85.131.49.52 - IPInfo

Basic Info

City: Turku

Region: Southwest Finland

Country: Finland

Internet Service Provider: DNA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.131.49.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.131.49.52.			IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091902 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 02:30:48 CST 2019
;; MSG SIZE  rcvd: 116

Host info

52.49.131.85.in-addr.arpa domain name pointer 85-131-49-52.co.dnainternet.fi.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
52.49.131.85.in-addr.arpa	name = 85-131-49-52.co.dnainternet.fi.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
202.152.21.213	attackspambots	Jul 24 05:51:14 plex-server sshd[1687017]: Invalid user antony from 202.152.21.213 port 36974 Jul 24 05:51:14 plex-server sshd[1687017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.21.213 Jul 24 05:51:14 plex-server sshd[1687017]: Invalid user antony from 202.152.21.213 port 36974 Jul 24 05:51:16 plex-server sshd[1687017]: Failed password for invalid user antony from 202.152.21.213 port 36974 ssh2 Jul 24 05:53:35 plex-server sshd[1687945]: Invalid user vinod from 202.152.21.213 port 41980 ...	2020-07-24 14:03:17
67.205.155.68	attack	Port Scan detected from 67.205.155.68 (US/United States/New Jersey/North Bergen/singledin.com). 4 hits in the last 110 seconds	2020-07-24 13:43:45
182.61.21.200	attack	Jul 24 05:16:45 ip-172-31-61-156 sshd[8978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.21.200 Jul 24 05:16:45 ip-172-31-61-156 sshd[8978]: Invalid user cgo from 182.61.21.200 Jul 24 05:16:48 ip-172-31-61-156 sshd[8978]: Failed password for invalid user cgo from 182.61.21.200 port 35024 ssh2 Jul 24 05:20:54 ip-172-31-61-156 sshd[9206]: Invalid user ec2-user from 182.61.21.200 Jul 24 05:20:54 ip-172-31-61-156 sshd[9206]: Invalid user ec2-user from 182.61.21.200 ...	2020-07-24 13:34:31
188.68.255.199	attack	SpamScore above: 10.0	2020-07-24 13:36:50
61.177.172.41	attackspam	Jul 24 07:55:58 ip106 sshd[23056]: Failed password for root from 61.177.172.41 port 42109 ssh2 Jul 24 07:56:05 ip106 sshd[23056]: Failed password for root from 61.177.172.41 port 42109 ssh2 ...	2020-07-24 13:57:50
180.65.167.61	attackspam	Jul 24 05:17:18 rush sshd[7312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.65.167.61 Jul 24 05:17:20 rush sshd[7312]: Failed password for invalid user ding from 180.65.167.61 port 42732 ssh2 Jul 24 05:22:01 rush sshd[7521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.65.167.61 ...	2020-07-24 13:23:23
49.232.83.75	attack	Jul 24 05:16:41 vlre-nyc-1 sshd\[26637\]: Invalid user yong from 49.232.83.75 Jul 24 05:16:41 vlre-nyc-1 sshd\[26637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.83.75 Jul 24 05:16:43 vlre-nyc-1 sshd\[26637\]: Failed password for invalid user yong from 49.232.83.75 port 48670 ssh2 Jul 24 05:20:51 vlre-nyc-1 sshd\[26696\]: Invalid user apacheds from 49.232.83.75 Jul 24 05:20:51 vlre-nyc-1 sshd\[26696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.83.75 ...	2020-07-24 13:29:23
36.92.139.238	attackbotsspam	fail2ban -- 36.92.139.238 ...	2020-07-24 13:27:25
80.194.6.247	attackbotsspam	Automatic report - Banned IP Access	2020-07-24 13:25:04
42.159.228.125	attack	Jul 24 06:32:10 rocket sshd[28538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.228.125 Jul 24 06:32:12 rocket sshd[28538]: Failed password for invalid user gitolite3 from 42.159.228.125 port 58492 ssh2 Jul 24 06:37:53 rocket sshd[29365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.228.125 ...	2020-07-24 13:54:10
106.13.119.163	attack	Jul 24 07:13:03 meumeu sshd[1446267]: Invalid user apoio from 106.13.119.163 port 52800 Jul 24 07:13:03 meumeu sshd[1446267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.119.163 Jul 24 07:13:03 meumeu sshd[1446267]: Invalid user apoio from 106.13.119.163 port 52800 Jul 24 07:13:05 meumeu sshd[1446267]: Failed password for invalid user apoio from 106.13.119.163 port 52800 ssh2 Jul 24 07:17:06 meumeu sshd[1446376]: Invalid user alpha from 106.13.119.163 port 42794 Jul 24 07:17:06 meumeu sshd[1446376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.119.163 Jul 24 07:17:06 meumeu sshd[1446376]: Invalid user alpha from 106.13.119.163 port 42794 Jul 24 07:17:08 meumeu sshd[1446376]: Failed password for invalid user alpha from 106.13.119.163 port 42794 ssh2 Jul 24 07:20:57 meumeu sshd[1446463]: Invalid user kys from 106.13.119.163 port 33360 ...	2020-07-24 13:30:20
111.229.85.164	attackspambots	Jul 24 07:20:41 ns381471 sshd[4138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.85.164 Jul 24 07:20:43 ns381471 sshd[4138]: Failed password for invalid user apache from 111.229.85.164 port 35624 ssh2	2020-07-24 13:50:54
3.120.31.170	attackbots	3.120.31.170 - - [24/Jul/2020:06:20:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.120.31.170 - - [24/Jul/2020:06:20:57 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.120.31.170 - - [24/Jul/2020:06:20:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-24 13:29:39
159.89.9.140	attackspambots	fulda-media.de 159.89.9.140 [24/Jul/2020:07:21:02 +0200] "POST /wp-login.php HTTP/1.1" 200 6106 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" fulda-media.de 159.89.9.140 [24/Jul/2020:07:21:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4079 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-24 13:26:35
190.147.33.171	attackspam	$f2bV_matches	2020-07-24 13:59:31

Recently Reported IPs

123.242.85.178	24.253.77.125	117.118.194.218	124.156.163.3
114.213.215.227	32.246.39.190	154.152.170.125	181.52.79.31
110.139.250.61	188.202.5.202	167.73.240.137	138.23.139.233
89.28.183.113	145.167.233.4	86.46.53.137	120.4.151.102
173.88.102.169	39.65.134.141	187.133.134.1	70.163.123.253