85.252.166.11 - IPInfo

Basic Info

City: Oslo

Region: Oslo

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.252.166.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.252.166.11.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 14:08:01 CST 2025
;; MSG SIZE  rcvd: 106

Host info

11.166.252.85.in-addr.arpa domain name pointer static11.banetele-cust.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.166.252.85.in-addr.arpa	name = static11.banetele-cust.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
194.26.29.121	attackbots	04/11/2020-14:33:36.977732 194.26.29.121 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-12 02:53:41
179.184.59.109	attackbots	Apr 11 14:08:43 ourumov-web sshd\[18887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.184.59.109 user=root Apr 11 14:08:45 ourumov-web sshd\[18887\]: Failed password for root from 179.184.59.109 port 47122 ssh2 Apr 11 14:14:20 ourumov-web sshd\[19330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.184.59.109 user=root ...	2020-04-12 02:50:28
183.89.214.207	attack	Dovecot Invalid User Login Attempt.	2020-04-12 02:54:09
218.92.0.191	attack	Apr 11 20:57:44 dcd-gentoo sshd[26661]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Apr 11 20:57:46 dcd-gentoo sshd[26661]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Apr 11 20:57:44 dcd-gentoo sshd[26661]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Apr 11 20:57:46 dcd-gentoo sshd[26661]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Apr 11 20:57:44 dcd-gentoo sshd[26661]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Apr 11 20:57:46 dcd-gentoo sshd[26661]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Apr 11 20:57:46 dcd-gentoo sshd[26661]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 63416 ssh2 ...	2020-04-12 03:03:58
45.142.195.2	attackspam	Apr 11 20:22:30 v22019058497090703 postfix/smtpd[1997]: warning: unknown[45.142.195.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 20:23:19 v22019058497090703 postfix/smtpd[1997]: warning: unknown[45.142.195.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 11 20:24:10 v22019058497090703 postfix/smtpd[1997]: warning: unknown[45.142.195.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-12 02:34:50
186.105.155.149	attack	Apr 10 17:56:11 UTC__SANYALnet-Labs__cac14 sshd[29351]: Connection from 186.105.155.149 port 53598 on 45.62.235.190 port 22 Apr 10 17:56:12 UTC__SANYALnet-Labs__cac14 sshd[29351]: Invalid user ts3user from 186.105.155.149 Apr 10 17:56:13 UTC__SANYALnet-Labs__cac14 sshd[29351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.105.155.149 Apr 10 17:56:15 UTC__SANYALnet-Labs__cac14 sshd[29351]: Failed password for invalid user ts3user from 186.105.155.149 port 53598 ssh2 Apr 10 17:56:15 UTC__SANYALnet-Labs__cac14 sshd[29351]: Received disconnect from 186.105.155.149: 11: Bye Bye [preauth] Apr 10 17:59:40 UTC__SANYALnet-Labs__cac14 sshd[29403]: Connection from 186.105.155.149 port 46234 on 45.62.235.190 port 22 Apr 10 17:59:41 UTC__SANYALnet-Labs__cac14 sshd[29403]: User r.r from 186.105.155.149 not allowed because not listed in AllowUsers Apr 10 17:59:41 UTC__SANYALnet-Labs__cac14 sshd[29403]: pam_unix(sshd:auth): authentication ........ -------------------------------	2020-04-12 02:49:08
125.124.91.206	attackspam	$f2bV_matches	2020-04-12 03:06:00
106.12.178.245	attack	Apr 11 02:20:43 php1 sshd\[19176\]: Invalid user ftp_user from 106.12.178.245 Apr 11 02:20:43 php1 sshd\[19176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.245 Apr 11 02:20:45 php1 sshd\[19176\]: Failed password for invalid user ftp_user from 106.12.178.245 port 45074 ssh2 Apr 11 02:25:14 php1 sshd\[19615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.245 user=root Apr 11 02:25:17 php1 sshd\[19615\]: Failed password for root from 106.12.178.245 port 42302 ssh2	2020-04-12 02:51:46
193.39.168.20	attackbotsspam	Scam medical equipment	2020-04-12 02:41:52
106.12.163.87	attackspambots	Apr 11 15:07:16 sshd\[18032\]: User root from 106.12.163.87 not allowed because not listed in AllowUsersApr 11 15:07:18 sshd\[18032\]: Failed password for invalid user root from 106.12.163.87 port 41908 ssh2 ...	2020-04-12 03:04:32
104.209.222.209	attackspam	RDP Brute-Force (honeypot 1)	2020-04-12 03:07:12
58.87.90.156	attackbots	Apr 11 17:45:24 vps647732 sshd[19657]: Failed password for root from 58.87.90.156 port 33886 ssh2 ...	2020-04-12 02:32:48
91.204.248.28	attackbotsspam	Apr 11 08:17:03 server1 sshd\[5389\]: Failed password for root from 91.204.248.28 port 36464 ssh2 Apr 11 08:20:06 server1 sshd\[6213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.204.248.28 user=root Apr 11 08:20:09 server1 sshd\[6213\]: Failed password for root from 91.204.248.28 port 57668 ssh2 Apr 11 08:23:22 server1 sshd\[7040\]: Invalid user gmike from 91.204.248.28 Apr 11 08:23:22 server1 sshd\[7040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.204.248.28 ...	2020-04-12 02:46:44
180.127.36.171	attackbotsspam	" "	2020-04-12 02:31:00
222.186.3.249	attackbotsspam	Apr 11 20:33:00 minden010 sshd[5831]: Failed password for root from 222.186.3.249 port 32273 ssh2 Apr 11 20:33:02 minden010 sshd[5831]: Failed password for root from 222.186.3.249 port 32273 ssh2 Apr 11 20:33:05 minden010 sshd[5831]: Failed password for root from 222.186.3.249 port 32273 ssh2 ...	2020-04-12 02:48:38

Recently Reported IPs

233.60.235.187	48.147.209.248	244.33.222.84	187.76.33.24
207.253.138.18	231.20.186.55	173.62.212.164	181.86.229.70
155.123.88.214	191.59.136.58	198.59.213.27	178.0.34.107
185.249.235.50	207.52.0.31	69.240.135.84	101.148.244.171
98.249.240.140	244.2.75.241	69.103.118.59	185.102.235.70