212.85.197.136

Basic Info

City: unknown

Region: unknown

Country: Ghana

Internet Service Provider: Wireless Network Accra

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 212.85.197.136 on Port 445(SMB)	2019-11-17 04:54:27

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.85.197.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.85.197.136.			IN	A

;; AUTHORITY SECTION:
.			493	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111601 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 17 04:54:23 CST 2019
;; MSG SIZE  rcvd: 118

Host info

136.197.85.212.in-addr.arpa domain name pointer ip-197-136.africaonline.com.gh.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
136.197.85.212.in-addr.arpa	name = ip-197-136.africaonline.com.gh.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.88.243.216	attack	Dovecot Invalid User Login Attempt.	2020-04-14 12:20:08
35.200.227.76	attackbots	2020-04-14T04:06:38.946526shield sshd\[6590\]: Invalid user martinez from 35.200.227.76 port 53146 2020-04-14T04:06:38.950355shield sshd\[6590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.227.200.35.bc.googleusercontent.com 2020-04-14T04:06:41.498047shield sshd\[6590\]: Failed password for invalid user martinez from 35.200.227.76 port 53146 ssh2 2020-04-14T04:10:28.412041shield sshd\[7202\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.227.200.35.bc.googleusercontent.com user=root 2020-04-14T04:10:30.534132shield sshd\[7202\]: Failed password for root from 35.200.227.76 port 49934 ssh2	2020-04-14 12:27:16
99.183.144.132	attackbots	Apr 14 05:55:21 plex sshd[16043]: Invalid user doug from 99.183.144.132 port 51676	2020-04-14 12:20:55
167.71.155.236	attackbots	Apr 14 06:38:42 eventyay sshd[27665]: Failed password for root from 167.71.155.236 port 60784 ssh2 Apr 14 06:42:07 eventyay sshd[27789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.155.236 Apr 14 06:42:08 eventyay sshd[27789]: Failed password for invalid user redmine from 167.71.155.236 port 35932 ssh2 ...	2020-04-14 12:43:14
36.155.114.126	attackspam	Apr 14 06:48:55 plex sshd[18665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.114.126 user=root Apr 14 06:48:56 plex sshd[18665]: Failed password for root from 36.155.114.126 port 49630 ssh2	2020-04-14 12:49:29
112.85.42.178	attackspambots	2020-04-14T00:33:42.542162xentho-1 sshd[283760]: Failed password for root from 112.85.42.178 port 28476 ssh2 2020-04-14T00:33:36.112618xentho-1 sshd[283760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root 2020-04-14T00:33:38.102403xentho-1 sshd[283760]: Failed password for root from 112.85.42.178 port 28476 ssh2 2020-04-14T00:33:42.542162xentho-1 sshd[283760]: Failed password for root from 112.85.42.178 port 28476 ssh2 2020-04-14T00:33:48.228337xentho-1 sshd[283760]: Failed password for root from 112.85.42.178 port 28476 ssh2 2020-04-14T00:33:36.112618xentho-1 sshd[283760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root 2020-04-14T00:33:38.102403xentho-1 sshd[283760]: Failed password for root from 112.85.42.178 port 28476 ssh2 2020-04-14T00:33:42.542162xentho-1 sshd[283760]: Failed password for root from 112.85.42.178 port 28476 ssh2 2020-04-14T00:33:48.22 ...	2020-04-14 12:38:54
3.21.190.175	attack	Apr 13 23:54:35 lanister sshd[20636]: Invalid user mzv from 3.21.190.175 Apr 13 23:54:35 lanister sshd[20636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.21.190.175 Apr 13 23:54:35 lanister sshd[20636]: Invalid user mzv from 3.21.190.175 Apr 13 23:54:37 lanister sshd[20636]: Failed password for invalid user mzv from 3.21.190.175 port 37100 ssh2	2020-04-14 12:47:20
46.219.3.139	attack	2020-04-14T04:43:10.911872shield sshd\[14260\]: Invalid user mysql from 46.219.3.139 port 45798 2020-04-14T04:43:10.915956shield sshd\[14260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=relay.doris-adv.com 2020-04-14T04:43:13.379360shield sshd\[14260\]: Failed password for invalid user mysql from 46.219.3.139 port 45798 ssh2 2020-04-14T04:45:09.343395shield sshd\[14558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=relay.doris-adv.com user=root 2020-04-14T04:45:11.476033shield sshd\[14558\]: Failed password for root from 46.219.3.139 port 51322 ssh2	2020-04-14 12:54:19
210.14.147.67	attackspam	Unauthorized connection attempt detected from IP address 210.14.147.67 to port 2845 [T]	2020-04-14 12:41:30
125.134.61.251	attackbotsspam	DATE:2020-04-14 05:54:37, IP:125.134.61.251, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-04-14 12:50:49
106.75.7.27	attackbotsspam	Unauthorized SSH login attempts	2020-04-14 12:22:40
103.219.112.47	attackspam	Apr 13 21:09:03 mockhub sshd[5317]: Failed password for root from 103.219.112.47 port 36494 ssh2 ...	2020-04-14 12:17:35
75.157.110.192	attackspambots	Automated report (2020-04-14T03:55:10+00:00). Faked user agent detected.	2020-04-14 12:28:39
218.92.0.203	attackspambots	2020-04-14T06:33:34.599948vps751288.ovh.net sshd\[6231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root 2020-04-14T06:33:36.980390vps751288.ovh.net sshd\[6231\]: Failed password for root from 218.92.0.203 port 23834 ssh2 2020-04-14T06:33:38.651612vps751288.ovh.net sshd\[6231\]: Failed password for root from 218.92.0.203 port 23834 ssh2 2020-04-14T06:33:40.793428vps751288.ovh.net sshd\[6231\]: Failed password for root from 218.92.0.203 port 23834 ssh2 2020-04-14T06:34:31.531778vps751288.ovh.net sshd\[6281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root	2020-04-14 12:36:28
185.146.157.175	attack	Hacking	2020-04-14 12:33:40

Recently Reported IPs

174.3.141.208	188.83.103.113	196.202.83.164	200.197.96.87
89.39.79.110	113.170.175.155	13.183.150.237	251.57.251.12
187.50.34.5	232.58.185.168	151.252.132.207	35.214.255.97
213.145.51.218	235.151.148.42	193.228.92.247	167.71.196.203
248.138.160.94	62.56.128.31	223.19.157.15	213.41.201.245