85.113.7.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kyrgyzstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.113.7.93	attackbots	Honeypot attack, port: 445, PTR: 85-113-7-93.static.ktnet.kg.	2020-06-06 09:28:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.113.7.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58328
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.113.7.142.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 15:50:25 CST 2022
;; MSG SIZE  rcvd: 105

Host info

142.7.113.85.in-addr.arpa domain name pointer 85-113-7-142.static.ktnet.kg.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.7.113.85.in-addr.arpa	name = 85-113-7-142.static.ktnet.kg.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
121.190.197.205	attackspambots	2019-07-12T22:28:17.880121abusebot-6.cloudsearch.cf sshd\[20398\]: Invalid user charly from 121.190.197.205 port 41826	2019-07-13 06:47:30
150.66.1.167	attack	like pulling wings off a fly we discard the script kiddes packets	2019-07-13 06:31:38
203.198.185.113	attackbots	Jul 12 23:47:36 cp sshd[18741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.198.185.113	2019-07-13 06:11:33
119.29.242.84	attack	frenzy	2019-07-13 06:54:33
134.119.221.7	attackspambots	\[2019-07-12 17:28:46\] SECURITY\[22794\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-12T17:28:46.316-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="004441519470391",SessionID="0x7f75440e1cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/53238",ACLName="no_extension_match" \[2019-07-12 17:30:31\] SECURITY\[22794\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-12T17:30:31.862-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="008441519470391",SessionID="0x7f75440de058",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/60827",ACLName="no_extension_match" \[2019-07-12 17:32:30\] SECURITY\[22794\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-12T17:32:30.165-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="009441519470391",SessionID="0x7f754415c478",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/55553",ACLName="no_	2019-07-13 06:48:59
123.108.35.186	attackspam	Jul 12 21:58:17 mail sshd\[23503\]: Invalid user elisabetta from 123.108.35.186 port 38636 Jul 12 21:58:17 mail sshd\[23503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.108.35.186 Jul 12 21:58:18 mail sshd\[23503\]: Failed password for invalid user elisabetta from 123.108.35.186 port 38636 ssh2 Jul 12 22:04:08 mail sshd\[24893\]: Invalid user alfresco from 123.108.35.186 port 39648 Jul 12 22:04:08 mail sshd\[24893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.108.35.186	2019-07-13 06:35:30
119.193.111.120	attackbotsspam	Jul 12 22:12:30 mout sshd[1955]: Failed password for pi from 119.193.111.120 port 47710 ssh2 Jul 12 22:12:31 mout sshd[1955]: Connection closed by 119.193.111.120 port 47710 [preauth] Jul 12 23:38:08 mout sshd[3974]: Invalid user ssh-587 from 119.193.111.120 port 45520	2019-07-13 06:22:49
189.221.45.71	attack	Jul 12 21:55:52 h2034429 postfix/smtpd[8889]: connect from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] Jul x@x Jul 12 21:55:57 h2034429 postfix/smtpd[8889]: lost connection after DATA from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] Jul 12 21:55:57 h2034429 postfix/smtpd[8889]: disconnect from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 Jul 12 21:56:23 h2034429 postfix/smtpd[8889]: connect from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] Jul x@x Jul 12 21:56:33 h2034429 postfix/smtpd[8889]: lost connection after DATA from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] Jul 12 21:56:33 h2034429 postfix/smtpd[8889]: disconnect from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] ehlo=1 mail=1 rcpt=0/1 data=0/1 commands=2/4 Jul 12 21:56:46 h2034429 postfix/smtpd[8889]: connect from 189.221.45.71.cable.dyn.cableonline.com.mx[189.221.45.71] Jul x@x ........ ------------------------------------	2019-07-13 06:42:29
45.55.177.170	attack	Jul 12 18:50:44 vps200512 sshd\[8388\]: Invalid user csaba from 45.55.177.170 Jul 12 18:50:44 vps200512 sshd\[8388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.177.170 Jul 12 18:50:46 vps200512 sshd\[8388\]: Failed password for invalid user csaba from 45.55.177.170 port 59746 ssh2 Jul 12 18:55:28 vps200512 sshd\[8505\]: Invalid user mapr from 45.55.177.170 Jul 12 18:55:28 vps200512 sshd\[8505\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.177.170	2019-07-13 06:58:13
14.207.98.19	attackspambots	Jul 12 21:53:46 xxxxxxx sshd[2109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx-ll-14.207.98-19.dynamic.3bb.co.th Jul 12 21:53:48 xxxxxxx sshd[2109]: Failed password for invalid user admin from 14.207.98.19 port 58144 ssh2 Jul 12 21:53:49 xxxxxxx sshd[2109]: Connection closed by 14.207.98.19 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.207.98.19	2019-07-13 06:20:58
159.65.4.64	attackbotsspam	Reported by AbuseIPDB proxy server.	2019-07-13 06:21:25
79.2.138.202	attackspambots	Jul 12 17:43:03 askasleikir sshd[18849]: Failed password for invalid user pcap from 79.2.138.202 port 65001 ssh2	2019-07-13 06:56:56
94.191.21.35	attack	Jul 12 21:56:58 localhost sshd\[7372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.21.35 user=root Jul 12 21:57:00 localhost sshd\[7372\]: Failed password for root from 94.191.21.35 port 48096 ssh2 Jul 12 22:02:36 localhost sshd\[7658\]: Invalid user kevin from 94.191.21.35 port 46008 Jul 12 22:02:36 localhost sshd\[7658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.21.35 Jul 12 22:02:38 localhost sshd\[7658\]: Failed password for invalid user kevin from 94.191.21.35 port 46008 ssh2 ...	2019-07-13 06:23:52
82.94.117.122	attackspam	Multiple failed RDP login attempts	2019-07-13 06:56:21
80.110.91.32	attack	Jul 12 21:52:33 mxgate1 postfix/postscreen[21604]: CONNECT from [80.110.91.32]:45269 to [176.31.12.44]:25 Jul 12 21:52:33 mxgate1 postfix/dnsblog[21959]: addr 80.110.91.32 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 12 21:52:33 mxgate1 postfix/dnsblog[21959]: addr 80.110.91.32 listed by domain zen.spamhaus.org as 127.0.0.10 Jul 12 21:52:33 mxgate1 postfix/dnsblog[21961]: addr 80.110.91.32 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 12 21:52:33 mxgate1 postfix/dnsblog[21958]: addr 80.110.91.32 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 12 21:52:39 mxgate1 postfix/postscreen[21604]: DNSBL rank 4 for [80.110.91.32]:45269 Jul x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.110.91.32	2019-07-13 06:15:38

Recently Reported IPs

212.119.46.82	190.163.99.154	177.105.68.177	49.205.250.29
116.58.232.209	37.208.44.186	34.125.137.27	36.5.9.155
60.52.229.13	120.26.164.104	104.227.94.2	1.52.111.86
183.88.157.125	49.174.232.173	89.132.176.154	59.95.66.150
125.43.22.203	213.96.2.62	58.19.63.133	114.108.127.244