85.93.52.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.93.52.99	attackbots	Feb 15 15:54:02 MK-Soft-VM3 sshd[15054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 15 15:54:04 MK-Soft-VM3 sshd[15054]: Failed password for invalid user mauro from 85.93.52.99 port 49028 ssh2 ...	2020-02-15 23:00:15
85.93.52.99	attackspam	Feb 12 11:27:54 server sshd\[26033\]: Invalid user cacti from 85.93.52.99 Feb 12 11:27:54 server sshd\[26033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 12 11:27:56 server sshd\[26033\]: Failed password for invalid user cacti from 85.93.52.99 port 41398 ssh2 Feb 12 11:30:08 server sshd\[26557\]: Invalid user user1 from 85.93.52.99 Feb 12 11:30:08 server sshd\[26557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-02-12 18:01:23
85.93.52.99	attackspambots	Feb 8 16:19:43 legacy sshd[18311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 8 16:19:45 legacy sshd[18311]: Failed password for invalid user hxp from 85.93.52.99 port 32854 ssh2 Feb 8 16:23:09 legacy sshd[18507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-02-09 01:21:40
85.93.52.99	attackspambots	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-02-02 18:06:31
85.93.52.99	attackspam	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-02-01 22:45:30
85.93.52.99	attackspam	Jan 31 09:44:04 hcbbdb sshd\[29518\]: Invalid user mrinal from 85.93.52.99 Jan 31 09:44:04 hcbbdb sshd\[29518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 31 09:44:06 hcbbdb sshd\[29518\]: Failed password for invalid user mrinal from 85.93.52.99 port 55980 ssh2 Jan 31 09:46:26 hcbbdb sshd\[29849\]: Invalid user priti from 85.93.52.99 Jan 31 09:46:26 hcbbdb sshd\[29849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99	2020-01-31 18:05:41
85.93.52.99	attackbots	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-01-25 01:21:10
85.93.52.99	attackspambots	Jan 13 23:58:30 mail sshd\[44310\]: Invalid user lalitha from 85.93.52.99 Jan 13 23:58:30 mail sshd\[44310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-01-14 13:39:36
85.93.52.99	attack	SSH Brute-Force reported by Fail2Ban	2020-01-04 13:42:49
85.93.52.99	attack	$f2bV_matches	2020-01-03 17:40:22
85.93.52.99	attack	Jan 2 23:54:55 zeus sshd[723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 2 23:54:57 zeus sshd[723]: Failed password for invalid user procesor from 85.93.52.99 port 38796 ssh2 Jan 2 23:56:38 zeus sshd[783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 2 23:56:39 zeus sshd[783]: Failed password for invalid user msn from 85.93.52.99 port 53994 ssh2	2020-01-03 09:23:09
85.93.52.99	attack	Dec 30 00:04:17 * sshd[22075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Dec 30 00:04:19 * sshd[22075]: Failed password for invalid user ubnt from 85.93.52.99 port 54982 ssh2	2019-12-30 07:28:57
85.93.52.99	attackspam	Dec 28 00:40:31 localhost sshd\[5177\]: Invalid user test from 85.93.52.99 port 36056 Dec 28 00:40:31 localhost sshd\[5177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Dec 28 00:40:33 localhost sshd\[5177\]: Failed password for invalid user test from 85.93.52.99 port 36056 ssh2	2019-12-28 08:01:40
85.93.52.99	attackspam	Invalid user bambang from 85.93.52.99 port 49780	2019-12-24 21:59:22
85.93.52.99	attackbots	$f2bV_matches_ltvn	2019-12-11 23:18:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.93.52.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.93.52.1.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 11:54:57 CST 2022
;; MSG SIZE  rcvd: 103

