171.67.70.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Stanford University

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SSH Scan	2019-10-17 07:15:04

Comments on same subnet:

IP	Type	Details	Datetime
171.67.70.87	attackspambots	firewall-block, port(s): 80/tcp	2020-06-24 05:39:16
171.67.70.85	attackbotsspam	ET SCAN Zmap User-Agent (zgrab) - port: 80 proto: TCP cat: Detection of a Network Scan	2020-04-12 23:16:39
171.67.70.85	attackspambots	[MK-VM6] Blocked by UFW	2020-04-11 07:43:09
171.67.70.85	attack	[portscan] Port scan	2020-04-05 00:53:01
171.67.70.85	attack	ET SCAN Zmap User-Agent (zgrab) - port: 80 proto: TCP cat: Detection of a Network Scan	2020-03-31 15:34:09
171.67.70.85	attack	ET SCAN Zmap User-Agent (zgrab) - port: 80 proto: TCP cat: Detection of a Network Scan	2020-03-29 02:41:54
171.67.70.85	attackspam	IP: 171.67.70.85 Ports affected World Wide Web HTTP (80) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS32 STANFORD United States (US) CIDR 171.64.0.0/14 Log Date: 28/03/2020 9:36:16 AM UTC	2020-03-28 18:31:44
171.67.70.85	attack	IP: 171.67.70.85 Ports affected World Wide Web HTTP (80) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS32 STANFORD United States (US) CIDR 171.64.0.0/14 Log Date: 27/03/2020 9:29:32 AM UTC	2020-03-27 17:40:34
171.67.70.85	attack	[MK-VM4] Blocked by UFW	2020-03-26 16:04:59
171.67.70.85	attack	[MK-VM5] Blocked by UFW	2020-03-26 06:32:46
171.67.70.85	attackspambots	Intrusion source	2020-03-25 13:12:04
171.67.70.81	attackbots	22/tcp... [2020-03-01/23]40pkt,3pt.(tcp)	2020-03-24 08:37:41
171.67.70.85	attackspam	firewall-block, port(s): 80/tcp	2020-03-24 03:37:57
171.67.70.85	attack	Unauthorized connection attempt detected from IP address 171.67.70.85 to port 80 [T]	2020-03-20 02:47:40
171.67.70.85	attackbotsspam	ET SCAN Zmap User-Agent (zgrab) - port: 80 proto: TCP cat: Detection of a Network Scan	2020-03-18 15:32:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 171.67.70.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47017
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;171.67.70.145.			IN	A

;; AUTHORITY SECTION:
.			534	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101601 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 07:15:01 CST 2019
;; MSG SIZE  rcvd: 117

Host info

145.70.67.171.in-addr.arpa domain name pointer research.esrg.stanford.edu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.70.67.171.in-addr.arpa	name = research.esrg.stanford.edu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.193.226.52	attackspambots	Mar 5 07:03:21 gitlab-tf sshd\[27316\]: Invalid user www from 186.193.226.52Mar 5 07:07:24 gitlab-tf sshd\[27934\]: Invalid user test from 186.193.226.52 ...	2020-03-05 15:22:57
168.197.31.14	attackspambots	Mar 5 08:22:47 server sshd\[16853\]: Invalid user licheng from 168.197.31.14 Mar 5 08:22:47 server sshd\[16853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.197.31.14 Mar 5 08:22:48 server sshd\[16853\]: Failed password for invalid user licheng from 168.197.31.14 port 37257 ssh2 Mar 5 08:38:18 server sshd\[19683\]: Invalid user oracle from 168.197.31.14 Mar 5 08:38:18 server sshd\[19683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.197.31.14 ...	2020-03-05 14:51:12
194.26.29.129	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-05 15:11:35
165.227.47.1	attackbotsspam	Mar 4 20:01:24 php1 sshd\[5446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.47.1 user=lunalilo Mar 4 20:01:26 php1 sshd\[5446\]: Failed password for lunalilo from 165.227.47.1 port 57034 ssh2 Mar 4 20:04:58 php1 sshd\[5718\]: Invalid user postgres from 165.227.47.1 Mar 4 20:04:58 php1 sshd\[5718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.47.1 Mar 4 20:05:00 php1 sshd\[5718\]: Failed password for invalid user postgres from 165.227.47.1 port 54894 ssh2	2020-03-05 14:54:31
195.151.40.37	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-05 15:10:30
222.186.180.9	attackspambots	Mar 5 08:06:50 sso sshd[23131]: Failed password for root from 222.186.180.9 port 50448 ssh2 Mar 5 08:06:53 sso sshd[23131]: Failed password for root from 222.186.180.9 port 50448 ssh2 ...	2020-03-05 15:18:07
13.71.70.28	attack	Automatic report BANNED IP	2020-03-05 15:15:10
79.104.25.218	attackbots	Unauthorized IMAP connection attempt	2020-03-05 14:59:57
128.199.178.188	attackspambots	Mar 4 20:58:51 wbs sshd\[768\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.178.188 user=root Mar 4 20:58:53 wbs sshd\[768\]: Failed password for root from 128.199.178.188 port 56144 ssh2 Mar 4 21:08:02 wbs sshd\[1719\]: Invalid user hudson from 128.199.178.188 Mar 4 21:08:02 wbs sshd\[1719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.178.188 Mar 4 21:08:03 wbs sshd\[1719\]: Failed password for invalid user hudson from 128.199.178.188 port 50692 ssh2	2020-03-05 15:16:52
113.173.97.91	attackspambots	Postfix SASL Login attempt. IP autobanned	2020-03-05 15:29:17
31.209.136.34	attackspam	Mar 4 18:45:44 wbs sshd\[20238\]: Invalid user seongmin from 31.209.136.34 Mar 4 18:45:44 wbs sshd\[20238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34-136-209-31.business.hringdu.is Mar 4 18:45:46 wbs sshd\[20238\]: Failed password for invalid user seongmin from 31.209.136.34 port 42876 ssh2 Mar 4 18:51:48 wbs sshd\[20817\]: Invalid user liferay from 31.209.136.34 Mar 4 18:51:48 wbs sshd\[20817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34-136-209-31.business.hringdu.is	2020-03-05 15:13:17
111.229.140.20	attackbots	Mar 5 05:51:40 * sshd[18692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.140.20 Mar 5 05:51:43 * sshd[18692]: Failed password for invalid user rstudio-server from 111.229.140.20 port 56362 ssh2	2020-03-05 15:19:02
178.88.53.228	attack	Email rejected due to spam filtering	2020-03-05 15:29:45
222.186.180.6	attack	Multiple SSH login attempts.	2020-03-05 15:24:27
83.103.211.218	attack	Automatic report - Port Scan Attack	2020-03-05 14:50:28

Recently Reported IPs

60.4.13.229	216.10.217.128	171.67.70.154	140.224.183.129
189.29.34.97	106.12.218.159	57.34.24.49	171.67.70.206
106.12.217.39	188.225.77.125	115.63.203.67	2601:140:4201:1460:fdec:fb7:4f3d:4ec8
206.20.104.210	103.214.169.174	129.204.95.197	171.67.70.166
119.160.64.28	171.67.70.186	1.162.165.87	103.133.106.243