2.248.119.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.248.119.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26333
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.248.119.85.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101900 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 19 20:18:55 CST 2019
;; MSG SIZE  rcvd: 116

Host info

85.119.248.2.in-addr.arpa domain name pointer 2-248-119-85-no224.tbcn.telia.com.

Nslookup info:

85.119.248.2.in-addr.arpa	name = 2-248-119-85-no224.tbcn.telia.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.79.71.142	attackbots	2019-09-07T09:42:18.505649 sshd[25882]: Invalid user tester from 51.79.71.142 port 52418 2019-09-07T09:42:18.520259 sshd[25882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.71.142 2019-09-07T09:42:18.505649 sshd[25882]: Invalid user tester from 51.79.71.142 port 52418 2019-09-07T09:42:20.478864 sshd[25882]: Failed password for invalid user tester from 51.79.71.142 port 52418 ssh2 2019-09-07T09:52:42.121954 sshd[25984]: Invalid user bot1 from 51.79.71.142 port 46436 ...	2019-09-07 16:46:53
94.15.4.86	attack	Sep 7 03:59:58 cp sshd[4528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.15.4.86	2019-09-07 16:19:11
154.8.197.176	attack	Sep 7 02:36:19 [host] sshd[28135]: Invalid user helpdesk from 154.8.197.176 Sep 7 02:36:19 [host] sshd[28135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.197.176 Sep 7 02:36:21 [host] sshd[28135]: Failed password for invalid user helpdesk from 154.8.197.176 port 41954 ssh2	2019-09-07 16:32:59
96.86.165.209	attack	2222/tcp 22/tcp... [2019-07-27/09-07]28pkt,2pt.(tcp)	2019-09-07 15:59:47
138.121.161.198	attack	2019-09-07T09:26:14.011765lon01.zurich-datacenter.net sshd\[29585\]: Invalid user testftp from 138.121.161.198 port 44623 2019-09-07T09:26:14.019383lon01.zurich-datacenter.net sshd\[29585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.161.198 2019-09-07T09:26:16.633167lon01.zurich-datacenter.net sshd\[29585\]: Failed password for invalid user testftp from 138.121.161.198 port 44623 ssh2 2019-09-07T09:31:19.784407lon01.zurich-datacenter.net sshd\[29698\]: Invalid user ts3server from 138.121.161.198 port 36045 2019-09-07T09:31:19.790531lon01.zurich-datacenter.net sshd\[29698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.161.198 ...	2019-09-07 16:04:56
34.68.136.212	attack	Sep 6 21:31:19 lcprod sshd\[26029\]: Invalid user demo3 from 34.68.136.212 Sep 6 21:31:19 lcprod sshd\[26029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.136.68.34.bc.googleusercontent.com Sep 6 21:31:21 lcprod sshd\[26029\]: Failed password for invalid user demo3 from 34.68.136.212 port 51180 ssh2 Sep 6 21:35:17 lcprod sshd\[26428\]: Invalid user live from 34.68.136.212 Sep 6 21:35:17 lcprod sshd\[26428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.136.68.34.bc.googleusercontent.com	2019-09-07 16:01:32
182.90.118.130	attack	Sep 7 07:54:25 hcbbdb sshd\[6591\]: Invalid user ftp from 182.90.118.130 Sep 7 07:54:25 hcbbdb sshd\[6591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.90.118.130 Sep 7 07:54:28 hcbbdb sshd\[6591\]: Failed password for invalid user ftp from 182.90.118.130 port 59323 ssh2 Sep 7 08:00:01 hcbbdb sshd\[7151\]: Invalid user bot1 from 182.90.118.130 Sep 7 08:00:01 hcbbdb sshd\[7151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.90.118.130	2019-09-07 16:04:12
207.204.77.119	attack	Automatic report - Port Scan Attack	2019-09-07 16:09:52
149.202.233.49	attack	as always with OVH All domain names registered at ovh are attacked /up.php	2019-09-07 16:33:32
139.59.57.61	attack	139.59.57.61 - - [06/Sep/2019:16:52:16 +0200] "POST /wp-login.php HTTP/1.1" 403 1612 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 2301017342fdc53fd30be3e0e80a67c3 India IN Karnataka Bangalore 139.59.57.61 - - [07/Sep/2019:02:35:38 +0200] "POST /wp-login.php HTTP/1.1" 403 1612 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" b596c83cd6ded48e1121d3632f1356b9 India IN Karnataka Bangalore	2019-09-07 16:15:44
185.234.218.246	attackspambots	''	2019-09-07 16:27:32
147.135.255.107	attackbots	Sep 7 10:25:40 vps01 sshd[8097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.255.107 Sep 7 10:25:42 vps01 sshd[8097]: Failed password for invalid user test1 from 147.135.255.107 port 59332 ssh2	2019-09-07 16:34:38
119.249.217.124	attackbots	Unauthorised access (Sep 7) SRC=119.249.217.124 LEN=40 TTL=49 ID=4294 TCP DPT=8080 WINDOW=61066 SYN Unauthorised access (Sep 6) SRC=119.249.217.124 LEN=40 TTL=49 ID=63175 TCP DPT=8080 WINDOW=51191 SYN Unauthorised access (Sep 4) SRC=119.249.217.124 LEN=40 TTL=49 ID=9600 TCP DPT=8080 WINDOW=23055 SYN	2019-09-07 16:35:55
206.189.181.12	attack	Sep 7 10:14:52 mc1 kernel: \[394672.399644\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=206.189.181.12 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=1880 PROTO=TCP SPT=34377 DPT=23 WINDOW=37977 RES=0x00 SYN URGP=0 Sep 7 10:14:53 mc1 kernel: \[394672.797689\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=206.189.181.12 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=1880 PROTO=TCP SPT=34377 DPT=23 WINDOW=37977 RES=0x00 SYN URGP=0 Sep 7 10:22:43 mc1 kernel: \[395143.515417\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=206.189.181.12 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=1880 PROTO=TCP SPT=34377 DPT=23 WINDOW=37977 RES=0x00 SYN URGP=0 ...	2019-09-07 16:23:50
162.144.119.35	attackspam	Sep 7 09:20:07 yabzik sshd[6694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.119.35 Sep 7 09:20:09 yabzik sshd[6694]: Failed password for invalid user 1q2w3e4r from 162.144.119.35 port 41190 ssh2 Sep 7 09:24:54 yabzik sshd[8083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.144.119.35	2019-09-07 16:31:44

Recently Reported IPs

190.232.181.192	156.105.152.117	210.245.51.51	109.224.12.170
91.211.246.96	182.68.71.23	59.94.166.203	36.67.222.187
154.59.121.140	132.255.116.111	110.138.7.126	193.179.63.145
189.19.176.157	110.136.88.51	10.30.228.200	45.136.108.67
102.99.121.9	39.157.249.159	18.146.120.113	46.42.237.100