69.85.70.44 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Grand Valley Internet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Nov 27 20:11:44 fr01 sshd[27752]: Invalid user marieeliza from 69.85.70.44 ...	2019-11-28 06:31:04
attackspam	Nov 24 23:59:27 mout sshd[23330]: Invalid user rpm from 69.85.70.44 port 43482	2019-11-25 07:05:18
attackspam	fraudulent SSH attempt	2019-11-20 03:42:21
attackbotsspam	Invalid user schwallie from 69.85.70.44 port 59258	2019-11-19 14:10:14
attack	Nov 17 04:04:08 webhost01 sshd[20640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.44 Nov 17 04:04:10 webhost01 sshd[20640]: Failed password for invalid user user3 from 69.85.70.44 port 37030 ssh2 ...	2019-11-17 06:51:24
attack	Port Scan detected from 69.85.70.44 (US/United States/-). 4 hits in the last 76 seconds	2019-11-15 04:19:32
attackbots	2019-10-28T20:50:20.952744abusebot.cloudsearch.cf sshd\[24997\]: Invalid user jenifer from 69.85.70.44 port 47024	2019-10-29 04:51:15

Comments on same subnet:

IP	Type	Details	Datetime
69.85.70.37	attack	Invalid user test from 69.85.70.37 port 36708	2019-11-20 03:13:31
69.85.70.37	attackbots	Nov 16 11:49:33 legacy sshd[4200]: Failed password for root from 69.85.70.37 port 56226 ssh2 Nov 16 11:53:42 legacy sshd[4289]: Failed password for root from 69.85.70.37 port 37312 ssh2 ...	2019-11-16 21:51:08
69.85.70.37	attack	Nov 12 04:37:32 wbs sshd\[12713\]: Invalid user host from 69.85.70.37 Nov 12 04:37:32 wbs sshd\[12713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37 Nov 12 04:37:34 wbs sshd\[12713\]: Failed password for invalid user host from 69.85.70.37 port 44924 ssh2 Nov 12 04:41:56 wbs sshd\[13214\]: Invalid user donn from 69.85.70.37 Nov 12 04:41:56 wbs sshd\[13214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37	2019-11-12 22:47:42
69.85.70.37	attack	Nov 7 01:17:48 server sshd\[20312\]: Invalid user lx from 69.85.70.37 port 32944 Nov 7 01:17:48 server sshd\[20312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37 Nov 7 01:17:50 server sshd\[20312\]: Failed password for invalid user lx from 69.85.70.37 port 32944 ssh2 Nov 7 01:22:04 server sshd\[1935\]: Invalid user info4 from 69.85.70.37 port 44862 Nov 7 01:22:04 server sshd\[1935\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37	2019-11-07 09:13:03
69.85.70.37	attackspam	Nov 6 08:17:49 markkoudstaal sshd[9555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37 Nov 6 08:17:51 markkoudstaal sshd[9555]: Failed password for invalid user es from 69.85.70.37 port 54874 ssh2 Nov 6 08:22:07 markkoudstaal sshd[9945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.37	2019-11-06 20:51:00
69.85.70.38	attackbots	2019-10-19T19:30:16.108318scmdmz1 sshd\[31555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=linuxborg.gjisp.com user=root 2019-10-19T19:30:17.543146scmdmz1 sshd\[31555\]: Failed password for root from 69.85.70.38 port 53836 ssh2 2019-10-19T19:34:29.142217scmdmz1 sshd\[31863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=linuxborg.gjisp.com user=root ...	2019-10-20 01:44:33
69.85.70.38	attackbots	Oct 16 10:37:56 MK-Soft-VM3 sshd[23567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.38 Oct 16 10:37:58 MK-Soft-VM3 sshd[23567]: Failed password for invalid user Qaz@123456 from 69.85.70.38 port 41688 ssh2 ...	2019-10-16 17:38:07
69.85.70.98	attack	Oct 9 23:26:01 vps01 sshd[5857]: Failed password for root from 69.85.70.98 port 46100 ssh2	2019-10-10 05:35:12
69.85.70.98	attackspam	Oct 7 20:22:19 game-panel sshd[24827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 Oct 7 20:22:20 game-panel sshd[24827]: Failed password for invalid user Carla@2017 from 69.85.70.98 port 41100 ssh2 Oct 7 20:26:35 game-panel sshd[25004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98	2019-10-08 04:34:27
69.85.70.98	attackspam	2019-10-04T09:18:45.000990ns525875 sshd\[23765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 user=root 2019-10-04T09:18:46.955648ns525875 sshd\[23765\]: Failed password for root from 69.85.70.98 port 56010 ssh2 2019-10-04T09:22:32.699524ns525875 sshd\[28445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 user=root 2019-10-04T09:22:35.287798ns525875 sshd\[28445\]: Failed password for root from 69.85.70.98 port 39730 ssh2 ...	2019-10-05 00:51:47
69.85.70.98	attack	Oct 4 01:44:32 tdfoods sshd\[14322\]: Invalid user 123@wsxqaz from 69.85.70.98 Oct 4 01:44:32 tdfoods sshd\[14322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 Oct 4 01:44:34 tdfoods sshd\[14322\]: Failed password for invalid user 123@wsxqaz from 69.85.70.98 port 48070 ssh2 Oct 4 01:49:00 tdfoods sshd\[14698\]: Invalid user 123Net from 69.85.70.98 Oct 4 01:49:00 tdfoods sshd\[14698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98	2019-10-04 19:52:23
69.85.70.98	attackspambots	SSH Brute Force, server-1 sshd[30666]: Failed password for invalid user gpadmin from 69.85.70.98 port 40238 ssh2	2019-10-04 02:17:38
69.85.70.38	attackbots	Oct 2 17:45:36 vpn01 sshd[32358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.38 Oct 2 17:45:39 vpn01 sshd[32358]: Failed password for invalid user iitd from 69.85.70.38 port 48196 ssh2 ...	2019-10-03 04:31:34
69.85.70.98	attack	SSH Brute-Force attacks	2019-09-30 07:00:50
69.85.70.98	attack	Sep 28 21:47:18 lcdev sshd\[5539\]: Invalid user yu from 69.85.70.98 Sep 28 21:47:18 lcdev sshd\[5539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98 Sep 28 21:47:20 lcdev sshd\[5539\]: Failed password for invalid user yu from 69.85.70.98 port 59894 ssh2 Sep 28 21:51:35 lcdev sshd\[5923\]: Invalid user kronos from 69.85.70.98 Sep 28 21:51:35 lcdev sshd\[5923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.85.70.98	2019-09-29 16:04:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.85.70.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17727
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;69.85.70.44.			IN	A

