45.80.70.67 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Beget LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Nov 23 18:53:21 ny01 sshd[6686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67 Nov 23 18:53:23 ny01 sshd[6686]: Failed password for invalid user server from 45.80.70.67 port 51810 ssh2 Nov 23 18:59:47 ny01 sshd[7794]: Failed password for games from 45.80.70.67 port 59706 ssh2	2019-11-24 08:15:46
attackspam	Nov 22 21:12:13 eddieflores sshd\[7715\]: Invalid user luehman from 45.80.70.67 Nov 22 21:12:13 eddieflores sshd\[7715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67 Nov 22 21:12:15 eddieflores sshd\[7715\]: Failed password for invalid user luehman from 45.80.70.67 port 42418 ssh2 Nov 22 21:16:05 eddieflores sshd\[8018\]: Invalid user liuyongyishengpingan from 45.80.70.67 Nov 22 21:16:05 eddieflores sshd\[8018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67	2019-11-23 15:30:43
attack	Nov 22 14:23:07 sachi sshd\[27590\]: Invalid user 123Admin from 45.80.70.67 Nov 22 14:23:07 sachi sshd\[27590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67 Nov 22 14:23:10 sachi sshd\[27590\]: Failed password for invalid user 123Admin from 45.80.70.67 port 42254 ssh2 Nov 22 14:26:56 sachi sshd\[27878\]: Invalid user petern from 45.80.70.67 Nov 22 14:26:56 sachi sshd\[27878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67	2019-11-23 08:37:40

Type

Details

Datetime

attackbots

Nov 23 18:53:21 ny01 sshd[6686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67
Nov 23 18:53:23 ny01 sshd[6686]: Failed password for invalid user server from 45.80.70.67 port 51810 ssh2
Nov 23 18:59:47 ny01 sshd[7794]: Failed password for games from 45.80.70.67 port 59706 ssh2

2019-11-24 08:15:46

attackspam

Nov 22 21:12:13 eddieflores sshd\[7715\]: Invalid user luehman from 45.80.70.67
Nov 22 21:12:13 eddieflores sshd\[7715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67
Nov 22 21:12:15 eddieflores sshd\[7715\]: Failed password for invalid user luehman from 45.80.70.67 port 42418 ssh2
Nov 22 21:16:05 eddieflores sshd\[8018\]: Invalid user liuyongyishengpingan from 45.80.70.67
Nov 22 21:16:05 eddieflores sshd\[8018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67

2019-11-23 15:30:43

attack

Nov 22 14:23:07 sachi sshd\[27590\]: Invalid user 123Admin from 45.80.70.67
Nov 22 14:23:07 sachi sshd\[27590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67
Nov 22 14:23:10 sachi sshd\[27590\]: Failed password for invalid user 123Admin from 45.80.70.67 port 42254 ssh2
Nov 22 14:26:56 sachi sshd\[27878\]: Invalid user petern from 45.80.70.67
Nov 22 14:26:56 sachi sshd\[27878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.70.67

2019-11-23 08:37:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.80.70.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40267
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.80.70.67.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112201 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 23 08:37:35 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 67.70.80.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 67.70.80.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.69.48	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-02-08 09:51:21
117.107.133.162	attackspam	Feb 8 01:14:30 roki sshd[26768]: Invalid user msz from 117.107.133.162 Feb 8 01:14:30 roki sshd[26768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.107.133.162 Feb 8 01:14:32 roki sshd[26768]: Failed password for invalid user msz from 117.107.133.162 port 42152 ssh2 Feb 8 01:20:44 roki sshd[27645]: Invalid user be from 117.107.133.162 Feb 8 01:20:44 roki sshd[27645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.107.133.162 ...	2020-02-08 10:14:08
77.42.88.101	attack	port 23	2020-02-08 09:47:38
190.148.85.37	attack	445/tcp [2020-02-07]1pkt	2020-02-08 10:08:10
189.203.179.100	attack	Feb 7 23:36:05 ns382633 sshd\[12825\]: Invalid user admin from 189.203.179.100 port 34918 Feb 7 23:36:05 ns382633 sshd\[12825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.203.179.100 Feb 7 23:36:07 ns382633 sshd\[12825\]: Failed password for invalid user admin from 189.203.179.100 port 34918 ssh2 Feb 7 23:36:14 ns382633 sshd\[12875\]: Invalid user admin from 189.203.179.100 port 34949 Feb 7 23:36:14 ns382633 sshd\[12875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.203.179.100	2020-02-08 09:56:47
42.2.135.11	attackspam	" "	2020-02-08 09:58:46
181.197.191.20	attack	Email rejected due to spam filtering	2020-02-08 09:38:44
115.68.220.10	attackbotsspam	Feb 8 02:12:14 lnxded64 sshd[13937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.68.220.10	2020-02-08 09:40:13
76.102.21.32	attackbots	65193/udp [2020-02-07]1pkt	2020-02-08 10:13:48
67.205.162.223	attackbots	Feb 7 23:30:24 srv-ubuntu-dev3 sshd[127711]: Invalid user pxt from 67.205.162.223 Feb 7 23:30:24 srv-ubuntu-dev3 sshd[127711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.162.223 Feb 7 23:30:24 srv-ubuntu-dev3 sshd[127711]: Invalid user pxt from 67.205.162.223 Feb 7 23:30:26 srv-ubuntu-dev3 sshd[127711]: Failed password for invalid user pxt from 67.205.162.223 port 58374 ssh2 Feb 7 23:33:26 srv-ubuntu-dev3 sshd[127960]: Invalid user vuq from 67.205.162.223 Feb 7 23:33:26 srv-ubuntu-dev3 sshd[127960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.162.223 Feb 7 23:33:26 srv-ubuntu-dev3 sshd[127960]: Invalid user vuq from 67.205.162.223 Feb 7 23:33:28 srv-ubuntu-dev3 sshd[127960]: Failed password for invalid user vuq from 67.205.162.223 port 60244 ssh2 Feb 7 23:36:26 srv-ubuntu-dev3 sshd[128338]: Invalid user ihc from 67.205.162.223 ...	2020-02-08 09:48:26
121.178.241.147	attackspambots	23/tcp [2020-02-07]1pkt	2020-02-08 10:05:28
122.226.146.178	attackbots	02/07/2020-23:36:36.891719 122.226.146.178 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-08 09:39:39
42.117.26.228	attack	port 23	2020-02-08 09:55:14
222.186.173.180	attack	Feb 8 02:43:50 vps691689 sshd[10783]: Failed password for root from 222.186.173.180 port 39766 ssh2 Feb 8 02:44:02 vps691689 sshd[10783]: Failed password for root from 222.186.173.180 port 39766 ssh2 Feb 8 02:44:02 vps691689 sshd[10783]: error: maximum authentication attempts exceeded for root from 222.186.173.180 port 39766 ssh2 [preauth] ...	2020-02-08 09:57:58
186.235.63.253	attackspam	scan r	2020-02-08 09:58:21

Recently Reported IPs

126.109.242.249	208.142.152.26	31.1.116.127	127.88.26.46
199.69.131.163	4.125.85.210	206.72.192.170	184.233.253.93
16.183.221.37	237.194.138.156	165.149.106.223	117.1.116.57
113.162.150.241	37.49.230.11	129.211.123.242	68.183.46.134
111.2.184.12	42.117.62.146	183.214.161.25	60.172.85.171