85.246.11.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.246.112.92	attack	Port Scan detected from 85.246.112.92 (PT/Portugal/Lisbon/Lisbon/bl13-112-92.dsl.telepac.pt). 4 hits in the last 290 seconds	2020-08-05 22:21:02
85.246.112.92	attackspam	Brute-force attempt banned	2020-08-04 08:30:16
85.246.112.92	attack	2020-07-07T13:02:36.383459shield sshd\[2599\]: Invalid user lb from 85.246.112.92 port 37410 2020-07-07T13:02:36.387346shield sshd\[2599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt 2020-07-07T13:02:37.731946shield sshd\[2599\]: Failed password for invalid user lb from 85.246.112.92 port 37410 ssh2 2020-07-07T13:06:04.363714shield sshd\[3633\]: Invalid user backup from 85.246.112.92 port 36628 2020-07-07T13:06:04.367507shield sshd\[3633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt	2020-07-07 21:06:14

Type

Details

Datetime

85.246.112.92

attack

*Port Scan* detected from 85.246.112.92 (PT/Portugal/Lisbon/Lisbon/bl13-112-92.dsl.telepac.pt). 4 hits in the last 290 seconds

2020-08-05 22:21:02

85.246.112.92

attackspam

Brute-force attempt banned

2020-08-04 08:30:16

85.246.112.92

attack

2020-07-07T13:02:36.383459shield sshd\[2599\]: Invalid user lb from 85.246.112.92 port 37410
2020-07-07T13:02:36.387346shield sshd\[2599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt
2020-07-07T13:02:37.731946shield sshd\[2599\]: Failed password for invalid user lb from 85.246.112.92 port 37410 ssh2
2020-07-07T13:06:04.363714shield sshd\[3633\]: Invalid user backup from 85.246.112.92 port 36628
2020-07-07T13:06:04.367507shield sshd\[3633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt

2020-07-07 21:06:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.246.11.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45839
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.246.11.4.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 01:26:17 CST 2025
;; MSG SIZE  rcvd: 104

Host info

4.11.246.85.in-addr.arpa domain name pointer bl13-11-4.dsl.telepac.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.11.246.85.in-addr.arpa	name = bl13-11-4.dsl.telepac.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.191.50.114	attackbots	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.114 user=root Failed password for root from 94.191.50.114 port 40660 ssh2 Invalid user rafli from 94.191.50.114 port 58694 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.114 Failed password for invalid user rafli from 94.191.50.114 port 58694 ssh2	2019-10-23 13:59:56
167.114.152.139	attack	SSH invalid-user multiple login attempts	2019-10-23 13:12:38
170.247.0.2	attack	Telnet Server BruteForce Attack	2019-10-23 13:09:30
218.150.83.15	attackspambots	Connection by 218.150.83.15 on port: 23 got caught by honeypot at 10/23/2019 5:05:33 AM	2019-10-23 13:44:25
118.25.18.30	attackbotsspam	Oct 23 04:59:45 venus sshd\[29819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.18.30 user=root Oct 23 04:59:47 venus sshd\[29819\]: Failed password for root from 118.25.18.30 port 39208 ssh2 Oct 23 05:04:35 venus sshd\[29872\]: Invalid user chinaidc from 118.25.18.30 port 50560 ...	2019-10-23 13:08:48
113.125.60.208	attackspam	Automatic report - Banned IP Access	2019-10-23 13:56:38
210.5.88.19	attackspambots	Oct 23 06:47:32 OPSO sshd\[16730\]: Invalid user xiaowu from 210.5.88.19 port 57119 Oct 23 06:47:32 OPSO sshd\[16730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.5.88.19 Oct 23 06:47:34 OPSO sshd\[16730\]: Failed password for invalid user xiaowu from 210.5.88.19 port 57119 ssh2 Oct 23 06:52:42 OPSO sshd\[17507\]: Invalid user unrevealed from 210.5.88.19 port 48232 Oct 23 06:52:42 OPSO sshd\[17507\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.5.88.19	2019-10-23 13:53:24
134.249.117.3	attackbots	Automatic report - Web App Attack	2019-10-23 13:19:57
178.211.51.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-23 13:53:47
58.21.204.140	attack	Telnet Server BruteForce Attack	2019-10-23 13:26:24
100.43.91.201	attackbotsspam	port scan and connect, tcp 443 (https)	2019-10-23 13:57:21
13.77.142.89	attackspam	Brute force SMTP login attempted. ...	2019-10-23 13:15:39
134.209.254.81	attack	CloudCIX Reconnaissance Scan Detected, PTR: nns.tamfitronics.com.	2019-10-23 13:40:34
200.44.50.155	attackspam	SSH bruteforce (Triggered fail2ban)	2019-10-23 13:25:14
131.161.13.45	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: 131.161.13.45.petrarcasolucoes.com.br.	2019-10-23 13:18:45

Recently Reported IPs

251.20.228.243	90.54.117.32	203.14.15.116	194.253.80.209
179.157.207.170	141.60.101.33	36.147.250.109	107.29.225.228
238.248.97.255	50.6.95.153	212.176.201.232	77.245.223.237
70.230.156.51	151.77.62.32	81.208.237.165	46.113.93.68
224.170.253.237	225.214.246.200	206.243.69.102	89.204.227.212