134.122.85.208

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.122.85.209	attackbotsspam	Sep 15 19:15:01 master sshd[6596]: Failed password for root from 134.122.85.209 port 49301 ssh2 Sep 15 19:20:20 master sshd[6769]: Failed password for root from 134.122.85.209 port 34302 ssh2 Sep 15 19:24:31 master sshd[6782]: Failed password for root from 134.122.85.209 port 42223 ssh2 Sep 15 19:28:42 master sshd[6845]: Failed password for root from 134.122.85.209 port 50151 ssh2 Sep 15 19:34:03 master sshd[7295]: Failed password for invalid user donut from 134.122.85.209 port 58083 ssh2 Sep 15 19:39:53 master sshd[7404]: Failed password for root from 134.122.85.209 port 37767 ssh2 Sep 15 19:46:01 master sshd[7577]: Failed password for root from 134.122.85.209 port 45687 ssh2 Sep 15 19:51:57 master sshd[7690]: Failed password for root from 134.122.85.209 port 53613 ssh2 Sep 15 19:57:59 master sshd[7767]: Failed password for root from 134.122.85.209 port 33301 ssh2	2020-09-16 21:10:15
134.122.85.209	attackspam	Sep 15 19:15:01 master sshd[6596]: Failed password for root from 134.122.85.209 port 49301 ssh2 Sep 15 19:20:20 master sshd[6769]: Failed password for root from 134.122.85.209 port 34302 ssh2 Sep 15 19:24:31 master sshd[6782]: Failed password for root from 134.122.85.209 port 42223 ssh2 Sep 15 19:28:42 master sshd[6845]: Failed password for root from 134.122.85.209 port 50151 ssh2 Sep 15 19:34:03 master sshd[7295]: Failed password for invalid user donut from 134.122.85.209 port 58083 ssh2 Sep 15 19:39:53 master sshd[7404]: Failed password for root from 134.122.85.209 port 37767 ssh2 Sep 15 19:46:01 master sshd[7577]: Failed password for root from 134.122.85.209 port 45687 ssh2 Sep 15 19:51:57 master sshd[7690]: Failed password for root from 134.122.85.209 port 53613 ssh2 Sep 15 19:57:59 master sshd[7767]: Failed password for root from 134.122.85.209 port 33301 ssh2	2020-09-16 13:40:28
134.122.85.209	attackspambots	Sep 15 19:15:01 master sshd[6596]: Failed password for root from 134.122.85.209 port 49301 ssh2 Sep 15 19:20:20 master sshd[6769]: Failed password for root from 134.122.85.209 port 34302 ssh2 Sep 15 19:24:31 master sshd[6782]: Failed password for root from 134.122.85.209 port 42223 ssh2 Sep 15 19:28:42 master sshd[6845]: Failed password for root from 134.122.85.209 port 50151 ssh2 Sep 15 19:34:03 master sshd[7295]: Failed password for invalid user donut from 134.122.85.209 port 58083 ssh2 Sep 15 19:39:53 master sshd[7404]: Failed password for root from 134.122.85.209 port 37767 ssh2 Sep 15 19:46:01 master sshd[7577]: Failed password for root from 134.122.85.209 port 45687 ssh2 Sep 15 19:51:57 master sshd[7690]: Failed password for root from 134.122.85.209 port 53613 ssh2 Sep 15 19:57:59 master sshd[7767]: Failed password for root from 134.122.85.209 port 33301 ssh2	2020-09-16 05:25:55
134.122.85.192	attackbots	134.122.85.192 - - \[28/Jul/2020:14:07:07 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.122.85.192 - - \[28/Jul/2020:14:07:07 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 134.122.85.192 - - \[28/Jul/2020:14:07:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-07-28 21:16:30
134.122.85.192	attackbotsspam	134.122.85.192 - - [22/Jul/2020:04:58:52 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.85.192 - - [22/Jul/2020:04:58:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1924 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.85.192 - - [22/Jul/2020:04:59:00 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-22 12:42:06
134.122.85.192	attackspam	134.122.85.192 - - [26/Jun/2020:08:26:34 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.85.192 - - [26/Jun/2020:08:26:35 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.85.192 - - [26/Jun/2020:08:26:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-26 17:49:00
