134.122.20.211

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	134.122.20.211 - - [30/Sep/2020:01:44:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [30/Sep/2020:01:44:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2668 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [30/Sep/2020:01:44:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 08:52:54
attackspambots	134.122.20.211 - - [29/Sep/2020:10:06:25 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [29/Sep/2020:10:06:26 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [29/Sep/2020:10:06:28 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 01:44:48
attackspam	134.122.20.211 - - [29/Sep/2020:10:06:25 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [29/Sep/2020:10:06:26 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.20.211 - - [29/Sep/2020:10:06:28 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-29 17:45:08

Type

Details

Datetime

attackspam

134.122.20.211 - - [30/Sep/2020:01:44:22 +0100] "POST /wp-login.php HTTP/1.1" 200 2660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
134.122.20.211 - - [30/Sep/2020:01:44:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2668 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
134.122.20.211 - - [30/Sep/2020:01:44:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-09-30 08:52:54

attackspambots

134.122.20.211 - - [29/Sep/2020:10:06:25 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
134.122.20.211 - - [29/Sep/2020:10:06:26 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
134.122.20.211 - - [29/Sep/2020:10:06:28 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-09-30 01:44:48

attackspam

134.122.20.211 - - [29/Sep/2020:10:06:25 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
134.122.20.211 - - [29/Sep/2020:10:06:26 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
134.122.20.211 - - [29/Sep/2020:10:06:28 +0100] "POST /wp-login.php HTTP/1.1" 200 4401 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-09-29 17:45:08

Comments on same subnet:

