80.70.102.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Inter-Telecom Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Mar 22 23:45:35 ovpn sshd\[4713\]: Invalid user dyanne from 80.70.102.134 Mar 22 23:45:35 ovpn sshd\[4713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.70.102.134 Mar 22 23:45:37 ovpn sshd\[4713\]: Failed password for invalid user dyanne from 80.70.102.134 port 48334 ssh2 Mar 22 23:51:01 ovpn sshd\[5994\]: Invalid user kreo from 80.70.102.134 Mar 22 23:51:01 ovpn sshd\[5994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.70.102.134	2020-03-23 07:08:28
attackspam	SSH Brute-Force attacks	2020-03-21 09:54:57
attackbots	Dec 7 06:47:19 [host] sshd[13274]: Invalid user oracle from 80.70.102.134 Dec 7 06:47:19 [host] sshd[13274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.70.102.134 Dec 7 06:47:21 [host] sshd[13274]: Failed password for invalid user oracle from 80.70.102.134 port 34106 ssh2	2019-12-07 14:07:24
attackbotsspam	F2B jail: sshd. Time: 2019-09-16 11:02:54, Reported by: VKReport	2019-09-16 17:08:46
attackspam	2019-09-10T06:19:53.471436abusebot.cloudsearch.cf sshd\[15591\]: Invalid user webadmin from 80.70.102.134 port 42030	2019-09-10 14:31:44
attack	Sep 9 23:55:53 microserver sshd[5967]: Invalid user user1 from 80.70.102.134 port 43124 Sep 9 23:55:53 microserver sshd[5967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.70.102.134 Sep 9 23:55:55 microserver sshd[5967]: Failed password for invalid user user1 from 80.70.102.134 port 43124 ssh2 Sep 10 00:02:04 microserver sshd[6778]: Invalid user user from 80.70.102.134 port 51234 Sep 10 00:02:04 microserver sshd[6778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.70.102.134 Sep 10 00:14:15 microserver sshd[9438]: Invalid user testing from 80.70.102.134 port 40312 Sep 10 00:14:15 microserver sshd[9438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.70.102.134 Sep 10 00:14:17 microserver sshd[9438]: Failed password for invalid user testing from 80.70.102.134 port 40312 ssh2 Sep 10 00:20:26 microserver sshd[10624]: Invalid user deploy from 80.70.102.134 port 48610 Sep 10 00	2019-09-10 06:58:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.70.102.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3855
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.70.102.134.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 06:58:31 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 134.102.70.80.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 134.102.70.80.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
168.194.13.19	attack	Brute force attempt	2020-06-03 23:53:12
91.126.92.176	attack	Unauthorised access (Jun 3) SRC=91.126.92.176 LEN=52 TTL=120 ID=6588 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-04 00:20:03
201.247.110.186	attackbotsspam	Unauthorized connection attempt detected from IP address 201.247.110.186 to port 23	2020-06-04 00:35:24
159.146.95.198	attackspam	Automatic report - Port Scan Attack	2020-06-04 00:05:36
189.111.254.129	attackbots	Jun 3 16:45:35 srv sshd[19528]: Failed password for root from 189.111.254.129 port 48702 ssh2	2020-06-04 00:18:08
39.42.56.95	attackbots	Automatic report - Port Scan Attack	2020-06-04 00:04:42
113.235.119.199	attackspambots	Jun 3 16:52:06 haigwepa sshd[21484]: Failed password for root from 113.235.119.199 port 35746 ssh2 ...	2020-06-03 23:59:32
163.172.62.124	attack	Jun 3 13:46:53 serwer sshd\[14029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.62.124 user=root Jun 3 13:46:56 serwer sshd\[14029\]: Failed password for root from 163.172.62.124 port 57420 ssh2 Jun 3 13:52:25 serwer sshd\[14720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.62.124 user=root ...	2020-06-04 00:09:44
112.85.42.227	attackbots	Jun 3 12:05:24 NPSTNNYC01T sshd[11566]: Failed password for root from 112.85.42.227 port 55160 ssh2 Jun 3 12:06:52 NPSTNNYC01T sshd[11643]: Failed password for root from 112.85.42.227 port 51713 ssh2 Jun 3 12:06:55 NPSTNNYC01T sshd[11643]: Failed password for root from 112.85.42.227 port 51713 ssh2 ...	2020-06-04 00:10:16
