85.252.1.201 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Norway

Internet Service Provider: Ventelo Wholesale

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	5555/tcp [2019-06-26]1pkt	2019-06-26 20:46:54

Comments on same subnet:

IP	Type	Details	Datetime
85.252.123.110	attackspam	Brute force attack stopped by firewall	2020-04-05 10:24:40
85.252.123.110	attackspambots	proto=tcp . spt=42657 . dpt=25 . Found on Blocklist de (110)	2020-03-01 19:52:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.252.1.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9044
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.252.1.201.			IN	A

;; AUTHORITY SECTION:
.			2496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062600 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 26 20:46:44 CST 2019
;; MSG SIZE  rcvd: 116

Host info

201.1.252.85.in-addr.arpa domain name pointer static201.banetele-cust.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
201.1.252.85.in-addr.arpa	name = static201.banetele-cust.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.204.186.151	attackspam	$f2bV_matches	2020-08-10 13:03:16
222.186.175.183	attackbots	Aug 10 05:41:37 dev0-dcde-rnet sshd[5405]: Failed password for root from 222.186.175.183 port 35844 ssh2 Aug 10 05:41:50 dev0-dcde-rnet sshd[5405]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 35844 ssh2 [preauth] Aug 10 05:41:56 dev0-dcde-rnet sshd[5407]: Failed password for root from 222.186.175.183 port 41170 ssh2	2020-08-10 12:53:07
182.75.115.59	attack	Aug 10 02:38:51 host sshd[12079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.115.59 user=root Aug 10 02:38:52 host sshd[12079]: Failed password for root from 182.75.115.59 port 34990 ssh2 ...	2020-08-10 12:46:47
112.101.194.166	attackspambots	Port scan: Attack repeated for 24 hours	2020-08-10 13:16:35
51.68.227.98	attack	2020-08-10T03:50:27.511159vps1033 sshd[26693]: Failed password for root from 51.68.227.98 port 59836 ssh2 2020-08-10T03:52:51.997097vps1033 sshd[31955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-51-68-227.eu user=root 2020-08-10T03:52:53.722583vps1033 sshd[31955]: Failed password for root from 51.68.227.98 port 48242 ssh2 2020-08-10T03:55:26.274644vps1033 sshd[5076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.ip-51-68-227.eu user=root 2020-08-10T03:55:28.611369vps1033 sshd[5076]: Failed password for root from 51.68.227.98 port 36650 ssh2 ...	2020-08-10 13:29:40
111.59.184.168	attack	20 attempts against mh-ssh on acorn	2020-08-10 12:47:14
193.112.213.248	attackspam	2020-08-10T06:08:38.205956centos sshd[22048]: Failed password for root from 193.112.213.248 port 40856 ssh2 2020-08-10T06:13:48.736520centos sshd[23112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.213.248 user=root 2020-08-10T06:13:50.359447centos sshd[23112]: Failed password for root from 193.112.213.248 port 58060 ssh2 ...	2020-08-10 13:05:45
173.61.114.240	attackbotsspam	Invalid user pi from 173.61.114.240	2020-08-10 13:10:07
195.110.35.213	attack	HTTP DDOS	2020-08-10 12:57:05
190.206.192.20	attack	Port Scan ...	2020-08-10 13:06:30
207.244.251.52	attackbotsspam	2020-08-10T01:15:36.793400devel sshd[12440]: Failed password for root from 207.244.251.52 port 45066 ssh2 2020-08-10T01:17:49.409351devel sshd[12575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi412680.contaboserver.net user=root 2020-08-10T01:17:51.669382devel sshd[12575]: Failed password for root from 207.244.251.52 port 53854 ssh2	2020-08-10 13:20:14
218.92.0.212	attackbots	Aug 10 06:53:43 * sshd[25282]: Failed password for root from 218.92.0.212 port 3800 ssh2 Aug 10 06:53:53 * sshd[25282]: Failed password for root from 218.92.0.212 port 3800 ssh2	2020-08-10 13:05:28
89.248.168.51	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 85 - port: 53 proto: tcp cat: Misc Attackbytes: 60	2020-08-10 12:46:22
51.68.122.155	attackspam	Aug 10 10:46:43 itv-usvr-01 sshd[28621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 user=root Aug 10 10:46:46 itv-usvr-01 sshd[28621]: Failed password for root from 51.68.122.155 port 38586 ssh2 Aug 10 10:51:45 itv-usvr-01 sshd[29253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 user=root Aug 10 10:51:47 itv-usvr-01 sshd[29253]: Failed password for root from 51.68.122.155 port 57358 ssh2 Aug 10 10:55:42 itv-usvr-01 sshd[29427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.122.155 user=root Aug 10 10:55:44 itv-usvr-01 sshd[29427]: Failed password for root from 51.68.122.155 port 38736 ssh2	2020-08-10 13:18:24
182.160.125.93	attackbotsspam	IP 182.160.125.93 attacked honeypot on port: 80 at 8/9/2020 8:55:04 PM	2020-08-10 13:12:00

Recently Reported IPs

31.170.48.235	1.174.58.222	157.225.174.6	118.170.35.234
201.95.25.193	159.85.37.29	27.246.106.244	223.80.14.62
201.150.88.176	178.127.80.43	125.113.130.31	180.252.134.155
112.114.106.172	79.167.152.171	239.183.178.57	59.133.41.183
60.190.150.59	119.115.97.41	183.92.40.145	120.229.42.59