70.44.2.117 - IPInfo

Basic Info

City: Fleetwood

Region: Pennsylvania

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: PenTeleData Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
70.44.236.57	attackbots	Honeypot attack, port: 5555, PTR: 70.44.236.57.res-cmts.hzl2.ptd.net.	2020-09-07 00:54:00
70.44.236.57	attack	Honeypot attack, port: 5555, PTR: 70.44.236.57.res-cmts.hzl2.ptd.net.	2020-09-06 16:14:18
70.44.236.57	attack	Honeypot attack, port: 5555, PTR: 70.44.236.57.res-cmts.hzl2.ptd.net.	2020-09-06 08:15:53
70.44.20.16	attackbotsspam	port scan and connect, tcp 22 (ssh)	2020-07-11 06:30:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 70.44.2.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47394
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;70.44.2.117.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 25 02:33:12 CST 2019
;; MSG SIZE  rcvd: 115

Host info

117.2.44.70.in-addr.arpa domain name pointer 70.44.2.117.res-cmts.flt3.ptd.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
117.2.44.70.in-addr.arpa	name = 70.44.2.117.res-cmts.flt3.ptd.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.142	attack	Nov 30 02:00:24 TORMINT sshd\[23302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Nov 30 02:00:26 TORMINT sshd\[23302\]: Failed password for root from 222.186.173.142 port 41840 ssh2 Nov 30 02:00:44 TORMINT sshd\[23304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root ...	2019-11-30 15:18:25
125.124.147.117	attackspambots	Nov 30 01:39:09 linuxvps sshd\[40042\]: Invalid user pcap from 125.124.147.117 Nov 30 01:39:09 linuxvps sshd\[40042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.147.117 Nov 30 01:39:11 linuxvps sshd\[40042\]: Failed password for invalid user pcap from 125.124.147.117 port 34614 ssh2 Nov 30 01:43:09 linuxvps sshd\[42281\]: Invalid user k from 125.124.147.117 Nov 30 01:43:09 linuxvps sshd\[42281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.147.117	2019-11-30 14:46:02
140.143.223.242	attack	Nov 29 20:27:41 php1 sshd\[2510\]: Invalid user set from 140.143.223.242 Nov 29 20:27:41 php1 sshd\[2510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.223.242 Nov 29 20:27:44 php1 sshd\[2510\]: Failed password for invalid user set from 140.143.223.242 port 35604 ssh2 Nov 29 20:31:11 php1 sshd\[2718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.223.242 user=www-data Nov 29 20:31:13 php1 sshd\[2718\]: Failed password for www-data from 140.143.223.242 port 35770 ssh2	2019-11-30 14:40:46
171.235.61.38	attackbotsspam	$f2bV_matches	2019-11-30 14:45:42
109.116.196.114	attack	firewall-block, port(s): 23/tcp	2019-11-30 15:10:56
113.194.132.62	attackspambots	SpamReport	2019-11-30 15:08:44
106.12.187.27	attackbotsspam	Malicious brute force vulnerability hacking attacks	2019-11-30 15:12:34
77.40.3.120	attack	Nov 30 06:15:05 heicom postfix/smtpd\[15512\]: warning: unknown\[77.40.3.120\]: SASL LOGIN authentication failed: authentication failure Nov 30 06:28:26 heicom postfix/smtpd\[15705\]: warning: unknown\[77.40.3.120\]: SASL LOGIN authentication failed: authentication failure Nov 30 06:43:53 heicom postfix/smtpd\[16060\]: warning: unknown\[77.40.3.120\]: SASL LOGIN authentication failed: authentication failure Nov 30 06:44:08 heicom postfix/smtpd\[16060\]: warning: unknown\[77.40.3.120\]: SASL LOGIN authentication failed: authentication failure Nov 30 06:55:43 heicom postfix/smtpd\[16224\]: warning: unknown\[77.40.3.120\]: SASL LOGIN authentication failed: authentication failure ...	2019-11-30 15:14:06
218.92.0.193	attackspambots	Nov 30 07:50:29 MK-Soft-VM6 sshd[12523]: Failed password for root from 218.92.0.193 port 55791 ssh2 Nov 30 07:50:33 MK-Soft-VM6 sshd[12523]: Failed password for root from 218.92.0.193 port 55791 ssh2 ...	2019-11-30 14:52:18
69.16.204.219	attack	69.16.204.219 - - \[30/Nov/2019:06:30:38 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 69.16.204.219 - - \[30/Nov/2019:06:30:39 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-30 14:56:12
140.143.163.22	attackspambots	SSH brutforce	2019-11-30 15:07:00
183.56.212.91	attackspambots	Nov 29 20:27:09 hpm sshd\[31497\]: Invalid user 12345678 from 183.56.212.91 Nov 29 20:27:09 hpm sshd\[31497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.56.212.91 Nov 29 20:27:11 hpm sshd\[31497\]: Failed password for invalid user 12345678 from 183.56.212.91 port 50426 ssh2 Nov 29 20:31:16 hpm sshd\[31766\]: Invalid user 666666666 from 183.56.212.91 Nov 29 20:31:16 hpm sshd\[31766\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.56.212.91	2019-11-30 14:45:20
185.232.67.6	attack	Nov 30 08:01:54 dedicated sshd[7747]: Invalid user admin from 185.232.67.6 port 44644	2019-11-30 15:03:00
93.153.55.220	attackbots	SSHScan	2019-11-30 15:13:33
182.61.105.104	attackspam	Nov 30 07:12:24 ns382633 sshd\[16890\]: Invalid user temp from 182.61.105.104 port 33162 Nov 30 07:12:24 ns382633 sshd\[16890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104 Nov 30 07:12:26 ns382633 sshd\[16890\]: Failed password for invalid user temp from 182.61.105.104 port 33162 ssh2 Nov 30 07:30:30 ns382633 sshd\[20306\]: Invalid user dorlene from 182.61.105.104 port 42422 Nov 30 07:30:30 ns382633 sshd\[20306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.104	2019-11-30 14:54:39

Recently Reported IPs

2a02:560:4163:1f00:dd1:4c85:ebbe:a323	124.54.97.144	192.3.58.81	49.189.37.245
120.203.104.186	210.221.122.204	99.23.163.107	36.244.203.17
180.103.180.9	185.72.235.191	41.34.34.67	64.206.195.233
45.41.184.37	119.232.120.53	84.207.211.128	77.42.114.131
149.135.46.118	191.208.16.40	212.156.204.251	55.216.24.211