212.70.149.70 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Bulgaria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
212.70.149.134	attack	Hack	2024-03-01 15:04:53
212.70.149.72	bots	Apr 21 11:17:27 mail dovecot: auth: passwd-file(tata@example.com,212.70.149.72): unknown user (SHA1 of given password: b3aca9) Apr 21 11:17:29 mail postfix/smtps/smtpd[1933]: warning: unknown[212.70.149.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 21 11:17:34 mail postfix/smtps/smtpd[1933]: lost connection after AUTH from unknown[212.70.149.72] Apr 21 11:17:34 mail postfix/smtps/smtpd[1933]: disconnect from unknown[212.70.149.72] ehlo=1 auth=0/1 rset=1 commands=2/3 Apr 21 11:18:31 mail postfix/smtps/smtpd[1933]: connect from unknown[212.70.149.72] Apr 21 11:18:41 mail postfix/smtps/smtpd[1933]: Anonymous TLS connection established from unknown[212.70.149.72]: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits) Apr 21 11:19:09 mail dovecot: auth: passwd-file(cent@example.com,212.70.149.72): unknown user (SHA1 of given password: b3aca9) Apr 21 11:19:11 mail postfix/smtps/smtpd[1933]: warning: unknown[212.70.149.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 21 11:19:16 mail postfix/smtps/smtpd[1933]: lost connection after AUTH from unknown[212.70.149.72] Apr 21 11:19:16 mail postfix/smtps/smtpd[1933]: disconnect from unknown[212.70.149.72] ehlo=1 auth=0/1 rset=1 commands=2/3 Apr 21 11:22:36 mail postfix/anvil[1450]: statistics: max connection rate 1/60s for (smtps:212.70.149.72) at Apr 21 11:13:35 Apr 21 11:22:36 mail postfix/anvil[1450]: statistics: max connection count 1 for (smtps:212.70.149.72) at Apr 21 11:13:35 Apr 21 11:22:36 mail postfix/anvil[1450]: statistics: max cache size 1 at Apr 21 11:13:35	2022-04-21 11:27:10
212.70.149.72	bots	Apr 21 11:17:27 mail dovecot: auth: passwd-file(tata@example.com,212.70.149.72): unknown user (SHA1 of given password: b3aca9) Apr 21 11:17:29 mail postfix/smtps/smtpd[1933]: warning: unknown[212.70.149.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 21 11:17:34 mail postfix/smtps/smtpd[1933]: lost connection after AUTH from unknown[212.70.149.72] Apr 21 11:17:34 mail postfix/smtps/smtpd[1933]: disconnect from unknown[212.70.149.72] ehlo=1 auth=0/1 rset=1 commands=2/3 Apr 21 11:18:31 mail postfix/smtps/smtpd[1933]: connect from unknown[212.70.149.72] Apr 21 11:18:41 mail postfix/smtps/smtpd[1933]: Anonymous TLS connection established from unknown[212.70.149.72]: TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits) Apr 21 11:19:09 mail dovecot: auth: passwd-file(cent@example.com,212.70.149.72): unknown user (SHA1 of given password: b3aca9) Apr 21 11:19:11 mail postfix/smtps/smtpd[1933]: warning: unknown[212.70.149.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 21 11:19:16 mail postfix/smtps/smtpd[1933]: lost connection after AUTH from unknown[212.70.149.72] Apr 21 11:19:16 mail postfix/smtps/smtpd[1933]: disconnect from unknown[212.70.149.72] ehlo=1 auth=0/1 rset=1 commands=2/3 Apr 21 11:22:36 mail postfix/anvil[1450]: statistics: max connection rate 1/60s for (smtps:212.70.149.72) at Apr 21 11:13:35 Apr 21 11:22:36 mail postfix/anvil[1450]: statistics: max connection count 1 for (smtps:212.70.149.72) at Apr 21 11:13:35 Apr 21 11:22:36 mail postfix/anvil[1450]: statistics: max cache size 1 at Apr 21 11:13:35	2022-04-21 11:26:44
212.70.149.71	spamattack	Mail server attack SMTP	2021-10-15 09:16:21
212.70.149.36	attackspambots	Oct 14 00:55:16 blackbee postfix/smtpd[20435]: warning: unknown[212.70.149.36]: SASL LOGIN authentication failed: authentication failure Oct 14 00:55:33 blackbee postfix/smtpd[20435]: warning: unknown[212.70.149.36]: SASL LOGIN authentication failed: authentication failure Oct 14 00:55:50 blackbee postfix/smtpd[20435]: warning: unknown[212.70.149.36]: SASL LOGIN authentication failed: authentication failure Oct 14 00:56:07 blackbee postfix/smtpd[20435]: warning: unknown[212.70.149.36]: SASL LOGIN authentication failed: authentication failure Oct 14 00:56:23 blackbee postfix/smtpd[20435]: warning: unknown[212.70.149.36]: SASL LOGIN authentication failed: authentication failure ...	2020-10-14 08:10:57
212.70.149.52	attackbotsspam	Oct 14 01:52:52 relay postfix/smtpd\[25669\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:53:17 relay postfix/smtpd\[21341\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:53:42 relay postfix/smtpd\[21341\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:54:07 relay postfix/smtpd\[25312\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:54:32 relay postfix/smtpd\[25312\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-14 07:56:35
