85.113.21.8 - IPInfo

基本信息:

城市(city): Cholpon-Ata

省份(region): Issyk-Kul

国家(country): Kyrgyzstan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): OJSC Kyrgyztelecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
85.113.219.209	attackspam	firewall-block, port(s): 23/tcp	2020-05-29 17:43:10
85.113.210.172	attackbots	Unauthorized connection attempt detected from IP address 85.113.210.172 to port 445	2020-02-27 17:47:22
85.113.210.58	attack	Invalid user berkay from 85.113.210.58 port 34113	2019-12-18 19:44:10
85.113.210.58	attackspambots	Dec 14 18:53:09 php1 sshd\[21974\]: Invalid user ewing from 85.113.210.58 Dec 14 18:53:09 php1 sshd\[21974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=zimbra.szsm-mail.ru Dec 14 18:53:10 php1 sshd\[21974\]: Failed password for invalid user ewing from 85.113.210.58 port 9154 ssh2 Dec 14 18:58:33 php1 sshd\[22671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=zimbra.szsm-mail.ru user=root Dec 14 18:58:35 php1 sshd\[22671\]: Failed password for root from 85.113.210.58 port 14145 ssh2	2019-12-15 13:20:17
85.113.210.58	attackspambots	Dec 14 22:51:42 pkdns2 sshd\[40200\]: Invalid user sources from 85.113.210.58Dec 14 22:51:44 pkdns2 sshd\[40200\]: Failed password for invalid user sources from 85.113.210.58 port 6785 ssh2Dec 14 22:56:43 pkdns2 sshd\[40474\]: Invalid user comercial123 from 85.113.210.58Dec 14 22:56:45 pkdns2 sshd\[40474\]: Failed password for invalid user comercial123 from 85.113.210.58 port 29953 ssh2Dec 14 23:01:34 pkdns2 sshd\[40798\]: Invalid user caopanshou from 85.113.210.58Dec 14 23:01:35 pkdns2 sshd\[40798\]: Failed password for invalid user caopanshou from 85.113.210.58 port 5506 ssh2 ...	2019-12-15 05:05:02
85.113.211.16	attackbotsspam	Unauthorized connection attempt detected from IP address 85.113.211.16 to port 445	2019-12-13 15:36:29
85.113.210.58	attackspambots	Nov 23 01:16:07 mail sshd[7442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 user=root Nov 23 01:16:09 mail sshd[7442]: Failed password for root from 85.113.210.58 port 48194 ssh2 Nov 23 01:37:09 mail sshd[10003]: Invalid user electric from 85.113.210.58 Nov 23 01:37:09 mail sshd[10003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 Nov 23 01:37:09 mail sshd[10003]: Invalid user electric from 85.113.210.58 Nov 23 01:37:11 mail sshd[10003]: Failed password for invalid user electric from 85.113.210.58 port 12289 ssh2 ...	2019-11-25 03:18:54
85.113.210.58	attackspam	frenzy	2019-11-13 17:58:43
85.113.210.58	attack	Automatic report - Banned IP Access	2019-11-02 06:15:15
85.113.210.58	attackspambots	$f2bV_matches	2019-10-22 03:27:03
85.113.210.58	attackspambots	Oct 18 14:44:06 dedicated sshd[9511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 user=root Oct 18 14:44:08 dedicated sshd[9511]: Failed password for root from 85.113.210.58 port 32449 ssh2	2019-10-19 00:36:09
85.113.210.58	attackbots	Oct 2 02:38:58 vtv3 sshd\[4011\]: Invalid user iota from 85.113.210.58 port 48321 Oct 2 02:38:58 vtv3 sshd\[4011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 Oct 2 02:38:59 vtv3 sshd\[4011\]: Failed password for invalid user iota from 85.113.210.58 port 48321 ssh2 Oct 2 02:42:21 vtv3 sshd\[5840\]: Invalid user it from 85.113.210.58 port 26017 Oct 2 02:42:21 vtv3 sshd\[5840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 Oct 2 02:52:34 vtv3 sshd\[10772\]: Invalid user volumio from 85.113.210.58 port 14913 Oct 2 02:52:34 vtv3 sshd\[10772\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 Oct 2 02:52:36 vtv3 sshd\[10772\]: Failed password for invalid user volumio from 85.113.210.58 port 14913 ssh2 Oct 2 02:56:03 vtv3 sshd\[12563\]: Invalid user home from 85.113.210.58 port 44706 Oct 2 02:56:03 vtv3 sshd\[12563\]: pam_unix\(ss	2019-10-15 02:35:26
85.113.210.58	attackspambots	SSH invalid-user multiple login try	2019-10-13 19:52:18
85.113.210.58	attackbotsspam	Oct 12 23:11:59 localhost sshd\[123093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 user=root Oct 12 23:12:01 localhost sshd\[123093\]: Failed password for root from 85.113.210.58 port 18625 ssh2 Oct 12 23:15:31 localhost sshd\[123179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 user=root Oct 12 23:15:32 localhost sshd\[123179\]: Failed password for root from 85.113.210.58 port 46753 ssh2 Oct 12 23:19:03 localhost sshd\[123331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 user=root ...	2019-10-13 07:34:24
85.113.210.58	attackspam	Oct 8 03:56:21 unicornsoft sshd\[500\]: User root from 85.113.210.58 not allowed because not listed in AllowUsers Oct 8 03:56:21 unicornsoft sshd\[500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.113.210.58 user=root Oct 8 03:56:23 unicornsoft sshd\[500\]: Failed password for invalid user root from 85.113.210.58 port 22850 ssh2	2019-10-08 14:44:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.113.21.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63317
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.113.21.8.			IN	A

