85.243.2.224 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.243.26.123	attackbots	Automatic report - Port Scan Attack	2020-03-29 09:24:59
85.243.236.65	attackbotsspam	Unauthorized connection attempt detected from IP address 85.243.236.65 to port 23 [J]	2020-01-12 16:05:38
85.243.209.170	attackbotsspam	Web Probe / Attack	2019-10-04 07:27:49
85.243.243.62	attackbotsspam	firewall-block, port(s): 80/tcp	2019-08-08 05:08:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.243.2.224
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.243.2.224.			IN	A

;; AUTHORITY SECTION:
.			341	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:01:53 CST 2022
;; MSG SIZE  rcvd: 105

Host info

224.2.243.85.in-addr.arpa domain name pointer bl10-2-224.dsl.telepac.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
224.2.243.85.in-addr.arpa	name = bl10-2-224.dsl.telepac.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.114.239.22	attack	Aug 5 21:09:27 plex-server sshd[29095]: Failed password for root from 122.114.239.22 port 38608 ssh2 Aug 5 21:10:39 plex-server sshd[29165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.239.22 user=root Aug 5 21:10:41 plex-server sshd[29165]: Failed password for root from 122.114.239.22 port 53702 ssh2 Aug 5 21:11:53 plex-server sshd[29275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.239.22 user=root Aug 5 21:11:55 plex-server sshd[29275]: Failed password for root from 122.114.239.22 port 40556 ssh2 ...	2020-08-06 06:12:00
93.174.123.133	attackspambots	mdtravel.gr	2020-08-06 06:32:53
122.51.175.20	attack	Aug 5 22:39:21 mellenthin sshd[20555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.175.20 user=root Aug 5 22:39:23 mellenthin sshd[20555]: Failed password for invalid user root from 122.51.175.20 port 45588 ssh2	2020-08-06 06:35:01
23.24.9.57	attackbots	2020-08-05T22:39[Censored Hostname] sshd[24945]: Failed password for invalid user admin from 23.24.9.57 port 58697 ssh2 2020-08-05T22:39[Censored Hostname] sshd[24971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23-24-9-57-static.hfc.comcastbusiness.net user=root 2020-08-05T22:39[Censored Hostname] sshd[24971]: Failed password for root from 23.24.9.57 port 58803 ssh2[...]	2020-08-06 06:36:33
14.21.7.162	attack	Aug 6 00:03:43 lnxweb61 sshd[7599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.7.162	2020-08-06 06:33:27
187.62.177.90	attackbots	(smtpauth) Failed SMTP AUTH login from 187.62.177.90 (BR/Brazil/187-62-177-90.cnnet.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-06 01:09:12 plain authenticator failed for ([187.62.177.90]) [187.62.177.90]: 535 Incorrect authentication data (set_id=info@ajorkowsar.com)	2020-08-06 06:38:47
219.136.249.151	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-06 06:30:30
212.70.149.19	attackspam	Aug 6 00:19:49 srv01 postfix/smtpd\[17777\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 00:19:56 srv01 postfix/smtpd\[10433\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 00:19:58 srv01 postfix/smtpd\[10435\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 00:20:02 srv01 postfix/smtpd\[6122\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 6 00:20:18 srv01 postfix/smtpd\[10433\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-06 06:26:46
37.201.193.174	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-08-06 06:09:50
114.80.94.228	attackspam	"fail2ban match"	2020-08-06 06:31:26
218.92.0.212	attack	Aug 6 08:23:24 localhost sshd[2453318]: Unable to negotiate with 218.92.0.212 port 34774: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-08-06 06:39:40
49.235.83.156	attack	Aug 5 23:38:23 rancher-0 sshd[821936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.83.156 user=root Aug 5 23:38:25 rancher-0 sshd[821936]: Failed password for root from 49.235.83.156 port 59638 ssh2 ...	2020-08-06 06:33:08
120.92.109.69	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-08-06 06:14:53
36.37.201.133	attack	Aug 5 22:32:19 ncomp sshd[23580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.37.201.133 user=root Aug 5 22:32:21 ncomp sshd[23580]: Failed password for root from 36.37.201.133 port 36604 ssh2 Aug 5 23:02:14 ncomp sshd[24207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.37.201.133 user=root Aug 5 23:02:16 ncomp sshd[24207]: Failed password for root from 36.37.201.133 port 40252 ssh2	2020-08-06 06:42:46
141.98.80.55	attack	Aug 5 23:54:08 mail.srvfarm.net postfix/smtpd[2258665]: warning: unknown[141.98.80.55]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 5 23:54:08 mail.srvfarm.net postfix/smtpd[2258665]: lost connection after AUTH from unknown[141.98.80.55] Aug 5 23:54:13 mail.srvfarm.net postfix/smtpd[2258669]: lost connection after AUTH from unknown[141.98.80.55] Aug 5 23:54:18 mail.srvfarm.net postfix/smtpd[2258384]: lost connection after AUTH from unknown[141.98.80.55] Aug 5 23:54:23 mail.srvfarm.net postfix/smtpd[2258474]: lost connection after AUTH from unknown[141.98.80.55]	2020-08-06 06:39:13

Recently Reported IPs

191.53.199.166	223.80.202.118	14.113.208.147	177.69.48.225
114.100.112.155	200.78.207.42	178.94.52.136	120.85.119.234
117.216.159.58	171.231.204.205	5.190.235.18	115.220.205.127
138.68.60.8	114.237.155.162	45.191.128.255	103.154.230.58
197.162.255.95	49.79.251.36	179.92.233.98	103.148.92.203