IP	Type	Details	Datetime
134.122.206.108	attackproxy	vpn	2022-11-09 13:48:25
134.122.20.146	attackspambots	$f2bV_matches	2020-08-02 07:56:38
134.122.20.146	attackspam	Jul 31 06:57:23 hosting sshd[25565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.146 user=root Jul 31 06:57:24 hosting sshd[25565]: Failed password for root from 134.122.20.146 port 39112 ssh2 ...	2020-07-31 12:11:58
134.122.20.146	attackspam	Jul 24 05:58:52 sshd\[20312\]: Invalid user yly from 134.122.20.146Jul 24 05:58:54 sshd\[20312\]: Failed password for invalid user yly from 134.122.20.146 port 59258 ssh2 ...	2020-07-24 12:16:15
134.122.20.146	attack	Jul 20 13:24:35 Invalid user teste from 134.122.20.146 port 33544	2020-07-20 20:15:48
134.122.20.146	attackbots	Invalid user admin from 134.122.20.146 port 59244	2020-07-18 20:13:10
134.122.20.113	attack	Scanned 333 unique addresses for 2 unique TCP ports in 24 hours (ports 1700,26938)	2020-07-09 03:55:47
134.122.20.146	attackspambots	20 attempts against mh-ssh on flame	2020-07-07 13:18:24
134.122.20.113	attackspam	Failed password for invalid user ubuntu from 134.122.20.113 port 38664 ssh2	2020-07-04 03:42:25
134.122.20.113	attackbots	unauthorized connection attempt	2020-06-28 15:22:26
134.122.20.113	attackbotsspam	Scanned 313 unique addresses for 2 unique TCP ports in 24 hours (ports 10443,26440)	2020-06-25 01:04:13
134.122.20.113	attackspambots	Jun 22 11:19:59 ns382633 sshd\[21367\]: Invalid user tomcat from 134.122.20.113 port 44720 Jun 22 11:19:59 ns382633 sshd\[21367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 Jun 22 11:20:01 ns382633 sshd\[21367\]: Failed password for invalid user tomcat from 134.122.20.113 port 44720 ssh2 Jun 22 11:29:47 ns382633 sshd\[23341\]: Invalid user martha from 134.122.20.113 port 57000 Jun 22 11:29:47 ns382633 sshd\[23341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113	2020-06-22 19:20:07
134.122.20.113	attack	2020-06-19T05:44:11.367080shield sshd\[30900\]: Invalid user brody from 134.122.20.113 port 60746 2020-06-19T05:44:11.371851shield sshd\[30900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 2020-06-19T05:44:12.621080shield sshd\[30900\]: Failed password for invalid user brody from 134.122.20.113 port 60746 ssh2 2020-06-19T05:45:36.800948shield sshd\[31265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 user=root 2020-06-19T05:45:38.386876shield sshd\[31265\]: Failed password for root from 134.122.20.113 port 57678 ssh2	2020-06-19 17:14:41
134.122.20.113	attackspam	Jun 15 15:09:09 scw-6657dc sshd[1582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 Jun 15 15:09:09 scw-6657dc sshd[1582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 Jun 15 15:09:11 scw-6657dc sshd[1582]: Failed password for invalid user luis from 134.122.20.113 port 60726 ssh2 ...	2020-06-15 23:14:17
134.122.20.113	attackspam	Jun 14 09:00:43 vlre-nyc-1 sshd\[15991\]: Invalid user haisou from 134.122.20.113 Jun 14 09:00:43 vlre-nyc-1 sshd\[15991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 Jun 14 09:00:46 vlre-nyc-1 sshd\[15991\]: Failed password for invalid user haisou from 134.122.20.113 port 60020 ssh2 Jun 14 09:03:57 vlre-nyc-1 sshd\[16103\]: Invalid user user03 from 134.122.20.113 Jun 14 09:03:57 vlre-nyc-1 sshd\[16103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 ...	2020-06-14 17:46:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.20.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54042
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.122.20.211.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092900 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 29 17:45:03 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 211.20.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 211.20.122.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.147.215.12	attack	[2020-08-27 01:15:05] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:65196' - Wrong password [2020-08-27 01:15:05] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-27T01:15:05.760-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="3026",SessionID="0x7f10c405a408",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.12/65196",Challenge="48319416",ReceivedChallenge="48319416",ReceivedHash="043a2a992af2b64bb7514096f45c99d0" [2020-08-27 01:15:28] NOTICE[1185] chan_sip.c: Registration from '' failed for '185.147.215.12:61605' - Wrong password [2020-08-27 01:15:28] SECURITY[1203] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-27T01:15:28.767-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="141",SessionID="0x7f10c451d0c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215. ...	2020-08-27 14:36:35
157.245.124.160	attackbotsspam	Invalid user zxincsap from 157.245.124.160 port 60278	2020-08-27 14:59:57
117.69.188.31	attackspambots	Aug 27 07:19:09 srv01 postfix/smtpd\[26536\]: warning: unknown\[117.69.188.31\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:19:20 srv01 postfix/smtpd\[26536\]: warning: unknown\[117.69.188.31\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:19:36 srv01 postfix/smtpd\[26536\]: warning: unknown\[117.69.188.31\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:19:56 srv01 postfix/smtpd\[26536\]: warning: unknown\[117.69.188.31\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:20:08 srv01 postfix/smtpd\[26536\]: warning: unknown\[117.69.188.31\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-27 14:39:09
222.186.180.6	attackbots	Aug 27 08:24:57 ip40 sshd[9633]: Failed password for root from 222.186.180.6 port 30878 ssh2 Aug 27 08:25:00 ip40 sshd[9633]: Failed password for root from 222.186.180.6 port 30878 ssh2 ...	2020-08-27 15:09:33
192.241.228.63	attackspambots	firewall-block, port(s): 1583/tcp	2020-08-27 14:46:40
5.188.210.203	attackspam	Port scan on 3 port(s): 8081 8082 8181	2020-08-27 15:07:33
222.186.175.216	attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-27 14:59:39
212.70.149.68	attackspambots	Aug 27 07:23:46 cho postfix/smtps/smtpd[1717822]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:25:56 cho postfix/smtps/smtpd[1717822]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:28:08 cho postfix/smtps/smtpd[1717822]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:30:18 cho postfix/smtps/smtpd[1717822]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 07:32:28 cho postfix/smtps/smtpd[1717822]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-27 14:53:03
66.33.205.189	attackbots	Automatic report - XMLRPC Attack	2020-08-27 15:19:28
112.85.42.176	attack	Aug 27 08:59:22 ift sshd\[53659\]: Failed password for root from 112.85.42.176 port 28452 ssh2Aug 27 08:59:35 ift sshd\[53659\]: Failed password for root from 112.85.42.176 port 28452 ssh2Aug 27 08:59:41 ift sshd\[53702\]: Failed password for root from 112.85.42.176 port 54674 ssh2Aug 27 08:59:44 ift sshd\[53702\]: Failed password for root from 112.85.42.176 port 54674 ssh2Aug 27 09:00:03 ift sshd\[53720\]: Failed password for root from 112.85.42.176 port 19023 ssh2 ...	2020-08-27 15:02:08
222.186.52.78	attackspam	Aug 27 04:50:51 localhost sshd[1255674]: Failed password for root from 222.186.52.78 port 42564 ssh2 Aug 27 04:51:47 localhost sshd[1257727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.78 user=root Aug 27 04:51:49 localhost sshd[1257727]: Failed password for root from 222.186.52.78 port 57844 ssh2 Aug 27 04:52:51 localhost sshd[1259978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.78 user=root Aug 27 04:52:53 localhost sshd[1259978]: Failed password for root from 222.186.52.78 port 18723 ssh2 ...	2020-08-27 15:17:16
91.149.139.198	attack	(sshd) Failed SSH login from 91.149.139.198 (BY/Belarus/-): 5 in the last 3600 secs	2020-08-27 14:46:09
103.61.198.122	attack	Brute Force	2020-08-27 15:02:44
41.63.10.12	attackspambots	firewall-block, port(s): 1433/tcp	2020-08-27 14:54:10
49.88.112.72	attackbotsspam	2020-08-27T03:45:44.299888abusebot-7.cloudsearch.cf sshd[6027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root 2020-08-27T03:45:46.395380abusebot-7.cloudsearch.cf sshd[6027]: Failed password for root from 49.88.112.72 port 24654 ssh2 2020-08-27T03:48:45.182171abusebot-7.cloudsearch.cf sshd[6036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root 2020-08-27T03:48:47.127066abusebot-7.cloudsearch.cf sshd[6036]: Failed password for root from 49.88.112.72 port 49536 ssh2 2020-08-27T03:48:45.182171abusebot-7.cloudsearch.cf sshd[6036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.72 user=root 2020-08-27T03:48:47.127066abusebot-7.cloudsearch.cf sshd[6036]: Failed password for root from 49.88.112.72 port 49536 ssh2 2020-08-27T03:48:49.574671abusebot-7.cloudsearch.cf sshd[6036]: Failed password for root from 49.88.112 ...	2020-08-27 15:20:29

Recently Reported IPs

146.21.72.100	242.187.179.197	156.215.66.179	85.134.200.50
11.8.53.166	138.97.54.231	171.252.151.250	145.192.9.27
86.230.169.239	91.160.172.239	70.62.172.212	45.248.210.23
14.117.239.71	119.182.77.141	192.59.135.167	160.7.188.90
163.30.246.18	3.128.248.73	101.217.144.197	44.235.128.207