85.93.52.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.93.52.99	attackbots	Feb 15 15:54:02 MK-Soft-VM3 sshd[15054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 15 15:54:04 MK-Soft-VM3 sshd[15054]: Failed password for invalid user mauro from 85.93.52.99 port 49028 ssh2 ...	2020-02-15 23:00:15
85.93.52.99	attackspam	Feb 12 11:27:54 server sshd\[26033\]: Invalid user cacti from 85.93.52.99 Feb 12 11:27:54 server sshd\[26033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 12 11:27:56 server sshd\[26033\]: Failed password for invalid user cacti from 85.93.52.99 port 41398 ssh2 Feb 12 11:30:08 server sshd\[26557\]: Invalid user user1 from 85.93.52.99 Feb 12 11:30:08 server sshd\[26557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-02-12 18:01:23
85.93.52.99	attackspambots	Feb 8 16:19:43 legacy sshd[18311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Feb 8 16:19:45 legacy sshd[18311]: Failed password for invalid user hxp from 85.93.52.99 port 32854 ssh2 Feb 8 16:23:09 legacy sshd[18507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-02-09 01:21:40
85.93.52.99	attackspambots	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-02-02 18:06:31
85.93.52.99	attackspam	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-02-01 22:45:30
85.93.52.99	attackspam	Jan 31 09:44:04 hcbbdb sshd\[29518\]: Invalid user mrinal from 85.93.52.99 Jan 31 09:44:04 hcbbdb sshd\[29518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 31 09:44:06 hcbbdb sshd\[29518\]: Failed password for invalid user mrinal from 85.93.52.99 port 55980 ssh2 Jan 31 09:46:26 hcbbdb sshd\[29849\]: Invalid user priti from 85.93.52.99 Jan 31 09:46:26 hcbbdb sshd\[29849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99	2020-01-31 18:05:41
85.93.52.99	attackbots	Unauthorized connection attempt detected from IP address 85.93.52.99 to port 2220 [J]	2020-01-25 01:21:10
85.93.52.99	attackspambots	Jan 13 23:58:30 mail sshd\[44310\]: Invalid user lalitha from 85.93.52.99 Jan 13 23:58:30 mail sshd\[44310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 ...	2020-01-14 13:39:36
85.93.52.99	attack	SSH Brute-Force reported by Fail2Ban	2020-01-04 13:42:49
85.93.52.99	attack	$f2bV_matches	2020-01-03 17:40:22
85.93.52.99	attack	Jan 2 23:54:55 zeus sshd[723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 2 23:54:57 zeus sshd[723]: Failed password for invalid user procesor from 85.93.52.99 port 38796 ssh2 Jan 2 23:56:38 zeus sshd[783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Jan 2 23:56:39 zeus sshd[783]: Failed password for invalid user msn from 85.93.52.99 port 53994 ssh2	2020-01-03 09:23:09
85.93.52.99	attack	Dec 30 00:04:17 * sshd[22075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Dec 30 00:04:19 * sshd[22075]: Failed password for invalid user ubnt from 85.93.52.99 port 54982 ssh2	2019-12-30 07:28:57
85.93.52.99	attackspam	Dec 28 00:40:31 localhost sshd\[5177\]: Invalid user test from 85.93.52.99 port 36056 Dec 28 00:40:31 localhost sshd\[5177\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.93.52.99 Dec 28 00:40:33 localhost sshd\[5177\]: Failed password for invalid user test from 85.93.52.99 port 36056 ssh2	2019-12-28 08:01:40
85.93.52.99	attackspam	Invalid user bambang from 85.93.52.99 port 49780	2019-12-24 21:59:22
85.93.52.99	attackbots	$f2bV_matches_ltvn	2019-12-11 23:18:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.93.52.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36176
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.93.52.1.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 11:54:57 CST 2022
;; MSG SIZE  rcvd: 103

Host info

1.52.93.85.in-addr.arpa domain name pointer srv.gealex.net.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.52.93.85.in-addr.arpa	name = srv.gealex.net.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.149.26.94	attackspam	DATE:2020-03-30 07:59:10, IP:93.149.26.94, PORT:ssh SSH brute force auth (docker-dc)	2020-03-30 14:48:57
138.197.163.11	attackbotsspam	ssh brute force	2020-03-30 14:28:29
45.137.190.73	attack	Invalid user zo from 45.137.190.73 port 56686	2020-03-30 15:16:34
222.186.30.209	attack	Unauthorized connection attempt detected from IP address 222.186.30.209 to port 22 [T]	2020-03-30 14:42:33
122.51.44.154	attack	Mar 29 19:23:06 tdfoods sshd\[24372\]: Invalid user mgi from 122.51.44.154 Mar 29 19:23:06 tdfoods sshd\[24372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.44.154 Mar 29 19:23:09 tdfoods sshd\[24372\]: Failed password for invalid user mgi from 122.51.44.154 port 56296 ssh2 Mar 29 19:26:55 tdfoods sshd\[24630\]: Invalid user qfg from 122.51.44.154 Mar 29 19:26:55 tdfoods sshd\[24630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.44.154	2020-03-30 14:46:39
183.89.214.173	attackspambots	B: Magento admin pass test (wrong country)	2020-03-30 14:52:17
187.207.247.59	attack	Mar 30 11:14:23 gw1 sshd[22317]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.207.247.59 Mar 30 11:14:25 gw1 sshd[22317]: Failed password for invalid user bsv from 187.207.247.59 port 20498 ssh2 ...	2020-03-30 14:25:29
106.12.112.49	attackspam	Mar 30 06:25:18 haigwepa sshd[6433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.112.49 Mar 30 06:25:20 haigwepa sshd[6433]: Failed password for invalid user deborah from 106.12.112.49 port 54494 ssh2 ...	2020-03-30 14:35:20
171.247.200.101	attackbots	Honeypot attack, port: 445, PTR: dynamic-adsl.viettel.vn.	2020-03-30 14:26:42
144.76.96.236	attack	20 attempts against mh-misbehave-ban on comet	2020-03-30 15:01:38
94.83.32.226	attackbotsspam	DATE:2020-03-30 05:50:00, IP:94.83.32.226, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-30 15:09:59
174.128.250.18	attackspam	Scan detected 2020.03.27 03:41:01 blocked until 2020.04.21 01:12:24	2020-03-30 15:13:59
116.196.104.100	attackspam	DATE:2020-03-30 07:59:07, IP:116.196.104.100, PORT:ssh SSH brute force auth (docker-dc)	2020-03-30 14:50:31
222.186.42.155	attack	Mar 30 09:09:26 vmanager6029 sshd\[14098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Mar 30 09:09:29 vmanager6029 sshd\[14096\]: error: PAM: Authentication failure for root from 222.186.42.155 Mar 30 09:09:30 vmanager6029 sshd\[14099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root	2020-03-30 15:11:19
120.28.167.33	attackspam	web-1 [ssh] SSH Attack	2020-03-30 14:48:09

Recently Reported IPs

85.76.78.45	85.93.53.136	85.92.121.168	85.90.207.221
85.96.203.179	85.96.203.215	85.95.167.253	62.133.136.201
85.98.212.110	85.98.213.111	85.97.223.124	85.96.217.60
85.98.58.84	86.101.229.89	86.101.157.211	86.102.70.114
86.101.39.127	86.102.133.162	86.104.97.189	86.104.244.216