85.21.5.134 - IPInfo

Basic Info

City: Moscow

Region: Moscow

Country: Russia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.21.50.101	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-24 01:02:03
85.21.57.103	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 30-10-2019 11:45:30.	2019-10-31 04:00:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.21.5.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3078
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.21.5.134.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022051201 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 13 06:27:29 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 134.5.21.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.5.21.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
3.22.97.109	attack	2020-07-06T21:49:13.671058linuxbox-skyline sshd[670023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.22.97.109 user=root 2020-07-06T21:49:15.820800linuxbox-skyline sshd[670023]: Failed password for root from 3.22.97.109 port 59990 ssh2 ...	2020-07-07 18:14:31
172.82.230.4	attackspam	Jul 7 05:23:50 mail.srvfarm.net postfix/smtpd[2175937]: lost connection after STARTTLS from r4.news.eu.rvca.com[172.82.230.4] Jul 7 05:24:53 mail.srvfarm.net postfix/smtpd[2175938]: lost connection after STARTTLS from r4.news.eu.rvca.com[172.82.230.4] Jul 7 05:26:01 mail.srvfarm.net postfix/smtpd[2175938]: lost connection after STARTTLS from r4.news.eu.rvca.com[172.82.230.4] Jul 7 05:27:06 mail.srvfarm.net postfix/smtpd[2175937]: lost connection after STARTTLS from r4.news.eu.rvca.com[172.82.230.4] Jul 7 05:29:07 mail.srvfarm.net postfix/smtpd[2175938]: lost connection after STARTTLS from r4.news.eu.rvca.com[172.82.230.4]	2020-07-07 18:04:42
51.91.56.33	attackbotsspam	20 attempts against mh-ssh on cloud	2020-07-07 17:48:08
76.100.18.153	attackspam	Jul 7 04:49:53 l02a sshd[21445]: Invalid user admin from 76.100.18.153 Jul 7 04:49:53 l02a sshd[21445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-100-18-153.hsd1.va.comcast.net Jul 7 04:49:53 l02a sshd[21445]: Invalid user admin from 76.100.18.153 Jul 7 04:49:55 l02a sshd[21445]: Failed password for invalid user admin from 76.100.18.153 port 40387 ssh2	2020-07-07 17:41:52
157.230.46.249	attack	Jul 7 09:06:41 hosting sshd[4501]: Invalid user ansible from 157.230.46.249 port 38865 ...	2020-07-07 18:22:38
168.227.56.225	attack	failed_logins	2020-07-07 18:00:28
171.6.198.4	attackspambots	Automatic report - XMLRPC Attack	2020-07-07 17:44:05
172.82.239.23	attackspambots	Jul 7 05:23:49 mail.srvfarm.net postfix/smtpd[2175938]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 7 05:24:55 mail.srvfarm.net postfix/smtpd[2175937]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 7 05:26:00 mail.srvfarm.net postfix/smtpd[2175936]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 7 05:27:05 mail.srvfarm.net postfix/smtpd[2161335]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23] Jul 7 05:29:10 mail.srvfarm.net postfix/smtpd[2175112]: lost connection after STARTTLS from r23.news.eu.rvca.com[172.82.239.23]	2020-07-07 18:03:53
177.23.59.215	attackspam	(smtpauth) Failed SMTP AUTH login from 177.23.59.215 (BR/Brazil/acesso-177.23.59.215.voxxtelecom.com): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-07 08:19:11 plain authenticator failed for ([177.23.59.215]) [177.23.59.215]: 535 Incorrect authentication data (set_id=info)	2020-07-07 18:11:29
186.225.80.194	attackbotsspam	" "	2020-07-07 18:13:45
95.178.158.15	attackbots	Telnetd brute force attack detected by fail2ban	2020-07-07 17:56:39
60.30.98.194	attackbotsspam	SSH Brute-Force attacks	2020-07-07 17:53:47
195.242.125.177	attackspam	failed_logins	2020-07-07 17:45:29
45.118.32.121	attack	failed_logins	2020-07-07 17:55:30
222.186.175.148	attack	Jul 7 17:10:10 itv-usvr-01 sshd[15201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Jul 7 17:10:13 itv-usvr-01 sshd[15201]: Failed password for root from 222.186.175.148 port 54426 ssh2	2020-07-07 18:10:34

Recently Reported IPs

162.166.212.219	120.79.187.161	223.62.56.33	39.48.87.50
25.158.245.83	9.206.72.177	205.17.89.47	112.5.28.82
136.52.193.145	150.224.79.151	149.68.10.217	199.101.171.150
90.166.196.254	213.58.179.1	91.80.18.22	41.56.246.202
158.31.88.217	31.239.87.58	186.74.205.60	46.137.6.111