154.120.242.70

Basic Info

City: unknown

Region: unknown

Country: Zimbabwe

Internet Service Provider: Liquid Telecommunications Operations Limited

Hostname: unknown

Organization: Liquid Telecommunications Ltd

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 12 20:44:31 host sshd[19604]: Invalid user chen from 154.120.242.70 port 35410 ...	2020-10-13 04:00:11
attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-12 19:35:58
attackspam	Invalid user cari from 154.120.242.70 port 34102	2020-09-22 22:53:51
attackspambots	Sep 21 23:50:06 propaganda sshd[46467]: Connection from 154.120.242.70 port 33218 on 10.0.0.161 port 22 rdomain "" Sep 21 23:50:07 propaganda sshd[46467]: Connection closed by 154.120.242.70 port 33218 [preauth]	2020-09-22 14:58:36
attackbotsspam	SSH Invalid Login	2020-09-22 07:00:21
attackspam	" "	2020-09-01 23:46:11
attackbots	SSH Invalid Login	2020-08-25 07:55:20
attackbotsspam	Invalid user bianca from 154.120.242.70 port 43984	2020-08-18 17:25:13
attackbots	2020-08-15T06:03:15.512181randservbullet-proofcloud-66.localdomain sshd[15704]: Invalid user abse from 154.120.242.70 port 51148 2020-08-15T06:03:15.516945randservbullet-proofcloud-66.localdomain sshd[15704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 2020-08-15T06:03:15.512181randservbullet-proofcloud-66.localdomain sshd[15704]: Invalid user abse from 154.120.242.70 port 51148 2020-08-15T06:03:17.418676randservbullet-proofcloud-66.localdomain sshd[15704]: Failed password for invalid user abse from 154.120.242.70 port 51148 ssh2 ...	2020-08-15 14:29:55
attack	Aug 10 15:45:34 XXXXXX sshd[23570]: Invalid user absalom from 154.120.242.70 port 52670	2020-08-11 01:33:45
attackspam	SSH Invalid Login	2020-08-04 06:36:12
attackspam	Invalid user apps from 154.120.242.70 port 33248	2020-07-30 15:41:20
attackspam	Jul 24 06:52:44 XXX sshd[43620]: Invalid user applprod from 154.120.242.70 port 44918	2020-07-24 15:38:46
attackspam	2020-07-19T08:37:15.208883upcloud.m0sh1x2.com sshd[13169]: Invalid user app-admin from 154.120.242.70 port 52504	2020-07-20 00:05:10
attack	Jul 18 16:16:43 l03 sshd[21949]: Invalid user app-admin from 154.120.242.70 port 57602 ...	2020-07-18 23:50:00
attackbots	Jul 12 21:32:57 XXX sshd[60550]: Invalid user adempiere from 154.120.242.70 port 34326	2020-07-13 06:26:23
attackspambots	Jul 12 08:46:33 localhost sshd[333093]: Connection closed by 154.120.242.70 port 36145 [preauth] ...	2020-07-12 07:04:14
attackbotsspam	Jul 11 18:35:51 XXX sshd[38120]: Invalid user adapter from 154.120.242.70 port 39424	2020-07-12 03:04:08
attack	Scanned 1 times in the last 24 hours on port 22	2020-07-07 09:25:04
attack	Icarus honeypot on github	2020-07-06 15:40:46
attackbotsspam	Jun 5 19:12:07 host sshd[25567]: Invalid user system from 154.120.242.70 port 41470 ...	2020-06-06 01:26:26
attack	May 31 11:48:21 mout sshd[2193]: Connection closed by 154.120.242.70 port 50136 [preauth] Jun 1 14:22:06 mout sshd[14619]: Connection closed by 154.120.242.70 port 37646 [preauth] Jun 2 17:01:14 mout sshd[31126]: Connection closed by 154.120.242.70 port 54358 [preauth]	2020-06-03 04:03:52
attackspambots	Mar 25 00:21:20 ns381471 sshd[16640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 Mar 25 00:21:22 ns381471 sshd[16640]: Failed password for invalid user support from 154.120.242.70 port 41836 ssh2	2020-03-25 07:46:16
attack	Mar 8 21:45:11 l03 sshd[29858]: Invalid user jeff from 154.120.242.70 port 47624 ...	2020-03-09 06:45:42
attack	$f2bV_matches	2020-02-22 19:42:54
attackbots	Invalid user lan from 154.120.242.70 port 45104	2020-02-13 20:11:20
attackspambots	Nov 28 21:52:51 debian sshd\[11500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 user=root Nov 28 21:52:53 debian sshd\[11500\]: Failed password for root from 154.120.242.70 port 59594 ssh2 Nov 28 22:42:23 debian sshd\[15262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 user=root ...	2019-11-29 04:11:40