;; AUTHORITY SECTION:
.			489	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102801 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 04:51:12 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 44.70.85.69.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.70.85.69.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.92.91.223	attack	Aug 2 15:09:03 xtremcommunity sshd\[3880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.91.223 user=games Aug 2 15:09:04 xtremcommunity sshd\[3880\]: Failed password for games from 210.92.91.223 port 55388 ssh2 Aug 2 15:13:51 xtremcommunity sshd\[4092\]: Invalid user exe from 210.92.91.223 port 49144 Aug 2 15:13:51 xtremcommunity sshd\[4092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.91.223 Aug 2 15:13:54 xtremcommunity sshd\[4092\]: Failed password for invalid user exe from 210.92.91.223 port 49144 ssh2 ...	2019-08-03 03:35:13
93.240.135.186	attackbots	Unauthorized connection attempt from IP address 93.240.135.186 on Port 445(SMB)	2019-08-03 02:58:34
182.73.165.10	attack	Unauthorized connection attempt from IP address 182.73.165.10 on Port 445(SMB)	2019-08-03 03:35:46
183.131.82.99	attack	2019-08-03T02:32:59.514947enmeeting.mahidol.ac.th sshd\[12174\]: User root from 183.131.82.99 not allowed because not listed in AllowUsers 2019-08-03T02:32:59.941304enmeeting.mahidol.ac.th sshd\[12174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99 user=root 2019-08-03T02:33:02.020254enmeeting.mahidol.ac.th sshd\[12174\]: Failed password for invalid user root from 183.131.82.99 port 46812 ssh2 ...	2019-08-03 03:39:21
40.118.46.159	attackbotsspam	Aug 2 18:41:29 XXX sshd[4440]: Invalid user slr from 40.118.46.159 port 49662	2019-08-03 03:22:57
177.137.168.149	attackspam	Jul 30 14:00:06 our-server-hostname postfix/smtpd[18539]: connect from unknown[177.137.168.149] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul 30 14:00:15 our-server-hostname postfix/smtpd[18539]: lost connection after RCPT from unknown[177.137.168.149] Jul 30 14:00:15 our-server-hostname postfix/smtpd[18539]: disconnect from unknown[177.137.168.149] Jul 30 14:21:28 our-server-hostname postfix/smtpd[18563]: connect from unknown[177.137.168.149] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.137.168.149	2019-08-03 03:03:10
14.243.161.57	attack	Unauthorized connection attempt from IP address 14.243.161.57 on Port 445(SMB)	2019-08-03 03:25:50
217.144.185.139	attackbotsspam	[portscan] Port scan	2019-08-03 02:48:30
89.38.147.215	attack	Fail2Ban Ban Triggered	2019-08-03 03:03:37
90.188.39.117	attackbots	Unauthorized connection attempt from IP address 90.188.39.117 on Port 445(SMB)	2019-08-03 03:21:37
104.248.187.179	attackspambots	leo_www	2019-08-03 03:37:20
94.159.72.222	attackspam	Unauthorized connection attempt from IP address 94.159.72.222 on Port 445(SMB)	2019-08-03 02:57:23
106.51.5.134	attackspam	Unauthorized connection attempt from IP address 106.51.5.134 on Port 445(SMB)	2019-08-03 03:16:32
92.51.125.26	attackspam	Unauthorized connection attempt from IP address 92.51.125.26 on Port 445(SMB)	2019-08-03 02:46:17
187.224.247.81	attackspam	Unauthorized connection attempt from IP address 187.224.247.81 on Port 445(SMB)	2019-08-03 03:07:25

Recently Reported IPs

62.210.211.137	45.182.159.188	218.149.228.147	91.206.200.231
202.134.191.156	170.254.73.16	202.113.3.218	125.26.6.98
146.0.131.255	217.68.215.32	5.53.125.68	207.246.249.202
139.99.77.204	109.122.122.247	139.99.77.197	65.139.80.198
45.227.253.140	69.129.26.153	10.32.37.38	209.124.66.15