80.12.70.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: France Telecom S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH login attempts.	2020-02-17 17:47:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.12.70.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13414
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.12.70.19.			IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021700 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 17:47:09 CST 2020
;; MSG SIZE  rcvd: 115

Host info

19.70.12.80.in-addr.arpa domain name pointer relais-nor19.orange.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.70.12.80.in-addr.arpa	name = relais-nor19.orange.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.143.72.25	attackbots	Jun 17 00:49:40 srv01 postfix/smtpd\[30081\]: warning: unknown\[185.143.72.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 00:49:53 srv01 postfix/smtpd\[30081\]: warning: unknown\[185.143.72.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 00:49:58 srv01 postfix/smtpd\[30448\]: warning: unknown\[185.143.72.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 00:50:06 srv01 postfix/smtpd\[30681\]: warning: unknown\[185.143.72.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 00:50:33 srv01 postfix/smtpd\[30681\]: warning: unknown\[185.143.72.25\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-17 06:51:25
92.222.234.219	attack	2020-06-16T22:28:17.658774shield sshd\[23524\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip219.ip-92-222-234.eu user=root 2020-06-16T22:28:19.661764shield sshd\[23524\]: Failed password for root from 92.222.234.219 port 8008 ssh2 2020-06-16T22:30:14.200246shield sshd\[24198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip219.ip-92-222-234.eu user=root 2020-06-16T22:30:15.927309shield sshd\[24198\]: Failed password for root from 92.222.234.219 port 44568 ssh2 2020-06-16T22:32:52.530880shield sshd\[24888\]: Invalid user bryce from 92.222.234.219 port 28671	2020-06-17 06:56:06
159.203.36.154	attackspam	Jun 16 22:11:02 vlre-nyc-1 sshd\[10589\]: Invalid user semenov from 159.203.36.154 Jun 16 22:11:02 vlre-nyc-1 sshd\[10589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.36.154 Jun 16 22:11:04 vlre-nyc-1 sshd\[10589\]: Failed password for invalid user semenov from 159.203.36.154 port 32791 ssh2 Jun 16 22:15:55 vlre-nyc-1 sshd\[10714\]: Invalid user charity from 159.203.36.154 Jun 16 22:15:55 vlre-nyc-1 sshd\[10714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.36.154 ...	2020-06-17 06:57:58
47.30.180.8	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-17 06:30:14
84.47.37.113	attack	Honeypot attack, port: 445, PTR: adsl-d113.84-47-37.t-com.sk.	2020-06-17 06:52:07
134.209.176.220	attackbots	192. On Jun 16 2020 experienced a Brute Force SSH login attempt -> 4 unique times by 134.209.176.220.	2020-06-17 06:50:54
177.184.216.30	attackbots	Brute force attempt	2020-06-17 06:48:44
123.206.17.3	attack	Jun 17 00:58:43 ift sshd\[31274\]: Failed password for root from 123.206.17.3 port 41864 ssh2Jun 17 01:01:27 ift sshd\[32012\]: Invalid user connect from 123.206.17.3Jun 17 01:01:29 ift sshd\[32012\]: Failed password for invalid user connect from 123.206.17.3 port 45634 ssh2Jun 17 01:04:14 ift sshd\[32422\]: Failed password for root from 123.206.17.3 port 49402 ssh2Jun 17 01:06:57 ift sshd\[33070\]: Failed password for root from 123.206.17.3 port 53172 ssh2 ...	2020-06-17 06:54:52
104.131.71.105	attackspambots	Invalid user lhd from 104.131.71.105 port 34814	2020-06-17 06:51:12
54.36.148.61	attackspam	Automated report (2020-06-17T04:46:36+08:00). Scraper detected at this address.	2020-06-17 06:47:09
174.219.135.40	attack	Brute forcing email accounts	2020-06-17 06:49:12
220.134.169.208	attackspambots	Honeypot attack, port: 81, PTR: 220-134-169-208.HINET-IP.hinet.net.	2020-06-17 06:41:05
222.186.180.41	attack	2020-06-16T22:23:36.044856abusebot-2.cloudsearch.cf sshd[31127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root 2020-06-16T22:23:38.131576abusebot-2.cloudsearch.cf sshd[31127]: Failed password for root from 222.186.180.41 port 24524 ssh2 2020-06-16T22:23:41.184206abusebot-2.cloudsearch.cf sshd[31127]: Failed password for root from 222.186.180.41 port 24524 ssh2 2020-06-16T22:23:36.044856abusebot-2.cloudsearch.cf sshd[31127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root 2020-06-16T22:23:38.131576abusebot-2.cloudsearch.cf sshd[31127]: Failed password for root from 222.186.180.41 port 24524 ssh2 2020-06-16T22:23:41.184206abusebot-2.cloudsearch.cf sshd[31127]: Failed password for root from 222.186.180.41 port 24524 ssh2 2020-06-16T22:23:36.044856abusebot-2.cloudsearch.cf sshd[31127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ss ...	2020-06-17 06:39:07
141.98.80.150	attackbotsspam	Jun 17 00:25:43 web01.agentur-b-2.de postfix/smtpd[504760]: lost connection after CONNECT from unknown[141.98.80.150] Jun 17 00:25:44 web01.agentur-b-2.de postfix/smtpd[504825]: lost connection after CONNECT from unknown[141.98.80.150] Jun 17 00:25:45 web01.agentur-b-2.de postfix/smtpd[504783]: lost connection after CONNECT from unknown[141.98.80.150] Jun 17 00:25:47 web01.agentur-b-2.de postfix/smtpd[504519]: warning: unknown[141.98.80.150]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 00:25:47 web01.agentur-b-2.de postfix/smtpd[504519]: lost connection after AUTH from unknown[141.98.80.150]	2020-06-17 06:52:27
113.10.158.214	attackspam	Invalid user qa from 113.10.158.214 port 57222	2020-06-17 06:24:11

Recently Reported IPs

85.158.142.199	1.7.7.1	183.82.109.165	104.237.50.195
176.223.209.9	196.218.16.138	167.114.31.232	104.47.41.33
168.95.5.216	104.47.32.33	203.76.121.222	113.161.167.7
223.207.241.252	117.54.121.30	196.218.157.102	195.4.92.218
64.68.198.23	74.208.5.3	212.23.6.67	196.218.156.224