Host info

1.52.93.85.in-addr.arpa domain name pointer srv.gealex.net.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.52.93.85.in-addr.arpa	name = srv.gealex.net.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.70.216.153	attack	Unauthorized connection attempt detected from IP address 118.70.216.153 to port 22 [T]	2020-05-10 22:58:45
101.89.110.204	attackbotsspam	(sshd) Failed SSH login from 101.89.110.204 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 10 14:45:45 srv sshd[29057]: Invalid user droplet from 101.89.110.204 port 36528 May 10 14:45:47 srv sshd[29057]: Failed password for invalid user droplet from 101.89.110.204 port 36528 ssh2 May 10 15:02:58 srv sshd[29349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.110.204 user=root May 10 15:03:00 srv sshd[29349]: Failed password for root from 101.89.110.204 port 43360 ssh2 May 10 15:13:11 srv sshd[29485]: Invalid user po from 101.89.110.204 port 54212	2020-05-10 23:09:06
106.13.228.21	attack	May 10 15:22:53 vps687878 sshd\[23416\]: Failed password for invalid user dbi from 106.13.228.21 port 52284 ssh2 May 10 15:25:31 vps687878 sshd\[23746\]: Invalid user developer from 106.13.228.21 port 53342 May 10 15:25:31 vps687878 sshd\[23746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.21 May 10 15:25:33 vps687878 sshd\[23746\]: Failed password for invalid user developer from 106.13.228.21 port 53342 ssh2 May 10 15:27:51 vps687878 sshd\[23820\]: Invalid user vagrant1 from 106.13.228.21 port 54384 May 10 15:27:51 vps687878 sshd\[23820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.21 ...	2020-05-10 23:10:41
141.98.9.156	attackbotsspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-05-10 22:49:04
24.243.96.89	attack	US_Charter_<177>1589112809 [1:2403318:57153] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 10 [Classification: Misc Attack] [Priority: 2]: {TCP} 24.243.96.89:34589	2020-05-10 22:57:27
52.117.32.56	attack	2020-05-10T15:22:28.898609v22018076590370373 sshd[25019]: Invalid user hcpark from 52.117.32.56 port 53344 2020-05-10T15:22:28.905123v22018076590370373 sshd[25019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.117.32.56 2020-05-10T15:22:28.898609v22018076590370373 sshd[25019]: Invalid user hcpark from 52.117.32.56 port 53344 2020-05-10T15:22:31.072183v22018076590370373 sshd[25019]: Failed password for invalid user hcpark from 52.117.32.56 port 53344 ssh2 2020-05-10T15:26:03.293216v22018076590370373 sshd[8599]: Invalid user oracle from 52.117.32.56 port 34536 ...	2020-05-10 22:45:23
195.54.166.26	attackspam	May 10 16:45:51 debian-2gb-nbg1-2 kernel: \[11380822.433461\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.166.26 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=32485 PROTO=TCP SPT=49133 DPT=2830 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-10 23:22:11
211.253.24.250	attackbots	Total attacks: 2	2020-05-10 23:05:46
61.166.155.45	attackbotsspam	SSH Brute-Forcing (server1)	2020-05-10 23:11:11
109.161.89.140	attack	Automatic report - SSH Brute-Force Attack	2020-05-10 22:56:59
64.227.7.213	attack	64.227.7.213 - - \[10/May/2020:14:13:24 +0200\] "POST /wp-login.php HTTP/1.0" 200 5924 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 64.227.7.213 - - \[10/May/2020:14:13:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 5737 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 64.227.7.213 - - \[10/May/2020:14:13:33 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-10 22:49:45
197.238.106.42	attackspambots	Automatic report - Banned IP Access	2020-05-10 23:17:02
106.12.148.74	attackspam	May 10 15:54:20 mout sshd[9897]: Invalid user jtsai from 106.12.148.74 port 50062	2020-05-10 23:07:37
220.133.135.207	attack	trying to access non-authorized port	2020-05-10 22:59:30
51.38.186.180	attack	May 10 15:15:09 vpn01 sshd[8219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.186.180 May 10 15:15:11 vpn01 sshd[8219]: Failed password for invalid user yatri from 51.38.186.180 port 50565 ssh2 ...	2020-05-10 23:03:59

Recently Reported IPs

85.76.78.45	85.93.53.136	85.92.121.168	85.90.207.221
85.96.203.179	85.96.203.215	85.95.167.253	62.133.136.201
85.98.212.110	85.98.213.111	85.97.223.124	85.96.217.60
85.98.58.84	86.101.229.89	86.101.157.211	86.102.70.114
86.101.39.127	86.102.133.162	86.104.97.189	86.104.244.216