137.189.12.85 - IPInfo

Basic Info

City: Tsuen Wan

Region: Tsuen Wan

Country: Hong Kong

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 137.189.12.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1103
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;137.189.12.85.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120200 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 02 14:33:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

85.12.189.137.in-addr.arpa domain name pointer pc12085.slp.cuhk.edu.hk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
85.12.189.137.in-addr.arpa	name = pc12085.slp.cuhk.edu.hk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.209.2	attackbotsspam	invalid user maemi from 167.71.209.2 port 39630 ssh2	2020-07-19 15:41:25
117.28.246.38	attackspambots	invalid user user from 117.28.246.38 port 33986 ssh2	2020-07-19 15:26:41
162.219.124.167	attackspambots	SSH Brute-Forcing (server1)	2020-07-19 15:30:10
165.22.54.19	attack	invalid user sales from 165.22.54.19 port 33034 ssh2	2020-07-19 15:41:43
111.72.195.127	attackspambots	Jul 19 09:49:50 srv1 postfix/smtpd[11214]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:56:58 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:56:59 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:57:00 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure Jul 19 09:57:02 srv1 postfix/smtpd[12080]: warning: unknown[111.72.195.127]: SASL LOGIN authentication failed: authentication failure ...	2020-07-19 16:03:54
159.89.48.56	attack	159.89.48.56 - - [19/Jul/2020:08:08:05 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.48.56 - - [19/Jul/2020:08:08:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.89.48.56 - - [19/Jul/2020:08:08:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-19 15:32:47
80.82.65.187	attackspam	Auto Fail2Ban report, multiple IMAP login attempts.	2020-07-19 16:04:48
150.129.8.12	attack	File does not exist%3a %2fvar%2fwww%2flegal-wine%2fpublic_html%2fcgi	2020-07-19 15:53:36
1.235.192.218	attack	$f2bV_matches	2020-07-19 15:34:50
176.10.99.200	attackspam	"POST /php?%2D%64+%61%6C%6C%6F%77%5F%75%72%6C%5F%69%6E%63%6C%75%64%65%3D%6F%6E+%2D%64+%73%61%66%65%5F%6D%6F%64%65%3D%6F%66%66+%2D%64+%73%75%68%6F%73%69%6E%2E%73%69%6D%75%6C%61%74%69%6F%6E%3D%6F%6E+%2D%64+%64%69%73%61%62%6C%65%5F%66%75%6E%63%74%69%6F%6E%73%3D%22%22+%2D%64+%6F%70%65%6E%5F%62%61%73%65%64%69%72%3D%6E%6F%6E%65+%2D%64+%61%75%74%6F%5F%70%72%65%70%65%6E%64%5F%66%69%6C%65%3D%70%68%70%3A%2F%2F%69%6E%70%75%74+%2D%64+%63%67%69%2E%66%6F%72%63%65%5F%72%65%64%69%72%65%63%74%3D%30+%2D%64+%63%67%69%2E%72%65%64%69%72%65%63%74%5F%73%74%61%74%75%73%5F%65%6E%76%3D%30+%2D%6E HTTP/1.1"%2	2020-07-19 15:35:06
115.135.20.99	attackbotsspam	Unauthorised access (Jul 19) SRC=115.135.20.99 LEN=40 TOS=0x08 TTL=56 ID=28133 TCP DPT=23 WINDOW=12941 SYN	2020-07-19 15:50:00
5.149.78.140	attack	Suspicious access to SMTP/POP/IMAP services.	2020-07-19 15:54:37
34.107.94.181	attackspam	Port Scan detected from 34.107.94.181 (DE/Germany/Hesse/Frankfurt am Main/181.94.107.34.bc.googleusercontent.com). 4 hits in the last 40 seconds	2020-07-19 15:25:54
115.248.162.241	attackbots	DATE:2020-07-19 05:54:54, IP:115.248.162.241, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-07-19 15:35:34
93.181.47.205	attackspam	Automatic report - Port Scan Attack	2020-07-19 15:46:56

Recently Reported IPs

150.4.83.219	72.228.135.144	68.79.90.54	171.235.73.16
106.158.174.169	103.253.42.49	187.103.82.110	208.165.198.190
182.58.113.216	125.232.47.6	167.141.35.224	203.234.51.170
80.176.6.208	133.194.178.203	5.231.122.189	126.205.112.108
57.195.217.244	147.13.157.45	12.101.13.43	213.124.53.15