85.2.28.21 - IPInfo

Basic Info

City: Lucerne

Region: Lucerne

Country: Switzerland

Internet Service Provider: Swisscom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.2.28.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19389
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.2.28.21.			IN	A

;; AUTHORITY SECTION:
.			486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041302 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 14 07:33:51 CST 2020
;; MSG SIZE  rcvd: 114

Host info

21.28.2.85.in-addr.arpa domain name pointer 21.28.2.85.dynamic.wline.res.cust.swisscom.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.28.2.85.in-addr.arpa	name = 21.28.2.85.dynamic.wline.res.cust.swisscom.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.198.122.76	attack	Sep 2 16:24:20 eddieflores sshd\[11233\]: Invalid user zimbra from 139.198.122.76 Sep 2 16:24:20 eddieflores sshd\[11233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.122.76 Sep 2 16:24:22 eddieflores sshd\[11233\]: Failed password for invalid user zimbra from 139.198.122.76 port 44294 ssh2 Sep 2 16:29:31 eddieflores sshd\[11664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.122.76 user=root Sep 2 16:29:33 eddieflores sshd\[11664\]: Failed password for root from 139.198.122.76 port 59646 ssh2	2019-09-03 10:35:02
36.89.163.178	attackbots	Sep 3 03:36:35 icinga sshd[34799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.163.178 Sep 3 03:36:37 icinga sshd[34799]: Failed password for invalid user barbara from 36.89.163.178 port 47131 ssh2 Sep 3 03:47:08 icinga sshd[41421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.163.178 ...	2019-09-03 10:10:32
190.221.50.90	attackspam	Sep 2 16:01:59 wbs sshd\[24856\]: Invalid user ftptest from 190.221.50.90 Sep 2 16:01:59 wbs sshd\[24856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.50.90 Sep 2 16:02:01 wbs sshd\[24856\]: Failed password for invalid user ftptest from 190.221.50.90 port 29058 ssh2 Sep 2 16:07:10 wbs sshd\[25349\]: Invalid user shutdown from 190.221.50.90 Sep 2 16:07:10 wbs sshd\[25349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.50.90	2019-09-03 10:11:52
94.177.215.195	attack	Sep 3 02:29:54 hb sshd\[15192\]: Invalid user 123 from 94.177.215.195 Sep 3 02:29:54 hb sshd\[15192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.215.195 Sep 3 02:29:56 hb sshd\[15192\]: Failed password for invalid user 123 from 94.177.215.195 port 56180 ssh2 Sep 3 02:34:01 hb sshd\[15527\]: Invalid user ts2 from 94.177.215.195 Sep 3 02:34:01 hb sshd\[15527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.215.195	2019-09-03 10:38:05
89.248.168.107	attackbots	Sep 3 01:07:55 TCP Attack: SRC=89.248.168.107 DST=[Masked] LEN=40 TOS=0x08 PREC=0x20 TTL=246 PROTO=TCP SPT=48680 DPT=10100 WINDOW=1024 RES=0x00 SYN URGP=0	2019-09-03 10:41:21
51.255.45.144	attack	03.09.2019 01:05:08 - Wordpress fail Detected by ELinOX-ALM	2019-09-03 10:48:58
186.137.123.202	attack	Sep 3 01:20:28 ip-172-31-62-245 sshd\[18988\]: Invalid user nicu from 186.137.123.202\ Sep 3 01:20:30 ip-172-31-62-245 sshd\[18988\]: Failed password for invalid user nicu from 186.137.123.202 port 51520 ssh2\ Sep 3 01:25:30 ip-172-31-62-245 sshd\[19002\]: Invalid user se from 186.137.123.202\ Sep 3 01:25:32 ip-172-31-62-245 sshd\[19002\]: Failed password for invalid user se from 186.137.123.202 port 41418 ssh2\ Sep 3 01:30:26 ip-172-31-62-245 sshd\[19006\]: Invalid user hugo from 186.137.123.202\	2019-09-03 10:32:33
13.250.71.188	attackspambots	udp/10001 to port 50989	2019-09-03 10:21:08
110.249.212.46	attackbotsspam	A portscan was detected. Details about the event: Time.............: 2019-09-03 00:48:19 Source IP address: 110.249.212.46	2019-09-03 10:29:53
51.77.137.211	attackbotsspam	Sep 3 03:33:20 mail sshd[16956]: Invalid user fei from 51.77.137.211 Sep 3 03:33:20 mail sshd[16956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.137.211 Sep 3 03:33:20 mail sshd[16956]: Invalid user fei from 51.77.137.211 Sep 3 03:33:22 mail sshd[16956]: Failed password for invalid user fei from 51.77.137.211 port 40338 ssh2 Sep 3 03:46:30 mail sshd[4747]: Invalid user musicbot from 51.77.137.211 ...	2019-09-03 10:36:12
195.218.130.50	attackspam	SPF Fail sender not permitted to send mail for @2002yahoo.com / Mail sent to address hacked/leaked from Last.fm	2019-09-03 10:13:50
36.156.24.78	attack	2019-08-29T05:32:23.498652wiz-ks3 sshd[29747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.78 user=root 2019-08-29T05:32:25.301416wiz-ks3 sshd[29747]: Failed password for root from 36.156.24.78 port 49954 ssh2 2019-08-29T05:32:27.400574wiz-ks3 sshd[29747]: Failed password for root from 36.156.24.78 port 49954 ssh2 2019-08-29T05:32:23.498652wiz-ks3 sshd[29747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.78 user=root 2019-08-29T05:32:25.301416wiz-ks3 sshd[29747]: Failed password for root from 36.156.24.78 port 49954 ssh2 2019-08-29T05:32:27.400574wiz-ks3 sshd[29747]: Failed password for root from 36.156.24.78 port 49954 ssh2 2019-08-29T05:32:23.498652wiz-ks3 sshd[29747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.78 user=root 2019-08-29T05:32:25.301416wiz-ks3 sshd[29747]: Failed password for root from 36.156.24.78 port 49954 ssh2 2019-08-29T05:32:	2019-09-03 10:27:40
103.225.58.46	attack	Sep 2 21:51:11 vps200512 sshd\[10955\]: Invalid user matias from 103.225.58.46 Sep 2 21:51:11 vps200512 sshd\[10955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.225.58.46 Sep 2 21:51:13 vps200512 sshd\[10955\]: Failed password for invalid user matias from 103.225.58.46 port 42142 ssh2 Sep 2 21:59:25 vps200512 sshd\[11058\]: Invalid user martinez from 103.225.58.46 Sep 2 21:59:25 vps200512 sshd\[11058\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.225.58.46	2019-09-03 10:14:04
209.159.153.173	attackbots	DATE:2019-09-03 01:05:26, IP:209.159.153.173, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-09-03 10:32:01
103.107.17.134	attackbotsspam	" "	2019-09-03 10:15:08

Recently Reported IPs

5.111.170.42	163.197.123.252	24.136.185.58	168.121.56.57
138.68.6.12	200.229.100.165	168.121.56.127	87.2.145.123
211.103.63.39	116.67.210.139	208.37.190.131	84.160.12.95
170.161.107.43	147.0.14.34	122.51.189.69	65.41.114.212
14.9.125.110	222.217.240.244	183.89.215.26	190.78.106.75