148.70.134.245

Basic Info

City: unknown

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: Shenzhen Tencent Computer Systems Company Limited

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	" "	2019-07-22 15:56:35
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 04:40:06
attackspambots	Port scan: Attack repeated for 24 hours	2019-07-17 20:36:19
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-08 09:26:39

Comments on same subnet:

IP	Type	Details	Datetime
148.70.134.52	attackbotsspam	Mar 10 20:05:45 hcbbdb sshd\[7782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=mysql Mar 10 20:05:47 hcbbdb sshd\[7782\]: Failed password for mysql from 148.70.134.52 port 56382 ssh2 Mar 10 20:15:39 hcbbdb sshd\[8857\]: Invalid user admin from 148.70.134.52 Mar 10 20:15:39 hcbbdb sshd\[8857\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 Mar 10 20:15:41 hcbbdb sshd\[8857\]: Failed password for invalid user admin from 148.70.134.52 port 60758 ssh2	2020-03-11 07:32:48
148.70.134.52	attack	Feb 19 04:25:27 php1 sshd\[4401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=backup Feb 19 04:25:29 php1 sshd\[4401\]: Failed password for backup from 148.70.134.52 port 45086 ssh2 Feb 19 04:34:28 php1 sshd\[5294\]: Invalid user cnc from 148.70.134.52 Feb 19 04:34:28 php1 sshd\[5294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 Feb 19 04:34:30 php1 sshd\[5294\]: Failed password for invalid user cnc from 148.70.134.52 port 44678 ssh2	2020-02-19 23:03:51
148.70.134.52	attackbots	Unauthorized connection attempt detected from IP address 148.70.134.52 to port 2220 [J]	2020-02-01 23:45:21
148.70.134.52	attackbots	Unauthorized connection attempt detected from IP address 148.70.134.52 to port 2220 [J]	2020-01-27 15:38:04
148.70.134.52	attackbotsspam	"SSH brute force auth login attempt."	2020-01-23 18:16:45
148.70.134.52	attackspam	Dec 26 01:22:16 plusreed sshd[28766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=root Dec 26 01:22:18 plusreed sshd[28766]: Failed password for root from 148.70.134.52 port 47318 ssh2 Dec 26 01:30:01 plusreed sshd[30659]: Invalid user schiller from 148.70.134.52 Dec 26 01:30:01 plusreed sshd[30659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 Dec 26 01:30:01 plusreed sshd[30659]: Invalid user schiller from 148.70.134.52 Dec 26 01:30:03 plusreed sshd[30659]: Failed password for invalid user schiller from 148.70.134.52 port 41544 ssh2 ...	2019-12-26 14:41:54
148.70.134.52	attack	2019-12-09T08:31:15.818954abusebot-6.cloudsearch.cf sshd\[28359\]: Invalid user php5 from 148.70.134.52 port 50096	2019-12-09 17:25:51
148.70.134.52	attackspambots	Dec 8 19:27:11 lnxded63 sshd[7713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 Dec 8 19:27:13 lnxded63 sshd[7713]: Failed password for invalid user kuestner from 148.70.134.52 port 41350 ssh2 Dec 8 19:33:40 lnxded63 sshd[8178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52	2019-12-09 03:07:25
148.70.134.52	attack	Dec 5 17:57:48 sauna sshd[110348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 Dec 5 17:57:50 sauna sshd[110348]: Failed password for invalid user biochem from 148.70.134.52 port 42898 ssh2 ...	2019-12-06 00:00:10
148.70.134.52	attackspam	Dec 3 15:17:00 *** sshd[16722]: User backup from 148.70.134.52 not allowed because not listed in AllowUsers	2019-12-04 01:41:17
148.70.134.52	attackspambots	$f2bV_matches	2019-11-24 20:52:31
148.70.134.52	attackspambots	Nov 19 02:13:11 heissa sshd\[20706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=uucp Nov 19 02:13:12 heissa sshd\[20706\]: Failed password for uucp from 148.70.134.52 port 43158 ssh2 Nov 19 02:17:35 heissa sshd\[21370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=root Nov 19 02:17:37 heissa sshd\[21370\]: Failed password for root from 148.70.134.52 port 51052 ssh2 Nov 19 02:22:05 heissa sshd\[22117\]: Invalid user youji from 148.70.134.52 port 58964 Nov 19 02:22:05 heissa sshd\[22117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52	2019-11-19 09:23:50
148.70.134.52	attackbots	Nov 8 10:51:51 lanister sshd[28108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=root Nov 8 10:51:53 lanister sshd[28108]: Failed password for root from 148.70.134.52 port 46950 ssh2 Nov 8 10:57:58 lanister sshd[28181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=root Nov 8 10:58:00 lanister sshd[28181]: Failed password for root from 148.70.134.52 port 56492 ssh2 ...	2019-11-09 05:18:34
148.70.134.52	attackbots	2019-11-06T23:16:19.376940abusebot-2.cloudsearch.cf sshd\[32351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 user=root	2019-11-07 07:22:32
148.70.134.52	attack	Oct 30 21:42:01 legacy sshd[17087]: Failed password for root from 148.70.134.52 port 38932 ssh2 Oct 30 21:46:51 legacy sshd[17213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.134.52 Oct 30 21:46:54 legacy sshd[17213]: Failed password for invalid user it from 148.70.134.52 port 50654 ssh2 ...	2019-10-31 06:00:50

