134.122.110.161 Threat Intelligence and Host Information

Feb 18, 2026 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 134.122.110.161 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Likely Malicious Host 🟠 55/100

Host and Network Information

  • Mitre ATT&CK IDs: T1078 - Valid Accounts, T1083 - File and Directory Discovery, T1098.004 - SSH Authorized Keys, T1105 - Ingress Tool Transfer, T1110.004 - Credential Stuffing, T1110 - Brute Force

  • Tags: cowrie, cyber security, ioc, malicious, Nextray, phishing, ssh

  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: haley_ssh

  • Country: United Kingdom
  • Network:
  • Noticed: 32 times
  • Protocols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: igloo.fish

Open Ports Detected

10001 10005 10009 10010 10027 10030 10036 10037 1012 10134 102 10209 1023 1024 10302 104 106 10909 10911 10933 10934 10935 110 11000 111 11110 11112 11210 11211 113 11300 11434 1200 122 1234 1235 131 1311 1337 135 1400 1414 1433 1500 1521 1604 1700 1723 1741 1800 1801 1911 1925 1926 1935 2000 2002 2003 2008 2016 2021 21 2121 2126 2200 2209 221 2211 222 2222 2226 23 2323 2332 2404 25 26 2628 2701 3001 3004 3030 311 3122 3128 3141 3301 3306 3307 3310 3333 3389 340 3400 3409 3412 3500 3510 3524 3541 3842 4000 4022 4040 4117 4242 427 4321 440 4400 4402 4431 4433 4434 4436 4506 4524 4840 4911 4933 5000 5001 5005 5006 5007 502 5025 503 5100 5105 513 5135 515 5201 5222 541 5435 5601 5603 5604 5613 5630 5800 5801 5900 5901 5904 5910 5917 5920 5938 6000 6001 6002 6008 6022 6036 636 6432 6503 6602 6633 6700 7001 7003 7006 7021 7025 7102 7218 7415 7601 7634 8000 8001 8003 8009 8010 8021 8033 8037 8039 809 8101 8108 8109 8112 8114 8115 8121 8126 8135 8139 8140 8200 8316 8333 8334 8340 8403 8410 8421 8422 8427 8520 8536 8605 8622 8705 8723 88 8805 8819 8830 8834 8837 8842 8902 8907 8912 9000 9002 9007 9009 9014 902 9023 9032 9035 9041 9042 9100 9115 9122 9123 9125 9132 9139 9141 9200 9208 9213 9214 9221 9226 9242 9306 9315 9333 9400 9410 9500 9515 9600 9606 9611 9700 9704 9710 9800 9810 9919 9999

Map

Whois Information

Links to attack logs

bruteforce-ip-list-2021-05-12 ****** ****** ******

Share on: