85.3.57.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Switzerland

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.3.57.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4884
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.3.57.145.			IN	A

;; AUTHORITY SECTION:
.			487	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011002 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 10:36:46 CST 2022
;; MSG SIZE  rcvd: 104

Host info

145.57.3.85.in-addr.arpa domain name pointer 145.57.3.85.dynamic.wline.res.cust.swisscom.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.57.3.85.in-addr.arpa	name = 145.57.3.85.dynamic.wline.res.cust.swisscom.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.175.226.167	attackbots	Sep 26 04:42:11 roki-contabo sshd\[9834\]: Invalid user admin from 52.175.226.167 Sep 26 04:42:11 roki-contabo sshd\[9834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.175.226.167 Sep 26 04:42:13 roki-contabo sshd\[9834\]: Failed password for invalid user admin from 52.175.226.167 port 38269 ssh2 Sep 26 17:02:13 vmi369945 sshd\[10241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.175.226.167 user=root Sep 26 17:02:15 vmi369945 sshd\[10241\]: Failed password for root from 52.175.226.167 port 8733 ssh2 ...	2020-09-27 02:39:45
45.148.122.192	attackspambots	TCP (SYN) 45.148.122.192:50086 -> port 22, len 44	2020-09-27 03:03:11
49.232.196.162	attackbots	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 49.232.196.162, Reason:[(sshd) Failed SSH login from 49.232.196.162 (CN/China/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-27 02:54:14
13.95.27.133	attackbots	Sep 26 18:52:18 marvibiene sshd[775]: Invalid user 187 from 13.95.27.133 port 24641 Sep 26 18:52:18 marvibiene sshd[775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.95.27.133 Sep 26 18:52:18 marvibiene sshd[775]: Invalid user 187 from 13.95.27.133 port 24641 Sep 26 18:52:21 marvibiene sshd[775]: Failed password for invalid user 187 from 13.95.27.133 port 24641 ssh2	2020-09-27 02:54:41
192.241.214.158	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 17185 resulting in total of 68 scans from 192.241.128.0/17 block.	2020-09-27 02:42:48
138.68.24.88	attackspambots	Sep 26 16:40:14 db sshd[29711]: User root from 138.68.24.88 not allowed because none of user's groups are listed in AllowGroups ...	2020-09-27 02:40:52
59.125.31.24	attackbotsspam	59.125.31.24 (TW/Taiwan/59-125-31-24.HINET-IP.hinet.net), 3 distributed sshd attacks on account [user1] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 26 14:32:24 internal2 sshd[19152]: Invalid user user1 from 59.125.31.24 port 36152 Sep 26 14:29:58 internal2 sshd[16795]: Invalid user user1 from 133.167.95.209 port 33488 Sep 26 14:07:29 internal2 sshd[29664]: Invalid user user1 from 211.252.87.97 port 42310 IP Addresses Blocked:	2020-09-27 02:39:26
103.207.11.10	attack	" "	2020-09-27 02:37:49
94.23.206.122	attackbots	SSH Brute-Force reported by Fail2Ban	2020-09-27 02:44:52
49.88.112.72	attackspambots	Sep 26 21:50:00 pkdns2 sshd\[42093\]: Failed password for root from 49.88.112.72 port 50594 ssh2Sep 26 21:50:02 pkdns2 sshd\[42093\]: Failed password for root from 49.88.112.72 port 50594 ssh2Sep 26 21:50:05 pkdns2 sshd\[42093\]: Failed password for root from 49.88.112.72 port 50594 ssh2Sep 26 21:51:47 pkdns2 sshd\[42204\]: Failed password for root from 49.88.112.72 port 40200 ssh2Sep 26 21:52:39 pkdns2 sshd\[42249\]: Failed password for root from 49.88.112.72 port 23732 ssh2Sep 26 21:53:30 pkdns2 sshd\[42280\]: Failed password for root from 49.88.112.72 port 10204 ssh2 ...	2020-09-27 02:58:48
51.116.112.29	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "187" at 2020-09-26T18:48:48Z	2020-09-27 02:53:13
162.142.125.22	attack	Port scanning [2 denied]	2020-09-27 02:57:42
132.232.60.183	attack	2020-09-25T18:57:23.278262hostname sshd[94333]: Failed password for invalid user manager from 132.232.60.183 port 58286 ssh2 ...	2020-09-27 02:35:46
203.195.205.202	attackspam	Invalid user wocloud from 203.195.205.202 port 46872	2020-09-27 02:31:54
189.208.21.212	attackbots	Automatic report - Port Scan Attack	2020-09-27 02:55:03

Recently Reported IPs

55.22.46.172	185.194.198.15	179.51.184.127	16.71.130.3
51.225.47.30	4.178.142.248	249.141.125.245	228.22.59.144
74.174.94.243	112.189.186.156	191.249.151.60	101.115.229.241
59.195.199.254	91.228.5.7	128.134.8.179	194.26.56.86
196.13.196.156	152.182.184.221	153.134.146.237	133.8.119.119