85.12.20.98 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.12.201.205	attackbots	Unauthorized connection attempt detected from IP address 85.12.201.205 to port 80 [T]	2020-06-24 02:28:38
85.12.203.154	attack	IMAP brute force ...	2020-04-18 05:05:34
85.12.208.134	attackbots	UTC: 2019-11-30 pkts: 2 port: 80/tcp	2019-12-01 19:54:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.12.20.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26403
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.12.20.98.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 23:37:55 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 98.20.12.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.20.12.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
13.48.126.162	attackspam	[FriJan3122:16:12.4454482020][:error][pid12116:tid47392789350144][client13.48.126.162:53860][client13.48.126.162]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"www.sequoiarealestate.ch"][uri"/.env"][unique_id"XjSZHF8UQQXcjZxrK4YNlQAAAY4"][FriJan3122:34:11.3826442020][:error][pid12204:tid47392783046400][client13.48.126.162:56612][client13.48.126.162]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|htt	2020-02-01 07:10:18
189.145.156.229	attackbotsspam	1433/tcp 1433/tcp [2020-01-31]2pkt	2020-02-01 07:14:01
172.105.210.107	attack	Jan 31 22:33:58 debian-2gb-nbg1-2 kernel: \[2765696.494714\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=172.105.210.107 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=43252 DPT=8009 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-01 07:22:01
165.22.215.185	attackbots	Invalid user bot from 165.22.215.185 port 33360	2020-02-01 07:15:47
117.73.2.103	attack	Invalid user kundir from 117.73.2.103 port 57406	2020-02-01 07:28:19
222.186.31.135	attack	2020-01-31T18:23:58.633882vostok sshd\[15296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root \| Triggered by Fail2Ban at Vostok web server	2020-02-01 07:26:04
192.241.227.87	attackspam	512/tcp [2020-01-31]1pkt	2020-02-01 07:26:32
62.234.68.246	attack	Feb 1 00:18:34 silence02 sshd[26334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.68.246 Feb 1 00:18:35 silence02 sshd[26334]: Failed password for invalid user minecraft from 62.234.68.246 port 59291 ssh2 Feb 1 00:22:31 silence02 sshd[26610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.68.246	2020-02-01 07:39:28
36.235.113.132	attackspam	5555/tcp [2020-01-31]1pkt	2020-02-01 07:16:51
190.73.40.97	attack	445/tcp [2020-01-31]1pkt	2020-02-01 07:21:15
200.109.6.142	attackspambots	1433/tcp 1433/tcp [2020-01-31]2pkt	2020-02-01 07:08:54
45.230.169.14	attack	Jan 31 13:08:33 hpm sshd\[338\]: Invalid user sdtdserver from 45.230.169.14 Jan 31 13:08:33 hpm sshd\[338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.230.169.14 Jan 31 13:08:35 hpm sshd\[338\]: Failed password for invalid user sdtdserver from 45.230.169.14 port 45063 ssh2 Jan 31 13:12:34 hpm sshd\[942\]: Invalid user system from 45.230.169.14 Jan 31 13:12:34 hpm sshd\[942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.230.169.14	2020-02-01 07:16:27
202.190.86.225	attackspam	Abuse	2020-02-01 07:05:45
182.161.177.95	attackspambots	5555/tcp [2020-01-31]1pkt	2020-02-01 07:42:24
60.216.149.98	attackbotsspam	SSH-bruteforce attempts	2020-02-01 07:09:52

Recently Reported IPs

210.230.16.139	86.196.31.43	113.52.61.102	53.159.206.95
249.126.131.173	167.21.180.80	150.255.118.141	182.218.150.66
133.10.164.187	249.184.23.205	174.160.44.39	251.122.109.19
58.243.222.252	241.104.242.58	175.25.162.228	90.147.91.79
216.128.227.6	47.42.34.36	22.188.168.47	35.117.48.174