71.85.97.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 71.85.97.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56897
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;71.85.97.145.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 20:47:39 CST 2025
;; MSG SIZE  rcvd: 105

Host info

145.97.85.71.in-addr.arpa domain name pointer syn-071-085-097-145.res.spectrum.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.97.85.71.in-addr.arpa	name = syn-071-085-097-145.res.spectrum.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.226	attackspam	2020-09-01T22:20:31.820949 sshd[279191]: Unable to negotiate with 222.186.173.226 port 28487: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-01T22:28:59.204658 sshd[284000]: Unable to negotiate with 222.186.173.226 port 53197: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-01T22:29:10.995419 sshd[284068]: Unable to negotiate with 222.186.173.226 port 32435: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth]	2020-09-02 04:29:32
114.99.2.11	attackspam	Sep 1 13:26:43 shivevps sshd[27572]: Bad protocol version identification '\024' from 114.99.2.11 port 44790 ...	2020-09-02 04:31:49
139.59.69.76	attackbotsspam	(sshd) Failed SSH login from 139.59.69.76 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 1 08:20:37 server2 sshd[7177]: Invalid user martina from 139.59.69.76 Sep 1 08:20:37 server2 sshd[7177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.76 Sep 1 08:20:38 server2 sshd[7177]: Failed password for invalid user martina from 139.59.69.76 port 37440 ssh2 Sep 1 08:35:22 server2 sshd[19612]: Invalid user www from 139.59.69.76 Sep 1 08:35:22 server2 sshd[19612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.69.76	2020-09-02 04:45:59
54.38.218.213	attack	Sep 1 13:26:21 shivevps sshd[26622]: Did not receive identification string from 54.38.218.213 port 36729 ...	2020-09-02 04:49:45
117.69.231.219	attackbotsspam	Sep 1 13:26:14 shivevps sshd[27181]: Bad protocol version identification '\024' from 117.69.231.219 port 59724 ...	2020-09-02 04:54:18
51.79.53.139	attackspam	2020-09-01T19:22[Censored Hostname] sshd[6976]: Failed password for root from 51.79.53.139 port 41934 ssh2 2020-09-01T19:22[Censored Hostname] sshd[6976]: Failed password for root from 51.79.53.139 port 41934 ssh2 2020-09-01T19:22[Censored Hostname] sshd[6976]: Failed password for root from 51.79.53.139 port 41934 ssh2[...]	2020-09-02 04:50:12
162.142.125.50	attack	Fail2Ban Ban Triggered	2020-09-02 04:31:23
190.149.156.91	attackspam	" "	2020-09-02 04:48:13
182.208.252.91	attackbots	Sep 1 14:30:54 web8 sshd\[20912\]: Invalid user oracle from 182.208.252.91 Sep 1 14:30:54 web8 sshd\[20912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.208.252.91 Sep 1 14:30:56 web8 sshd\[20912\]: Failed password for invalid user oracle from 182.208.252.91 port 40328 ssh2 Sep 1 14:33:54 web8 sshd\[22271\]: Invalid user zy from 182.208.252.91 Sep 1 14:33:54 web8 sshd\[22271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.208.252.91	2020-09-02 04:49:24
190.187.108.252	attackbots	Sep 1 13:26:32 shivevps sshd[27284]: Did not receive identification string from 190.187.108.252 port 37952 ...	2020-09-02 04:40:25
183.149.112.59	attackbots	Sep 1 13:26:36 shivevps sshd[27444]: Bad protocol version identification '\024' from 183.149.112.59 port 51110 ...	2020-09-02 04:37:23
222.175.100.120	attackspam	Icarus honeypot on github	2020-09-02 04:36:56
221.143.48.143	attack	Sep 1 19:40:45 rotator sshd\[16792\]: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 1 19:40:48 rotator sshd\[16792\]: Failed password for root from 221.143.48.143 port 33726 ssh2Sep 1 19:44:19 rotator sshd\[16809\]: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 1 19:44:19 rotator sshd\[16809\]: Invalid user made from 221.143.48.143Sep 1 19:44:21 rotator sshd\[16809\]: Failed password for invalid user made from 221.143.48.143 port 41260 ssh2Sep 1 19:47:58 rotator sshd\[17571\]: Address 221.143.48.143 maps to mailfwd.mailplug.co.kr, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 1 19:47:58 rotator sshd\[17571\]: Invalid user hadoop from 221.143.48.143 ...	2020-09-02 04:41:41
218.92.0.199	attackspam	Sep 1 22:37:52 pve1 sshd[14326]: Failed password for root from 218.92.0.199 port 54820 ssh2 Sep 1 22:37:55 pve1 sshd[14326]: Failed password for root from 218.92.0.199 port 54820 ssh2 ...	2020-09-02 04:51:46
84.17.60.216	attackspam	(From wehrle.robby@gmail.com) Hello, I have been informed to contact you. The CIA has been doing intensive research for the past fifty years researching on what we call so called life. That information has been collected and presented for you here https://bit.ly/3lqUJ3u This has been the finding as of seventeen years ago as of today. Now governments and other large organizations have develop technology around these concepts for their own deceptive uses. Soon you will be contacted by other means for counter measures and the part that you play in all this. Please get this as soon as possible because there are powers that be to take down this information about this.	2020-09-02 04:54:53

Recently Reported IPs

119.186.239.191	235.59.123.197	21.141.118.105	86.213.163.57
44.46.239.165	173.0.224.54	218.87.93.42	67.143.255.79
65.60.65.19	242.176.222.136	55.245.191.165	62.14.207.19
214.65.10.105	141.253.87.68	96.156.215.130	50.159.32.202
149.124.130.80	206.133.12.74	235.54.36.139	180.250.224.63