attack	Nov 26 12:44:45 sd-53420 sshd\[11228\]: Invalid user us3r from 154.120.242.70 Nov 26 12:44:45 sd-53420 sshd\[11228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 Nov 26 12:44:48 sd-53420 sshd\[11228\]: Failed password for invalid user us3r from 154.120.242.70 port 56050 ssh2 Nov 26 12:52:03 sd-53420 sshd\[12418\]: User root from 154.120.242.70 not allowed because none of user's groups are listed in AllowGroups Nov 26 12:52:03 sd-53420 sshd\[12418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 user=root ...	2019-11-26 22:20:56
attack	2019-11-23T14:28:22.689549abusebot-8.cloudsearch.cf sshd\[18153\]: Invalid user villepinte from 154.120.242.70 port 44404	2019-11-23 22:38:03
attack	2019-11-06T17:41:21.551509shield sshd\[8564\]: Invalid user ppo from 154.120.242.70 port 38514 2019-11-06T17:41:21.557360shield sshd\[8564\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70 2019-11-06T17:41:23.774333shield sshd\[8564\]: Failed password for invalid user ppo from 154.120.242.70 port 38514 ssh2 2019-11-06T17:50:56.120500shield sshd\[9376\]: Invalid user huaweiN2000 from 154.120.242.70 port 42970 2019-11-06T17:50:56.125853shield sshd\[9376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.120.242.70	2019-11-07 02:06:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.120.242.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1828
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;154.120.242.70.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 13 11:30:29 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 70.242.120.154.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 70.242.120.154.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.141	attackbots	Dec 26 13:27:41 ns3110291 sshd\[11172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 26 13:27:44 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 Dec 26 13:27:47 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 Dec 26 13:27:54 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 Dec 26 13:27:59 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 ...	2019-12-26 20:54:15
213.174.250.91	attackbotsspam	Unauthorized connection attempt detected from IP address 213.174.250.91 to port 445	2019-12-26 21:10:44
106.12.78.161	attackspambots	Unauthorized connection attempt detected from IP address 106.12.78.161 to port 22	2019-12-26 20:52:10
182.160.122.142	attackspam	Port 1433 Scan	2019-12-26 21:05:29
113.172.62.170	attack	This IP Address sent many spam to @bit.co.id mhamdanrifai@gmail.com is administrator	2019-12-26 20:40:45
84.2.226.70	attack	Dec 26 09:47:15 pi sshd\[28392\]: Invalid user abc123 from 84.2.226.70 port 55218 Dec 26 09:47:15 pi sshd\[28392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 Dec 26 09:47:17 pi sshd\[28392\]: Failed password for invalid user abc123 from 84.2.226.70 port 55218 ssh2 Dec 26 09:49:18 pi sshd\[28437\]: Invalid user juelich from 84.2.226.70 port 47818 Dec 26 09:49:18 pi sshd\[28437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 ...	2019-12-26 20:39:41
177.21.110.22	attack	firewall-block, port(s): 8080/tcp	2019-12-26 21:02:38
158.69.160.191	attackspambots	Dec 26 09:37:51 vpn01 sshd[28143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.160.191 Dec 26 09:37:54 vpn01 sshd[28143]: Failed password for invalid user wialon from 158.69.160.191 port 60996 ssh2 ...	2019-12-26 21:10:08
174.138.18.157	attack	Dec 26 08:17:14 163-172-32-151 sshd[2266]: Invalid user nfs from 174.138.18.157 port 34478 ...	2019-12-26 20:38:45
206.81.8.14	attack	" "	2019-12-26 20:45:44
46.151.157.115	attackspam	email spam	2019-12-26 20:41:33
59.91.225.251	attackbots	Unauthorized connection attempt detected from IP address 59.91.225.251 to port 445	2019-12-26 21:04:27
92.242.126.154	attackbots	email spam	2019-12-26 21:01:33
212.200.118.98	attack	proto=tcp . spt=33619 . dpt=25 . (Found on Blocklist de Dec 25) (264)	2019-12-26 21:06:11
109.166.91.119	attackbotsspam	Unauthorized connection attempt detected from IP address 109.166.91.119 to port 445	2019-12-26 20:36:00

Recently Reported IPs

89.144.13.147	199.38.241.34	188.187.54.217	185.18.88.246
114.229.28.16	58.242.45.132	190.233.233.237	219.159.110.191
51.254.47.198	197.46.49.214	171.244.140.225	103.20.214.67
200.54.179.37	188.128.119.178	89.222.240.153	211.187.55.90
81.133.111.101	142.93.198.86	162.158.102.191	162.158.103.114