JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 85.198.99.104

85.198.99.104 was found in our database!

This IP was reported 82 times. Confidence of Abuse is 100%: ?

100%

ISP	Beget LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS198610
Domain Name	beget.ru
Country	🇷🇺 Russian Federation
City	Moscow, Moscow

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 85.198.99.104

Whois 85.198.99.104

IP Abuse Reports for 85.198.99.104:

This IP address has been reported a total of 82 times from 49 distinct sources. 85.198.99.104 was first reported on June 12th 2026, and the most recent report was 6 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 sh97	2026-06-13 16:34:11 (6 days ago)	US01-CB-WA: SSH Brute Force from 85.198.99.104 at 2026-06-13 22:04:11 IST	Brute-Force SSH
Anonymous	2026-06-13 16:22:51 (6 days ago)	$f2bV_matches	Brute-Force SSH
🇩🇪 LoNET	2026-06-13 16:21:14 (6 days ago)	Report 2459938 with IP 3507505 for SSH brute-force attack by source 3502163 via ssh-honeypot/0.2.1+h ... show more Report 2459938 with IP 3507505 for SSH brute-force attack by source 3502163 via ssh-honeypot/0.2.1+http show less	Brute-Force SSH
🇩🇪 ErdbeerbaerLP	2026-06-13 16:20:16 (6 days ago)	2026-06-13T16:08:45.278238+00:00 erdbeerbaerlp.de sshd[1203348]: Invalid user arthur from 85.198.99. ... show more 2026-06-13T16:08:45.278238+00:00 erdbeerbaerlp.de sshd[1203348]: Invalid user arthur from 85.198.99.104 port 56482 2026-06-13T16:16:51.105938+00:00 erdbeerbaerlp.de sshd[1505735]: Invalid user yang from 85.198.99.104 port 57256 2026-06-13T16:20:15.762720+00:00 erdbeerbaerlp.de sshd[1632991]: Invalid user odoo from 85.198.99.104 port 41966 ... show less	Brute-Force
🇩🇪 licen777	2026-06-13 16:14:47 (6 days ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-13T16:10:05Z and 2026-06-1 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-13T16:10:05Z and 2026-06-13T16:14:47Z show less	Brute-Force SSH
🇩🇪 NetWatch	2026-06-13 16:08:14 (6 days ago)	The IP 85.198.99.104 tried multiple SSH_BRUTE_FORCE logins	Brute-Force
🇺🇸 NeverBehave	2026-06-13 15:26:51 (6 days ago)	[fail2ban] service sshd jail	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-13 14:33:17 (6 days ago)	85.198.99.104 (RU/Russia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Por ... show more 85.198.99.104 (RU/Russia/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 13 09:33:03 14827 sshd[21969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.156.111.141 user=root Jun 13 09:26:35 14827 sshd[18298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.156.111.141 user=root Jun 13 09:26:37 14827 sshd[18298]: Failed password for root from 43.156.111.141 port 38874 ssh2 Jun 13 09:29:04 14827 sshd[19760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.198.99.104 user=root Jun 13 09:29:06 14827 sshd[19760]: Failed password for root from 85.198.99.104 port 52244 ssh2 IP Addresses Blocked: 43.156.111.141 (SG/Singapore/-) show less	Brute-Force SSH
Anonymous	2026-06-13 14:26:38 (6 days ago)	2026-06-13T16:26:35.337107 localhost.localdomain sshd-session[86325]: Failed password for root from ... show more 2026-06-13T16:26:35.337107 localhost.localdomain sshd-session[86325]: Failed password for root from 85.198.99.104 port 41022 ssh2 2026-06-13T16:26:37.259512 localhost.localdomain sshd-session[86325]: Disconnected from authenticating user root 85.198.99.104 port 41022 [preauth] ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-13 13:44:44 (6 days ago)	(sshd) Failed SSH login from 85.198.99.104 