34.80.9.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Google LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user developer from 34.80.9.55 port 46914	2020-02-23 07:18:04
attackbotsspam	Feb 21 04:31:15 web1 sshd\[11707\]: Invalid user gitlab-runner from 34.80.9.55 Feb 21 04:31:15 web1 sshd\[11707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.9.55 Feb 21 04:31:17 web1 sshd\[11707\]: Failed password for invalid user gitlab-runner from 34.80.9.55 port 46910 ssh2 Feb 21 04:34:59 web1 sshd\[12000\]: Invalid user ubuntu from 34.80.9.55 Feb 21 04:34:59 web1 sshd\[12000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.9.55	2020-02-22 01:23:49
attack	Feb 20 22:09:33 kapalua sshd\[15055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.9.80.34.bc.googleusercontent.com user=mail Feb 20 22:09:36 kapalua sshd\[15055\]: Failed password for mail from 34.80.9.55 port 33416 ssh2 Feb 20 22:11:35 kapalua sshd\[15254\]: Invalid user daniel from 34.80.9.55 Feb 20 22:11:35 kapalua sshd\[15254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.9.80.34.bc.googleusercontent.com Feb 20 22:11:37 kapalua sshd\[15254\]: Failed password for invalid user daniel from 34.80.9.55 port 50776 ssh2	2020-02-21 16:54:18

Type

Details

Datetime

attackbotsspam

Invalid user developer from 34.80.9.55 port 46914

2020-02-23 07:18:04

attackbotsspam

Feb 21 04:31:15 web1 sshd\[11707\]: Invalid user gitlab-runner from 34.80.9.55
Feb 21 04:31:15 web1 sshd\[11707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.9.55
Feb 21 04:31:17 web1 sshd\[11707\]: Failed password for invalid user gitlab-runner from 34.80.9.55 port 46910 ssh2
Feb 21 04:34:59 web1 sshd\[12000\]: Invalid user ubuntu from 34.80.9.55
Feb 21 04:34:59 web1 sshd\[12000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.9.55

2020-02-22 01:23:49

attack

Feb 20 22:09:33 kapalua sshd\[15055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.9.80.34.bc.googleusercontent.com  user=mail
Feb 20 22:09:36 kapalua sshd\[15055\]: Failed password for mail from 34.80.9.55 port 33416 ssh2
Feb 20 22:11:35 kapalua sshd\[15254\]: Invalid user daniel from 34.80.9.55
Feb 20 22:11:35 kapalua sshd\[15254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=55.9.80.34.bc.googleusercontent.com
Feb 20 22:11:37 kapalua sshd\[15254\]: Failed password for invalid user daniel from 34.80.9.55 port 50776 ssh2

2020-02-21 16:54:18

Comments on same subnet:

IP	Type	Details	Datetime
34.80.93.245	attackspam	34.80.93.245 - - [21/Jul/2020:22:52:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.80.93.245 - - [21/Jul/2020:22:52:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.80.93.245 - - [21/Jul/2020:22:53:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-22 06:34:04
34.80.93.190	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-06-07 01:29:41

Type

Details

Datetime

34.80.93.245

attackspam

34.80.93.245 - - [21/Jul/2020:22:52:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
34.80.93.245 - - [21/Jul/2020:22:52:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
34.80.93.245 - - [21/Jul/2020:22:53:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-07-22 06:34:04

34.80.93.190

attack

Attempt to hack Wordpress Login, XMLRPC or other login

2020-06-07 01:29:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.80.9.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58973
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;34.80.9.55.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022100 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 16:54:14 CST 2020
;; MSG SIZE  rcvd: 114

