85.114.12.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OBIT Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-09 13:14:35,333 INFO [amun_request_handler] PortScan Detected on Port: 445 (85.114.12.94)	2019-07-10 06:37:11

Comments on same subnet:

IP	Type	Details	Datetime
85.114.122.114	attackbots	Sep 2 13:42:30 sip sshd[4979]: Failed password for root from 85.114.122.114 port 51540 ssh2 Sep 2 16:26:38 sip sshd[16007]: Failed password for root from 85.114.122.114 port 43412 ssh2	2020-09-03 23:16:48
85.114.122.114	attackbots	Sep 2 13:42:30 sip sshd[4979]: Failed password for root from 85.114.122.114 port 51540 ssh2 Sep 2 16:26:38 sip sshd[16007]: Failed password for root from 85.114.122.114 port 43412 ssh2	2020-09-03 14:50:31
85.114.122.114	attack	Sep 2 13:42:30 sip sshd[4979]: Failed password for root from 85.114.122.114 port 51540 ssh2 Sep 2 16:26:38 sip sshd[16007]: Failed password for root from 85.114.122.114 port 43412 ssh2	2020-09-03 07:04:07
85.114.120.222	attackbotsspam	2020-06-04T05:17:18.368886shield sshd\[11976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.114.120.222 user=root 2020-06-04T05:17:20.619850shield sshd\[11976\]: Failed password for root from 85.114.120.222 port 49170 ssh2 2020-06-04T05:20:17.257789shield sshd\[12840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.114.120.222 user=root 2020-06-04T05:20:19.082628shield sshd\[12840\]: Failed password for root from 85.114.120.222 port 39822 ssh2 2020-06-04T05:23:16.263855shield sshd\[13435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.114.120.222 user=root	2020-06-04 13:26:51
85.114.120.222	attackspam	prod11 ...	2020-05-26 02:49:16
85.114.121.72	attackspambots	Automatic report - XMLRPC Attack	2020-05-03 20:00:39
85.114.12.98	attackspambots	Unauthorized connection attempt from IP address 85.114.12.98 on Port 445(SMB)	2019-07-08 03:53:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.114.12.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23929
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.114.12.94.			IN	A

;; AUTHORITY SECTION:
.			2316	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070901 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 10 06:37:06 CST 2019
;; MSG SIZE  rcvd: 116

