134.122.94.215

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: DigitalOcean LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user fake from 134.122.94.215 port 47064	2020-04-04 03:44:38

Comments on same subnet:

IP	Type	Details	Datetime
134.122.94.113	attackbots	Automatic report - XMLRPC Attack	2020-10-05 08:10:25
134.122.94.113	attackspambots	Automatic report - XMLRPC Attack	2020-10-05 00:33:52
134.122.94.113	attack	Automatic report - XMLRPC Attack	2020-10-04 16:16:14
134.122.94.113	attackspambots	Attempt to hack Wordpress Login, XMLRPC or other login	2020-09-21 20:40:23
134.122.94.113	attack	134.122.94.113 - - [21/Sep/2020:04:26:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2285 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.94.113 - - [21/Sep/2020:04:26:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2282 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.94.113 - - [21/Sep/2020:04:26:55 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-21 12:31:21
134.122.94.113	attackspambots	Automatic report - XMLRPC Attack	2020-09-21 04:22:12
134.122.94.113	attackspam	134.122.94.113 - - [11/Sep/2020:11:53:35 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.94.113 - - [11/Sep/2020:11:53:35 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.122.94.113 - - [11/Sep/2020:11:53:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-11 22:31:03
134.122.94.113	attack	Automatic report generated by Wazuh	2020-09-11 14:37:40
134.122.94.113	attackbots	Automatic report - Banned IP Access	2020-09-11 06:48:22
134.122.94.113	attackspambots	134.122.94.113 - - \[01/Sep/2020:08:01:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.122.94.113 - - \[01/Sep/2020:08:01:58 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 134.122.94.113 - - \[01/Sep/2020:08:01:58 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-01 14:31:54
134.122.94.184	attack	May 15 13:29:06 vps639187 sshd\[2305\]: Invalid user bestyrer from 134.122.94.184 port 56772 May 15 13:29:06 vps639187 sshd\[2305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.94.184 May 15 13:29:09 vps639187 sshd\[2305\]: Failed password for invalid user bestyrer from 134.122.94.184 port 56772 ssh2 ...	2020-05-15 19:46:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.122.94.215
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36546
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.122.94.215.			IN	A

