134.6.65.22 - IPInfo

Basic Info

City: unknown

Region: Texas

Country: United States

Internet Service Provider: Granite Telecommunications LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-05 07:50:49

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.6.65.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6794
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.6.65.22.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080401 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 05 07:50:45 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 22.65.6.134.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 22.65.6.134.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.63.109.74	attackspam	Aug 22 01:37:45 mout sshd[2878]: Invalid user smart from 103.63.109.74 port 45004 Aug 22 01:37:47 mout sshd[2878]: Failed password for invalid user smart from 103.63.109.74 port 45004 ssh2 Aug 22 01:37:49 mout sshd[2878]: Disconnected from invalid user smart 103.63.109.74 port 45004 [preauth]	2020-08-22 08:03:28
174.127.248.62	attackbots	(mod_security) mod_security (id:350202) triggered by 174.127.248.62 (US/United States/-): 5 in the last 14400 secs; ID: luc	2020-08-22 08:09:43
85.11.20.133	attackspam	Unauthorised access (Aug 21) SRC=85.11.20.133 LEN=40 TTL=246 ID=41363 DF TCP DPT=23 WINDOW=14600 SYN	2020-08-22 07:58:27
111.92.240.206	attack	111.92.240.206 - - \[22/Aug/2020:01:34:07 +0200\] "POST /wp-login.php HTTP/1.1" 200 12887 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 111.92.240.206 - - \[22/Aug/2020:01:34:10 +0200\] "POST /wp-login.php HTTP/1.1" 200 12722 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2020-08-22 08:06:54
114.237.140.127	attackspambots	2020-08-21 21:52:29 H=(e-mailfilter03.sunet.se) [114.237.140.127]:3883 I=[10.100.18.22]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=114.237.140.127) 2020-08-21 22:10:28 H=(vpxxxxxxx2433.com) [114.237.140.127]:2441 I=[10.100.18.22]:25 sender verify fail for : Unrouteable address 2020-08-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=114.237.140.127	2020-08-22 07:59:15
51.68.190.223	attackbots	2020-08-21T15:17:03.995802server.mjenks.net sshd[3840522]: Invalid user office from 51.68.190.223 port 46792 2020-08-21T15:17:04.003135server.mjenks.net sshd[3840522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.190.223 2020-08-21T15:17:03.995802server.mjenks.net sshd[3840522]: Invalid user office from 51.68.190.223 port 46792 2020-08-21T15:17:06.043604server.mjenks.net sshd[3840522]: Failed password for invalid user office from 51.68.190.223 port 46792 ssh2 2020-08-21T15:21:25.270664server.mjenks.net sshd[3841070]: Invalid user lucas from 51.68.190.223 port 54058 ...	2020-08-22 08:06:33
187.217.199.20	attack	Aug 21 22:15:22 onepixel sshd[2692460]: Failed password for root from 187.217.199.20 port 50906 ssh2 Aug 21 22:19:33 onepixel sshd[2693120]: Invalid user router from 187.217.199.20 port 59926 Aug 21 22:19:33 onepixel sshd[2693120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.217.199.20 Aug 21 22:19:33 onepixel sshd[2693120]: Invalid user router from 187.217.199.20 port 59926 Aug 21 22:19:35 onepixel sshd[2693120]: Failed password for invalid user router from 187.217.199.20 port 59926 ssh2	2020-08-22 07:46:58
113.210.21.5	attack	Automatic report - Port Scan Attack	2020-08-22 07:37:05
218.92.0.138	attackspambots	2020-08-21T23:34:21.960266abusebot-3.cloudsearch.cf sshd[26955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-08-21T23:34:23.347702abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:26.989056abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:21.960266abusebot-3.cloudsearch.cf sshd[26955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-08-21T23:34:23.347702abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:26.989056abusebot-3.cloudsearch.cf sshd[26955]: Failed password for root from 218.92.0.138 port 28833 ssh2 2020-08-21T23:34:21.960266abusebot-3.cloudsearch.cf sshd[26955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rho ...	2020-08-22 07:45:41
175.139.3.41	attackbotsspam	Unauthorized SSH login attempts	2020-08-22 07:52:19
159.203.70.169	attack	159.203.70.169 - - [21/Aug/2020:23:47:52 +0200] "GET /wp-login.php HTTP/1.1" 200 9163 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.70.169 - - [21/Aug/2020:23:47:53 +0200] "POST /wp-login.php HTTP/1.1" 200 9414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.70.169 - - [21/Aug/2020:23:47:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-22 08:10:07
117.144.189.69	attack	2020-08-22T00:24:00.146727ks3355764 sshd[4325]: Invalid user weixin from 117.144.189.69 port 56723 2020-08-22T00:24:02.413168ks3355764 sshd[4325]: Failed password for invalid user weixin from 117.144.189.69 port 56723 ssh2 ...	2020-08-22 07:34:24
156.200.206.92	attack	Unauthorized IMAP connection attempt	2020-08-22 08:03:44
202.168.205.181	attackspam	2020-08-22T02:44:08.172777lavrinenko.info sshd[10090]: Failed password for invalid user administrator from 202.168.205.181 port 24556 ssh2 2020-08-22T02:46:48.828573lavrinenko.info sshd[10206]: Invalid user ljh from 202.168.205.181 port 28814 2020-08-22T02:46:48.837572lavrinenko.info sshd[10206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.168.205.181 2020-08-22T02:46:48.828573lavrinenko.info sshd[10206]: Invalid user ljh from 202.168.205.181 port 28814 2020-08-22T02:46:50.440871lavrinenko.info sshd[10206]: Failed password for invalid user ljh from 202.168.205.181 port 28814 ssh2 ...	2020-08-22 07:51:10
165.227.133.181	attack	2020-08-22T01:36:36.066874vps773228.ovh.net sshd[2191]: Failed password for root from 165.227.133.181 port 37202 ssh2 2020-08-22T01:40:23.082035vps773228.ovh.net sshd[2233]: Invalid user said from 165.227.133.181 port 46602 2020-08-22T01:40:23.092483vps773228.ovh.net sshd[2233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.133.181 2020-08-22T01:40:23.082035vps773228.ovh.net sshd[2233]: Invalid user said from 165.227.133.181 port 46602 2020-08-22T01:40:24.509903vps773228.ovh.net sshd[2233]: Failed password for invalid user said from 165.227.133.181 port 46602 ssh2 ...	2020-08-22 08:00:10

Recently Reported IPs

221.22.207.85	136.232.97.176	27.163.194.117	212.47.131.174
174.219.7.144	177.242.44.169	49.50.93.144	35.181.223.214
119.106.56.113	124.224.144.255	176.177.80.25	222.209.139.32
124.103.222.12	122.40.89.191	70.122.224.60	3.216.202.229
81.219.63.85	45.145.67.86	54.170.139.50	136.200.46.243