70.4.29.205 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 70.4.29.205
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2070
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;70.4.29.205.			IN	A

;; AUTHORITY SECTION:
.			137	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023122400 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 24 21:46:24 CST 2023
;; MSG SIZE  rcvd: 104

Host info

205.29.4.70.in-addr.arpa domain name pointer ip-70-4-29-205.ekrgmd.spcsdns.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
205.29.4.70.in-addr.arpa	name = ip-70-4-29-205.ekrgmd.spcsdns.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.227.15.124	attack	165.227.15.124 - - [11/Apr/2020:08:53:46 +0200] "GET /wp-login.php HTTP/1.1" 200 6136 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.227.15.124 - - [11/Apr/2020:08:53:50 +0200] "POST /wp-login.php HTTP/1.1" 200 7014 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.227.15.124 - - [11/Apr/2020:08:53:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-11 15:55:10
190.8.149.146	attack	Apr 11 02:43:48 ws12vmsma01 sshd[4492]: Invalid user administrues from 190.8.149.146 Apr 11 02:43:50 ws12vmsma01 sshd[4492]: Failed password for invalid user administrues from 190.8.149.146 port 40200 ssh2 Apr 11 02:48:07 ws12vmsma01 sshd[5065]: Invalid user spark from 190.8.149.146 ...	2020-04-11 15:51:38
104.236.182.15	attackspam	T: f2b ssh aggressive 3x	2020-04-11 16:12:08
222.186.180.147	attackbotsspam	Apr 11 10:01:32 nextcloud sshd\[6083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Apr 11 10:01:33 nextcloud sshd\[6083\]: Failed password for root from 222.186.180.147 port 5630 ssh2 Apr 11 10:01:49 nextcloud sshd\[6713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root	2020-04-11 16:09:20
192.82.66.181	attack	Apr 11 10:40:47 gw1 sshd[7166]: Failed password for root from 192.82.66.181 port 57643 ssh2 ...	2020-04-11 15:51:12
138.197.118.32	attackbotsspam	Apr 11 03:59:34 124388 sshd[22266]: Failed password for invalid user admin from 138.197.118.32 port 48044 ssh2 Apr 11 04:04:24 124388 sshd[22312]: Invalid user lidia from 138.197.118.32 port 57938 Apr 11 04:04:24 124388 sshd[22312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.118.32 Apr 11 04:04:24 124388 sshd[22312]: Invalid user lidia from 138.197.118.32 port 57938 Apr 11 04:04:25 124388 sshd[22312]: Failed password for invalid user lidia from 138.197.118.32 port 57938 ssh2	2020-04-11 15:40:59
94.199.198.137	attackspam	Apr 11 08:09:29 sigma sshd\[14377\]: Failed password for root from 94.199.198.137 port 37562 ssh2Apr 11 08:12:25 sigma sshd\[14549\]: Invalid user zxin10 from 94.199.198.137 ...	2020-04-11 15:33:35
45.133.99.14	attackbotsspam	Apr 11 09:22:16 srv01 postfix/smtpd\[30834\]: warning: unknown\[45.133.99.14\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 09:22:33 srv01 postfix/smtpd\[30834\]: warning: unknown\[45.133.99.14\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 09:33:00 srv01 postfix/smtpd\[30834\]: warning: unknown\[45.133.99.14\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 09:33:16 srv01 postfix/smtpd\[25092\]: warning: unknown\[45.133.99.14\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 09:33:32 srv01 postfix/smtpd\[31890\]: warning: unknown\[45.133.99.14\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-11 15:37:57
1.186.57.150	attackspam	Invalid user vbox from 1.186.57.150 port 57122	2020-04-11 16:06:46
222.186.15.115	attack	11.04.2020 07:33:08 SSH access blocked by firewall	2020-04-11 16:04:14
84.1.30.70	attack	Invalid user guest from 84.1.30.70 port 45130	2020-04-11 15:49:23
163.239.206.113	attack	Apr 11 08:00:04 minden010 sshd[20074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.239.206.113 Apr 11 08:00:07 minden010 sshd[20074]: Failed password for invalid user ftp from 163.239.206.113 port 34278 ssh2 Apr 11 08:03:49 minden010 sshd[21221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.239.206.113 ...	2020-04-11 15:26:53
89.248.160.150	attackspam	89.248.160.150 was recorded 24 times by 12 hosts attempting to connect to the following ports: 7857,7867,7877. Incident counter (4h, 24h, all-time): 24, 138, 10759	2020-04-11 15:54:55
195.138.64.34	attackspam	Fail2Ban Ban Triggered	2020-04-11 16:11:29
189.243.8.173	attackbotsspam	Apr 11 05:51:42 debian64 sshd[24284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.243.8.173 Apr 11 05:51:44 debian64 sshd[24284]: Failed password for invalid user r0mansyst3m from 189.243.8.173 port 50202 ssh2 ...	2020-04-11 15:48:16

Recently Reported IPs

110.242.68.66	222.187.223.22	102.58.135.91	236.228.96.205
108.181.123.165	51.158.201.114	185.246.84.195	45.8.176.52
82.57.130.158	179.159.141.185	146.88.241.76	128.208.34.44
156.146.22.7	223.103.255.117	199.104.119.129	161.97.69.231
0.7.3.79	192.210.181.247	178.128.220.36	50.177.243.203