85.131.49.52 - IPInfo

Basic Info

City: Turku

Region: Southwest Finland

Country: Finland

Internet Service Provider: DNA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.131.49.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.131.49.52.			IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091902 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 02:30:48 CST 2019
;; MSG SIZE  rcvd: 116

Host info

52.49.131.85.in-addr.arpa domain name pointer 85-131-49-52.co.dnainternet.fi.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
52.49.131.85.in-addr.arpa	name = 85-131-49-52.co.dnainternet.fi.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.96.228.40	attack	port scan and connect, tcp 23 (telnet)	2019-10-05 17:30:05
54.36.54.24	attackbotsspam	Oct 5 09:23:55 SilenceServices sshd[32628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.54.24 Oct 5 09:23:56 SilenceServices sshd[32628]: Failed password for invalid user Avignon from 54.36.54.24 port 52096 ssh2 Oct 5 09:28:12 SilenceServices sshd[1321]: Failed password for root from 54.36.54.24 port 44380 ssh2	2019-10-05 17:57:59
85.136.47.215	attackbots	Automatic report - Banned IP Access	2019-10-05 17:57:14
46.101.163.220	attackspam	SSH bruteforce (Triggered fail2ban)	2019-10-05 18:05:48
92.222.84.34	attackspam	Oct 5 09:50:03 sshgateway sshd\[30390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 user=root Oct 5 09:50:06 sshgateway sshd\[30390\]: Failed password for root from 92.222.84.34 port 56100 ssh2 Oct 5 09:53:43 sshgateway sshd\[30397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 user=root	2019-10-05 18:00:33
118.121.204.109	attack	Oct 5 07:29:56 sauna sshd[154577]: Failed password for root from 118.121.204.109 port 13981 ssh2 ...	2019-10-05 17:32:56
106.13.138.162	attackbots	Invalid user smboracle from 106.13.138.162 port 41122	2019-10-05 17:59:53
193.148.69.141	attack	Oct 5 10:03:23 sauna sshd[157676]: Failed password for root from 193.148.69.141 port 35380 ssh2 ...	2019-10-05 17:31:58
212.23.90.21	attackspam	Oct 5 05:42:35 web1 sshd\[18080\]: Invalid user Web@1234 from 212.23.90.21 Oct 5 05:42:35 web1 sshd\[18080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.23.90.21 Oct 5 05:42:36 web1 sshd\[18080\]: Failed password for invalid user Web@1234 from 212.23.90.21 port 51036 ssh2 Oct 5 05:47:21 web1 sshd\[18324\]: Invalid user Merlin@2017 from 212.23.90.21 Oct 5 05:47:21 web1 sshd\[18324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.23.90.21	2019-10-05 17:38:38
186.90.128.88	attack	WordPress wp-login brute force :: 186.90.128.88 0.124 BYPASS [05/Oct/2019:13:46:56 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-05 17:54:37
62.234.128.242	attackspam	Invalid user archiva from 62.234.128.242 port 44119	2019-10-05 17:58:29
222.186.180.147	attackspam	2019-10-04 UTC: 3x - (3x)	2019-10-05 17:48:27
187.189.63.198	attack	Oct 5 11:21:44 root sshd[20193]: Failed password for root from 187.189.63.198 port 58418 ssh2 Oct 5 11:25:55 root sshd[20235]: Failed password for root from 187.189.63.198 port 41130 ssh2 ...	2019-10-05 17:34:00
163.172.207.104	attack	\[2019-10-05 04:59:48\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-05T04:59:48.270-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="22011972592277524",SessionID="0x7f1e1c3735b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/62256",ACLName="no_extension_match" \[2019-10-05 05:03:37\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-05T05:03:37.073-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="33011972592277524",SessionID="0x7f1e1cc14f28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/53224",ACLName="no_extension_match" \[2019-10-05 05:07:26\] SECURITY\[2006\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-05T05:07:26.356-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="44011972592277524",SessionID="0x7f1e1c02d9c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.207.104/53300",ACL	2019-10-05 17:43:54
5.101.220.196	attack	5.313.605,74-03/02 [bc18/m89] concatform PostRequest-Spammer scoring: Lusaka01	2019-10-05 18:06:02

Recently Reported IPs

123.242.85.178	24.253.77.125	117.118.194.218	124.156.163.3
114.213.215.227	32.246.39.190	154.152.170.125	181.52.79.31
110.139.250.61	188.202.5.202	167.73.240.137	138.23.139.233
89.28.183.113	145.167.233.4	86.46.53.137	120.4.151.102
173.88.102.169	39.65.134.141	187.133.134.1	70.163.123.253