85.140.214.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Former Zao MTU-Intel

Hostname: unknown

Organization: unknown

Usage Type: Mobile ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 85.140.214.21 to port 23 [J]	2020-01-27 00:23:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.140.214.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21730
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.140.214.21.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012600 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 00:23:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

21.214.140.85.in-addr.arpa domain name pointer ppp85-140-214-21.pppoe.mtu-net.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.214.140.85.in-addr.arpa	name = ppp85-140-214-21.pppoe.mtu-net.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.180.16	attack	Aug 31 15:26:24 debian sshd[24664]: Unable to negotiate with 138.197.180.16 port 54130: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Aug 31 15:32:04 debian sshd[24847]: Unable to negotiate with 138.197.180.16 port 41198: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2019-09-01 04:03:14
178.88.115.126	attack	DATE:2019-08-31 15:43:18,IP:178.88.115.126,MATCHES:10,PORT:ssh	2019-09-01 04:10:57
188.128.39.127	attackbotsspam	Aug 31 19:49:44 xeon sshd[53523]: Failed password for invalid user ftp_test from 188.128.39.127 port 55418 ssh2	2019-09-01 04:10:14
211.181.237.82	attackbotsspam	Unauthorized connection attempt from IP address 211.181.237.82 on Port 445(SMB)	2019-09-01 03:44:58
114.91.224.210	attack	Unauthorized connection attempt from IP address 114.91.224.210 on Port 445(SMB)	2019-09-01 04:13:01
192.3.207.42	attackbots	Unauthorized connection attempt from IP address 192.3.207.42 on Port 445(SMB)	2019-09-01 03:39:15
114.98.26.72	attackbotsspam	Aug 31 04:20:43 eola postfix/smtpd[28746]: connect from unknown[114.98.26.72] Aug 31 04:20:43 eola postfix/smtpd[28746]: lost connection after CONNECT from unknown[114.98.26.72] Aug 31 04:20:43 eola postfix/smtpd[28746]: disconnect from unknown[114.98.26.72] commands=0/0 Aug 31 04:20:47 eola postfix/smtpd[28746]: connect from unknown[114.98.26.72] Aug 31 04:20:48 eola postfix/smtpd[28746]: lost connection after AUTH from unknown[114.98.26.72] Aug 31 04:20:48 eola postfix/smtpd[28746]: disconnect from unknown[114.98.26.72] ehlo=1 auth=0/1 commands=1/2 Aug 31 04:20:49 eola postfix/smtpd[28746]: connect from unknown[114.98.26.72] Aug 31 04:20:51 eola postfix/smtpd[28746]: lost connection after AUTH from unknown[114.98.26.72] Aug 31 04:20:51 eola postfix/smtpd[28746]: disconnect from unknown[114.98.26.72] ehlo=1 auth=0/1 commands=1/2 Aug 31 04:21:00 eola postfix/smtpd[28746]: connect from unknown[114.98.26.72] Aug 31 04:21:02 eola postfix/smtpd[28746]: lost connection after........ -------------------------------	2019-09-01 04:12:33
2.179.166.226	attackspam	Unauthorized connection attempt from IP address 2.179.166.226 on Port 445(SMB)	2019-09-01 03:54:31
164.132.204.91	attackbotsspam	Aug 31 21:58:12 vps691689 sshd[27884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.204.91 Aug 31 21:58:15 vps691689 sshd[27884]: Failed password for invalid user ds from 164.132.204.91 port 35900 ssh2 ...	2019-09-01 04:11:26
183.91.82.88	attack	Aug 31 15:30:35 plusreed sshd[29821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.91.82.88 user=root Aug 31 15:30:36 plusreed sshd[29821]: Failed password for root from 183.91.82.88 port 52237 ssh2 Aug 31 15:36:06 plusreed sshd[31211]: Invalid user admin from 183.91.82.88 Aug 31 15:36:06 plusreed sshd[31211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.91.82.88 Aug 31 15:36:06 plusreed sshd[31211]: Invalid user admin from 183.91.82.88 Aug 31 15:36:08 plusreed sshd[31211]: Failed password for invalid user admin from 183.91.82.88 port 45904 ssh2 ...	2019-09-01 04:07:03
180.96.62.247	attack	Aug 31 17:36:04 fr01 sshd[376]: Invalid user magazine from 180.96.62.247 ...	2019-09-01 03:57:27
78.189.171.110	attackbotsspam	Unauthorized connection attempt from IP address 78.189.171.110 on Port 445(SMB)	2019-09-01 03:42:09
106.13.120.143	attack	Aug 31 17:33:19 debian sshd\[910\]: Invalid user hj from 106.13.120.143 port 40488 Aug 31 17:33:19 debian sshd\[910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.120.143 ...	2019-09-01 04:13:34
23.94.16.72	attackbots	Aug 31 05:36:04 eddieflores sshd\[18998\]: Invalid user jbkim from 23.94.16.72 Aug 31 05:36:04 eddieflores sshd\[18998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.16.72 Aug 31 05:36:06 eddieflores sshd\[18998\]: Failed password for invalid user jbkim from 23.94.16.72 port 33280 ssh2 Aug 31 05:40:11 eddieflores sshd\[19454\]: Invalid user sven from 23.94.16.72 Aug 31 05:40:11 eddieflores sshd\[19454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.16.72	2019-09-01 03:34:42
164.132.47.139	attackbotsspam	Aug 31 19:37:10 SilenceServices sshd[2004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.47.139 Aug 31 19:37:12 SilenceServices sshd[2004]: Failed password for invalid user refog from 164.132.47.139 port 57246 ssh2 Aug 31 19:40:50 SilenceServices sshd[4923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.47.139	2019-09-01 03:41:05

Recently Reported IPs

222.82.63.149	222.82.63.143	221.205.137.216	221.0.19.70
213.57.29.57	91.208.184.150	212.64.50.202	190.94.150.21
190.24.119.9	189.213.153.233	189.176.23.237	186.42.226.242
149.177.229.183	182.138.163.47	182.18.59.187	168.172.108.205
177.72.89.241	245.124.157.69	1.12.88.116	24.5.38.64