Host info

94.12.114.85.in-addr.arpa domain name pointer 85-114-12-94.obit.ru.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
94.12.114.85.in-addr.arpa	name = 85-114-12-94.obit.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.173	attack	Dec 10 19:27:09 zeus sshd[31222]: Failed password for root from 218.92.0.173 port 21876 ssh2 Dec 10 19:27:13 zeus sshd[31222]: Failed password for root from 218.92.0.173 port 21876 ssh2 Dec 10 19:27:18 zeus sshd[31222]: Failed password for root from 218.92.0.173 port 21876 ssh2 Dec 10 19:27:21 zeus sshd[31222]: Failed password for root from 218.92.0.173 port 21876 ssh2 Dec 10 19:27:25 zeus sshd[31222]: Failed password for root from 218.92.0.173 port 21876 ssh2	2019-12-11 03:35:47
142.4.204.122	attackbotsspam	Dec 10 09:25:20 web9 sshd\[30597\]: Invalid user liesel from 142.4.204.122 Dec 10 09:25:20 web9 sshd\[30597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122 Dec 10 09:25:22 web9 sshd\[30597\]: Failed password for invalid user liesel from 142.4.204.122 port 41692 ssh2 Dec 10 09:32:29 web9 sshd\[31712\]: Invalid user abcdefghij from 142.4.204.122 Dec 10 09:32:29 web9 sshd\[31712\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122	2019-12-11 03:39:46
122.51.182.164	attackspam	IDS	2019-12-11 03:28:19
187.32.113.171	attackbotsspam	Unauthorized connection attempt detected from IP address 187.32.113.171 to port 445	2019-12-11 03:05:25
5.160.172.146	attack	Dec 10 19:16:43 MK-Soft-Root2 sshd[29820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.160.172.146 Dec 10 19:16:46 MK-Soft-Root2 sshd[29820]: Failed password for invalid user posp from 5.160.172.146 port 32623 ssh2 ...	2019-12-11 03:18:44
107.170.65.115	attack	fail2ban	2019-12-11 03:18:00
106.51.0.215	attackspam	Unauthorized connection attempt detected from IP address 106.51.0.215 to port 445	2019-12-11 03:19:42
49.247.214.67	attack	Dec 10 08:36:12 hpm sshd\[25774\]: Invalid user kun from 49.247.214.67 Dec 10 08:36:12 hpm sshd\[25774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67 Dec 10 08:36:14 hpm sshd\[25774\]: Failed password for invalid user kun from 49.247.214.67 port 52490 ssh2 Dec 10 08:45:52 hpm sshd\[26780\]: Invalid user aminudin from 49.247.214.67 Dec 10 08:45:52 hpm sshd\[26780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67	2019-12-11 03:33:34
158.69.22.218	attackspam	Dec 10 08:41:39 php1 sshd\[16798\]: Invalid user gp from 158.69.22.218 Dec 10 08:41:39 php1 sshd\[16798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns519074.ip-158-69-22.net Dec 10 08:41:40 php1 sshd\[16798\]: Failed password for invalid user gp from 158.69.22.218 port 47750 ssh2 Dec 10 08:47:20 php1 sshd\[17545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns519074.ip-158-69-22.net user=root Dec 10 08:47:22 php1 sshd\[17545\]: Failed password for root from 158.69.22.218 port 56194 ssh2	2019-12-11 03:05:38
185.36.81.85	attackbots	Rude login attack (20 tries in 1d)	2019-12-11 03:15:51
46.105.124.52	attackbots	Dec 10 19:16:47 MK-Soft-Root2 sshd[29845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.124.52 Dec 10 19:16:49 MK-Soft-Root2 sshd[29845]: Failed password for invalid user heystraeten from 46.105.124.52 port 48564 ssh2 ...	2019-12-11 03:11:58
13.56.245.182	attackspam	Dec 9 08:27:58 server6 sshd[28226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-13-56-245-182.us-west-1.compute.amazonaws.com Dec 9 08:28:00 server6 sshd[28226]: Failed password for invalid user boulet from 13.56.245.182 port 51014 ssh2 Dec 9 08:28:01 server6 sshd[28226]: Received disconnect from 13.56.245.182: 11: Bye Bye [preauth] Dec 9 08:35:42 server6 sshd[21382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-13-56-245-182.us-west-1.compute.amazonaws.com Dec 9 08:35:44 server6 sshd[21382]: Failed password for invalid user spam from 13.56.245.182 port 36018 ssh2 Dec 9 08:35:44 server6 sshd[21382]: Received disconnect from 13.56.245.182: 11: Bye Bye [preauth] Dec 9 08:40:52 server6 sshd[3872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-13-56-245-182.us-west-1.compute.amazonaws.com user=lp Dec 9 08:40:55 server6 sshd[38........ -------------------------------	2019-12-11 03:14:18
38.64.128.3	attackbotsspam	Unauthorized connection attempt from IP address 38.64.128.3 on Port 445(SMB)	2019-12-11 03:33:22
189.172.56.102	attackspambots	$f2bV_matches	2019-12-11 03:19:22
45.179.144.6	attackbots	Unauthorized connection attempt from IP address 45.179.144.6 on Port 445(SMB)	2019-12-11 03:30:22

Recently Reported IPs

78.107.161.23	148.247.22.1	196.219.60.68	59.55.45.201
105.106.197.216	196.218.30.4	79.236.254.209	36.42.72.212
125.212.177.137	138.229.65.59	36.251.149.219	85.202.57.162
35.246.43.185	37.78.148.89	95.31.5.29	40.70.243.122
18.0.56.94	118.70.127.4	235.223.16.35	193.201.224.195