13.70.199.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ireland

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-14 02:47:30
attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-13 18:01:38
attackbots	26.09.2020 16:52:00 - Wordpress fail Detected by ELinOX-ALM	2020-09-27 01:52:06
attackbotsspam	13.70.199.80 - - [26/Sep/2020:11:27:58 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [26/Sep/2020:11:28:00 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [26/Sep/2020:11:28:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-26 17:45:53
attack	13.70.199.80 - - [01/Sep/2020:13:29:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1966 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [01/Sep/2020:13:29:30 +0100] "POST /wp-login.php HTTP/1.1" 200 1951 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [01/Sep/2020:13:29:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1947 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-02 02:33:24
attackspam	13.70.199.80 - - [30/Aug/2020:08:14:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1836 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [30/Aug/2020:08:14:56 +0100] "POST /wp-login.php HTTP/1.1" 200 1815 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [30/Aug/2020:08:14:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1816 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-30 16:13:32
attackspambots	13.70.199.80 - - [29/Aug/2020:08:22:36 +0200] "GET /wp-login.php HTTP/1.1" 200 8691 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [29/Aug/2020:08:22:37 +0200] "POST /wp-login.php HTTP/1.1" 200 8921 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [29/Aug/2020:08:22:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-29 18:53:08
attack	13.70.199.80 - - [27/Aug/2020:11:08:55 +0200] "POST /wp-login.php HTTP/1.1" 200 4480 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [27/Aug/2020:11:08:55 +0200] "POST /wp-login.php HTTP/1.1" 200 4480 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [27/Aug/2020:11:08:56 +0200] "POST /wp-login.php HTTP/1.1" 200 4480 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [27/Aug/2020:11:08:56 +0200] "POST /wp-login.php HTTP/1.1" 200 4480 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-27 20:37:18
attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-20 06:02:14
attackbotsspam	Attempted WordPress login: "GET /wp-login.php"	2020-08-11 18:04:02
attackspam	13.70.199.80 - - [10/Aug/2020:04:54:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [10/Aug/2020:04:54:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [10/Aug/2020:04:54:28 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-10 14:22:25
attackspam	Automatic report - Banned IP Access	2020-08-10 04:59:47
attack	Automatic report - Banned IP Access	2020-08-09 01:04:16
attackbotsspam	13.70.199.80 - - [20/Jul/2020:18:39:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1836 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [20/Jul/2020:18:39:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1815 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [20/Jul/2020:18:39:17 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-21 02:05:12
attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-07-20 00:55:44
attackspambots	13.70.199.80 - - [11/Jul/2020:04:57:53 +0100] "POST /wp-login.php HTTP/1.1" 200 2305 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [11/Jul/2020:04:57:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [11/Jul/2020:04:57:55 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-11 12:03:11
attackspam	xmlrpc attack	2020-07-08 06:30:34
attack	WordPress wp-login brute force :: 13.70.199.80 0.080 BYPASS [06/Jul/2020:08:20:43 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2003 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-06 16:21:25
attackspambots	Automatic report - XMLRPC Attack	2020-06-21 02:10:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.70.199.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.70.199.80.			IN	A

;; AUTHORITY SECTION:
.			232	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062000 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 21 02:10:26 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 80.199.70.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.199.70.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.131.1.137	attackspam	2019-10-22T20:41:45.127098abusebot-4.cloudsearch.cf sshd\[27131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.1.137 user=root	2019-10-23 05:07:31
111.13.139.225	attack	Oct 22 20:01:32 game-panel sshd[1782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.13.139.225 Oct 22 20:01:34 game-panel sshd[1782]: Failed password for invalid user mm from 111.13.139.225 port 56342 ssh2 Oct 22 20:10:57 game-panel sshd[2200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.13.139.225	2019-10-23 05:07:59
37.114.158.123	attackspambots	$f2bV_matches	2019-10-23 05:06:03
202.98.203.20	attackbots	1433/tcp 1433/tcp [2019-10-10/22]2pkt	2019-10-23 04:59:56
104.236.45.171	attackspam	Automatic report - XMLRPC Attack	2019-10-23 04:56:35
218.241.161.190	attackspambots	1433/tcp 1433/tcp [2019-10-09/22]2pkt	2019-10-23 04:44:49
37.139.21.75	attackspambots	Oct 22 20:11:25 thevastnessof sshd[29209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.21.75 ...	2019-10-23 04:46:37
175.143.83.219	attack	2323/tcp 23/tcp... [2019-09-25/10-22]5pkt,2pt.(tcp)	2019-10-23 05:17:39
180.96.69.215	attackspam	Oct 22 22:59:39 markkoudstaal sshd[26115]: Failed password for root from 180.96.69.215 port 35142 ssh2 Oct 22 23:03:59 markkoudstaal sshd[26469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.96.69.215 Oct 22 23:04:02 markkoudstaal sshd[26469]: Failed password for invalid user timemachine from 180.96.69.215 port 49466 ssh2	2019-10-23 05:17:20
58.238.186.85	attackbots	23/tcp 23/tcp 23/tcp... [2019-09-07/10-22]6pkt,1pt.(tcp)	2019-10-23 04:54:54
166.62.32.32	attackspambots	plussize.fitness 166.62.32.32 \[22/Oct/2019:22:10:58 +0200\] "POST /wp-login.php HTTP/1.1" 200 5629 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" plussize.fitness 166.62.32.32 \[22/Oct/2019:22:11:00 +0200\] "POST /wp-login.php HTTP/1.1" 200 5582 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-23 05:01:35
88.27.253.44	attack	Oct 22 16:08:16 TORMINT sshd\[7354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.27.253.44 user=root Oct 22 16:08:18 TORMINT sshd\[7354\]: Failed password for root from 88.27.253.44 port 56644 ssh2 Oct 22 16:14:15 TORMINT sshd\[8037\]: Invalid user werner from 88.27.253.44 Oct 22 16:14:15 TORMINT sshd\[8037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.27.253.44 ...	2019-10-23 05:07:46
185.32.46.69	attackspambots	Automatic report - Port Scan Attack	2019-10-23 04:57:37
54.36.108.162	attackspambots	Oct 22 22:10:48 vpn01 sshd[20714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.108.162 Oct 22 22:10:49 vpn01 sshd[20714]: Failed password for invalid user apache from 54.36.108.162 port 35059 ssh2 ...	2019-10-23 05:14:23
62.234.85.224	attackspambots	Oct 22 22:23:33 OPSO sshd\[30964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.85.224 user=root Oct 22 22:23:34 OPSO sshd\[30964\]: Failed password for root from 62.234.85.224 port 35172 ssh2 Oct 22 22:27:38 OPSO sshd\[31597\]: Invalid user beeidigung from 62.234.85.224 port 43280 Oct 22 22:27:38 OPSO sshd\[31597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.85.224 Oct 22 22:27:40 OPSO sshd\[31597\]: Failed password for invalid user beeidigung from 62.234.85.224 port 43280 ssh2	2019-10-23 04:51:56

Recently Reported IPs

26.170.68.21	119.121.203.239	235.6.203.192	39.29.250.198
174.200.84.250	142.245.51.239	121.9.134.183	108.101.19.207
20.234.201.9	55.151.171.20	159.202.70.11	224.86.110.11
166.171.176.99	192.35.169.17	103.149.194.12	188.16.146.220
129.204.1.171	92.53.96.221	182.244.114.228	36.34.150.242