213.85.4.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
213.85.40.89	attackspam	Automatic report - SSH Brute-Force Attack	2020-04-27 06:57:49
213.85.40.69	attackspambots	Apr 21 11:45:09 roki sshd[18448]: refused connect from 213.85.40.69 (213.85.40.69) Apr 21 11:45:49 roki sshd[18496]: refused connect from 213.85.40.69 (213.85.40.69) Apr 21 11:45:57 roki sshd[18505]: refused connect from 213.85.40.69 (213.85.40.69) Apr 21 11:46:06 roki sshd[18515]: refused connect from 213.85.40.69 (213.85.40.69) Apr 21 11:46:14 roki sshd[18525]: refused connect from 213.85.40.69 (213.85.40.69) ...	2020-04-21 18:34:00
213.85.40.90	attackspambots	Scanning random ports - tries to find possible vulnerable services	2020-02-27 09:32:36
213.85.40.90	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 22:02:07,757 INFO [amun_request_handler] PortScan Detected on Port: 445 (213.85.40.90)	2019-08-29 12:20:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.85.4.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22274
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;213.85.4.12.			IN	A

;; AUTHORITY SECTION:
.			588	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:07:44 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 12.4.85.213.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.4.85.213.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
42.117.220.92	attackspambots	Unauthorised access (Aug 8) SRC=42.117.220.92 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=41640 TCP DPT=23 WINDOW=64002 SYN	2020-08-09 00:38:48
111.72.194.156	attackbots	Aug 8 17:42:12 srv01 postfix/smtpd\[12048\]: warning: unknown\[111.72.194.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 17:45:41 srv01 postfix/smtpd\[12048\]: warning: unknown\[111.72.194.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 17:45:52 srv01 postfix/smtpd\[12048\]: warning: unknown\[111.72.194.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 17:46:08 srv01 postfix/smtpd\[12048\]: warning: unknown\[111.72.194.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 8 17:46:28 srv01 postfix/smtpd\[12048\]: warning: unknown\[111.72.194.156\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-09 00:45:22
209.65.71.3	attack	Aug 8 16:43:16 vps1 sshd[8214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.65.71.3 Aug 8 16:43:18 vps1 sshd[8214]: Failed password for invalid user paSSWoRD from 209.65.71.3 port 40184 ssh2 Aug 8 16:45:57 vps1 sshd[8238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.65.71.3 Aug 8 16:45:59 vps1 sshd[8238]: Failed password for invalid user qweasdzxc. from 209.65.71.3 port 60466 ssh2 Aug 8 16:48:42 vps1 sshd[8256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.65.71.3 Aug 8 16:48:45 vps1 sshd[8256]: Failed password for invalid user 4yqbm7,m`~!@ from 209.65.71.3 port 52505 ssh2 Aug 8 16:51:19 vps1 sshd[8284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.65.71.3 user=root ...	2020-08-09 00:40:00
190.13.173.67	attack	2020-08-08T10:23:24.1168301495-001 sshd[25667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.173.67 user=root 2020-08-08T10:23:26.2230381495-001 sshd[25667]: Failed password for root from 190.13.173.67 port 34790 ssh2 2020-08-08T10:26:25.6891391495-001 sshd[25809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.173.67 user=root 2020-08-08T10:26:28.3119641495-001 sshd[25809]: Failed password for root from 190.13.173.67 port 44050 ssh2 2020-08-08T10:29:17.7826811495-001 sshd[25939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.173.67 user=root 2020-08-08T10:29:19.6831161495-001 sshd[25939]: Failed password for root from 190.13.173.67 port 53310 ssh2 ...	2020-08-09 00:29:18
72.167.226.88	attackbots	72.167.226.88 - - [08/Aug/2020:17:33:15 +0100] "POST /wp-login.php HTTP/1.1" 200 2013 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 72.167.226.88 - - [08/Aug/2020:17:33:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1971 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 72.167.226.88 - - [08/Aug/2020:17:33:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2013 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 00:58:44
40.115.242.24	attackspam	[f2b] sshd bruteforce, retries: 1	2020-08-09 00:52:23
112.85.42.181	attackspambots	2020-08-08T16:35:29.376173shield sshd\[13871\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root 2020-08-08T16:35:31.446540shield sshd\[13871\]: Failed password for root from 112.85.42.181 port 5091 ssh2 2020-08-08T16:35:34.266562shield sshd\[13871\]: Failed password for root from 112.85.42.181 port 5091 ssh2 2020-08-08T16:35:37.841489shield sshd\[13871\]: Failed password for root from 112.85.42.181 port 5091 ssh2 2020-08-08T16:35:41.307941shield sshd\[13871\]: Failed password for root from 112.85.42.181 port 5091 ssh2	2020-08-09 00:54:31
170.233.30.33	attackspam	Aug 8 16:03:54 icinga sshd[54465]: Failed password for root from 170.233.30.33 port 51272 ssh2 Aug 8 16:11:49 icinga sshd[2198]: Failed password for root from 170.233.30.33 port 53478 ssh2 ...	2020-08-09 00:37:50
185.21.69.188	attackspambots	20/8/8@08:13:32: FAIL: Alarm-Intrusion address from=185.21.69.188 ...	2020-08-09 00:36:47
193.118.53.194	attackspam	nginx/IPasHostname/a4a6f	2020-08-09 00:18:54
218.92.0.250	attack	Aug 8 13:14:27 firewall sshd[6255]: Failed password for root from 218.92.0.250 port 42906 ssh2 Aug 8 13:14:30 firewall sshd[6255]: Failed password for root from 218.92.0.250 port 42906 ssh2 Aug 8 13:14:33 firewall sshd[6255]: Failed password for root from 218.92.0.250 port 42906 ssh2 ...	2020-08-09 00:28:27
163.172.117.227	attackspambots	xmlrpc attack	2020-08-09 01:01:07
45.129.33.14	attack	08/08/2020-12:22:46.396474 45.129.33.14 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-08-09 00:31:50
51.15.147.201	attackbots	51.15.147.201 - - [08/Aug/2020:17:11:38 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.15.147.201 - - [08/Aug/2020:17:11:39 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.15.147.201 - - [08/Aug/2020:17:11:39 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 00:26:50
45.119.59.167	attack	Automatic report - Port Scan Attack	2020-08-09 00:45:06

Recently Reported IPs

190.220.16.165	138.118.235.192	193.93.194.195	114.40.114.58
209.141.41.193	103.145.45.10	49.145.195.208	182.200.35.217
220.198.207.32	195.77.249.72	183.251.172.78	122.254.34.80
200.41.182.243	219.157.54.4	14.185.72.246	113.184.208.112
120.85.117.59	1.197.81.150	58.177.94.90	67.85.208.148