134.209.70.74 - IPInfo

Basic Info

City: North Bergen

Region: New Jersey

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: DigitalOcean, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.209.70.255	attackspam	Invalid user http from 134.209.70.255 port 56304	2019-12-31 17:32:49
134.209.70.255	attackspam	Dec 22 07:44:28 server sshd\[855\]: Invalid user holeman from 134.209.70.255 Dec 22 07:44:28 server sshd\[855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Dec 22 07:44:30 server sshd\[855\]: Failed password for invalid user holeman from 134.209.70.255 port 50716 ssh2 Dec 22 07:54:41 server sshd\[3537\]: Invalid user robuck from 134.209.70.255 Dec 22 07:54:41 server sshd\[3537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 ...	2019-12-22 14:00:48
134.209.70.255	attackspam	SSH login attempts.	2019-12-15 06:09:04
134.209.70.255	attackbotsspam	2019-12-13T08:31:18.494273shield sshd\[2597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 user=root 2019-12-13T08:31:19.936492shield sshd\[2597\]: Failed password for root from 134.209.70.255 port 55408 ssh2 2019-12-13T08:37:01.243410shield sshd\[4516\]: Invalid user lauren from 134.209.70.255 port 40026 2019-12-13T08:37:01.247693shield sshd\[4516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 2019-12-13T08:37:03.111985shield sshd\[4516\]: Failed password for invalid user lauren from 134.209.70.255 port 40026 ssh2	2019-12-13 16:55:56
134.209.70.255	attackspam	Dec 6 14:46:12 [host] sshd[10125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 user=root Dec 6 14:46:14 [host] sshd[10125]: Failed password for root from 134.209.70.255 port 51140 ssh2 Dec 6 14:52:05 [host] sshd[10210]: Invalid user offill from 134.209.70.255	2019-12-06 22:36:21
134.209.70.255	attack	Dec 6 00:22:13 TORMINT sshd\[9605\]: Invalid user mangue from 134.209.70.255 Dec 6 00:22:13 TORMINT sshd\[9605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Dec 6 00:22:15 TORMINT sshd\[9605\]: Failed password for invalid user mangue from 134.209.70.255 port 38896 ssh2 ...	2019-12-06 13:26:35
134.209.70.255	attackbotsspam	Dec 2 12:39:31 Ubuntu-1404-trusty-64-minimal sshd\[29104\]: Invalid user mysql from 134.209.70.255 Dec 2 12:39:31 Ubuntu-1404-trusty-64-minimal sshd\[29104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Dec 2 12:39:33 Ubuntu-1404-trusty-64-minimal sshd\[29104\]: Failed password for invalid user mysql from 134.209.70.255 port 60170 ssh2 Dec 2 12:46:03 Ubuntu-1404-trusty-64-minimal sshd\[4869\]: Invalid user bitch from 134.209.70.255 Dec 2 12:46:03 Ubuntu-1404-trusty-64-minimal sshd\[4869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255	2019-12-02 20:35:45
134.209.70.2	attack	SSH login attempts with user root.	2019-11-30 06:31:48
134.209.70.255	attack	Nov 29 05:52:21 ns3042688 sshd\[653\]: Invalid user ben from 134.209.70.255 Nov 29 05:52:21 ns3042688 sshd\[653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Nov 29 05:52:24 ns3042688 sshd\[653\]: Failed password for invalid user ben from 134.209.70.255 port 51390 ssh2 Nov 29 05:55:36 ns3042688 sshd\[1949\]: Invalid user taildeman from 134.209.70.255 Nov 29 05:55:36 ns3042688 sshd\[1949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 ...	2019-11-29 14:14:40
134.209.70.103	attack	LAMP,DEF GET /wp-login.php	2019-09-26 01:45:58
134.209.70.255	attackbotsspam	Sep 20 02:43:08 web8 sshd\[4342\]: Invalid user PS from 134.209.70.255 Sep 20 02:43:08 web8 sshd\[4342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Sep 20 02:43:10 web8 sshd\[4342\]: Failed password for invalid user PS from 134.209.70.255 port 35710 ssh2 Sep 20 02:47:34 web8 sshd\[6311\]: Invalid user admin from 134.209.70.255 Sep 20 02:47:34 web8 sshd\[6311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255	2019-09-20 10:52:22
134.209.70.255	attack	Sep 10 09:39:27 nextcloud sshd\[7185\]: Invalid user user from 134.209.70.255 Sep 10 09:39:27 nextcloud sshd\[7185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Sep 10 09:39:29 nextcloud sshd\[7185\]: Failed password for invalid user user from 134.209.70.255 port 46928 ssh2 ...	2019-09-10 16:15:21
134.209.70.255	attackspambots	Sep 9 15:50:09 xtremcommunity sshd\[152008\]: Invalid user 13 from 134.209.70.255 port 55224 Sep 9 15:50:09 xtremcommunity sshd\[152008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Sep 9 15:50:11 xtremcommunity sshd\[152008\]: Failed password for invalid user 13 from 134.209.70.255 port 55224 ssh2 Sep 9 15:56:12 xtremcommunity sshd\[152167\]: Invalid user 97 from 134.209.70.255 port 37312 Sep 9 15:56:12 xtremcommunity sshd\[152167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 ...	2019-09-10 04:28:55
134.209.70.255	attackbotsspam	2019-09-05T22:35:09.658527abusebot-8.cloudsearch.cf sshd\[26857\]: Invalid user postgres from 134.209.70.255 port 56136	2019-09-06 11:14:06
134.209.70.255	attack	Aug 27 20:32:12 hanapaa sshd\[16472\]: Invalid user no1 from 134.209.70.255 Aug 27 20:32:12 hanapaa sshd\[16472\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Aug 27 20:32:14 hanapaa sshd\[16472\]: Failed password for invalid user no1 from 134.209.70.255 port 42782 ssh2 Aug 27 20:36:17 hanapaa sshd\[16838\]: Invalid user suporte from 134.209.70.255 Aug 27 20:36:17 hanapaa sshd\[16838\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255	2019-08-28 14:41:30

