85.208.21.164 - IPInfo

Basic Info

City: Barcelona

Region: Catalonia

Country: Spain

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.208.214.76	attack	hacking	2024-02-22 13:56:50
85.208.213.114	attack	SSH brutforce	2020-10-12 00:27:29
85.208.213.114	attack	SSH brutforce	2020-10-11 16:25:11
85.208.213.114	attackspam	Oct 11 03:25:20 sso sshd[27339]: Failed password for root from 85.208.213.114 port 13272 ssh2 Oct 11 03:28:18 sso sshd[27774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.208.213.114 ...	2020-10-11 09:44:23
85.208.213.114	attackbots	Oct 5 15:33:37 shivevps sshd[16763]: Failed password for root from 85.208.213.114 port 8464 ssh2 Oct 5 15:39:51 shivevps sshd[17180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.208.213.114 user=root Oct 5 15:39:53 shivevps sshd[17180]: Failed password for root from 85.208.213.114 port 8610 ssh2 ...	2020-10-06 02:56:46
85.208.213.114	attack	detected by Fail2Ban	2020-10-05 18:47:03
85.208.213.114	attack	Oct 3 15:36:58 *** sshd[15581]: Invalid user nagios from 85.208.213.114	2020-10-04 02:17:44
85.208.213.114	attackbots	SSH login attempts.	2020-10-03 18:03:19
85.208.213.114	attackbots	Invalid user ftp from 85.208.213.114 port 64504	2020-08-20 05:01:33
85.208.213.114	attackspambots	Aug 16 05:52:41 db sshd[21029]: User root from 85.208.213.114 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-16 16:04:23
85.208.213.114	attackspam	Jul 14 06:08:20 meumeu sshd[595306]: Invalid user devol from 85.208.213.114 port 62354 Jul 14 06:08:20 meumeu sshd[595306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.208.213.114 Jul 14 06:08:20 meumeu sshd[595306]: Invalid user devol from 85.208.213.114 port 62354 Jul 14 06:08:23 meumeu sshd[595306]: Failed password for invalid user devol from 85.208.213.114 port 62354 ssh2 Jul 14 06:10:31 meumeu sshd[595521]: Invalid user dd from 85.208.213.114 port 20150 Jul 14 06:10:31 meumeu sshd[595521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.208.213.114 Jul 14 06:10:31 meumeu sshd[595521]: Invalid user dd from 85.208.213.114 port 20150 Jul 14 06:10:33 meumeu sshd[595521]: Failed password for invalid user dd from 85.208.213.114 port 20150 ssh2 Jul 14 06:12:41 meumeu sshd[595652]: Invalid user m from 85.208.213.114 port 42470 ...	2020-07-14 12:13:33
85.208.213.114	attack	Failed password for invalid user pa from 85.208.213.114 port 16110 ssh2	2020-07-12 06:41:47
85.208.213.114	attackbots	2020-07-08T21:56:45.440231n23.at sshd[3472833]: Invalid user osm from 85.208.213.114 port 24952 2020-07-08T21:56:47.677954n23.at sshd[3472833]: Failed password for invalid user osm from 85.208.213.114 port 24952 ssh2 2020-07-08T22:02:36.420281n23.at sshd[3478200]: Invalid user python from 85.208.213.114 port 7794 ...	2020-07-09 04:32:10
85.208.213.114	attackbotsspam	5x Failed Password	2020-06-05 02:03:35
85.208.213.114	attackspam	May 28 04:40:04 Tower sshd[32632]: refused connect from 154.202.5.23 (154.202.5.23) May 29 02:51:37 Tower sshd[32632]: Connection from 85.208.213.114 port 61998 on 192.168.10.220 port 22 rdomain "" May 29 02:51:38 Tower sshd[32632]: Failed password for root from 85.208.213.114 port 61998 ssh2 May 29 02:51:39 Tower sshd[32632]: Received disconnect from 85.208.213.114 port 61998:11: Bye Bye [preauth] May 29 02:51:39 Tower sshd[32632]: Disconnected from authenticating user root 85.208.213.114 port 61998 [preauth]	2020-05-29 17:01:16

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 85.208.21.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12170
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;85.208.21.164.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 18:01:43 CST 2021
;; MSG SIZE  rcvd: 42

'