45.14.150.86	attackspam	Jun 3 20:53:49 itv-usvr-01 sshd[6699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.86 user=root Jun 3 20:53:52 itv-usvr-01 sshd[6699]: Failed password for root from 45.14.150.86 port 48388 ssh2 Jun 3 20:58:24 itv-usvr-01 sshd[6902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.86 user=root Jun 3 20:58:27 itv-usvr-01 sshd[6902]: Failed password for root from 45.14.150.86 port 51364 ssh2 Jun 3 21:02:54 itv-usvr-01 sshd[7151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.86 user=root Jun 3 21:02:56 itv-usvr-01 sshd[7151]: Failed password for root from 45.14.150.86 port 54340 ssh2	2020-06-04 00:24:26
89.40.143.240	attack	Jun 3 18:43:14 debian kernel: [101559.124663] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=89.40.143.240 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=35064 PROTO=TCP SPT=57572 DPT=4313 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-04 00:04:10
37.59.46.228	attackbots	37.59.46.228 - - [03/Jun/2020:16:39:54 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 37.59.46.228 - - [03/Jun/2020:16:40:25 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 37.59.46.228 - - [03/Jun/2020:16:41:00 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 37.59.46.228 - - [03/Jun/2020:16:42:22 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 37.59.46.228 - - [03/Jun/2020:16:42:55 +0200] "POST /wp-login.php HTTP/1.1" 200 5379 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537 ...	2020-06-03 23:51:20
222.186.173.142	attackspam	2020-06-03T16:06:17.504121abusebot-3.cloudsearch.cf sshd[10477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root 2020-06-03T16:06:19.184624abusebot-3.cloudsearch.cf sshd[10477]: Failed password for root from 222.186.173.142 port 64948 ssh2 2020-06-03T16:06:22.435358abusebot-3.cloudsearch.cf sshd[10477]: Failed password for root from 222.186.173.142 port 64948 ssh2 2020-06-03T16:06:17.504121abusebot-3.cloudsearch.cf sshd[10477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root 2020-06-03T16:06:19.184624abusebot-3.cloudsearch.cf sshd[10477]: Failed password for root from 222.186.173.142 port 64948 ssh2 2020-06-03T16:06:22.435358abusebot-3.cloudsearch.cf sshd[10477]: Failed password for root from 222.186.173.142 port 64948 ssh2 2020-06-03T16:06:17.504121abusebot-3.cloudsearch.cf sshd[10477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-06-04 00:08:02
87.251.74.50	attackspam	2020-06-03T16:21:10.960228abusebot-8.cloudsearch.cf sshd[29090]: Invalid user support from 87.251.74.50 port 55630 2020-06-03T16:21:11.531416abusebot-8.cloudsearch.cf sshd[29089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.251.74.50 user=root 2020-06-03T16:21:13.612787abusebot-8.cloudsearch.cf sshd[29089]: Failed password for root from 87.251.74.50 port 55552 ssh2 2020-06-03T16:21:11.803346abusebot-8.cloudsearch.cf sshd[29090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.251.74.50 2020-06-03T16:21:10.960228abusebot-8.cloudsearch.cf sshd[29090]: Invalid user support from 87.251.74.50 port 55630 2020-06-03T16:21:13.884607abusebot-8.cloudsearch.cf sshd[29090]: Failed password for invalid user support from 87.251.74.50 port 55630 ssh2 2020-06-03T16:21:16.280992abusebot-8.cloudsearch.cf sshd[29101]: Invalid user 0101 from 87.251.74.50 port 13006 ...	2020-06-04 00:29:33
187.162.51.63	attack	Jun 3 15:35:59 vps687878 sshd\[4898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.162.51.63 user=root Jun 3 15:36:02 vps687878 sshd\[4898\]: Failed password for root from 187.162.51.63 port 43052 ssh2 Jun 3 15:39:46 vps687878 sshd\[5216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.162.51.63 user=root Jun 3 15:39:48 vps687878 sshd\[5216\]: Failed password for root from 187.162.51.63 port 45324 ssh2 Jun 3 15:43:36 vps687878 sshd\[5624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.162.51.63 user=root ...	2020-06-04 00:08:20

Recently Reported IPs

53.78.244.64	209.115.231.180	89.57.222.95	48.196.81.117
154.173.52.220	111.155.217.95	84.183.156.85	109.33.45.245
15.74.81.133	111.191.7.6	222.92.137.106	190.225.212.220
182.87.137.164	119.29.119.151	167.71.246.151	87.152.165.63
121.119.64.10	150.171.137.31	79.121.177.21	141.74.105.226