134.122.52.69 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Exploited Host.	2020-07-26 03:37:47
attack	SSH Authentication Attempts Exceeded	2020-03-17 08:19:04

Comments on same subnet:

IP	Type	Details	Datetime
134.122.52.123	attack	Jun 16 18:48:26 XXX sshd[46969]: Invalid user admin from 134.122.52.123 port 47876	2020-06-17 03:07:43
134.122.52.123	attack	Jun 16 00:56:45 ns381471 sshd[11894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.52.123 Jun 16 00:56:47 ns381471 sshd[11894]: Failed password for invalid user oscar from 134.122.52.123 port 51180 ssh2	2020-06-16 08:03:00

Type

Details

Datetime

134.122.52.123

attack

Jun 16 18:48:26 XXX sshd[46969]: Invalid user admin from 134.122.52.123 port 47876

2020-06-17 03:07:43

134.122.52.123

attack

Jun 16 00:56:45 ns381471 sshd[11894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.52.123
Jun 16 00:56:47 ns381471 sshd[11894]: Failed password for invalid user oscar from 134.122.52.123 port 51180 ssh2

2020-06-16 08:03:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.52.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3158
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.122.52.69.			IN	A

;; AUTHORITY SECTION:
.			249	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031602 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 17 08:19:00 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 69.52.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 69.52.122.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.14.173.2	attackspambots	Jul 29 10:47:03 vserver sshd\[1974\]: Invalid user jayakumar from 46.14.173.2Jul 29 10:47:05 vserver sshd\[1974\]: Failed password for invalid user jayakumar from 46.14.173.2 port 55796 ssh2Jul 29 10:51:06 vserver sshd\[2007\]: Invalid user yliu from 46.14.173.2Jul 29 10:51:09 vserver sshd\[2007\]: Failed password for invalid user yliu from 46.14.173.2 port 33438 ssh2 ...	2020-07-29 17:20:23
27.105.71.14	attackspam	Unauthorized connection attempt detected from IP address 27.105.71.14 to port 81	2020-07-29 17:47:28
129.211.85.214	attackspambots	Jul 29 05:51:09 serwer sshd\[3091\]: Invalid user soyle_app from 129.211.85.214 port 58388 Jul 29 05:51:09 serwer sshd\[3091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.85.214 Jul 29 05:51:11 serwer sshd\[3091\]: Failed password for invalid user soyle_app from 129.211.85.214 port 58388 ssh2 ...	2020-07-29 17:35:57
87.251.74.30	attackspambots	2020-07-28 UTC: (64x) - (2x),0101,admin(3x),root(46x),support(5x),user(7x)	2020-07-29 17:48:26
122.52.48.92	attackspambots	Brute-force attempt banned	2020-07-29 17:32:06
196.52.43.62	attackspam	Unauthorized connection attempt detected from IP address 196.52.43.62 to port 2083	2020-07-29 17:41:05
51.91.239.11	attack	51.91.239.11 - - \[29/Jul/2020:09:34:04 +0200\] "POST /wp-login.php HTTP/1.1" 200 10019 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 51.91.239.11 - - \[29/Jul/2020:09:34:05 +0200\] "POST /wp-login.php HTTP/1.1" 200 9789 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2020-07-29 17:57:31
186.216.71.209	attackbots	failed_logins	2020-07-29 17:26:21
98.100.250.202	attack	[ssh] SSH attack	2020-07-29 17:34:33
51.38.48.127	attackspambots	Jul 29 09:12:44 plex-server sshd[1564344]: Invalid user hysms from 51.38.48.127 port 37644 Jul 29 09:12:44 plex-server sshd[1564344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 Jul 29 09:12:44 plex-server sshd[1564344]: Invalid user hysms from 51.38.48.127 port 37644 Jul 29 09:12:46 plex-server sshd[1564344]: Failed password for invalid user hysms from 51.38.48.127 port 37644 ssh2 Jul 29 09:15:13 plex-server sshd[1565661]: Invalid user zhengguozhen from 51.38.48.127 port 49494 ...	2020-07-29 17:25:24
159.192.141.99	attack	20/7/28@23:51:08: FAIL: Alarm-Network address from=159.192.141.99 ...	2020-07-29 17:42:39
107.172.249.111	attackspam	Invalid user mongo from 107.172.249.111 port 45994	2020-07-29 18:01:24
187.16.96.35	attackspam	k+ssh-bruteforce	2020-07-29 17:23:58
222.107.156.227	attack	Invalid user ftpadmin2 from 222.107.156.227 port 56742 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.107.156.227 Invalid user ftpadmin2 from 222.107.156.227 port 56742 Failed password for invalid user ftpadmin2 from 222.107.156.227 port 56742 ssh2 Invalid user openmeetings from 222.107.156.227 port 32840	2020-07-29 17:51:09
124.123.223.44	attack	Brute-force general attack.	2020-07-29 18:00:05

Recently Reported IPs

173.214.194.3	13.67.56.235	101.108.62.162	69.94.158.86
223.97.185.85	79.124.62.70	111.229.216.155	80.104.137.169
61.77.88.174	198.199.111.218	185.202.1.19	189.12.47.244
118.25.195.58	219.121.131.132	124.41.211.110	52.224.162.10
221.220.85.163	213.197.145.166	36.67.63.9	190.140.134.14