JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.113.142.194

85.113.142.194 was found in our database!

This IP was reported 1,277 times. Confidence of Abuse is 100%: ?

100%

ISP	Intercon ETTH MAN
Usage Type	Fixed Line ISP
ASN	AS34550
Domain Name	intercon.ru
Country	🇷🇺 Russian Federation
City	Voronezh, Voronezh Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.113.142.194

Whois 85.113.142.194

IP Abuse Reports for 85.113.142.194:

This IP address has been reported a total of 1,277 times from 217 distinct sources. 85.113.142.194 was first reported on January 10th 2026, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 Hobby Bob	2026-01-18 21:10:37 (4 months ago)	Jan 18 21:10:36 mail postfix/submission/smtpd[641691]: warning: unknown[85.113.142.194]: SASL LOGIN ... show more Jan 18 21:10:36 mail postfix/submission/smtpd[641691]: warning: unknown[85.113.142.194]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 show less	Hacking Brute-Force
🇩🇪 Paul Smith	2026-01-18 18:04:46 (4 months ago)	Email Auth Brute force attack 1/1 in last day	Brute-Force
🇦🇺 aglenday	2026-01-18 16:12:01 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 85.113.142.194 (RU/Russia/-): 1 in the last 3600 secs; Ports: ... show more (smtpauth) Failed SMTP AUTH login from 85.113.142.194 (RU/Russia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2026-01-19T03:11:57.352810+11:00 mail postfix/submission/smtpd[917806]: warning: unknown[85.113.142.194]: SASL LOGIN authentication failed: (reason unavailable), [email protected] show less	Port Scan
Anonymous	2026-01-18 15:32:13 (4 months ago)	2026-01-18 16:32:03.413 [1301196] no host name found for IP address 85.113.142.194 2026-01-18 16:32: ... show more 2026-01-18 16:32:03.413 [1301196] no host name found for IP address 85.113.142.194 2026-01-18 16:32:11.414 [1301196] dovecot_login authenticator failed for ([85.113.142.194]) [85.113.142.194]:55338 I=[217.197.86.168]:25 Ci=1301196: 535 Incorrect authentication data 2026-01-18 16:32:12.150 [1301196] no MAIL in SMTP connection from ([85.113.142.194]) [85.113.142.194]:55338 I=[217.197.86.168]:25 Ci=1301196 D=9s X=TLS1.2:ECDHE_SECP256R1__ECDSA_SHA512__AES_256_GCM:256 CV=no C=EHLO,STARTTLS,EHLO,AUTH ... show less	Email Spam
🇦🇺 aglenday	2026-01-18 13:09:06 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 85.113.142.194 (RU/Russia/-): 1 in the last 3600 secs; Ports: ... show more (smtpauth) Failed SMTP AUTH login from 85.113.142.194 (RU/Russia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2026-01-19T00:09:05.163472+11:00 mail postfix/submission/smtpd[856220]: warning: unknown[85.113.142.194]: SASL LOGIN authentication failed: (reason unavailable), sasl_username=ashley01 show less	Port Scan
🇺🇸 lintelcorpo	2026-01-18 10:13:07 (4 months ago)	Yesterday, this IP was the source of 10 failed authentications targeting 10 unique usernames on our ... show more Yesterday, this IP was the source of 10 failed authentications targeting 10 unique usernames on our Mail Server at 216.21.193.119. show less	Brute-Force
🇹🇭 thaizone.com	2026-01-18 08:33:47 (4 months ago)	Mail credential brute-force attack (SMG1 [2]) #1	Email Spam Brute-Force
🇸🇮 basing	2026-01-18 05:19:39 (4 months ago)	2026-01-18 06:19:39 z4 SASL PLAIN auth failed: rhost=85.113.142.194...	Brute-Force
🇦🇺 aglenday	2026-01-18 00:04:31 (4 months ago)	(smtpauth) Failed SMTP AUTH login from 85.113.142.194 (RU/Russia/-): 1 in the last 3600 secs; Ports: ... show more (smtpauth) Failed SMTP AUTH login from 85.113.142.194 (RU/Russia/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2026-01-18T11:04:30.261301+11:00 mail postfix/submission/smtpd[464646]: warning: unknown[85.113.142.194]: SASL LOGIN authentication failed: (reason unavailable), [email protected] show less	Port Scan
🇮🇩 xveil	2026-01-17 23:09:59 (4 months ago)	2026-01-18T06:09:57.144087 mail-honeypot postfix/submission/smtpd[22208]: warning: unknown[85.113.14 ... show more 2026-01-18T06:09:57.144087 mail-honeypot postfix/submission/smtpd[22208]: warning: unknown[85.113.142.194]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
🇩🇪 Paul Smith	2026-01-17 18:02:46 (4 months ago)	Email Auth Brute force attack 5/5 in last day	Brute-Force
Anonymous	2026-01-17 17:18:02 (4 months ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇸🇰 KZP	2026-01-17 15:01:12 (4 months ago)	Automatic report from KZP firewall log.	Port Scan Hacking Brute-Force
🇮🇩 xveil	2026-01-17 14:15:44 (4 months ago)	2026-01-17T21:15:42.660598 mail-honeypot postfix/submission/smtpd[20013]: warning: unknown[85.113.14 ... show more 2026-01-17T21:15:42.660598 mail-honeypot postfix/submission/smtpd[20013]: warning: unknown[85.113.142.194]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force
🇳🇱 maxxsense	2026-01-17 12:41:12 (4 months ago)	(postfix-unknown) Failed postfix unknown login with username [redacted] from 85.113.142.194 (RU/Russ ... show more (postfix-unknown) Failed postfix unknown login with username [redacted] from 85.113.142.194 (RU/Russia/-) show less	Hacking

Showing 1216 to 1230 of 1277 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 115.85.84.106

🇨🇦 85.217.149.65

🇨🇳 1.83.125.222

🇺🇸 2607:f8b0:400c:c18::128

🇩🇪 192.109.200.78

🇳🇱 172.211.123.250

🇭🇰 165.154.41.56

🇯🇵 152.32.201.247

🇺🇸 140.235.1.105

🇮🇩 103.135.227.154

🇧🇬 91.191.209.198

🇺🇸 66.154.107.138

🇬🇧 35.203.211.164

🇯🇵 20.63.210.3

🇸🇬 2a09:bac5:55f8:25b9::3c2:4c

🇨🇭 209.99.191.19

🇺🇸 208.84.100.238

🇨🇦 191.96.36.42

🇳🇱 176.65.149.45

🇺🇸 172.178.16.179