85.113.45.145 - IPInfo

Basic Info

City: Samara

Region: Samara Oblast

Country: Russia

Internet Service Provider: JSC ER-Telecom Holding

Hostname: unknown

Organization: JSC ER-Telecom Holding

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	[portscan] Port scan	2019-10-13 14:36:05
attackbots	[portscan] Port scan	2019-08-05 03:44:50

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.113.45.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3699
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.113.45.145.			IN	A

;; AUTHORITY SECTION:
.			2177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080401 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 05 03:44:44 CST 2019
;; MSG SIZE  rcvd: 117

Host info

145.45.113.85.in-addr.arpa domain name pointer dynamicip-85-113-45-145.pppoe.samara.ertelecom.ru.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.45.113.85.in-addr.arpa	name = dynamicip-85-113-45-145.pppoe.samara.ertelecom.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.24.193	attackbotsspam	Dec 30 07:24:46 markkoudstaal sshd[26629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.193 Dec 30 07:24:48 markkoudstaal sshd[26629]: Failed password for invalid user ag1 from 106.12.24.193 port 55990 ssh2 Dec 30 07:28:09 markkoudstaal sshd[27009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.193	2019-12-30 16:49:07
177.69.237.53	attackbots	Invalid user guest from 177.69.237.53 port 40204	2019-12-30 16:23:46
159.89.165.99	attack	Dec 30 01:43:59 plusreed sshd[20373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.99 user=root Dec 30 01:44:01 plusreed sshd[20373]: Failed password for root from 159.89.165.99 port 18344 ssh2 ...	2019-12-30 16:51:26
49.88.112.55	attackspambots	Dec 30 08:50:56 ns381471 sshd[1694]: Failed password for root from 49.88.112.55 port 55573 ssh2 Dec 30 08:51:09 ns381471 sshd[1694]: error: maximum authentication attempts exceeded for root from 49.88.112.55 port 55573 ssh2 [preauth]	2019-12-30 16:15:06
112.85.42.173	attack	--- report --- Dec 30 04:46:06 -0300 sshd: Connection from 112.85.42.173 port 17234 Dec 30 04:46:17 -0300 sshd: Did not receive identification string from 112.85.42.173	2019-12-30 16:17:51
101.207.113.73	attackspambots	Invalid user admin from 101.207.113.73 port 52602	2019-12-30 16:29:58
217.112.142.22	attackbotsspam	Dec 30 07:28:34 server postfix/smtpd[7425]: NOQUEUE: reject: RCPT from warehouse.wokoro.com[217.112.142.22]: 554 5.7.1 Service unavailable; Client host [217.112.142.22] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2019-12-30 16:32:54
117.239.238.70	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-30 16:44:46
106.54.134.145	attack	Dec 30 09:32:48 sso sshd[26196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.134.145 Dec 30 09:32:50 sso sshd[26196]: Failed password for invalid user ezad from 106.54.134.145 port 35184 ssh2 ...	2019-12-30 16:43:58
103.83.36.101	attack	103.83.36.101 - - \[30/Dec/2019:08:45:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 7672 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.83.36.101 - - \[30/Dec/2019:08:45:45 +0100\] "POST /wp-login.php HTTP/1.0" 200 7502 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 103.83.36.101 - - \[30/Dec/2019:08:45:47 +0100\] "POST /wp-login.php HTTP/1.0" 200 7496 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-30 16:37:56
123.206.174.21	attackbotsspam	Automatic report - Banned IP Access	2019-12-30 16:38:52
182.61.46.245	attackspam	Dec 30 13:25:00 itv-usvr-02 sshd[1405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245 user=mysql Dec 30 13:25:02 itv-usvr-02 sshd[1405]: Failed password for mysql from 182.61.46.245 port 41666 ssh2 Dec 30 13:28:00 itv-usvr-02 sshd[1413]: Invalid user damn from 182.61.46.245 port 38178 Dec 30 13:28:00 itv-usvr-02 sshd[1413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245 Dec 30 13:28:00 itv-usvr-02 sshd[1413]: Invalid user damn from 182.61.46.245 port 38178 Dec 30 13:28:01 itv-usvr-02 sshd[1413]: Failed password for invalid user damn from 182.61.46.245 port 38178 ssh2	2019-12-30 16:55:11
95.85.12.25	attack	Dec 30 06:28:15 thevastnessof sshd[27703]: Failed password for invalid user thao from 95.85.12.25 port 59638 ssh2 ...	2019-12-30 16:46:46
110.137.82.223	attackspambots	1577687330 - 12/30/2019 07:28:50 Host: 110.137.82.223/110.137.82.223 Port: 445 TCP Blocked	2019-12-30 16:24:10
137.74.159.147	attackspam	Dec 30 08:42:58 ArkNodeAT sshd\[14416\]: Invalid user user from 137.74.159.147 Dec 30 08:42:58 ArkNodeAT sshd\[14416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.159.147 Dec 30 08:43:01 ArkNodeAT sshd\[14416\]: Failed password for invalid user user from 137.74.159.147 port 46952 ssh2	2019-12-30 16:31:52

Recently Reported IPs

69.68.102.161	78.52.124.165	121.0.147.141	79.158.115.38
154.119.124.103	78.188.167.146	124.124.144.147	99.146.28.95
77.247.108.171	121.84.133.108	126.184.32.50	172.34.199.77
65.30.69.109	149.150.138.81	198.255.136.220	53.140.13.196
61.7.253.197	105.206.111.230	58.209.17.190	99.37.216.55