;; AUTHORITY SECTION:
.			118	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040301 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 04 03:44:35 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 215.94.122.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 215.94.122.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.180.170.104	attackspambots	Unauthorized access detected from black listed ip!	2020-07-23 19:06:41
34.101.245.236	attackspambots	Jul 23 09:29:08 ns382633 sshd\[20749\]: Invalid user toy from 34.101.245.236 port 49200 Jul 23 09:29:08 ns382633 sshd\[20749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.101.245.236 Jul 23 09:29:10 ns382633 sshd\[20749\]: Failed password for invalid user toy from 34.101.245.236 port 49200 ssh2 Jul 23 09:35:01 ns382633 sshd\[21874\]: Invalid user lfd from 34.101.245.236 port 42834 Jul 23 09:35:01 ns382633 sshd\[21874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.101.245.236	2020-07-23 18:46:57
115.132.187.64	attackspambots	Automatic report - XMLRPC Attack	2020-07-23 18:43:20
149.129.222.60	attackspambots	Invalid user postgres from 149.129.222.60 port 41158	2020-07-23 18:34:31
189.240.62.227	attackbotsspam	2020-07-23T12:27:02.524437v22018076590370373 sshd[10138]: Invalid user leon from 189.240.62.227 port 42332 2020-07-23T12:27:02.532928v22018076590370373 sshd[10138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.62.227 2020-07-23T12:27:02.524437v22018076590370373 sshd[10138]: Invalid user leon from 189.240.62.227 port 42332 2020-07-23T12:27:03.923116v22018076590370373 sshd[10138]: Failed password for invalid user leon from 189.240.62.227 port 42332 ssh2 2020-07-23T12:31:57.369666v22018076590370373 sshd[27632]: Invalid user zw from 189.240.62.227 port 40526 ...	2020-07-23 18:45:31
145.239.85.21	attackspam	Jul 22 19:10:38 wbs sshd\[5229\]: Invalid user csgo from 145.239.85.21 Jul 22 19:10:38 wbs sshd\[5229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21 Jul 22 19:10:39 wbs sshd\[5229\]: Failed password for invalid user csgo from 145.239.85.21 port 47594 ssh2 Jul 22 19:14:54 wbs sshd\[5663\]: Invalid user mani from 145.239.85.21 Jul 22 19:14:54 wbs sshd\[5663\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21	2020-07-23 19:08:02
187.149.124.11	attackbotsspam	Lines containing failures of 187.149.124.11 Jul 22 23:38:13 neweola sshd[10659]: Invalid user hsk from 187.149.124.11 port 37952 Jul 22 23:38:13 neweola sshd[10659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.149.124.11 Jul 22 23:38:15 neweola sshd[10659]: Failed password for invalid user hsk from 187.149.124.11 port 37952 ssh2 Jul 22 23:38:15 neweola sshd[10659]: Received disconnect from 187.149.124.11 port 37952:11: Bye Bye [preauth] Jul 22 23:38:15 neweola sshd[10659]: Disconnected from invalid user hsk 187.149.124.11 port 37952 [preauth] Jul 22 23:47:24 neweola sshd[11228]: Invalid user su from 187.149.124.11 port 40993 Jul 22 23:47:24 neweola sshd[11228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.149.124.11 Jul 22 23:47:26 neweola sshd[11228]: Failed password for invalid user su from 187.149.124.11 port 40993 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.	2020-07-23 18:31:01
52.172.156.159	attackbotsspam	SSH brute-force attempt	2020-07-23 18:47:45
213.32.93.237	attackbotsspam	2020-07-23T08:49:03.271109mail.standpoint.com.ua sshd[30626]: Invalid user debian from 213.32.93.237 port 37308 2020-07-23T08:49:03.273972mail.standpoint.com.ua sshd[30626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=judge.sdslab.cat 2020-07-23T08:49:03.271109mail.standpoint.com.ua sshd[30626]: Invalid user debian from 213.32.93.237 port 37308 2020-07-23T08:49:04.956112mail.standpoint.com.ua sshd[30626]: Failed password for invalid user debian from 213.32.93.237 port 37308 ssh2 2020-07-23T08:53:14.299954mail.standpoint.com.ua sshd[31159]: Invalid user naman from 213.32.93.237 port 51392 ...	2020-07-23 18:36:34
180.76.152.157	attackbots	Jul 23 12:38:31 hosting sshd[27743]: Invalid user officina from 180.76.152.157 port 33292 ...	2020-07-23 19:02:24
37.187.7.95	attack	Invalid user huang from 37.187.7.95 port 40855	2020-07-23 18:35:25
61.177.172.168	attackbots	Jul 23 12:52:11 vps sshd[609065]: Failed password for root from 61.177.172.168 port 34567 ssh2 Jul 23 12:52:14 vps sshd[609065]: Failed password for root from 61.177.172.168 port 34567 ssh2 Jul 23 12:52:17 vps sshd[609065]: Failed password for root from 61.177.172.168 port 34567 ssh2 Jul 23 12:52:21 vps sshd[609065]: Failed password for root from 61.177.172.168 port 34567 ssh2 Jul 23 12:52:24 vps sshd[609065]: Failed password for root from 61.177.172.168 port 34567 ssh2 ...	2020-07-23 18:57:52
71.146.37.87	attackspam	Invalid user group4 from 71.146.37.87 port 44838	2020-07-23 18:44:45
2.139.174.205	attackspam	2020-07-23T10:33:47.011024shield sshd\[10750\]: Invalid user stc from 2.139.174.205 port 53007 2020-07-23T10:33:47.019853shield sshd\[10750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.red-2-139-174.staticip.rima-tde.net 2020-07-23T10:33:48.682281shield sshd\[10750\]: Failed password for invalid user stc from 2.139.174.205 port 53007 ssh2 2020-07-23T10:35:42.228881shield sshd\[10959\]: Invalid user mailman from 2.139.174.205 port 34730 2020-07-23T10:35:42.237257shield sshd\[10959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.red-2-139-174.staticip.rima-tde.net	2020-07-23 18:41:36
154.121.19.57	attack	Email rejected due to spam filtering	2020-07-23 18:57:03

Recently Reported IPs

109.106.139.218	109.92.171.168	103.217.156.179	103.45.118.115
91.237.25.28	86.202.219.237	78.181.119.151	152.165.63.60
176.203.0.174	190.99.165.106	32.197.151.90	123.178.26.152
112.111.250.60	34.244.53.179	60.48.219.174	59.17.76.211
182.253.76.229	121.29.217.44	46.193.255.114	41.56.217.21