205.185.121.13

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Frantech Solutions

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	TCP ports : 888 / 3389; UDP port : 1900	2020-09-27 04:03:18
attackspambots	TCP ports : 888 / 3389; UDP port : 1900	2020-09-26 20:08:54

Comments on same subnet:

IP	Type	Details	Datetime
205.185.121.209	attack	TCP (SYN) 205.185.121.209:41968 -> port 11211, len 44	2020-07-09 13:42:05
205.185.121.209	attackspambots	UDP 205.185.121.209:43296 -> port 1900, len 121	2020-07-08 11:37:38
205.185.121.155	attackspambots	Mar 27 20:55:47 mockhub sshd[25434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.121.155 Mar 27 20:55:50 mockhub sshd[25434]: Failed password for invalid user ild from 205.185.121.155 port 52530 ssh2 ...	2020-03-28 12:00:13
205.185.121.155	attackspam	Mar 20 23:10:01 [host] sshd[17650]: Invalid user e Mar 20 23:10:01 [host] sshd[17650]: pam_unix(sshd: Mar 20 23:10:03 [host] sshd[17650]: Failed passwor	2020-03-21 06:25:17
205.185.121.44	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-11-03 06:50:42
205.185.121.44	attackspam	Trying ports that it shouldn't be.	2019-09-30 19:19:37
205.185.121.209	attackbotsspam	Automatic report - Banned IP Access	2019-07-28 21:13:09
205.185.121.52	attack	ZTE Router Exploit Scanner	2019-07-25 05:54:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 205.185.121.13
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57779
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;205.185.121.13.			IN	A

;; AUTHORITY SECTION:
.			167	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092600 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 26 20:08:39 CST 2020
;; MSG SIZE  rcvd: 118

Host info

13.121.185.205.in-addr.arpa domain name pointer la3.derpify.me.

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
13.121.185.205.in-addr.arpa	name = la3.derpify.me.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.192.91	attackbotsspam	May 25 14:50:22 h2779839 sshd[25717]: Invalid user admin from 106.12.192.91 port 47504 May 25 14:50:22 h2779839 sshd[25717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.192.91 May 25 14:50:22 h2779839 sshd[25717]: Invalid user admin from 106.12.192.91 port 47504 May 25 14:50:24 h2779839 sshd[25717]: Failed password for invalid user admin from 106.12.192.91 port 47504 ssh2 May 25 14:53:46 h2779839 sshd[25793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.192.91 user=root May 25 14:53:48 h2779839 sshd[25793]: Failed password for root from 106.12.192.91 port 34472 ssh2 May 25 14:57:16 h2779839 sshd[26007]: Invalid user noguiez from 106.12.192.91 port 49706 May 25 14:57:16 h2779839 sshd[26007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.192.91 May 25 14:57:16 h2779839 sshd[26007]: Invalid user noguiez from 106.12.192.91 port 49706 May 25 ...	2020-05-26 00:15:07
92.45.81.179	attackbots	Unauthorized connection attempt from IP address 92.45.81.179 on Port 445(SMB)	2020-05-26 00:51:41
179.96.134.154	attackspambots	Unauthorized connection attempt from IP address 179.96.134.154 on Port 445(SMB)	2020-05-26 00:38:52
185.153.199.45	attackbots	RDP Brute-Force	2020-05-26 00:09:09
148.70.125.42	attackspam	(sshd) Failed SSH login from 148.70.125.42 (CN/China/-): 5 in the last 3600 secs	2020-05-26 00:45:05
2601:6c0:c006:4bd0:ddc7:a230:a4ce:9adf	attackbots	Fail2Ban Ban Triggered	2020-05-26 00:23:39
138.197.89.186	attack	May 25 08:00:29 Tower sshd[11205]: Connection from 138.197.89.186 port 55554 on 192.168.10.220 port 22 rdomain "" May 25 08:00:30 Tower sshd[11205]: Failed password for root from 138.197.89.186 port 55554 ssh2 May 25 08:00:30 Tower sshd[11205]: Received disconnect from 138.197.89.186 port 55554:11: Bye Bye [preauth] May 25 08:00:30 Tower sshd[11205]: Disconnected from authenticating user root 138.197.89.186 port 55554 [preauth]	2020-05-26 00:43:48
106.75.241.106	attackspam	(sshd) Failed SSH login from 106.75.241.106 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 25 15:45:18 s1 sshd[5966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.241.106 user=root May 25 15:45:20 s1 sshd[5966]: Failed password for root from 106.75.241.106 port 57316 ssh2 May 25 15:51:56 s1 sshd[6638]: Invalid user Administrator from 106.75.241.106 port 38014 May 25 15:51:58 s1 sshd[6638]: Failed password for invalid user Administrator from 106.75.241.106 port 38014 ssh2 May 25 15:57:30 s1 sshd[6933]: Invalid user nigga from 106.75.241.106 port 36738	2020-05-26 00:52:39
49.204.183.117	attackbots	Unauthorized connection attempt from IP address 49.204.183.117 on Port 445(SMB)	2020-05-26 00:28:43
212.71.239.225	attack	MVPower DVR TV Shell Unauthenticated Command Execution Vulnerability	2020-05-26 00:50:50
41.60.67.60	attack	Unauthorized connection attempt from IP address 41.60.67.60 on Port 445(SMB)	2020-05-26 00:42:00
106.13.120.224	attackbotsspam	2020-05-25T16:27:13.051464dmca.cloudsearch.cf sshd[5377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.120.224 user=root 2020-05-25T16:27:15.223312dmca.cloudsearch.cf sshd[5377]: Failed password for root from 106.13.120.224 port 32826 ssh2 2020-05-25T16:29:31.829480dmca.cloudsearch.cf sshd[5534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.120.224 user=root 2020-05-25T16:29:33.944681dmca.cloudsearch.cf sshd[5534]: Failed password for root from 106.13.120.224 port 57312 ssh2 2020-05-25T16:31:28.357053dmca.cloudsearch.cf sshd[5678]: Invalid user saether from 106.13.120.224 port 53570 2020-05-25T16:31:28.362754dmca.cloudsearch.cf sshd[5678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.120.224 2020-05-25T16:31:28.357053dmca.cloudsearch.cf sshd[5678]: Invalid user saether from 106.13.120.224 port 53570 2020-05-25T16:31:30.544201dmca.clouds ...	2020-05-26 00:40:08
113.119.44.122	attackbotsspam	Fail2Ban Ban Triggered	2020-05-26 00:12:00
179.191.215.148	attack	Unauthorized connection attempt from IP address 179.191.215.148 on Port 445(SMB)	2020-05-26 00:35:18
60.50.141.76	attackspambots	Automatic report - Port Scan Attack	2020-05-26 00:53:33

Recently Reported IPs

172.83.45.188	180.76.178.253	26.75.17.23	0.1.30.12
85.237.180.209	47.209.21.9	223.233.93.136	180.94.54.4
33.88.142.223	193.239.147.179	84.15.170.175	10.66.121.77
73.18.215.190	1.7.254.229	165.54.2.133	229.72.66.11
99.29.119.33	141.36.36.246	245.215.165.145	1.241.187.160