85.214.4.68 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.214.45.232	attack	Repeated RDP login failures. Last user: administrator	2020-06-11 23:42:18
85.214.43.178	attackspambots	SpamScore above: 10.0	2020-05-04 13:02:09
85.214.45.1	attackbotsspam	spam	2020-04-15 17:28:55
85.214.46.142	attackspam	Banned for posting to wp-login.php without referer {"redirect_to":"","user_login":"traveltocity@zohomail.eu","wp-submit":"Get+New+Password"}	2019-06-29 12:12:53
85.214.46.142	attackspambots	TCP src-port=57798 dst-port=25 dnsbl-sorbs abuseat-org spamcop (1377)	2019-06-26 08:23:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.214.4.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7702
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.214.4.68.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 19:11:24 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 68.4.214.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.4.214.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.73.164	attack	reported through recidive - multiple failed attempts(SSH)	2020-06-12 18:42:05
185.175.93.104	attack	TCP (SYN) 185.175.93.104:41719 -> port 41646, len 44	2020-06-12 18:44:56
183.63.97.203	attack	Jun 12 11:38:09 hosting sshd[2365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.63.97.203 user=root Jun 12 11:38:11 hosting sshd[2365]: Failed password for root from 183.63.97.203 port 37532 ssh2 ...	2020-06-12 18:35:59
106.12.180.166	attackspambots	Invalid user nagios from 106.12.180.166 port 34378	2020-06-12 18:30:20
45.89.174.46	attackbots	[2020-06-12 06:12:58] NOTICE[1273] chan_sip.c: Registration from '' failed for '45.89.174.46:52507' - Wrong password [2020-06-12 06:12:58] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-12T06:12:58.666-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6678",SessionID="0x7f31c02f7128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.89.174.46/52507",Challenge="0fd8e14d",ReceivedChallenge="0fd8e14d",ReceivedHash="7665304e6d2e646816a520788d4286cd" [2020-06-12 06:13:42] NOTICE[1273] chan_sip.c: Registration from '' failed for '45.89.174.46:52872' - Wrong password [2020-06-12 06:13:42] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-12T06:13:42.685-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7247",SessionID="0x7f31c00226f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.89.174.46/528 ...	2020-06-12 18:18:49
27.128.233.104	attackspam	$f2bV_matches	2020-06-12 18:24:30
194.26.29.52	attack	Excessive Port-Scanning	2020-06-12 18:53:40
40.127.176.175	attackspam	(sshd) Failed SSH login from 40.127.176.175 (IE/Ireland/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 12 07:52:54 ubnt-55d23 sshd[824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.127.176.175 user=root Jun 12 07:52:57 ubnt-55d23 sshd[824]: Failed password for root from 40.127.176.175 port 1088 ssh2	2020-06-12 18:28:24
122.51.252.15	attack	2020-06-12T09:06:22.260743dmca.cloudsearch.cf sshd[3015]: Invalid user admin from 122.51.252.15 port 46230 2020-06-12T09:06:22.274947dmca.cloudsearch.cf sshd[3015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.252.15 2020-06-12T09:06:22.260743dmca.cloudsearch.cf sshd[3015]: Invalid user admin from 122.51.252.15 port 46230 2020-06-12T09:06:24.058650dmca.cloudsearch.cf sshd[3015]: Failed password for invalid user admin from 122.51.252.15 port 46230 ssh2 2020-06-12T09:08:40.114227dmca.cloudsearch.cf sshd[3168]: Invalid user jccai from 122.51.252.15 port 41534 2020-06-12T09:08:40.121190dmca.cloudsearch.cf sshd[3168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.252.15 2020-06-12T09:08:40.114227dmca.cloudsearch.cf sshd[3168]: Invalid user jccai from 122.51.252.15 port 41534 2020-06-12T09:08:41.518210dmca.cloudsearch.cf sshd[3168]: Failed password for invalid user jccai from 122.51.252.15 port ...	2020-06-12 18:39:46
59.126.43.139	attackspambots	port scan and connect, tcp 80 (http)	2020-06-12 18:13:50
139.59.25.106	attackspambots	Jun 12 06:34:37 bilbo sshd[5030]: User root from 139.59.25.106 not allowed because not listed in AllowUsers Jun 12 06:34:46 bilbo sshd[5032]: User root from 139.59.25.106 not allowed because not listed in AllowUsers Jun 12 06:34:55 bilbo sshd[5039]: Invalid user admin from 139.59.25.106 Jun 12 06:35:04 bilbo sshd[5443]: Invalid user fake from 139.59.25.106 ...	2020-06-12 18:41:44
41.210.3.208	attackspam	Bruteforce detected by fail2ban	2020-06-12 18:31:23
216.83.40.2	attack	firewall-block, port(s): 445/tcp	2020-06-12 18:33:42
202.141.253.229	attackspam	Jun 12 12:08:13 inter-technics sshd[32502]: Invalid user admin from 202.141.253.229 port 37114 Jun 12 12:08:13 inter-technics sshd[32502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.141.253.229 Jun 12 12:08:13 inter-technics sshd[32502]: Invalid user admin from 202.141.253.229 port 37114 Jun 12 12:08:15 inter-technics sshd[32502]: Failed password for invalid user admin from 202.141.253.229 port 37114 ssh2 Jun 12 12:13:40 inter-technics sshd[417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.141.253.229 user=root Jun 12 12:13:43 inter-technics sshd[417]: Failed password for root from 202.141.253.229 port 36860 ssh2 ...	2020-06-12 18:16:05
222.186.175.182	attackbots	Jun 12 07:18:42 firewall sshd[13586]: Failed password for root from 222.186.175.182 port 17904 ssh2 Jun 12 07:18:46 firewall sshd[13586]: Failed password for root from 222.186.175.182 port 17904 ssh2 Jun 12 07:18:49 firewall sshd[13586]: Failed password for root from 222.186.175.182 port 17904 ssh2 ...	2020-06-12 18:19:25

Recently Reported IPs

126.82.130.160	28.97.199.29	203.122.15.7	172.164.26.176
215.213.201.96	69.86.78.23	24.125.96.23	152.109.81.7
248.35.53.84	50.235.175.82	83.44.185.103	31.179.86.8
70.156.22.165	190.93.12.114	125.116.6.141	118.88.24.244
4.169.5.115	36.195.190.163	214.173.162.53	5.110.40.224