85.185.12.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran (ISLAMIC Republic Of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.185.124.123	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/85.185.124.123/ IR - 1H : (43) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IR NAME ASN : ASN58224 IP : 85.185.124.123 CIDR : 85.185.124.0/24 PREFIX COUNT : 898 UNIQUE IP COUNT : 2324736 WYKRYTE ATAKI Z ASN58224 : 1H - 1 3H - 4 6H - 5 12H - 11 24H - 21 DateTime : 2019-10-11 05:50:59 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 17:03:13

Type

Details

Datetime

85.185.124.123

attackspam

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/85.185.124.123/ 
 IR - 1H : (43)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : IR 
 NAME ASN : ASN58224 
 
 IP : 85.185.124.123 
 
 CIDR : 85.185.124.0/24 
 
 PREFIX COUNT : 898 
 
 UNIQUE IP COUNT : 2324736 
 
 
 WYKRYTE ATAKI Z ASN58224 :  
  1H - 1 
  3H - 4 
  6H - 5 
 12H - 11 
 24H - 21 
 
 DateTime : 2019-10-11 05:50:59 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-10-11 17:03:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.185.12.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9116
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.185.12.54.			IN	A

;; AUTHORITY SECTION:
.			290	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 86 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 13:37:44 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 54.12.185.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.12.185.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.163.125.120	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-28 07:14:24
45.72.220.247	attackbots	Honeypot attack, port: 5555, PTR: 45-72-220-247.cpe.teksavvy.com.	2020-01-28 07:04:55
168.196.202.182	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-28 06:34:49
91.247.155.228	attackbotsspam	2019-07-06 12:10:57 1hjheh-0003gf-OF SMTP connection from \(host-91-247-155-228.ts35.ru\) \[91.247.155.228\]:56820 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 12:11:04 1hjhep-0003gp-8c SMTP connection from \(host-91-247-155-228.ts35.ru\) \[91.247.155.228\]:64113 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 12:11:09 1hjhet-0003gw-V6 SMTP connection from \(host-91-247-155-228.ts35.ru\) \[91.247.155.228\]:63363 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 06:37:54
112.85.42.178	attack	2020-1-27 11:42:47 PM: failed ssh attempt	2020-01-28 06:48:36
142.44.160.64	attackbots	Unauthorized connection attempt detected from IP address 142.44.160.64 to port 23 [J]	2020-01-28 06:40:24
83.97.20.46	attack	Jan 27 22:54:20 h2177944 kernel: \[3360288.849955\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=83.97.20.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=45775 DPT=6664 WINDOW=65535 RES=0x00 SYN URGP=0 Jan 27 22:54:20 h2177944 kernel: \[3360288.849970\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=83.97.20.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=45775 DPT=6664 WINDOW=65535 RES=0x00 SYN URGP=0 Jan 27 23:14:28 h2177944 kernel: \[3361496.657197\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=83.97.20.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=46556 DPT=28017 WINDOW=65535 RES=0x00 SYN URGP=0 Jan 27 23:14:28 h2177944 kernel: \[3361496.657211\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=83.97.20.46 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=TCP SPT=46556 DPT=28017 WINDOW=65535 RES=0x00 SYN URGP=0 Jan 27 23:47:35 h2177944 kernel: \[3363483.496270\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=83.97.20.46 DST=85.214.117.9 LEN	2020-01-28 07:04:30
187.163.125.146	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-28 07:07:15
188.213.212.6	attackbots	2049/udp [2020-01-27]1pkt	2020-01-28 06:53:45
91.242.20.42	attack	2020-01-24 13:19:09 1iuxvR-00021X-BU SMTP connection from \(\[91.242.20.42\]\) \[91.242.20.42\]:23243 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-01-24 13:19:37 1iuxvy-00022R-If SMTP connection from \(\[91.242.20.42\]\) \[91.242.20.42\]:22696 I=\[193.107.88.166\]:25 closed by DROP in ACL 2020-01-24 13:20:01 1iuxwM-00022r-RH SMTP connection from \(\[91.242.20.42\]\) \[91.242.20.42\]:16515 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 06:43:55
91.218.47.116	attackspam	2019-06-22 13:35:57 1heeJI-0003rK-WF SMTP connection from ip-91-218-47-116.dss-group.net \[91.218.47.116\]:51284 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 13:36:13 1heeJX-0003re-2V SMTP connection from ip-91-218-47-116.dss-group.net \[91.218.47.116\]:61386 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 13:36:22 1heeJh-0003rn-O5 SMTP connection from ip-91-218-47-116.dss-group.net \[91.218.47.116\]:61634 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 07:13:18
194.180.224.112	attackspambots	Unauthorized connection attempt detected from IP address 194.180.224.112 to port 23 [J]	2020-01-28 06:36:24
91.219.222.189	attackspambots	2019-03-01 12:59:12 H=nat-189.opti.net.ua \[91.219.222.189\]:36382 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-01 12:59:20 H=nat-189.opti.net.ua \[91.219.222.189\]:36466 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-03-01 12:59:28 H=nat-189.opti.net.ua \[91.219.222.189\]:36545 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 07:11:03
191.241.242.10	attack	Honeypot attack, port: 445, PTR: 191.241.242.10.access.a85.com.br.	2020-01-28 06:58:22
91.36.221.86	attack	2019-06-22 19:09:17 1hejVs-0002d9-2H SMTP connection from p5b24dd56.dip0.t-ipconnect.de \[91.36.221.86\]:12023 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 19:09:32 1hejW6-0002dJ-6Z SMTP connection from p5b24dd56.dip0.t-ipconnect.de \[91.36.221.86\]:12136 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 19:09:42 1hejWG-0002dU-W3 SMTP connection from p5b24dd56.dip0.t-ipconnect.de \[91.36.221.86\]:12215 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 06:33:15

Recently Reported IPs

86.200.35.15	222.247.2.110	103.139.66.169	39.75.176.124
45.185.16.234	183.89.59.172	219.140.118.14	70.89.109.226
197.210.96.58	191.209.73.13	35.194.36.47	3.234.141.114
75.84.42.111	5.196.224.66	71.52.49.88	200.105.199.222
202.4.196.180	191.96.9.128	190.97.47.121	189.38.97.242