134.122.85.192	attackspam	134.122.85.192 - - [25/Jun/2020:17:11:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2225 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.85.192 - - [25/Jun/2020:17:12:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.85.192 - - [25/Jun/2020:17:12:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-26 03:18:54
134.122.85.192	attackspambots	Automatic report - XMLRPC Attack	2020-06-22 14:12:57
134.122.85.23	attackbots	Port scan denied	2020-06-10 13:09:57
134.122.85.192	attackspambots	nginx-botsearch jail	2020-06-08 12:51:05
134.122.85.192	attack	Automatic report - XMLRPC Attack	2020-05-27 05:36:31
134.122.85.192	attackbots	xmlrpc attack	2020-05-20 22:30:08
134.122.85.244	attackspambots	Port Scan detected from 134.122.85.244 (US/United States/-). 11 hits in the last 215 seconds	2020-05-11 20:04:39
134.122.85.244	attack	Port Scan detected from 134.122.85.244 (US/United States/-). 3 hits in the last 60 seconds; Ports: ; Direction: in; Trigger: PS_LIMIT; Logs: Apr 23 06:49:23 robby kernel: Firewall: UDP_IN Blocked* IN=eth0 OUT= MAC=12:02:c8:b9:10:34:00:0f:f8:73:88:c0:08:00 SRC=134.122.85.244 DST=69.195.129.246 LEN=445 TOS=0x00 PREC=0x00 TTL=53 ID=29979 DF PROTO=UDP SPT=5072 DPT=5060 LEN=425 Apr 23 06:49:23 robby kernel: Firewall: UDP_IN Blocked IN=eth0 OUT= MAC=12:02:c8:b9:10:34:00:0f:f8:73:88:c0:08:00 SRC=134.122.85.244 DST=69.195.129.246 LEN=442 TOS=0x00 PREC=0x00 TTL=52 ID=29980 DF PROTO=UDP SPT=5072 DPT=5061 LEN=422 Apr 23 06:49:23 robby kernel: Firewall: UDP_IN Blocked IN=eth0 OUT= MAC=12:02:c8:b9:10:34:00:0f:f8:73:88:c0:08:00 SRC=134.122.85.244 DST=69.195.129.246 LEN=445 TOS=0x00 PREC=0x00 TTL=53 ID=29982 DF PROTO=UDP SPT=5072 DPT=5070 LEN=425	2020-04-23 19:13:47
134.122.85.23	attackspambots	Apr 14 17:17:23 debian-2gb-nbg1-2 kernel: \[9136432.671265\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.122.85.23 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=49247 PROTO=TCP SPT=44892 DPT=14164 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-15 01:15:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.85.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55894
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.122.85.208.			IN	A

;; AUTHORITY SECTION:
.			296	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 05:50:05 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 208.85.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 208.85.122.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.48.48.183	attackspam	C1,WP GET /lappan/wp-login.php	2019-06-27 03:27:36
194.59.206.171	attackbotsspam	Jun 26 02:22:31 xb0 sshd[7727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.59.206.171 user=r.r Jun 26 02:22:33 xb0 sshd[7727]: Failed password for r.r from 194.59.206.171 port 46666 ssh2 Jun 26 02:22:33 xb0 sshd[7727]: Received disconnect from 194.59.206.171: 11: Bye Bye [preauth] Jun 26 02:24:27 xb0 sshd[12610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.59.206.171 user=r.r Jun 26 02:24:29 xb0 sshd[12610]: Failed password for r.r from 194.59.206.171 port 58515 ssh2 Jun 26 02:24:29 xb0 sshd[12610]: Received disconnect from 194.59.206.171: 11: Bye Bye [preauth] Jun 26 02:25:53 xb0 sshd[1503]: Failed password for invalid user dave from 194.59.206.171 port 39037 ssh2 Jun 26 02:25:53 xb0 sshd[1503]: Received disconnect from 194.59.206.171: 11: Bye Bye [preauth] Jun 26 02:27:21 xb0 sshd[5641]: Failed password for invalid user yan from 194.59.206.171 port 47796 ssh2 Jun 26 02:2........ -------------------------------	2019-06-27 03:26:22
27.12.62.112	attack	Jun 26 14:44:42 iago sshd[11827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.12.62.112 user=r.r Jun 26 14:44:44 iago sshd[11827]: Failed password for r.r from 27.12.62.112 port 56260 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.12.62.112	2019-06-27 03:47:56