Host info

164.21.208.85.in-addr.arpa domain name pointer fc02wo01.okitup.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.21.208.85.in-addr.arpa	name = fc02wo01.okitup.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.246.17.5	attack	Sep 25 15:17:36 www sshd\[45794\]: Invalid user admin from 92.246.17.5 Sep 25 15:17:36 www sshd\[45794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.246.17.5 Sep 25 15:17:37 www sshd\[45794\]: Failed password for invalid user admin from 92.246.17.5 port 38942 ssh2 ...	2019-09-26 01:56:53
203.156.125.195	attack	Sep 25 04:51:42 eddieflores sshd\[5939\]: Invalid user syd from 203.156.125.195 Sep 25 04:51:42 eddieflores sshd\[5939\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.156.125.195 Sep 25 04:51:44 eddieflores sshd\[5939\]: Failed password for invalid user syd from 203.156.125.195 port 44392 ssh2 Sep 25 04:56:15 eddieflores sshd\[6316\]: Invalid user magicspam from 203.156.125.195 Sep 25 04:56:15 eddieflores sshd\[6316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.156.125.195	2019-09-26 01:57:12
80.91.176.139	attackbots	Sep 25 08:13:07 aiointranet sshd\[28835\]: Invalid user pe from 80.91.176.139 Sep 25 08:13:07 aiointranet sshd\[28835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.91.176.139 Sep 25 08:13:09 aiointranet sshd\[28835\]: Failed password for invalid user pe from 80.91.176.139 port 41168 ssh2 Sep 25 08:17:25 aiointranet sshd\[29217\]: Invalid user yp from 80.91.176.139 Sep 25 08:17:25 aiointranet sshd\[29217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.91.176.139	2019-09-26 02:22:12
201.188.116.22	attackspambots	Brute force attempt	2019-09-26 02:14:15
176.122.236.173	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/176.122.236.173/ PL - 1H : (144) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN199061 IP : 176.122.236.173 CIDR : 176.122.224.0/20 PREFIX COUNT : 2 UNIQUE IP COUNT : 5120 WYKRYTE ATAKI Z ASN199061 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-26 01:43:07
183.88.177.91	attackspam	Sep 25 18:26:58 jane sshd[29224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.177.91 Sep 25 18:27:00 jane sshd[29224]: Failed password for invalid user lori from 183.88.177.91 port 59622 ssh2 ...	2019-09-26 02:03:54
177.185.114.18	attackbots	8080/tcp [2019-09-25]1pkt	2019-09-26 02:14:31
222.186.175.154	attackbotsspam	Sep 25 13:43:28 xtremcommunity sshd\[465260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 25 13:43:30 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 Sep 25 13:43:34 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 Sep 25 13:43:38 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 Sep 25 13:43:42 xtremcommunity sshd\[465260\]: Failed password for root from 222.186.175.154 port 32078 ssh2 ...	2019-09-26 01:49:01
42.118.226.129	attack	445/tcp [2019-09-25]1pkt	2019-09-26 01:58:39
118.173.118.123	attack	Telnet/23 MH Probe, BF, Hack -	2019-09-26 01:38:27
50.239.143.6	attackbots	Sep 25 18:26:55 s64-1 sshd[29457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.6 Sep 25 18:26:56 s64-1 sshd[29457]: Failed password for invalid user winadmin from 50.239.143.6 port 49656 ssh2 Sep 25 18:30:40 s64-1 sshd[29506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.6 ...	2019-09-26 01:58:07
183.80.117.254	attackspambots	34567/tcp [2019-09-25]1pkt	2019-09-26 02:08:58
128.199.185.42	attack	Sep 25 20:38:36 server sshd\[14162\]: Invalid user qwedcxz from 128.199.185.42 port 42165 Sep 25 20:38:36 server sshd\[14162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.42 Sep 25 20:38:38 server sshd\[14162\]: Failed password for invalid user qwedcxz from 128.199.185.42 port 42165 ssh2 Sep 25 20:42:59 server sshd\[8200\]: Invalid user password from 128.199.185.42 port 34027 Sep 25 20:42:59 server sshd\[8200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.42	2019-09-26 01:55:34
46.53.206.20	attack	3389/tcp [2019-09-25]1pkt	2019-09-26 02:13:46
203.93.209.8	attack	Sep 25 02:29:12 lcdev sshd\[17117\]: Invalid user test123321 from 203.93.209.8 Sep 25 02:29:12 lcdev sshd\[17117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.93.209.8 Sep 25 02:29:14 lcdev sshd\[17117\]: Failed password for invalid user test123321 from 203.93.209.8 port 3961 ssh2 Sep 25 02:33:15 lcdev sshd\[17453\]: Invalid user 1 from 203.93.209.8 Sep 25 02:33:15 lcdev sshd\[17453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.93.209.8	2019-09-26 02:06:52

Recently Reported IPs

27.66.247.149	120.194.83.99	187.32.161.110	197.237.246.172
118.70.124.165	120.194.189.235	178.254.179.238	183.80.199.151
59.93.225.102	120.211.38.195	45.232.18.173	61.162.220.97
61.247.104.215	89.212.240.129	101.36.178.137	213.228.98.4
111.88.201.168	14.187.44.46	220.171.94.114	115.42.66.240