Host info

55.9.80.34.in-addr.arpa domain name pointer 55.9.80.34.bc.googleusercontent.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.9.80.34.in-addr.arpa	name = 55.9.80.34.bc.googleusercontent.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.74.105.147	attack	Mar 3 05:51:35 grey postfix/smtpd\[10215\]: NOQUEUE: reject: RCPT from unknown\[223.74.105.147\]: 554 5.7.1 Service unavailable\; Client host \[223.74.105.147\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[223.74.105.147\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-03-03 18:51:59
180.68.45.103	attack	(ftpd) Failed FTP login from 180.68.45.103 (KR/South Korea/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 3 13:12:39 ir1 pure-ftpd: (?@180.68.45.103) [WARNING] Authentication failed for user [anonymous]	2020-03-03 18:50:27
209.141.41.96	attack	Mar 3 08:52:24 marvibiene sshd[34545]: Invalid user webmaster from 209.141.41.96 port 33890 Mar 3 08:52:24 marvibiene sshd[34545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.96 Mar 3 08:52:24 marvibiene sshd[34545]: Invalid user webmaster from 209.141.41.96 port 33890 Mar 3 08:52:26 marvibiene sshd[34545]: Failed password for invalid user webmaster from 209.141.41.96 port 33890 ssh2 ...	2020-03-03 18:58:56
45.136.108.23	attack	port scan and connect, tcp 1583 (pervasive-psql-alt)	2020-03-03 18:40:50
202.40.191.115	attack	Accessing a honeypot website	2020-03-03 18:56:17
222.186.175.140	attackspam	Mar310:47:14server6sshd[2501]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Mar310:47:14server6sshd[2502]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Mar310:47:14server6sshd[2503]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Mar311:37:15server6sshd[8225]:refusedconnectfrom222.186.175.140\(222.186.175.140\)Mar311:37:15server6sshd[8226]:refusedconnectfrom222.186.175.140\(222.186.175.140\)	2020-03-03 18:39:06
104.236.199.204	attackbots	SSH Login Bruteforce	2020-03-03 18:42:15
80.252.137.26	attackbotsspam	Mar 3 12:45:14 server sshd\[19275\]: Invalid user wayne from 80.252.137.26 Mar 3 12:45:14 server sshd\[19275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.252.137.26 Mar 3 12:45:16 server sshd\[19275\]: Failed password for invalid user wayne from 80.252.137.26 port 43406 ssh2 Mar 3 13:33:00 server sshd\[27901\]: Invalid user diana from 80.252.137.26 Mar 3 13:33:00 server sshd\[27901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.252.137.26 ...	2020-03-03 18:59:26
180.241.47.4	attackbotsspam	Unauthorised access (Mar 3) SRC=180.241.47.4 LEN=52 TTL=116 ID=28549 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-03 18:46:53
222.186.15.10	attackbots	Brute-force attempt banned	2020-03-03 18:35:14
139.59.80.65	attackbots	Mar 3 11:09:15 sd-53420 sshd\[9682\]: Invalid user kishori from 139.59.80.65 Mar 3 11:09:15 sd-53420 sshd\[9682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 Mar 3 11:09:17 sd-53420 sshd\[9682\]: Failed password for invalid user kishori from 139.59.80.65 port 33684 ssh2 Mar 3 11:19:11 sd-53420 sshd\[10598\]: Invalid user sarvub from 139.59.80.65 Mar 3 11:19:11 sd-53420 sshd\[10598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.80.65 ...	2020-03-03 18:26:51
138.68.241.237	attack	Lines containing failures of 138.68.241.237 Mar 2 11:36:33 neweola sshd[28976]: Invalid user system from 138.68.241.237 port 49552 Mar 2 11:36:33 neweola sshd[28976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.237 Mar 2 11:36:35 neweola sshd[28976]: Failed password for invalid user system from 138.68.241.237 port 49552 ssh2 Mar 2 11:36:37 neweola sshd[28976]: Received disconnect from 138.68.241.237 port 49552:11: Bye Bye [preauth] Mar 2 11:36:37 neweola sshd[28976]: Disconnected from invalid user system 138.68.241.237 port 49552 [preauth] Mar 2 11:55:31 neweola sshd[29909]: Invalid user admin from 138.68.241.237 port 36382 Mar 2 11:55:31 neweola sshd[29909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.241.237 Mar 2 11:55:33 neweola sshd[29909]: Failed password for invalid user admin from 138.68.241.237 port 36382 ssh2 Mar 2 11:55:34 neweola sshd[29909]: R........ ------------------------------	2020-03-03 18:33:14
49.88.112.73	attackbotsspam	Mar 3 11:06:44 v22018053744266470 sshd[16336]: Failed password for root from 49.88.112.73 port 45083 ssh2 Mar 3 11:08:43 v22018053744266470 sshd[16462]: Failed password for root from 49.88.112.73 port 51606 ssh2 ...	2020-03-03 18:33:49
79.3.6.207	attack	Brute-force attempt banned	2020-03-03 19:02:44
45.148.10.189	attackbotsspam	SSH authentication failure	2020-03-03 18:37:02

Recently Reported IPs

54.189.61.52	5.56.133.236	146.120.97.55	94.245.132.131
85.224.198.0	152.140.54.196	49.234.43.39	79.101.58.66
193.148.64.124	34.83.166.192	161.117.10.233	123.23.26.82
200.236.114.5	159.203.184.225	8.211.242.184	37.114.141.26
212.124.0.243	139.239.186.223	110.104.32.156	201.92.233.189