104.149.70.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Psychz Networks

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	RDP Bruteforce	2019-08-07 10:17:50

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.149.70.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61672
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.149.70.34.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080602 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 10:17:41 CST 2019
;; MSG SIZE  rcvd: 117

Host info

34.70.149.104.in-addr.arpa has no PTR record

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 34.70.149.104.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.224.96	attackspam	May 27 14:15:37 minden010 sshd[30620]: Failed password for root from 178.62.224.96 port 57675 ssh2 May 27 14:19:48 minden010 sshd[31484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.224.96 May 27 14:19:51 minden010 sshd[31484]: Failed password for invalid user daphine from 178.62.224.96 port 60720 ssh2 ...	2020-05-27 20:26:54
149.56.12.88	attackbots	May 27 02:07:21 web1 sshd\[2264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 user=root May 27 02:07:24 web1 sshd\[2264\]: Failed password for root from 149.56.12.88 port 50910 ssh2 May 27 02:10:51 web1 sshd\[2572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 user=root May 27 02:10:53 web1 sshd\[2572\]: Failed password for root from 149.56.12.88 port 56088 ssh2 May 27 02:14:23 web1 sshd\[2862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 user=root	2020-05-27 20:44:02
185.176.27.102	attack	May 27 14:24:51 debian-2gb-nbg1-2 kernel: \[12841085.345777\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.102 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=34206 PROTO=TCP SPT=59122 DPT=11988 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-27 20:33:50
51.83.45.65	attackspambots	May 27 12:10:51 web8 sshd\[13850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.45.65 user=root May 27 12:10:53 web8 sshd\[13850\]: Failed password for root from 51.83.45.65 port 36670 ssh2 May 27 12:14:14 web8 sshd\[15574\]: Invalid user victoire from 51.83.45.65 May 27 12:14:14 web8 sshd\[15574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.45.65 May 27 12:14:15 web8 sshd\[15574\]: Failed password for invalid user victoire from 51.83.45.65 port 39934 ssh2	2020-05-27 20:21:35
2.81.75.33	attackbotsspam	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-05-27 20:53:28
138.197.180.29	attackbotsspam	138.197.180.29 (DE/Germany/-), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-05-27 20:20:11
51.79.68.147	attackbotsspam	May 27 12:53:51 ajax sshd[12191]: Failed password for root from 51.79.68.147 port 43188 ssh2	2020-05-27 20:23:53
201.166.145.102	attackspam	May 27 05:02:47 mockhub sshd[12250]: Failed password for root from 201.166.145.102 port 59252 ssh2 ...	2020-05-27 20:21:03
162.243.237.90	attackbots	2020-05-27T15:10:23.309458lavrinenko.info sshd[26410]: Failed password for root from 162.243.237.90 port 58897 ssh2 2020-05-27T15:11:26.308248lavrinenko.info sshd[26445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.237.90 user=root 2020-05-27T15:11:28.034350lavrinenko.info sshd[26445]: Failed password for root from 162.243.237.90 port 38103 ssh2 2020-05-27T15:12:38.949988lavrinenko.info sshd[26468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.237.90 user=root 2020-05-27T15:12:41.227913lavrinenko.info sshd[26468]: Failed password for root from 162.243.237.90 port 45543 ssh2 ...	2020-05-27 20:24:49
18.236.121.157	attackbotsspam	web attack	2020-05-27 20:44:37
160.155.113.19	attack	May 27 02:22:17 php1 sshd\[8769\]: Invalid user replicator from 160.155.113.19 May 27 02:22:17 php1 sshd\[8769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.155.113.19 May 27 02:22:18 php1 sshd\[8769\]: Failed password for invalid user replicator from 160.155.113.19 port 58428 ssh2 May 27 02:25:47 php1 sshd\[9070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.155.113.19 user=root May 27 02:25:49 php1 sshd\[9070\]: Failed password for root from 160.155.113.19 port 54615 ssh2	2020-05-27 20:42:10
120.53.9.188	attack	May 27 14:06:58 abendstille sshd\[17376\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.9.188 user=root May 27 14:06:59 abendstille sshd\[17376\]: Failed password for root from 120.53.9.188 port 53850 ssh2 May 27 14:11:23 abendstille sshd\[21832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.9.188 user=root May 27 14:11:25 abendstille sshd\[21832\]: Failed password for root from 120.53.9.188 port 45788 ssh2 May 27 14:15:54 abendstille sshd\[26368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.9.188 user=root ...	2020-05-27 20:30:47
40.123.207.179	attackspam	Invalid user richard from 40.123.207.179 port 55670	2020-05-27 20:19:15
104.46.36.244	attackbots	May 27 11:56:53 IngegnereFirenze sshd[16710]: User root from 104.46.36.244 not allowed because not listed in AllowUsers ...	2020-05-27 20:50:57
81.182.249.106	attackspam	May 27 13:44:27 sip sshd[909]: Failed password for root from 81.182.249.106 port 52172 ssh2 May 27 14:06:03 sip sshd[8777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.182.249.106 May 27 14:06:05 sip sshd[8777]: Failed password for invalid user ftp_user from 81.182.249.106 port 52022 ssh2	2020-05-27 20:19:43

Recently Reported IPs

1.173.126.114	35.226.130.240	138.186.42.250	93.67.134.47
114.40.232.213	182.254.136.65	101.99.23.105	52.172.178.54
189.156.223.160	142.93.149.132	184.140.50.165	48.87.184.216
167.82.180.47	110.249.254.66	92.208.115.102	187.137.86.233
54.36.148.219	5.219.26.199	61.54.183.177	190.104.39.187