212.70.149.20	attackbots	Oct 14 01:44:02 srv01 postfix/smtpd\[2787\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:44:04 srv01 postfix/smtpd\[2842\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:44:08 srv01 postfix/smtpd\[5647\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:44:09 srv01 postfix/smtpd\[5656\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 14 01:44:27 srv01 postfix/smtpd\[2842\]: warning: unknown\[212.70.149.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-14 07:49:33
212.70.149.83	attackspambots	2020-10-14T01:21:46.638543mail1 postfix/smtpd[4846]: warning: unknown[212.70.149.83]: SASL LOGIN authentication failed: authentication failure 2020-10-14T01:22:11.387046mail1 postfix/smtpd[4846]: warning: unknown[212.70.149.83]: SASL LOGIN authentication failed: authentication failure 2020-10-14T01:22:37.112335mail1 postfix/smtpd[4846]: warning: unknown[212.70.149.83]: SASL LOGIN authentication failed: authentication failure ...	2020-10-14 07:28:06
212.70.149.68	attack	2020-10-14 02:02:28 dovecot_login authenticator failed for \(User\) \[212.70.149.68\]: 535 Incorrect authentication data \(set_id=lupus@ift.org.ua\)2020-10-14 02:04:21 dovecot_login authenticator failed for \(User\) \[212.70.149.68\]: 535 Incorrect authentication data \(set_id=lulu@ift.org.ua\)2020-10-14 02:06:14 dovecot_login authenticator failed for \(User\) \[212.70.149.68\]: 535 Incorrect authentication data \(set_id=lst@ift.org.ua\) ...	2020-10-14 07:08:31
212.70.149.20	attack	Oct 13 21:14:01 websrv1.derweidener.de postfix/smtpd[977082]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 21:14:30 websrv1.derweidener.de postfix/smtpd[977082]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 21:14:55 websrv1.derweidener.de postfix/smtpd[977082]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 21:15:24 websrv1.derweidener.de postfix/smtpd[977082]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 21:15:54 websrv1.derweidener.de postfix/smtpd[977082]: warning: unknown[212.70.149.20]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-10-14 04:12:34
212.70.149.68	attackbotsspam	2020-10-13T17:33:20.606164mail1 postfix/smtps/smtpd[32542]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: authentication failure 2020-10-13T17:35:16.903893mail1 postfix/smtps/smtpd[32542]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: authentication failure 2020-10-13T17:37:13.305145mail1 postfix/smtps/smtpd[32542]: warning: unknown[212.70.149.68]: SASL LOGIN authentication failed: authentication failure ...	2020-10-13 23:44:00
212.70.149.52	attackbots	Oct 13 15:48:52 relay postfix/smtpd\[25889\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 15:49:17 relay postfix/smtpd\[32223\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 15:49:42 relay postfix/smtpd\[404\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 15:50:07 relay postfix/smtpd\[25889\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 15:50:32 relay postfix/smtpd\[27643\]: warning: unknown\[212.70.149.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-13 21:52:30
212.70.149.20	attack	SASL PLAIN auth failed: ruser=...	2020-10-13 19:36:11
212.70.149.68	attackbotsspam	Oct 13 08:55:46 mx postfix/smtps/smtpd\[14650\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 08:55:51 mx postfix/smtps/smtpd\[14650\]: lost connection after AUTH from unknown\[212.70.149.68\] Oct 13 08:57:39 mx postfix/smtps/smtpd\[14650\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 08:57:44 mx postfix/smtps/smtpd\[14650\]: lost connection after AUTH from unknown\[212.70.149.68\] Oct 13 08:59:31 mx postfix/smtps/smtpd\[14650\]: warning: unknown\[212.70.149.68\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-13 14:59:48
212.70.149.83	attackspambots	Oct 13 07:33:41 srv01 postfix/smtpd\[7058\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 07:33:43 srv01 postfix/smtpd\[11219\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 07:33:47 srv01 postfix/smtpd\[13493\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 07:33:49 srv01 postfix/smtpd\[13498\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 07:34:06 srv01 postfix/smtpd\[11219\]: warning: unknown\[212.70.149.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-13 13:47:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.70.149.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3365
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;212.70.149.70.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 12:41:53 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 70.149.70.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.149.70.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.61.177.109	attackbotsspam	Sep 23 21:57:01 web1 sshd\[7765\]: Invalid user ns1 from 182.61.177.109 Sep 23 21:57:01 web1 sshd\[7765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.177.109 Sep 23 21:57:02 web1 sshd\[7765\]: Failed password for invalid user ns1 from 182.61.177.109 port 53542 ssh2 Sep 23 22:01:22 web1 sshd\[8178\]: Invalid user pumch from 182.61.177.109 Sep 23 22:01:22 web1 sshd\[8178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.177.109	2019-09-24 16:11:53
