85.246.11.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.246.112.92	attack	Port Scan detected from 85.246.112.92 (PT/Portugal/Lisbon/Lisbon/bl13-112-92.dsl.telepac.pt). 4 hits in the last 290 seconds	2020-08-05 22:21:02
85.246.112.92	attackspam	Brute-force attempt banned	2020-08-04 08:30:16
85.246.112.92	attack	2020-07-07T13:02:36.383459shield sshd\[2599\]: Invalid user lb from 85.246.112.92 port 37410 2020-07-07T13:02:36.387346shield sshd\[2599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt 2020-07-07T13:02:37.731946shield sshd\[2599\]: Failed password for invalid user lb from 85.246.112.92 port 37410 ssh2 2020-07-07T13:06:04.363714shield sshd\[3633\]: Invalid user backup from 85.246.112.92 port 36628 2020-07-07T13:06:04.367507shield sshd\[3633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt	2020-07-07 21:06:14

Type

Details

Datetime

85.246.112.92

attack

*Port Scan* detected from 85.246.112.92 (PT/Portugal/Lisbon/Lisbon/bl13-112-92.dsl.telepac.pt). 4 hits in the last 290 seconds

2020-08-05 22:21:02

85.246.112.92

attackspam

Brute-force attempt banned

2020-08-04 08:30:16

85.246.112.92

attack

2020-07-07T13:02:36.383459shield sshd\[2599\]: Invalid user lb from 85.246.112.92 port 37410
2020-07-07T13:02:36.387346shield sshd\[2599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt
2020-07-07T13:02:37.731946shield sshd\[2599\]: Failed password for invalid user lb from 85.246.112.92 port 37410 ssh2
2020-07-07T13:06:04.363714shield sshd\[3633\]: Invalid user backup from 85.246.112.92 port 36628
2020-07-07T13:06:04.367507shield sshd\[3633\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=bl13-112-92.dsl.telepac.pt

2020-07-07 21:06:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.246.11.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45839
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.246.11.4.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 01:26:17 CST 2025
;; MSG SIZE  rcvd: 104

Host info

4.11.246.85.in-addr.arpa domain name pointer bl13-11-4.dsl.telepac.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
4.11.246.85.in-addr.arpa	name = bl13-11-4.dsl.telepac.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
158.69.226.107	attackbots	Jan 9 20:14:34 klukluk sshd\[30048\]: Invalid user test from 158.69.226.107 Jan 9 20:14:38 klukluk sshd\[30050\]: Invalid user test from 158.69.226.107 Jan 9 20:14:42 klukluk sshd\[30052\]: Invalid user jenkins from 158.69.226.107 ...	2020-01-10 05:14:54
79.143.177.176	attack	Unauthorized connection attempt from IP address 79.143.177.176 on Port 445(SMB)	2020-01-10 05:17:49
197.37.113.84	attack	scan r	2020-01-10 04:48:14
42.235.62.54	attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-01-10 04:50:26
101.51.201.99	attack	Unauthorized connection attempt from IP address 101.51.201.99 on Port 445(SMB)	2020-01-10 05:13:15
222.186.175.154	attack	Jan 9 21:47:00 vps691689 sshd[6831]: Failed password for root from 222.186.175.154 port 47552 ssh2 Jan 9 21:47:13 vps691689 sshd[6831]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 47552 ssh2 [preauth] ...	2020-01-10 04:49:50
114.32.54.159	attack	Unauthorized connection attempt from IP address 114.32.54.159 on Port 445(SMB)	2020-01-10 04:56:12
82.79.150.118	attackspam	Unauthorized connection attempt from IP address 82.79.150.118 on Port 445(SMB)	2020-01-10 05:16:05
202.103.222.10	attackbots	Unauthorized connection attempt detected from IP address 202.103.222.10 to port 1433 [T]	2020-01-10 04:57:15
45.64.221.77	attackbots	Honeypot hit.	2020-01-10 04:42:18
49.88.112.74	attack	Jan 9 21:32:03 MK-Soft-VM8 sshd[5264]: Failed password for root from 49.88.112.74 port 25868 ssh2 Jan 9 21:32:06 MK-Soft-VM8 sshd[5264]: Failed password for root from 49.88.112.74 port 25868 ssh2 ...	2020-01-10 05:06:33
61.241.171.31	attackbotsspam	scan z	2020-01-10 04:58:45
81.214.185.85	attackbots	Automatic report - Banned IP Access	2020-01-10 05:15:31
185.176.27.162	attackbots	3333/tcp 9934/tcp 33930/tcp... [2019-11-21/2020-01-09]384pkt,267pt.(tcp)	2020-01-10 04:52:50
133.130.117.173	attackbots	Jan 9 19:53:04 localhost sshd\[11807\]: Invalid user vnc from 133.130.117.173 port 36028 Jan 9 19:53:04 localhost sshd\[11807\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.117.173 Jan 9 19:53:06 localhost sshd\[11807\]: Failed password for invalid user vnc from 133.130.117.173 port 36028 ssh2	2020-01-10 05:12:46

Recently Reported IPs

251.20.228.243	90.54.117.32	203.14.15.116	194.253.80.209
179.157.207.170	141.60.101.33	36.147.250.109	107.29.225.228
238.248.97.255	50.6.95.153	212.176.201.232	77.245.223.237
70.230.156.51	151.77.62.32	81.208.237.165	46.113.93.68
224.170.253.237	225.214.246.200	206.243.69.102	89.204.227.212