT from unknown[134.73.51.121]: 450 4.1.8 : S	2020-03-22 15:47:06

Recently Reported IPs

211.228.94.141	91.166.62.79	190.225.52.120	202.108.197.176
3.251.103.167	205.231.126.80	131.96.49.96	217.253.87.246
67.229.135.18	24.34.8.221	103.60.176.46	98.152.219.104
221.88.241.202	79.0.139.41	41.45.163.58	143.92.37.221
149.241.108.159	119.29.175.190	122.245.198.117	39.220.78.189