85.217.24.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Finland

Internet Service Provider: Elisa

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.217.24.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.217.24.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 10:49:29 CST 2025
;; MSG SIZE  rcvd: 105

Host info

48.24.217.85.in-addr.arpa domain name pointer adsl-85-217-24-48.kotinet.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.24.217.85.in-addr.arpa	name = adsl-85-217-24-48.kotinet.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.115.227	attackbots	Port Scan detected from 167.71.115.227 (US/United States/-). 4 hits in the last 55 seconds	2019-11-06 18:54:46
5.135.129.180	attackspambots	WordPress XMLRPC scan :: 5.135.129.180 0.236 BYPASS [06/Nov/2019:10:30:41 0000] [censored_4] "GET /xmlrpc.php HTTP/1.1" 405 53 "http://[censored_4]/xmlrpc.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-06 18:47:10
211.18.250.201	attackspambots	Nov 6 04:09:22 ws22vmsma01 sshd[55260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.18.250.201 Nov 6 04:09:24 ws22vmsma01 sshd[55260]: Failed password for invalid user aasand from 211.18.250.201 port 32774 ssh2 ...	2019-11-06 19:12:43
117.216.130.109	attackbots	Unauthorised access (Nov 6) SRC=117.216.130.109 LEN=52 PREC=0x20 TTL=110 ID=23281 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-06 18:54:12
103.247.217.147	attack	jannisjulius.de 103.247.217.147 \[06/Nov/2019:07:24:34 +0100\] "POST /wp-login.php HTTP/1.1" 200 6117 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" jannisjulius.de 103.247.217.147 \[06/Nov/2019:07:24:36 +0100\] "POST /wp-login.php HTTP/1.1" 200 6077 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-06 19:13:37
185.222.57.76	attackbots	Nov 4 12:39:54 our-server-hostname postfix/smtpd[6225]: connect from unknown[185.222.57.76] Nov x@x Nov 4 12:39:56 our-server-hostname postfix/smtpd[6225]: disconnect from unknown[185.222.57.76] Nov 4 12:41:21 our-server-hostname postfix/smtpd[6225]: connect from unknown[185.222.57.76] Nov x@x Nov 4 12:41:22 our-server-hostname postfix/smtpd[6225]: disconnect from unknown[185.222.57.76] Nov 4 12:42:34 our-server-hostname postfix/smtpd[32684]: connect from unknown[185.222.57.76] Nov x@x Nov 4 12:42:36 our-server-hostname postfix/smtpd[32684]: disconnect from unknown[185.222.57.76] Nov 4 12:42:38 our-server-hostname postfix/smtpd[32381]: connect from unknown[185.222.57.76] Nov x@x Nov 4 12:42:39 our-server-hostname postfix/smtpd[32381]: disconnect from unknown[185.222.57.76] Nov 4 12:44:22 our-server-hostname postfix/smtpd[32040]: connect from unknown[185.222.57.76] Nov x@x Nov 4 12:44:23 our-server-hostname postfix/smtpd[32040]: disconnect from unknown[185.222......... -------------------------------	2019-11-06 18:53:29
157.0.132.174	attackspambots	Unauthorised access (Nov 6) SRC=157.0.132.174 LEN=48 TTL=48 ID=19051 DF TCP DPT=1433 WINDOW=8192 SYN	2019-11-06 19:01:28
192.99.44.183	attack	CloudCIX Reconnaissance Scan Detected, PTR: ns513939.ip-192-99-44.net.	2019-11-06 19:13:02
34.80.61.159	attack	Nov 4 07:12:25 sinope sshd[2979]: Failed password for r.r from 34.80.61.159 port 53846 ssh2 Nov 4 07:12:25 sinope sshd[2979]: Received disconnect from 34.80.61.159: 11: Bye Bye [preauth] Nov 4 07:27:43 sinope sshd[3046]: Failed password for r.r from 34.80.61.159 port 59486 ssh2 Nov 4 07:27:49 sinope sshd[3046]: Received disconnect from 34.80.61.159: 11: Bye Bye [preauth] Nov 4 07:36:24 sinope sshd[3056]: Connection closed by 34.80.61.159 [preauth] Nov 4 07:44:49 sinope sshd[3086]: Failed password for r.r from 34.80.61.159 port 57310 ssh2 Nov 4 07:44:50 sinope sshd[3086]: Received disconnect from 34.80.61.159: 11: Bye Bye [preauth] Nov 4 07:53:01 sinope sshd[3117]: Invalid user stream from 34.80.61.159 Nov 4 07:53:03 sinope sshd[3117]: Failed password for invalid user stream from 34.80.61.159 port 42112 ssh2 Nov 4 07:53:03 sinope sshd[3117]: Received disconnect from 34.80.61.159: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=	2019-11-06 19:06:59
124.239.153.54	attackspambots	Nov 6 01:19:56 srv3 sshd\[13217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.153.54 user=root Nov 6 01:19:58 srv3 sshd\[13217\]: Failed password for root from 124.239.153.54 port 34130 ssh2 Nov 6 01:24:33 srv3 sshd\[13341\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.239.153.54 user=root ...	2019-11-06 19:14:37
159.89.153.54	attackspam	Nov 6 08:44:39 xeon sshd[49811]: Failed password for invalid user ol from 159.89.153.54 port 37862 ssh2	2019-11-06 19:09:50
108.162.219.48	attackspambots	WEB SPAM: Invest $ 91291 in Bitcoin once and get $ 953634 passive income per month: https://darknesstr.com/earnonebitcoinperday229446	2019-11-06 18:51:25
128.1.91.205	attackbotsspam	" "	2019-11-06 19:03:47
24.244.144.145	attackbots	Automatic report - Banned IP Access	2019-11-06 19:01:13
60.176.150.181	attack	Nov 4 03:14:08 eola sshd[11567]: Invalid user Waschlappen from 60.176.150.181 port 62465 Nov 4 03:14:08 eola sshd[11567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.176.150.181 Nov 4 03:14:09 eola sshd[11567]: Failed password for invalid user Waschlappen from 60.176.150.181 port 62465 ssh2 Nov 4 03:14:10 eola sshd[11567]: Received disconnect from 60.176.150.181 port 62465:11: Bye Bye [preauth] Nov 4 03:14:10 eola sshd[11567]: Disconnected from 60.176.150.181 port 62465 [preauth] Nov 4 03:26:12 eola sshd[11736]: Invalid user bh from 60.176.150.181 port 49679 Nov 4 03:26:12 eola sshd[11736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.176.150.181 Nov 4 03:26:14 eola sshd[11736]: Failed password for invalid user bh from 60.176.150.181 port 49679 ssh2 Nov 4 03:26:14 eola sshd[11736]: Received disconnect from 60.176.150.181 port 49679:11: Bye Bye [preauth] Nov 4 03:26:1........ -------------------------------	2019-11-06 19:10:47

Recently Reported IPs

190.147.237.136	201.147.177.187	250.239.58.185	87.221.184.69
199.72.34.47	100.244.174.196	96.26.18.123	85.5.116.33
232.71.207.155	228.205.82.82	186.1.84.169	28.65.116.88
216.44.121.98	52.2.44.78	168.17.166.143	253.57.128.249
8.54.177.103	124.101.14.153	136.23.4.116	9.73.49.36