85.93.52.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.93.52.99	attackbots	Feb 15 15:54:02 MK-Soft-VM3 sshd[15054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 15 15:54:04 MK-Soft-VM3 sshd[15054]: Failed password for invalid user mauro from 85.93.52.99 port 49028 ssh2 ...	2020-02-15 23:00:15
85.93.52.99	attackspam	Feb 12 11:27:54 server sshd\[26033\]: Invalid user cacti from 85.93.52.99 Feb 12 11:27:54 server sshd\[26033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 12 11:27:56 server sshd\[26033\]: Failed password for invalid user cacti from 85.93.52.99 port 41398 ssh2 Feb 12 11:30:08 server sshd\[26557\]: Invalid user user1 from 85.93.52.99 Feb 12 11:30:08 server sshd\[26557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-02-12 18:01:23
85.93.52.99	attackspambots	Feb 8 16:19:43 legacy sshd[18311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 8 16:19:45 legacy sshd[18311]: Failed password for invalid user hxp from 85.93.52.99 port 32854 ssh2 Feb 8 16:23:09 legacy sshd[18507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-02-09 01:21:40
85.93.52.99	attackspambots	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-02-02 18:06:31
85.93.52.99	attackspam	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-02-01 22:45:30
85.93.52.99	attackspam	Jan 31 09:44:04 hcbbdb sshd\[29518\]: Invalid user mrinal from 85.93.52.99 Jan 31 09:44:04 hcbbdb sshd\[29518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 31 09:44:06 hcbbdb sshd\[29518\]: Failed password for invalid user mrinal from 85.93.52.99 port 55980 ssh2 Jan 31 09:46:26 hcbbdb sshd\[29849\]: Invalid user priti from 85.93.52.99 Jan 31 09:46:26 hcbbdb sshd\[29849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99	2020-01-31 18:05:41
85.93.52.99	attackbots	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-01-25 01:21:10
85.93.52.99	attackspambots	Jan 13 23:58:30 mail sshd\[44310\]: Invalid user lalitha from 85.93.52.99 Jan 13 23:58:30 mail sshd\[44310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-01-14 13:39:36
85.93.52.99	attack	SSH Brute-Force reported by Fail2Ban	2020-01-04 13:42:49
85.93.52.99	attack	$f2bV_matches	2020-01-03 17:40:22
85.93.52.99	attack	Jan 2 23:54:55 zeus sshd[723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 2 23:54:57 zeus sshd[723]: Failed password for invalid user procesor from 85.93.52.99 port 38796 ssh2 Jan 2 23:56:38 zeus sshd[783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 2 23:56:39 zeus sshd[783]: Failed password for invalid user msn from 85.93.52.99 port 53994 ssh2	2020-01-03 09:23:09
85.93.52.99	attack	Dec 30 00:04:17 * sshd[22075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Dec 30 00:04:19 * sshd[22075]: Failed password for invalid user ubnt from 85.93.52.99 port 54982 ssh2	2019-12-30 07:28:57
85.93.52.99	attackspam	Dec 28 00:40:31 localhost sshd\[5177\]: Invalid user test from 85.93.52.99 port 36056 Dec 28 00:40:31 localhost sshd\[5177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Dec 28 00:40:33 localhost sshd\[5177\]: Failed password for invalid user test from 85.93.52.99 port 36056 ssh2	2019-12-28 08:01:40
85.93.52.99	attackspam	Invalid user bambang from 85.93.52.99 port 49780	2019-12-24 21:59:22
85.93.52.99	attackbots	$f2bV_matches_ltvn	2019-12-11 23:18:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.93.52.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.93.52.1.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 11:54:57 CST 2022
;; MSG SIZE  rcvd: 103

