85.11.48.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Ratt Internet Kapacitet i Sverige AB

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet Server BruteForce Attack	2019-07-12 15:45:14

Comments on same subnet:

IP	Type	Details	Datetime
85.11.48.222	attackbots	Port scan	2019-11-16 19:26:53
85.11.48.222	attackspam	Honeypot attack, port: 23, PTR: ip222.selangerhus1.kund.riksnet.se.	2019-07-06 04:14:33
85.11.48.92	attack	23/tcp 23/tcp 23/tcp... [2019-05-13/06-26]62pkt,1pt.(tcp)	2019-06-26 17:08:17

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.11.48.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9158
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.11.48.90.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 16 14:27:30 CST 2019
;; MSG SIZE  rcvd: 115

Host info

90.48.11.85.in-addr.arpa is an alias for 85-11-48-90.selangerhus1.kund.riksnet.se.
85-11-48-90.selangerhus1.kund.riksnet.se domain name pointer ip90.selangerhus1.kund.riksnet.se.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
90.48.11.85.in-addr.arpa	canonical name = 85-11-48-90.selangerhus1.kund.riksnet.se.
85-11-48-90.selangerhus1.kund.riksnet.se	name = ip90.selangerhus1.kund.riksnet.se.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
42.119.59.92	attackspambots	Unauthorized connection attempt detected from IP address 42.119.59.92 to port 8081 [J]	2020-02-01 21:33:06
3.0.97.100	attackspambots	GET /.env HTTP/1.1 302 - curl/7.47.0	2020-02-01 21:41:26
42.118.156.109	attackspambots	Unauthorized connection attempt detected from IP address 42.118.156.109 to port 23 [J]	2020-02-01 21:34:10
184.105.247.202	attack	2323/tcp 8443/tcp 23/tcp... [2019-12-02/2020-02-01]35pkt,16pt.(tcp),1pt.(udp)	2020-02-01 21:53:43
89.248.168.51	attackbots	02/01/2020-08:49:36.488506 89.248.168.51 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-02-01 21:56:59
149.202.56.194	attackbots	Unauthorized connection attempt detected from IP address 149.202.56.194 to port 2220 [J]	2020-02-01 22:10:16
149.56.23.154	attackbots	...	2020-02-01 21:50:44
81.133.226.101	attackbotsspam	Unauthorized connection attempt detected from IP address 81.133.226.101 to port 2220 [J]	2020-02-01 22:06:07
157.55.39.137	attackbots	Automatic report - Banned IP Access	2020-02-01 22:08:43
149.56.141.193	attack	Unauthorized connection attempt detected from IP address 149.56.141.193 to port 2220 [J]	2020-02-01 21:58:03
111.231.255.52	attackbotsspam	$f2bV_matches	2020-02-01 21:51:42
178.170.146.65	attackspambots	Feb 1 10:06:57 hostnameproxy sshd[28492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.170.146.65 user=www-data Feb 1 10:06:59 hostnameproxy sshd[28492]: Failed password for www-data from 178.170.146.65 port 32952 ssh2 Feb 1 10:10:06 hostnameproxy sshd[28604]: Invalid user sinusbot from 178.170.146.65 port 53358 Feb 1 10:10:06 hostnameproxy sshd[28604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.170.146.65 Feb 1 10:10:08 hostnameproxy sshd[28604]: Failed password for invalid user sinusbot from 178.170.146.65 port 53358 ssh2 Feb 1 10:12:06 hostnameproxy sshd[28641]: Invalid user ubuntu from 178.170.146.65 port 43596 Feb 1 10:12:06 hostnameproxy sshd[28641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.170.146.65 Feb 1 10:12:07 hostnameproxy sshd[28641]: Failed password for invalid user ubuntu from 178.170.146.65 port 43596........ ------------------------------	2020-02-01 22:01:41
198.108.67.108	attackspam	12483/tcp 52975/tcp 43008/tcp... [2019-12-01/2020-02-01]99pkt,97pt.(tcp)	2020-02-01 22:10:00
14.192.243.80	attackspambots	Unauthorized connection attempt detected from IP address 14.192.243.80 to port 23 [T]	2020-02-01 21:38:48
200.108.143.6	attackbots	Feb 1 14:01:11 web8 sshd\[5726\]: Invalid user minecraft from 200.108.143.6 Feb 1 14:01:11 web8 sshd\[5726\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.143.6 Feb 1 14:01:13 web8 sshd\[5726\]: Failed password for invalid user minecraft from 200.108.143.6 port 34036 ssh2 Feb 1 14:04:36 web8 sshd\[7114\]: Invalid user bot from 200.108.143.6 Feb 1 14:04:36 web8 sshd\[7114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.108.143.6	2020-02-01 22:14:57

Recently Reported IPs

163.172.63.109	85.117.56.66	186.4.224.171	178.248.64.70
149.56.26.87	178.57.100.25	184.105.139.107	185.33.173.4
212.92.116.116	130.61.114.175	162.243.151.108	162.243.140.136
202.10.79.181	159.203.42.143	141.8.144.18	125.67.191.211
162.243.144.60	198.100.144.115	185.220.48.127	162.243.144.142