183.82.225.10	attackbotsspam	TCP port 445 (SMB) attempt blocked by firewall. [2019-06-26 15:06:25]	2019-06-27 03:46:03
171.15.198.205	attackbots	SSH Bruteforce Attack	2019-06-27 03:44:46
83.239.29.235	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-06-27 03:58:25
116.196.93.100	attackspambots	Jun 26 15:05:40 box kernel: [671463.449189] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=116.196.93.100 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=48730 PROTO=TCP SPT=58095 DPT=23 WINDOW=50895 RES=0x00 SYN URGP=0 Jun 26 15:06:01 box kernel: [671484.488273] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=116.196.93.100 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=48730 PROTO=TCP SPT=58095 DPT=23 WINDOW=50895 RES=0x00 SYN URGP=0 Jun 26 15:06:17 box kernel: [671500.036410] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=116.196.93.100 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=48730 PROTO=TCP SPT=58095 DPT=23 WINDOW=50895 RES=0x00 SYN URGP=0 Jun 26 15:06:23 box kernel: [671505.825101] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=116.196.93.100 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=48730 PROTO=TCP SPT=58095 DPT=2323 WINDOW=50895 RES=0x00 SYN URGP=0 Jun 26 15:06:24 box kernel: [671507.244264] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=116.196.93.100 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=487	2019-06-27 04:11:21
95.105.15.74	attackbotsspam	Jun 26 19:43:43 nextcloud sshd\[8407\]: Invalid user platnosci from 95.105.15.74 Jun 26 19:43:43 nextcloud sshd\[8407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.105.15.74 Jun 26 19:43:45 nextcloud sshd\[8407\]: Failed password for invalid user platnosci from 95.105.15.74 port 48436 ssh2 ...	2019-06-27 04:11:01
179.127.194.174	attackspambots	SASL PLAIN auth failed: ruser=...	2019-06-27 03:53:50
189.90.209.68	attackbots	$f2bV_matches	2019-06-27 03:42:10
202.131.237.182	attackbots	Jun 26 21:28:27 bouncer sshd\[19566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.237.182 user=root Jun 26 21:28:30 bouncer sshd\[19566\]: Failed password for root from 202.131.237.182 port 56833 ssh2 Jun 26 21:28:42 bouncer sshd\[19579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.131.237.182 user=root ...	2019-06-27 03:56:31
103.30.94.213	attack	Jun 26 19:29:06 pornomens sshd\[27075\]: Invalid user uftp from 103.30.94.213 port 32958 Jun 26 19:29:06 pornomens sshd\[27075\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.30.94.213 Jun 26 19:29:07 pornomens sshd\[27075\]: Failed password for invalid user uftp from 103.30.94.213 port 32958 ssh2 ...	2019-06-27 03:26:06
139.59.79.56	attack	" "	2019-06-27 03:58:02
170.84.17.154	attack	Jun 26 15:05:00 Ubuntu-1404-trusty-64-minimal sshd\[31386\]: Invalid user zc from 170.84.17.154 Jun 26 15:05:00 Ubuntu-1404-trusty-64-minimal sshd\[31386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.84.17.154 Jun 26 15:05:02 Ubuntu-1404-trusty-64-minimal sshd\[31386\]: Failed password for invalid user zc from 170.84.17.154 port 58640 ssh2 Jun 26 15:07:38 Ubuntu-1404-trusty-64-minimal sshd\[426\]: Invalid user guest from 170.84.17.154 Jun 26 15:07:38 Ubuntu-1404-trusty-64-minimal sshd\[426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.84.17.154	2019-06-27 03:34:41
151.248.121.169	attack	Port scan on 6 port(s): 2231 2232 2243 2244 2312 2313	2019-06-27 04:09:48

Recently Reported IPs

60.2.205.202	14.3.15.212	27.221.155.11	187.178.236.176
187.162.242.151	179.104.166.171	54.86.183.116	91.124.107.235
198.51.45.4	185.77.220.104	202.124.224.51	111.253.220.71
42.230.60.146	64.227.173.8	101.132.236.198	116.1.85.214
20.199.119.34	2.86.250.5	114.98.173.173	98.116.200.154