Host info

1.52.93.85.in-addr.arpa domain name pointer srv.gealex.net.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.52.93.85.in-addr.arpa	name = srv.gealex.net.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.210.111.35	attackspambots	Fail2Ban Ban Triggered	2020-08-03 19:14:54
90.189.145.32	attack	GET /wp-login.php HTTP/1.1 404 4256 "-/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-03 18:58:21
118.172.193.17	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-03 19:21:09
31.13.176.209	attackbots	Icarus honeypot on github	2020-08-03 19:11:11
60.167.182.170	attackbotsspam	Lines containing failures of 60.167.182.170 Jul 26 12:07:26 mellenthin sshd[21962]: Invalid user satish from 60.167.182.170 port 59624 Jul 26 12:07:26 mellenthin sshd[21962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.182.170 Jul 26 12:07:27 mellenthin sshd[21962]: Failed password for invalid user satish from 60.167.182.170 port 59624 ssh2 Aug 3 05:48:54 mellenthin sshd[7346]: User r.r from 60.167.182.170 not allowed because not listed in AllowUsers Aug 3 05:48:54 mellenthin sshd[7346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.182.170 user=r.r Aug 3 05:48:57 mellenthin sshd[7346]: Failed password for invalid user r.r from 60.167.182.170 port 39696 ssh2 Aug 3 05:48:57 mellenthin sshd[7346]: Received disconnect from 60.167.182.170 port 39696:11: Bye Bye [preauth] Aug 3 05:48:57 mellenthin sshd[7346]: Disconnected from invalid user r.r 60.167.182.170 port 39696 [p........ ------------------------------	2020-08-03 19:26:19
210.206.92.137	attack	Failed password for root from 210.206.92.137 port 30485 ssh2	2020-08-03 18:45:27
120.136.102.28	attack	120.136.102.28 - - [03/Aug/2020:07:27:30 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 120.136.102.28 - - [03/Aug/2020:07:27:33 +0100] "POST /wp-login.php HTTP/1.1" 200 7820 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 120.136.102.28 - - [03/Aug/2020:07:40:41 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-08-03 18:41:36
106.13.68.190	attackspambots	Failed password for root from 106.13.68.190 port 46818 ssh2	2020-08-03 18:57:27
62.234.124.53	attackspambots	Aug 3 08:18:36 db sshd[1167]: User root from 62.234.124.53 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-03 19:10:47
96.44.183.149	attack	Dovecot Invalid User Login Attempt.	2020-08-03 19:07:30
115.79.44.146	attackbotsspam	1596426592 - 08/03/2020 05:49:52 Host: 115.79.44.146/115.79.44.146 Port: 445 TCP Blocked	2020-08-03 18:47:39
118.25.222.235	attackbotsspam	Aug 2 18:44:10 web1 sshd\[1466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.222.235 user=root Aug 2 18:44:12 web1 sshd\[1466\]: Failed password for root from 118.25.222.235 port 57500 ssh2 Aug 2 18:50:24 web1 sshd\[2048\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.222.235 user=root Aug 2 18:50:26 web1 sshd\[2048\]: Failed password for root from 118.25.222.235 port 9908 ssh2 Aug 2 18:53:22 web1 sshd\[2320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.222.235 user=root	2020-08-03 18:52:00
87.251.74.181	attack	Aug 3 13:09:29 debian-2gb-nbg1-2 kernel: \[18711440.646249\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.181 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=65466 PROTO=TCP SPT=58235 DPT=3919 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-03 19:25:11
111.229.216.155	attack	Aug 3 11:28:58 myvps sshd[25693]: Failed password for root from 111.229.216.155 port 53864 ssh2 Aug 3 11:44:40 myvps sshd[3172]: Failed password for root from 111.229.216.155 port 54684 ssh2 ...	2020-08-03 18:52:52
129.227.129.166	attack	Aug 3 13:04:54 debian-2gb-nbg1-2 kernel: \[18711165.337512\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=129.227.129.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=54321 PROTO=TCP SPT=35357 DPT=8112 WINDOW=65535 RES=0x00 SYN URGP=0	2020-08-03 19:22:47

Recently Reported IPs

85.76.78.45	85.93.53.136	85.92.121.168	85.90.207.221
85.96.203.179	85.96.203.215	85.95.167.253	62.133.136.201
85.98.212.110	85.98.213.111	85.97.223.124	85.96.217.60
85.98.58.84	86.101.229.89	86.101.157.211	86.102.70.114
86.101.39.127	86.102.133.162	86.104.97.189	86.104.244.216