1.70.64.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.70.64.88	attackbotsspam	Sep 1 13:28:14 shivevps sshd[28391]: Bad protocol version identification '\024' from 1.70.64.88 port 34368 ...	2020-09-02 03:23:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.70.64.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45004
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.70.64.99.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 14:29:57 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 99.64.70.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.64.70.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.204.123.134	attackspambots	20 attempts against mh-ssh on cloud	2020-02-10 06:05:10
180.167.254.238	attackbotsspam	Feb 9 16:44:49 legacy sshd[4510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.254.238 Feb 9 16:44:51 legacy sshd[4510]: Failed password for invalid user bpv from 180.167.254.238 port 37892 ssh2 Feb 9 16:48:25 legacy sshd[4619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.254.238 ...	2020-02-10 06:08:01
49.247.192.42	attackbotsspam	$f2bV_matches	2020-02-10 05:39:46
91.138.202.148	attack	port scan and connect, tcp 8080 (http-proxy)	2020-02-10 05:50:19
188.36.146.149	attack	Feb 9 20:05:28 yesfletchmain sshd\[10815\]: Invalid user lyh from 188.36.146.149 port 39670 Feb 9 20:05:28 yesfletchmain sshd\[10815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.36.146.149 Feb 9 20:05:30 yesfletchmain sshd\[10815\]: Failed password for invalid user lyh from 188.36.146.149 port 39670 ssh2 Feb 9 20:07:49 yesfletchmain sshd\[10845\]: Invalid user yge from 188.36.146.149 port 33094 Feb 9 20:07:49 yesfletchmain sshd\[10845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.36.146.149 ...	2020-02-10 05:58:41
188.254.0.2	attackspambots	Feb 9 22:20:16 srv206 sshd[2460]: Invalid user fhw from 188.254.0.2 Feb 9 22:20:16 srv206 sshd[2460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.2 Feb 9 22:20:16 srv206 sshd[2460]: Invalid user fhw from 188.254.0.2 Feb 9 22:20:17 srv206 sshd[2460]: Failed password for invalid user fhw from 188.254.0.2 port 38026 ssh2 ...	2020-02-10 06:07:41
138.197.138.67	attack	Feb 9 16:14:56 DAAP sshd[5507]: Invalid user ssu from 138.197.138.67 port 57028 Feb 9 16:14:57 DAAP sshd[5507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.138.67 Feb 9 16:14:56 DAAP sshd[5507]: Invalid user ssu from 138.197.138.67 port 57028 Feb 9 16:14:58 DAAP sshd[5507]: Failed password for invalid user ssu from 138.197.138.67 port 57028 ssh2 Feb 9 16:16:21 DAAP sshd[5515]: Invalid user kij from 138.197.138.67 port 39314 ...	2020-02-10 05:51:10
83.97.20.33	attackbots	firewall-block, port(s): 1080/tcp, 3128/tcp, 8089/tcp	2020-02-10 06:09:14
175.195.228.7	attackbotsspam	DATE:2020-02-09 14:28:37, IP:175.195.228.7, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-02-10 05:22:24
202.9.123.170	attackbots	202.9.123.170 - - \[09/Feb/2020:14:26:52 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 738 "-" "Mozilla/5.0 $Windows NT 6.1\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/59.0.3071.109 Safari/537.36" 202.9.123.170 - - \[09/Feb/2020:14:27:10 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 738 "-" "Mozilla/5.0 $Windows NT 6.1\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/59.0.3071.109 Safari/537.36" 202.9.123.170 - - \[09/Feb/2020:14:27:18 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 738 "-" "Mozilla/5.0 $Windows NT 6.1\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/59.0.3071.109 Safari/537.36"	2020-02-10 06:02:33
157.230.129.73	attack	Automatic report - Banned IP Access	2020-02-10 05:36:09
91.121.101.159	attackspambots	pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.101.159 Failed password for invalid user nen from 91.121.101.159 port 36584 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.101.159	2020-02-10 05:46:06
54.39.147.2	attackbots	Ssh brute force	2020-02-10 05:58:57
86.171.24.2	attack	2020-02-09T11:32:23.522858vostok sshd\[30584\]: Invalid user unw from 86.171.24.2 port 36402 \| Triggered by Fail2Ban at Vostok web server	2020-02-10 05:29:58
124.204.54.60	attackspam	Portscan or hack attempt detected by psad/fwsnort	2020-02-10 06:06:40

Recently Reported IPs

101.109.21.192	1.70.64.89	1.70.64.96	1.70.65.0
1.70.65.10	1.70.65.100	1.70.65.102	1.70.65.104
1.70.64.94	1.70.65.106	1.70.65.108	1.70.65.110
101.109.21.203	1.70.65.114	1.70.65.118	1.70.65.112
1.70.65.120	1.70.65.124	1.70.65.116	1.70.65.129