;; AUTHORITY SECTION:
.			2710	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 12 03:24:04 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

8.21.113.85.in-addr.arpa domain name pointer 85-113-21-8.static.ktnet.kg.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
8.21.113.85.in-addr.arpa	name = 85-113-21-8.static.ktnet.kg.

Authoritative answers can be found from:

IP	类型	评论内容	时间
14.161.27.189	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-02-20 19:53:55
14.241.67.13	attack	Honeypot attack, port: 139, PTR: static.vnpt.vn.	2020-02-20 19:40:24
36.85.223.76	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-02-2020 04:50:10.	2020-02-20 19:34:52
178.33.254.29	attack	02/20/2020-05:50:09.842809 178.33.254.29 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-02-20 19:36:12
190.29.111.204	attackspambots	Honeypot attack, port: 81, PTR: static-adsl190-29-111-204.une.net.co.	2020-02-20 19:45:50
27.2.44.136	attackspambots	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-20 20:10:49
114.67.80.209	attackbots	DATE:2020-02-20 12:00:44, IP:114.67.80.209, PORT:ssh SSH brute force auth (docker-dc)	2020-02-20 20:06:51
36.89.29.17	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-20 20:12:40
14.229.174.222	attackbots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-02-20 19:48:12
45.134.179.57	attack	Feb 20 12:25:52 debian-2gb-nbg1-2 kernel: \[4457162.715151\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.134.179.57 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=62125 PROTO=TCP SPT=57106 DPT=2819 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-20 19:44:36
113.187.85.224	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 20-02-2020 04:50:09.	2020-02-20 19:36:56
99.17.246.167	attack	SSH brutforce	2020-02-20 19:57:16
101.255.171.38	attack	1582185520 - 02/20/2020 08:58:40 Host: 101.255.171.38/101.255.171.38 Port: 445 TCP Blocked	2020-02-20 19:37:47
185.176.27.166	attackbots	Feb 20 12:38:35 debian-2gb-nbg1-2 kernel: \[4457926.062478\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.166 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=58262 PROTO=TCP SPT=40756 DPT=4946 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-20 19:50:51
106.52.106.61	attack	invalid login attempt (support)	2020-02-20 20:04:11

最近上报的IP列表

172.95.49.162	168.205.236.10	180.216.12.191	194.0.230.121
142.18.107.79	104.56.205.168	221.230.105.40	39.225.182.108
91.157.59.4	206.81.221.86	211.32.167.89	168.56.85.150
200.164.153.75	2.101.74.137	138.74.35.133	4.119.208.231
35.37.38.130	81.25.251.188	160.81.21.73	78.181.30.176