148.70.34.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.70.34.230	attackbotsspam	148.70.34.230 - - [15/Aug/2020:08:51:04 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 148.70.34.230 - - [15/Aug/2020:08:51:07 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" 148.70.34.230 - - [15/Aug/2020:08:51:08 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Apache-HttpClient/4.5.2 (Java/1.8.0_151)" ...	2020-08-15 19:55:38
148.70.34.160	attackbotsspam	Jun 25 02:04:34 PorscheCustomer sshd[6134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 Jun 25 02:04:36 PorscheCustomer sshd[6134]: Failed password for invalid user aep from 148.70.34.160 port 41606 ssh2 Jun 25 02:09:31 PorscheCustomer sshd[6303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 ...	2020-06-25 08:27:38
148.70.34.160	attackspam	Jun 21 22:17:24 vps687878 sshd\[28626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 user=root Jun 21 22:17:26 vps687878 sshd\[28626\]: Failed password for root from 148.70.34.160 port 55414 ssh2 Jun 21 22:22:12 vps687878 sshd\[28960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 user=root Jun 21 22:22:14 vps687878 sshd\[28960\]: Failed password for root from 148.70.34.160 port 54400 ssh2 Jun 21 22:27:02 vps687878 sshd\[29294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 user=root ...	2020-06-22 04:37:39
148.70.34.160	attack	Invalid user david from 148.70.34.160 port 57476	2020-06-19 18:18:24
148.70.34.160	attack	Jun 18 22:37:48 vserver sshd\[29741\]: Invalid user postgres from 148.70.34.160Jun 18 22:37:50 vserver sshd\[29741\]: Failed password for invalid user postgres from 148.70.34.160 port 33942 ssh2Jun 18 22:43:40 vserver sshd\[29834\]: Invalid user mongodb from 148.70.34.160Jun 18 22:43:42 vserver sshd\[29834\]: Failed password for invalid user mongodb from 148.70.34.160 port 44474 ssh2 ...	2020-06-19 08:37:45
148.70.34.160	attackbotsspam	SSH Invalid Login	2020-05-10 06:01:44
148.70.34.208	attackspam	$lgm	2020-05-08 02:47:37
148.70.34.160	attack	May 4 07:46:28 meumeu sshd[2924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 May 4 07:46:30 meumeu sshd[2924]: Failed password for invalid user hung from 148.70.34.160 port 39858 ssh2 May 4 07:51:41 meumeu sshd[3773]: Failed password for root from 148.70.34.160 port 46786 ssh2 ...	2020-05-04 15:17:01
148.70.34.160	attackbots	May 2 15:13:35 minden010 sshd[2780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 May 2 15:13:37 minden010 sshd[2780]: Failed password for invalid user vsftpd from 148.70.34.160 port 44826 ssh2 May 2 15:19:28 minden010 sshd[6008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.34.160 ...	2020-05-03 01:35:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.34.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46513
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.70.34.80.			IN	A

