85.11.48.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Ratt Internet Kapacitet i Sverige AB

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet Server BruteForce Attack	2019-07-12 15:45:14

Comments on same subnet:

IP	Type	Details	Datetime
85.11.48.222	attackbots	Port scan	2019-11-16 19:26:53
85.11.48.222	attackspam	Honeypot attack, port: 23, PTR: ip222.selangerhus1.kund.riksnet.se.	2019-07-06 04:14:33
85.11.48.92	attack	23/tcp 23/tcp 23/tcp... [2019-05-13/06-26]62pkt,1pt.(tcp)	2019-06-26 17:08:17

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.11.48.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9158
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.11.48.90.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu May 16 14:27:30 CST 2019
;; MSG SIZE  rcvd: 115

Host info

90.48.11.85.in-addr.arpa is an alias for 85-11-48-90.selangerhus1.kund.riksnet.se.
85-11-48-90.selangerhus1.kund.riksnet.se domain name pointer ip90.selangerhus1.kund.riksnet.se.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
90.48.11.85.in-addr.arpa	canonical name = 85-11-48-90.selangerhus1.kund.riksnet.se.
85-11-48-90.selangerhus1.kund.riksnet.se	name = ip90.selangerhus1.kund.riksnet.se.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.95.30.228	attackspam	192.95.30.228 - - [18/Jul/2020:06:19:26 +0100] "POST /wp-login.php HTTP/1.1" 200 5793 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.228 - - [18/Jul/2020:06:21:00 +0100] "POST /wp-login.php HTTP/1.1" 200 5793 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.228 - - [18/Jul/2020:06:22:36 +0100] "POST /wp-login.php HTTP/1.1" 200 5786 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-07-18 13:30:12
133.130.119.178	attackspam	Jul 18 04:57:55 plex-server sshd[2992525]: Invalid user zli from 133.130.119.178 port 11480 Jul 18 04:57:55 plex-server sshd[2992525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.119.178 Jul 18 04:57:55 plex-server sshd[2992525]: Invalid user zli from 133.130.119.178 port 11480 Jul 18 04:57:57 plex-server sshd[2992525]: Failed password for invalid user zli from 133.130.119.178 port 11480 ssh2 Jul 18 05:00:37 plex-server sshd[2993470]: Invalid user fnc from 133.130.119.178 port 53998 ...	2020-07-18 13:12:02
40.122.70.169	attackbots	Jul 18 06:54:32 vpn01 sshd[18222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.122.70.169 Jul 18 06:54:34 vpn01 sshd[18222]: Failed password for invalid user admin from 40.122.70.169 port 63339 ssh2 ...	2020-07-18 13:07:04
52.187.65.70	attackspam	Jul 18 10:21:59 lunarastro sshd[15298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.187.65.70 Jul 18 10:22:02 lunarastro sshd[15298]: Failed password for invalid user admin from 52.187.65.70 port 50352 ssh2	2020-07-18 13:40:19
218.92.0.212	attackbotsspam	Jul 18 07:26:45 icinga sshd[46433]: Failed password for root from 218.92.0.212 port 26027 ssh2 Jul 18 07:26:49 icinga sshd[46433]: Failed password for root from 218.92.0.212 port 26027 ssh2 Jul 18 07:26:54 icinga sshd[46433]: Failed password for root from 218.92.0.212 port 26027 ssh2 Jul 18 07:26:57 icinga sshd[46433]: Failed password for root from 218.92.0.212 port 26027 ssh2 ...	2020-07-18 13:27:39
103.253.115.17	attackspam	Invalid user project from 103.253.115.17 port 52822	2020-07-18 13:05:42
141.98.81.133	attack	Port Scan detected from 141.98.81.133 (NL/Netherlands/South Holland/Dordrecht/-). 4 hits in the last -13623 seconds	2020-07-18 13:45:21
51.91.110.51	attackbotsspam	Invalid user zhangh from 51.91.110.51 port 59566	2020-07-18 13:33:12
45.14.150.86	attack	Port Scan detected from 45.14.150.86 (RO/Romania/Bucure?ti/Bucharest/-). 4 hits in the last -12848 seconds	2020-07-18 13:33:45
222.186.175.167	attackspambots	Jul 18 07:29:20 piServer sshd[24486]: Failed password for root from 222.186.175.167 port 18858 ssh2 Jul 18 07:29:26 piServer sshd[24486]: Failed password for root from 222.186.175.167 port 18858 ssh2 Jul 18 07:29:33 piServer sshd[24486]: Failed password for root from 222.186.175.167 port 18858 ssh2 Jul 18 07:29:37 piServer sshd[24486]: Failed password for root from 222.186.175.167 port 18858 ssh2 ...	2020-07-18 13:38:37
88.80.148.172	attack	Port Scan detected from 88.80.148.172 (BG/Bulgaria/Targovishte/Opaka/-). 4 hits in the last -9716 seconds	2020-07-18 13:27:56
13.72.73.88	attack	2020-07-18T06:00:12.789254vps773228.ovh.net sshd[2900]: Invalid user admin from 13.72.73.88 port 36410 2020-07-18T06:00:12.810118vps773228.ovh.net sshd[2900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.72.73.88 2020-07-18T06:00:12.789254vps773228.ovh.net sshd[2900]: Invalid user admin from 13.72.73.88 port 36410 2020-07-18T06:00:14.460706vps773228.ovh.net sshd[2900]: Failed password for invalid user admin from 13.72.73.88 port 36410 ssh2 2020-07-18T07:01:59.482864vps773228.ovh.net sshd[3701]: Invalid user admin from 13.72.73.88 port 60119 ...	2020-07-18 13:10:22
49.88.112.65	attackbotsspam	$f2bV_matches	2020-07-18 13:45:04
83.103.59.192	attackbotsspam	Invalid user kernel from 83.103.59.192 port 36792	2020-07-18 13:10:41
122.51.136.128	attack	Jul 18 06:53:40 vps sshd[261859]: Failed password for invalid user natalie from 122.51.136.128 port 33756 ssh2 Jul 18 06:59:11 vps sshd[287911]: Invalid user fd from 122.51.136.128 port 37652 Jul 18 06:59:11 vps sshd[287911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.136.128 Jul 18 06:59:13 vps sshd[287911]: Failed password for invalid user fd from 122.51.136.128 port 37652 ssh2 Jul 18 07:05:00 vps sshd[316748]: Invalid user jc from 122.51.136.128 port 41568 ...	2020-07-18 13:12:24

Recently Reported IPs

163.172.63.109	85.117.56.66	186.4.224.171	178.248.64.70
149.56.26.87	178.57.100.25	184.105.139.107	185.33.173.4
212.92.116.116	130.61.114.175	162.243.151.108	162.243.140.136
202.10.79.181	159.203.42.143	141.8.144.18	125.67.191.211
162.243.144.60	198.100.144.115	185.220.48.127	162.243.144.142