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.134.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3797
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.70.134.245.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 12 05:36:23 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 245.134.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 245.134.70.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.58.251.114	attackbotsspam	Invalid user mf from 123.58.251.114 port 52836	2020-03-22 01:05:24
106.13.79.191	attackspambots	Repeated brute force against a port	2020-03-22 00:36:44
45.232.73.83	attackbots	$f2bV_matches	2020-03-22 00:49:17
106.12.183.209	attackspambots	Invalid user beryl from 106.12.183.209 port 48374	2020-03-22 01:15:08
180.76.54.123	attack	Mar 21 13:15:45 ws26vmsma01 sshd[68864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.54.123 Mar 21 13:15:47 ws26vmsma01 sshd[68864]: Failed password for invalid user comercial from 180.76.54.123 port 49817 ssh2 ...	2020-03-22 00:58:19
211.193.60.137	attackspam	k+ssh-bruteforce	2020-03-22 00:52:09
111.229.186.30	attack	Mar 21 17:55:37 vmd17057 sshd[8026]: Failed password for irc from 111.229.186.30 port 28758 ssh2 Mar 21 18:05:09 vmd17057 sshd[8556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.186.30 ...	2020-03-22 01:12:09
49.255.93.10	attackbots	Mar 21 17:35:38 plex sshd[19266]: Invalid user ed from 49.255.93.10 port 42496 Mar 21 17:35:41 plex sshd[19266]: Failed password for invalid user ed from 49.255.93.10 port 42496 ssh2 Mar 21 17:35:38 plex sshd[19266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.255.93.10 Mar 21 17:35:38 plex sshd[19266]: Invalid user ed from 49.255.93.10 port 42496 Mar 21 17:35:41 plex sshd[19266]: Failed password for invalid user ed from 49.255.93.10 port 42496 ssh2	2020-03-22 00:47:11
148.70.159.5	attackbots	Mar 21 16:20:00 ks10 sshd[3491723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.159.5 Mar 21 16:20:02 ks10 sshd[3491723]: Failed password for invalid user hiratsuka from 148.70.159.5 port 34952 ssh2 ...	2020-03-22 01:02:23
92.222.36.74	attack	SSH Brute-Force attacks	2020-03-22 00:42:17
189.169.129.65	attackspam	Unauthorized connection attempt detected from IP address 189.169.129.65 to port 22	2020-03-22 00:55:46
80.211.30.166	attackbots	Mar 21 17:22:54 ourumov-web sshd\[3236\]: Invalid user tpgit from 80.211.30.166 port 39802 Mar 21 17:22:54 ourumov-web sshd\[3236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.30.166 Mar 21 17:22:55 ourumov-web sshd\[3236\]: Failed password for invalid user tpgit from 80.211.30.166 port 39802 ssh2 ...	2020-03-22 00:42:37
92.62.136.63	attack	SSH/22 MH Probe, BF, Hack -	2020-03-22 01:18:45
186.103.223.10	attackspambots	Invalid user system from 186.103.223.10 port 52607	2020-03-22 00:57:07
129.211.97.95	attackspambots	Invalid user sysadmin from 129.211.97.95 port 46634	2020-03-22 00:28:00

Recently Reported IPs

179.102.200.58	141.145.123.225	190.167.130.90	185.53.88.155
190.145.21.180	60.13.42.246	198.134.112.241	179.217.24.96
129.211.132.124	80.99.17.116	221.7.221.50	37.187.46.74
200.150.82.139	185.254.122.32	42.159.11.136	200.52.144.170
195.154.243.10	37.6.13.33	193.165.247.106	37.191.82.202