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 85.198.99.104 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 13 13:35:02 23307 sshd[30496]: Invalid user vpn from 85.198.99.104 port 56260 Jun 13 13:35:04 23307 sshd[30496]: Failed password for invalid user vpn from 85.198.99.104 port 56260 ssh2 Jun 13 13:38:12 23307 sshd[32295]: Invalid user public from 85.198.99.104 port 51010 Jun 13 13:38:14 23307 sshd[32295]: Failed password for invalid user public from 85.198.99.104 port 51010 ssh2 Jun 13 13:44:25 23307 sshd[2936]: Invalid user ubuntu from 85.198.99.104 port 46592 show less	Brute-Force SSH
🇦🇹 michal21	2026-06-13 13:37:58 (6 days ago)	Fail2Ban: SSH brute-force detected	Brute-Force
🇺🇸 paradoxnetworks	2026-06-13 11:52:42 (6 days ago)	2026-06-13T11:49:17.871352+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1860508]: pam_unix(sshd:auth): a ... show more 2026-06-13T11:49:17.871352+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1860508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.198.99.104 2026-06-13T11:49:19.640053+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1860508]: Failed password for invalid user saad from 85.198.99.104 port 48678 ssh2 2026-06-13T11:52:41.900144+00:00 edge-eqx-iad03.int.pdx.net.uk sshd[1860832]: Invalid user master from 85.198.99.104 port 41630 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-13 11:49:11 (6 days ago)	(sshd) Failed SSH login from 85.198.99.104 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Directi ... show more (sshd) Failed SSH login from 85.198.99.104 (RU/Russia/-): 5 in the last 3600 secs; Ports: ; Direction: 1; Trigger: LF_SSHD; Logs: Jun 13 06:36:53 14193 sshd[18541]: Invalid user ftpdata from 85.198.99.104 port 39490 Jun 13 06:36:55 14193 sshd[18541]: Failed password for invalid user ftpdata from 85.198.99.104 port 39490 ssh2 Jun 13 06:45:29 14193 sshd[23844]: Invalid user kate from 85.198.99.104 port 49106 Jun 13 06:45:31 14193 sshd[23844]: Failed password for invalid user kate from 85.198.99.104 port 49106 ssh2 Jun 13 06:48:59 14193 sshd[25826]: Invalid user saad from 85.198.99.104 port 35178 show less	Brute-Force SSH
Anonymous	2026-06-13 11:30:22 (6 days ago)	2026-06-13T11:23:31.984758+00:00 vps-8967498d-vps-ovh-net sshd[731173]: Failed password for invalid ... show more 2026-06-13T11:23:31.984758+00:00 vps-8967498d-vps-ovh-net sshd[731173]: Failed password for invalid user pe from 85.198.99.104 port 58926 ssh2 2026-06-13T11:26:55.030091+00:00 vps-8967498d-vps-ovh-net sshd[731219]: Invalid user feed from 85.198.99.104 port 60928 2026-06-13T11:26:55.032777+00:00 vps-8967498d-vps-ovh-net sshd[731219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.198.99.104 2026-06-13T11:26:56.902379+00:00 vps-8967498d-vps-ovh-net sshd[731219]: Failed password for invalid user feed from 85.198.99.104 port 60928 ssh2 2026-06-13T11:30:22.140385+00:00 vps-8967498d-vps-ovh-net sshd[731273]: Invalid user publicaciones from 85.198.99.104 port 48532 ... show less	Brute-Force SSH
🇳🇱 knock	2026-06-13 11:28:56 (6 days ago)	Knock-Knock honeypot brute-force: SSH (20 total hits)	Brute-Force SSH

Showing 1 to 15 of 82 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇫🇷 2a10:4646:190::fa2:c3fa

🇺🇸 216.25.89.97

🇨🇱 186.179.81.180

🇮🇷 178.216.249.206

🇺🇸 172.208.65.126

🇳🇱 158.94.209.107

🇮🇩 103.164.173.66

🇹🇷 91.93.238.29

🇳🇱 91.92.40.12

🇷🇴 80.94.92.167

🇺🇸 76.156.213.96

🇺🇸 54.92.217.65

🇳🇱 46.151.178.13

🇬🇧 35.203.211.125

🇭🇰 8.218.244.167

🇰🇷 218.149.228.149

🇺🇸 216.73.216.219

🇹🇼 198.235.24.110

🇩🇪 193.124.20.234

🇲🇽 187.205.29.67