80.211.10.47	attackspambots	Sep 24 09:56:09 dedicated sshd[14449]: Invalid user jana from 80.211.10.47 port 28078	2019-09-24 16:15:08
140.143.45.22	attack	Sep 23 19:20:16 friendsofhawaii sshd\[31611\]: Invalid user history from 140.143.45.22 Sep 23 19:20:16 friendsofhawaii sshd\[31611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.45.22 Sep 23 19:20:18 friendsofhawaii sshd\[31611\]: Failed password for invalid user history from 140.143.45.22 port 45100 ssh2 Sep 23 19:25:06 friendsofhawaii sshd\[31994\]: Invalid user cele from 140.143.45.22 Sep 23 19:25:06 friendsofhawaii sshd\[31994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.45.22	2019-09-24 16:24:40
14.142.57.66	attackspam	Sep 24 09:59:36 jane sshd[25788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.57.66 Sep 24 09:59:38 jane sshd[25788]: Failed password for invalid user hali from 14.142.57.66 port 33570 ssh2 ...	2019-09-24 16:24:14
51.38.232.52	attackbots	Invalid user dujoey from 51.38.232.52 port 34299	2019-09-24 16:12:18
111.230.241.90	attackbotsspam	Sep 23 23:31:32 lanister sshd[2592]: Failed password for invalid user yd from 111.230.241.90 port 54648 ssh2 Sep 23 23:49:53 lanister sshd[2818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.241.90 user=root Sep 23 23:49:55 lanister sshd[2818]: Failed password for root from 111.230.241.90 port 59676 ssh2 Sep 23 23:53:06 lanister sshd[2827]: Invalid user quiromeu from 111.230.241.90 ...	2019-09-24 16:20:07
206.189.72.217	attackspam	Invalid user scanuser from 206.189.72.217 port 53268	2019-09-24 16:10:39
104.162.57.111	attackspam	Automatic report - Port Scan Attack	2019-09-24 16:03:12
23.94.133.28	attackspambots	2019-09-24T09:21:05.638117 sshd[9125]: Invalid user s3rv3r from 23.94.133.28 port 44094 2019-09-24T09:21:05.651286 sshd[9125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.133.28 2019-09-24T09:21:05.638117 sshd[9125]: Invalid user s3rv3r from 23.94.133.28 port 44094 2019-09-24T09:21:07.174103 sshd[9125]: Failed password for invalid user s3rv3r from 23.94.133.28 port 44094 ssh2 2019-09-24T09:27:19.454226 sshd[9171]: Invalid user nv from 23.94.133.28 port 53360 ...	2019-09-24 16:34:21
106.12.85.12	attackbots	Sep 23 18:26:41 eddieflores sshd\[22477\]: Invalid user hdis_mng from 106.12.85.12 Sep 23 18:26:41 eddieflores sshd\[22477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.85.12 Sep 23 18:26:43 eddieflores sshd\[22477\]: Failed password for invalid user hdis_mng from 106.12.85.12 port 56766 ssh2 Sep 23 18:32:18 eddieflores sshd\[22917\]: Invalid user ubnt from 106.12.85.12 Sep 23 18:32:18 eddieflores sshd\[22917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.85.12	2019-09-24 16:09:42
54.38.184.10	attack	Sep 24 09:35:14 rpi sshd[1352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.184.10 Sep 24 09:35:16 rpi sshd[1352]: Failed password for invalid user test from 54.38.184.10 port 50958 ssh2	2019-09-24 16:04:06
106.13.46.114	attackspam	Sep 24 05:50:59 monocul sshd[17891]: Invalid user cao from 106.13.46.114 port 37748 ...	2019-09-24 16:13:55
74.63.255.138	attackspambots	\[2019-09-24 04:00:43\] NOTICE\[1970\] chan_sip.c: Registration from '"208" \' failed for '74.63.255.138:5404' - Wrong password \[2019-09-24 04:00:43\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-24T04:00:43.154-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="208",SessionID="0x7f9b34358e08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.63.255.138/5404",Challenge="78bd238c",ReceivedChallenge="78bd238c",ReceivedHash="7684cef43bbd3ccd84273f15240be915" \[2019-09-24 04:00:43\] NOTICE\[1970\] chan_sip.c: Registration from '"208" \' failed for '74.63.255.138:5404' - Wrong password \[2019-09-24 04:00:43\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-24T04:00:43.267-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="208",SessionID="0x7f9b341670b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.6	2019-09-24 16:19:41
50.239.140.1	attack	ssh failed login	2019-09-24 16:08:35
82.200.65.218	attackspambots	Invalid user awsjava from 82.200.65.218 port 55712	2019-09-24 16:13:08

Recently Reported IPs

213.156.186.92	170.240.62.143	54.52.20.212	64.184.11.63
29.0.41.243	150.27.209.231	117.106.65.31	197.138.23.141
222.189.52.195	79.211.145.79	171.177.125.192	33.10.149.56
253.7.157.97	118.65.10.77	42.218.185.50	143.165.80.135
216.19.205.217	215.100.76.82	198.206.128.169	255.95.173.162