;; AUTHORITY SECTION:
.			3512	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071300 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 13 18:50:54 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 80.34.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.34.70.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.98.10.196	attackspam	22/tcp 22/tcp 22/tcp... [2020-07-15/08-23]924pkt,1pt.(tcp)	2020-08-24 12:37:45
188.166.185.236	attack	Aug 24 05:56:30 santamaria sshd\[10285\]: Invalid user murai from 188.166.185.236 Aug 24 05:56:30 santamaria sshd\[10285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.185.236 Aug 24 05:56:32 santamaria sshd\[10285\]: Failed password for invalid user murai from 188.166.185.236 port 58467 ssh2 ...	2020-08-24 12:30:58
144.217.92.167	attack	Aug 24 06:28:38 vps639187 sshd\[26996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.92.167 user=debian Aug 24 06:28:41 vps639187 sshd\[26996\]: Failed password for debian from 144.217.92.167 port 54322 ssh2 Aug 24 06:32:16 vps639187 sshd\[27081\]: Invalid user downloads from 144.217.92.167 port 33614 Aug 24 06:32:16 vps639187 sshd\[27081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.92.167 ...	2020-08-24 12:37:29
31.184.198.75	attack	SSH Brute-Forcing (server1)	2020-08-24 12:42:37
202.100.188.108	attack	Aug 24 06:02:24 MainVPS sshd[25468]: Invalid user bocloud from 202.100.188.108 port 16927 Aug 24 06:02:24 MainVPS sshd[25468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.100.188.108 Aug 24 06:02:24 MainVPS sshd[25468]: Invalid user bocloud from 202.100.188.108 port 16927 Aug 24 06:02:25 MainVPS sshd[25468]: Failed password for invalid user bocloud from 202.100.188.108 port 16927 ssh2 Aug 24 06:07:31 MainVPS sshd[6469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.100.188.108 user=root Aug 24 06:07:32 MainVPS sshd[6469]: Failed password for root from 202.100.188.108 port 59253 ssh2 ...	2020-08-24 12:08:03
78.199.19.89	attackbotsspam	Aug 24 06:11:07 fhem-rasp sshd[20761]: Invalid user krm from 78.199.19.89 port 53762 ...	2020-08-24 12:27:47
35.185.38.253	attackbots	35.185.38.253 - - [24/Aug/2020:05:18:47 +0100] "POST /wp-login.php HTTP/1.1" 200 1967 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.185.38.253 - - [24/Aug/2020:05:18:48 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.185.38.253 - - [24/Aug/2020:05:18:49 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-24 12:34:27
27.128.233.104	attackbotsspam	web-1 [ssh] SSH Attack	2020-08-24 12:18:59
218.92.0.247	attackspam	Aug 24 06:22:58 eventyay sshd[5921]: Failed password for root from 218.92.0.247 port 8713 ssh2 Aug 24 06:23:11 eventyay sshd[5921]: error: maximum authentication attempts exceeded for root from 218.92.0.247 port 8713 ssh2 [preauth] Aug 24 06:23:18 eventyay sshd[5924]: Failed password for root from 218.92.0.247 port 36838 ssh2 ...	2020-08-24 12:28:59
180.76.51.143	attack	Aug 24 05:54:35 PorscheCustomer sshd[13053]: Failed password for root from 180.76.51.143 port 37314 ssh2 Aug 24 05:59:04 PorscheCustomer sshd[13137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.51.143 Aug 24 05:59:05 PorscheCustomer sshd[13137]: Failed password for invalid user ts3 from 180.76.51.143 port 39370 ssh2 ...	2020-08-24 12:16:59
27.3.224.183	attackbots	Port probing on unauthorized port 5555	2020-08-24 12:39:45
114.232.109.140	attack	$f2bV_matches	2020-08-24 12:21:09
220.97.114.66	attackbots	Automatic report - Port Scan Attack	2020-08-24 12:40:39
144.217.34.151	attackbots	Fail2Ban Ban Triggered	2020-08-24 12:06:30
222.186.180.130	attackspambots	Aug 24 06:23:12 santamaria sshd\[10622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Aug 24 06:23:14 santamaria sshd\[10622\]: Failed password for root from 222.186.180.130 port 32639 ssh2 Aug 24 06:23:16 santamaria sshd\[10622\]: Failed password for root from 222.186.180.130 port 32639 ssh2 ...	2020-08-24 12:38:24

Recently Reported IPs

217.171.140.18	116.110.105.134	113.170.50.197	158.141.120.218
170.239.86.45	103.99.3.21	192.35.168.78	103.224.241.137
95.154.106.202	136.132.175.203	233.79.48.120	200.74.154.104
141.119.146.82	188.32.81.219	173.66.218.227	201.24.45.40
175.35.243.231	226.85.137.229	128.17.63.90	148.44.5.75