85.1.200.145 - IPInfo

Basic Info

City: Stachen

Region: Thurgau

Country: Switzerland

Internet Service Provider: Swisscom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.1.200.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.1.200.145.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022121702 1800 900 604800 86400

;; Query time: 182 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 18 05:04:23 CST 2022
;; MSG SIZE  rcvd: 105

Host info

145.200.1.85.in-addr.arpa domain name pointer 145.200.1.85.dynamic.wline.res.cust.swisscom.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.200.1.85.in-addr.arpa	name = 145.200.1.85.dynamic.wline.res.cust.swisscom.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.225.85	attackbots	Apr 11 23:48:39 pkdns2 sshd\[56027\]: Invalid user vcsa from 206.189.225.85Apr 11 23:48:42 pkdns2 sshd\[56027\]: Failed password for invalid user vcsa from 206.189.225.85 port 49230 ssh2Apr 11 23:52:45 pkdns2 sshd\[56205\]: Invalid user web from 206.189.225.85Apr 11 23:52:46 pkdns2 sshd\[56205\]: Failed password for invalid user web from 206.189.225.85 port 55860 ssh2Apr 11 23:56:58 pkdns2 sshd\[56399\]: Invalid user toor from 206.189.225.85Apr 11 23:57:00 pkdns2 sshd\[56399\]: Failed password for invalid user toor from 206.189.225.85 port 34258 ssh2 ...	2020-04-12 05:25:11
129.211.124.29	attack	Apr 11 22:57:23 mailserver sshd\[28046\]: Invalid user gituser from 129.211.124.29 ...	2020-04-12 05:06:35
222.186.175.216	attack	Apr 11 23:04:22 host01 sshd[22979]: Failed password for root from 222.186.175.216 port 54882 ssh2 Apr 11 23:04:25 host01 sshd[22979]: Failed password for root from 222.186.175.216 port 54882 ssh2 Apr 11 23:04:29 host01 sshd[22979]: Failed password for root from 222.186.175.216 port 54882 ssh2 Apr 11 23:04:32 host01 sshd[22979]: Failed password for root from 222.186.175.216 port 54882 ssh2 ...	2020-04-12 05:05:10
212.83.175.115	attack	[2020-04-11 16:48:43] NOTICE[12114] chan_sip.c: Registration from '"618"' failed for '212.83.175.115:24568' - Wrong password [2020-04-11 16:48:43] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-11T16:48:43.460-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="618",SessionID="0x7f020c10de98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.175.115/24568",Challenge="7aacf8cf",ReceivedChallenge="7aacf8cf",ReceivedHash="47e47693af63438142447ca11ddfa20c" [2020-04-11 16:57:17] NOTICE[12114] chan_sip.c: Registration from '"634"' failed for '212.83.175.115:24576' - Wrong password [2020-04-11 16:57:17] SECURITY[12128] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-11T16:57:17.517-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="634",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-04-12 05:13:29
112.85.42.180	attackbots	Apr 11 23:03:55 v22018086721571380 sshd[22819]: error: maximum authentication attempts exceeded for root from 112.85.42.180 port 12470 ssh2 [preauth]	2020-04-12 05:27:31
124.156.107.252	attack	Apr 11 16:49:47 NPSTNNYC01T sshd[11955]: Failed password for root from 124.156.107.252 port 33604 ssh2 Apr 11 16:53:37 NPSTNNYC01T sshd[12399]: Failed password for root from 124.156.107.252 port 49648 ssh2 Apr 11 16:57:34 NPSTNNYC01T sshd[12650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.107.252 ...	2020-04-12 05:01:31
193.142.146.21	attack	2020-04-11T21:09:32.530724abusebot-5.cloudsearch.cf sshd[10947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.142.146.21 user=root 2020-04-11T21:09:34.333061abusebot-5.cloudsearch.cf sshd[10947]: Failed password for root from 193.142.146.21 port 32788 ssh2 2020-04-11T21:09:34.579268abusebot-5.cloudsearch.cf sshd[10949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.142.146.21 user=root 2020-04-11T21:09:36.321594abusebot-5.cloudsearch.cf sshd[10949]: Failed password for root from 193.142.146.21 port 52652 ssh2 2020-04-11T21:09:36.564781abusebot-5.cloudsearch.cf sshd[10951]: Invalid user administrator from 193.142.146.21 port 45002 2020-04-11T21:09:36.570455abusebot-5.cloudsearch.cf sshd[10951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.142.146.21 2020-04-11T21:09:36.564781abusebot-5.cloudsearch.cf sshd[10951]: Invalid user administrator from 19 ...	2020-04-12 05:40:53
92.118.38.83	attackspambots	Apr 11 23:11:28 srv01 postfix/smtpd\[17712\]: warning: unknown\[92.118.38.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 23:11:38 srv01 postfix/smtpd\[15341\]: warning: unknown\[92.118.38.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 23:11:46 srv01 postfix/smtpd\[17712\]: warning: unknown\[92.118.38.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 23:11:48 srv01 postfix/smtpd\[29379\]: warning: unknown\[92.118.38.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 23:12:02 srv01 postfix/smtpd\[15341\]: warning: unknown\[92.118.38.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-12 05:12:32
106.12.142.52	attackspam	SSH auth scanning - multiple failed logins	2020-04-12 05:36:46
217.196.74.174	attackspambots	DATE:2020-04-11 22:57:08, IP:217.196.74.174, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-04-12 05:21:01
49.88.112.65	attackspam	Apr 11 23:22:04 vps sshd[692079]: Failed password for root from 49.88.112.65 port 17578 ssh2 Apr 11 23:23:12 vps sshd[697606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Apr 11 23:23:14 vps sshd[697606]: Failed password for root from 49.88.112.65 port 45773 ssh2 Apr 11 23:24:39 vps sshd[703811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Apr 11 23:24:41 vps sshd[703811]: Failed password for root from 49.88.112.65 port 20555 ssh2 ...	2020-04-12 05:24:55
222.186.175.150	attack	Apr 11 23:20:47 ArkNodeAT sshd\[22799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Apr 11 23:20:49 ArkNodeAT sshd\[22799\]: Failed password for root from 222.186.175.150 port 9264 ssh2 Apr 11 23:21:06 ArkNodeAT sshd\[22812\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root	2020-04-12 05:22:52
163.172.127.251	attack	Apr 11 22:56:45 h2829583 sshd[6385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251	2020-04-12 05:39:13
189.7.129.60	attackbotsspam	SSH Brute-Force attacks	2020-04-12 05:15:06
125.160.66.190	attackspambots	20/4/11@16:57:13: FAIL: Alarm-Network address from=125.160.66.190 ...	2020-04-12 05:18:22

Recently Reported IPs

60.2.237.89	35.4.243.5	246.232.251.137	202.175.106.251
64.180.145.172	164.86.104.111	31.55.200.106	224.147.60.87
192.3.61.141	189.132.88.94	188.74.172.56	188.253.235.137
188.101.78.2	151.154.95.245	61.161.53.80	69.30.155.241
15.125.130.218	116.9.254.245	244.156.245.189	218.149.229.52