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.209.70.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20669
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.209.70.74.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 15 23:52:16 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 74.70.209.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 74.70.209.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.1.29.113	attackbotsspam	2019-06-20 09:33:04 1hdrZA-0007lb-Nq SMTP connection from mice.bookywook.com $mice.surosatesafar.icu$ \[14.1.29.113\]:37923 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-20 09:33:05 1hdrZA-0007lc-Nq SMTP connection from mice.bookywook.com $mice.surosatesafar.icu$ \[14.1.29.113\]:38372 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-20 09:33:05 1hdrZA-0007la-Nq SMTP connection from mice.bookywook.com $mice.surosatesafar.icu$ \[14.1.29.113\]:44149 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-04 23:47:23
59.188.15.198	attackspam	Unauthorized connection attempt detected from IP address 59.188.15.198 to port 1433 [J]	2020-02-05 00:08:21
109.115.127.219	attackbots	$f2bV_matches	2020-02-04 23:57:37
189.120.73.33	attackspam	Feb 4 14:51:46 grey postfix/smtpd\[12050\]: NOQUEUE: reject: RCPT from unknown\[189.120.73.33\]: 554 5.7.1 Service unavailable\; Client host \[189.120.73.33\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=189.120.73.33\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-04 23:47:45
14.120.76.200	attackbotsspam	2019-12-10 08:43:15 SMTP protocol synchronization error $input sent without waiting for greeting$: rejected connection from H=\[14.120.76.200\]:32957 I=\[193.107.88.166\]:25 input="EHLO email.topeasysoft.cn " 2019-12-10 08:45:12 SMTP protocol synchronization error $input sent without waiting for greeting$: rejected connection from H=\[14.120.76.200\]:30080 I=\[193.107.88.166\]:25 input="EHLO email.topeasysoft.cn " 2019-12-10 08:45:12 SMTP protocol synchronization error $input sent without waiting for greeting$: rejected connection from H=\[14.120.76.200\]:30090 I=\[193.107.88.166\]:25 input="EHLO email.topeasysoft.cn " ...	2020-02-04 23:26:04
14.1.29.100	attack	2019-06-30 01:12:08 1hhMVs-0001NW-5Z SMTP connection from corn.bookywook.com $corn.netakademisi.icu$ \[14.1.29.100\]:38708 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-30 01:12:17 1hhMW1-0001Nl-2p SMTP connection from corn.bookywook.com $corn.netakademisi.icu$ \[14.1.29.100\]:38303 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-30 01:15:03 1hhMYh-0001T6-Le SMTP connection from corn.bookywook.com $corn.netakademisi.icu$ \[14.1.29.100\]:53354 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 00:04:47
77.42.120.250	attackspam	Automatic report - Port Scan Attack	2020-02-04 23:38:08
51.83.77.224	attackbots	Unauthorized connection attempt detected from IP address 51.83.77.224 to port 2220 [J]	2020-02-04 23:47:03
