85.12.20.98 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.12.201.205	attackbots	Unauthorized connection attempt detected from IP address 85.12.201.205 to port 80 [T]	2020-06-24 02:28:38
85.12.203.154	attack	IMAP brute force ...	2020-04-18 05:05:34
85.12.208.134	attackbots	UTC: 2019-11-30 pkts: 2 port: 80/tcp	2019-12-01 19:54:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.12.20.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26403
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.12.20.98.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 23:37:55 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 98.20.12.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.20.12.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.99.133.136	attack	SSH/22 MH Probe, BF, Hack -	2019-08-08 01:57:44
89.248.167.131	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-08 01:39:06
62.234.154.64	attack	Aug 7 19:47:32 vps65 sshd\[14101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.154.64 user=root Aug 7 19:47:34 vps65 sshd\[14101\]: Failed password for root from 62.234.154.64 port 54274 ssh2 ...	2019-08-08 01:50:19
51.83.78.109	attack	Aug 7 17:46:56 MK-Soft-VM7 sshd\[8243\]: Invalid user jm from 51.83.78.109 port 51394 Aug 7 17:46:56 MK-Soft-VM7 sshd\[8243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.78.109 Aug 7 17:46:58 MK-Soft-VM7 sshd\[8243\]: Failed password for invalid user jm from 51.83.78.109 port 51394 ssh2 ...	2019-08-08 02:08:30
77.247.181.162	attack	Aug 7 19:51:26 bouncer sshd\[18037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.247.181.162 user=root Aug 7 19:51:28 bouncer sshd\[18037\]: Failed password for root from 77.247.181.162 port 50468 ssh2 Aug 7 19:51:31 bouncer sshd\[18037\]: Failed password for root from 77.247.181.162 port 50468 ssh2 ...	2019-08-08 02:02:32
27.196.252.17	attack	Aug 7 08:29:39 xxxxxxx7446550 sshd[31385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.196.252.17 user=r.r Aug 7 08:29:42 xxxxxxx7446550 sshd[31385]: Failed password for r.r from 27.196.252.17 port 56644 ssh2 Aug 7 08:29:44 xxxxxxx7446550 sshd[31385]: Failed password for r.r from 27.196.252.17 port 56644 ssh2 Aug 7 08:29:46 xxxxxxx7446550 sshd[31385]: Failed password for r.r from 27.196.252.17 port 56644 ssh2 Aug 7 08:29:48 xxxxxxx7446550 sshd[31385]: Failed password for r.r from 27.196.252.17 port 56644 ssh2 Aug 7 08:29:50 xxxxxxx7446550 sshd[31385]: Failed password for r.r from 27.196.252.17 port 56644 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.196.252.17	2019-08-08 01:33:49
141.98.80.72	attackspam	SMTP-SASL bruteforce attempt	2019-08-08 02:03:01
182.61.177.109	attack	Automated report - ssh fail2ban: Aug 7 19:13:40 authentication failure Aug 7 19:13:42 wrong password, user=mirror02, port=42158, ssh2 Aug 7 19:47:13 authentication failure	2019-08-08 01:58:10
106.13.48.54	attackbots	106.13.48.54 - - [07/Aug/2019:13:47:05 -0400] "GET /webdav/ HTTP/1.1" 301 185 "-" "Mozilla/5.0" 106.13.48.54 - - [07/Aug/2019:13:47:20 -0400] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" 106.13.48.54 - - [07/Aug/2019:13:47:21 -0400] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" 106.13.48.54 - - [07/Aug/2019:13:47:21 -0400] "GET /phpmyadmin/scripts/db___.init.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" 106.13.48.54 - - [07/Aug/2019:13:47:22 -0400] "GET /pma/scripts/setup.php HTTP/1.1" 301 185 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36 SE 2.X MetaSr 1.0" ...	2019-08-08 01:55:55
144.217.86.226	attackbots	Aug 7 17:52:04 XXX sshd[1192]: Invalid user comfort from 144.217.86.226 port 37726	2019-08-08 02:12:59
139.59.79.94	attack	WordPress wp-login brute force :: 139.59.79.94 0.072 BYPASS [07/Aug/2019:22:40:34 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 3989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-08 01:24:58
130.43.4.135	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-08-08 01:48:09
151.80.238.201	attack	Unauthorized connection attempt from IP address 151.80.238.201 on Port 25(SMTP)	2019-08-08 02:22:41
36.68.118.34	attackbots	Automatic report - Port Scan Attack	2019-08-08 01:35:33
146.4.22.190	attack	Automatic report - Web App Attack	2019-08-08 02:16:57

Recently Reported IPs

210.230.16.139	86.196.31.43	113.52.61.102	53.159.206.95
249.126.131.173	167.21.180.80	150.255.118.141	182.218.150.66
133.10.164.187	249.184.23.205	174.160.44.39	251.122.109.19
58.243.222.252	241.104.242.58	175.25.162.228	90.147.91.79
216.128.227.6	47.42.34.36	22.188.168.47	35.117.48.174