70.122.157.6 - IPInfo

Basic Info

City: Dallas

Region: Texas

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 70.122.157.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40985
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;70.122.157.6.			IN	A

;; AUTHORITY SECTION:
.			185	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020302 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 04 10:39:19 CST 2022
;; MSG SIZE  rcvd: 105

Host info

6.157.122.70.in-addr.arpa domain name pointer cpe-70-122-157-6.tx.res.rr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.157.122.70.in-addr.arpa	name = cpe-70-122-157-6.tx.res.rr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.148.21.32	attackbotsspam	Aug 16 05:53:45 amit sshd\[21148\]: Invalid user tester from 46.148.21.32 Aug 16 05:53:45 amit sshd\[21148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.148.21.32 Aug 16 05:53:47 amit sshd\[21148\]: Failed password for invalid user tester from 46.148.21.32 port 36914 ssh2 ...	2020-08-16 15:26:26
80.14.27.32	attackbots	Unauthorized IMAP connection attempt	2020-08-16 15:41:31
103.99.3.204	attackbots	MAIL: User Login Brute Force Attempt	2020-08-16 15:45:03
2.232.250.91	attackbots	Aug 16 07:29:57 db sshd[30179]: User root from 2.232.250.91 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-16 15:10:13
176.31.255.223	attackspambots	Aug 16 08:20:28 db sshd[3929]: User root from 176.31.255.223 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-16 15:19:11
49.88.112.112	attack	Aug 16 03:00:18 ny01 sshd[3097]: Failed password for root from 49.88.112.112 port 50623 ssh2 Aug 16 03:01:10 ny01 sshd[3192]: Failed password for root from 49.88.112.112 port 10393 ssh2 Aug 16 03:01:13 ny01 sshd[3192]: Failed password for root from 49.88.112.112 port 10393 ssh2	2020-08-16 15:08:22
152.67.35.185	attackspambots	Aug 16 05:39:37 marvibiene sshd[18368]: Failed password for root from 152.67.35.185 port 40868 ssh2 Aug 16 05:46:45 marvibiene sshd[18771]: Failed password for root from 152.67.35.185 port 49878 ssh2	2020-08-16 15:26:06
96.58.12.43	attackbotsspam	Automatic report - Port Scan Attack	2020-08-16 15:47:18
120.92.191.14	attackspambots	TCP (SYN) 120.92.191.14:47125 -> port 1433, len 40	2020-08-16 15:39:44
35.200.180.182	attack	35.200.180.182 - - [16/Aug/2020:07:40:05 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.200.180.182 - - [16/Aug/2020:07:40:10 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.200.180.182 - - [16/Aug/2020:07:40:13 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-16 15:45:32
218.92.0.173	attackspambots	$f2bV_matches	2020-08-16 15:41:55
138.68.150.93	attackspambots	138.68.150.93 - - [16/Aug/2020:08:22:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [16/Aug/2020:08:22:33 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [16/Aug/2020:08:22:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [16/Aug/2020:08:22:33 +0200] "POST /wp-login.php HTTP/1.1" 200 2007 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [16/Aug/2020:08:22:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.150.93 - - [16/Aug/2020:08:22:33 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-08-16 15:16:56
3.25.98.58	attack	srvr1: (mod_security) mod_security (id:920350) triggered by 3.25.98.58 (AU/-/ec2-3-25-98-58.ap-southeast-2.compute.amazonaws.com): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/16 05:04:17 [error] 117383#0: 157388 [client 3.25.98.58] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/.git/HEAD"] [unique_id "159755425770.248773"] [ref "o0,13v30,13"], client: 3.25.98.58, [redacted] request: "GET /.git/HEAD HTTP/1.1" [redacted]	2020-08-16 15:33:55
87.251.70.71	attack	RDP brute forcing (r)	2020-08-16 15:13:41
62.112.11.8	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-16T05:40:47Z and 2020-08-16T07:40:29Z	2020-08-16 15:47:44

Recently Reported IPs

135.111.144.174	6.192.68.25	245.188.245.160	9.228.146.34
64.39.149.53	35.202.235.40	139.172.42.95	87.46.173.52
198.101.248.224	37.187.244.90	49.145.104.58	17.115.84.86
24.99.163.166	80.246.141.68	23.204.252.136	72.118.254.64
28.185.218.247	49.145.104.57	12.119.138.29	182.194.120.235