222.186.30.31	attackspambots	Feb 4 16:34:23 dcd-gentoo sshd[32766]: User root from 222.186.30.31 not allowed because none of user's groups are listed in AllowGroups Feb 4 16:34:26 dcd-gentoo sshd[32766]: error: PAM: Authentication failure for illegal user root from 222.186.30.31 Feb 4 16:34:23 dcd-gentoo sshd[32766]: User root from 222.186.30.31 not allowed because none of user's groups are listed in AllowGroups Feb 4 16:34:26 dcd-gentoo sshd[32766]: error: PAM: Authentication failure for illegal user root from 222.186.30.31 Feb 4 16:34:23 dcd-gentoo sshd[32766]: User root from 222.186.30.31 not allowed because none of user's groups are listed in AllowGroups Feb 4 16:34:26 dcd-gentoo sshd[32766]: error: PAM: Authentication failure for illegal user root from 222.186.30.31 Feb 4 16:34:26 dcd-gentoo sshd[32766]: Failed keyboard-interactive/pam for invalid user root from 222.186.30.31 port 35252 ssh2 ...	2020-02-04 23:35:16
200.86.33.140	attackbotsspam	Feb 4 15:48:27 h1745522 sshd[32166]: Invalid user andy from 200.86.33.140 port 4029 Feb 4 15:48:27 h1745522 sshd[32166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.86.33.140 Feb 4 15:48:27 h1745522 sshd[32166]: Invalid user andy from 200.86.33.140 port 4029 Feb 4 15:48:29 h1745522 sshd[32166]: Failed password for invalid user andy from 200.86.33.140 port 4029 ssh2 Feb 4 15:52:01 h1745522 sshd[3013]: Invalid user taiga from 200.86.33.140 port 30376 Feb 4 15:52:01 h1745522 sshd[3013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.86.33.140 Feb 4 15:52:01 h1745522 sshd[3013]: Invalid user taiga from 200.86.33.140 port 30376 Feb 4 15:52:03 h1745522 sshd[3013]: Failed password for invalid user taiga from 200.86.33.140 port 30376 ssh2 Feb 4 15:55:34 h1745522 sshd[6459]: Invalid user user1 from 200.86.33.140 port 25907 ...	2020-02-04 23:51:58
49.231.17.107	attackbots	no	2020-02-05 00:08:48
92.118.160.5	attackbotsspam	Unauthorized connection attempt detected from IP address 92.118.160.5 to port 995 [J]	2020-02-05 00:03:59
200.57.88.111	attack	Unauthorized connection attempt detected from IP address 200.57.88.111 to port 2220 [J]	2020-02-04 23:39:35
14.1.29.111	attackspam	2019-06-25 02:18:30 1hfZAL-00024p-S1 SMTP connection from chase.bookywook.com $chase.telecolada.icu$ \[14.1.29.111\]:51870 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-25 02:20:27 1hfZCE-00028P-UY SMTP connection from chase.bookywook.com $chase.telecolada.icu$ \[14.1.29.111\]:49183 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-25 02:22:10 1hfZDu-0002AL-Ni SMTP connection from chase.bookywook.com $chase.telecolada.icu$ \[14.1.29.111\]:38493 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-04 23:50:02
167.172.68.159	attackbots	Unauthorized connection attempt detected from IP address 167.172.68.159 to port 2220 [J]	2020-02-04 23:25:39

Recently Reported IPs

157.0.30.130	2a02:2f08:730f:f200:b4b1:b688:3fd:ae92	41.77.145.34	185.234.180.167
121.238.13.120	119.1.80.83	218.60.41.227	209.97.153.35
179.36.142.240	193.112.209.54	129.45.69.175	119.27.188.153
62.174.254.241	41.227.141.201	88.157.41.75	193.107.245.235
87.98.241.175	31.182.211.227	194.28.112.53	168.103.20.54