85.71.241.5 - IPInfo

Basic Info

City: Prague

Region: Prague - the Capital (Praha - hlavni mesto)

Country: Czechia

Internet Service Provider: O2

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '85.71.241.0 - 85.71.241.255'

% Abuse contact for '85.71.241.0 - 85.71.241.255' is 'abuse@o2.cz'

inetnum:        85.71.241.0 - 85.71.241.255
netname:        VDFFREE
descr:          Varnsdorf
country:        CZ
admin-c:        JL5354-RIPE
tech-c:         JL5354-RIPE
status:         ASSIGNED PA
mnt-by:         AS5610-MTN
created:        2011-09-29T06:50:16Z
last-modified:  2011-09-29T06:50:16Z
source:         RIPE # Filtered

person:         JUNEK LIBOR
address:        Narodni 499
address:        Varnsdorf
address:        40747
phone:          +420773167772
nic-hdl:        JL5354-RIPE
mnt-by:         AS5610-MTN
created:        2011-09-29T06:45:54Z
last-modified:  2011-09-29T06:45:54Z
source:         RIPE # Filtered

% Information related to '85.71.240.0/20AS5610'

route:          85.71.240.0/20
descr:          CZ.CZNET
origin:         AS5610
mnt-by:         AS5610-MTN
created:        2015-05-25T07:39:00Z
last-modified:  2015-05-25T07:39:00Z
source:         RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.121 (BUSA)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.71.241.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57421
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.71.241.5.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026031201 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 05:07:17 CST 2026
;; MSG SIZE  rcvd: 104

Host info

5.241.71.85.in-addr.arpa domain name pointer 5.241.vdffree.cz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.241.71.85.in-addr.arpa	name = 5.241.vdffree.cz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
39.78.94.14	attack	IP reached maximum auth failures	2020-06-06 14:52:50
139.155.90.141	attackbots	Lines containing failures of 139.155.90.141 Jun 1 04:25:23 kmh-vmh-001-fsn03 sshd[23898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.141 user=r.r Jun 1 04:25:26 kmh-vmh-001-fsn03 sshd[23898]: Failed password for r.r from 139.155.90.141 port 50852 ssh2 Jun 1 04:25:27 kmh-vmh-001-fsn03 sshd[23898]: Received disconnect from 139.155.90.141 port 50852:11: Bye Bye [preauth] Jun 1 04:25:27 kmh-vmh-001-fsn03 sshd[23898]: Disconnected from authenticating user r.r 139.155.90.141 port 50852 [preauth] Jun 1 04:39:30 kmh-vmh-001-fsn03 sshd[4574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.90.141 user=r.r Jun 1 04:39:32 kmh-vmh-001-fsn03 sshd[4574]: Failed password for r.r from 139.155.90.141 port 44014 ssh2 Jun 1 04:39:34 kmh-vmh-001-fsn03 sshd[4574]: Received disconnect from 139.155.90.141 port 44014:11: Bye Bye [preauth] Jun 1 04:39:34 kmh-vmh-001-fsn03 sshd[4574]:........ ------------------------------	2020-06-06 14:57:01
222.186.15.62	attackbotsspam	Jun 6 08:32:28 santamaria sshd\[13168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root Jun 6 08:32:30 santamaria sshd\[13168\]: Failed password for root from 222.186.15.62 port 46988 ssh2 Jun 6 08:32:35 santamaria sshd\[13175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62 user=root ...	2020-06-06 14:33:31
128.199.152.38	attackspambots	Jun 6 07:22:40 vps339862 kernel: \[10639875.858294\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=128.199.152.38 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=23178 PROTO=TCP SPT=48861 DPT=8086 SEQ=2500889399 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 6 07:22:50 vps339862 kernel: \[10639885.810288\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=128.199.152.38 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=61743 PROTO=TCP SPT=48861 DPT=9010 SEQ=2391415862 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 6 07:24:25 vps339862 kernel: \[10639980.911446\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=128.199.152.38 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=27582 PROTO=TCP SPT=48861 DPT=8009 SEQ=2172893916 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 6 07:31:26 vps339862 kernel: \[10640401.798543\] \[iptables\] PORT DENIED: IN=eth0 OUT= M ...	2020-06-06 14:28:47
177.36.33.175	attack	(smtpauth) Failed SMTP AUTH login from 177.36.33.175 (BR/Brazil/177-36-33-175.avato.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-06 08:47:48 plain authenticator failed for ([177.36.33.175]) [177.36.33.175]: 535 Incorrect authentication data (set_id=sourenco.cominfo@sourenco.com)	2020-06-06 15:08:29
195.54.166.97	attackbotsspam	TCP (SYN) 195.54.166.97:49969 -> port 33891, len 44	2020-06-06 14:26:10
212.64.16.31	attackspam	Jun 5 19:51:22 web9 sshd\[29265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.16.31 user=root Jun 5 19:51:25 web9 sshd\[29265\]: Failed password for root from 212.64.16.31 port 43568 ssh2 Jun 5 19:55:27 web9 sshd\[29861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.16.31 user=root Jun 5 19:55:29 web9 sshd\[29861\]: Failed password for root from 212.64.16.31 port 59454 ssh2 Jun 5 19:59:35 web9 sshd\[30456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.16.31 user=root	2020-06-06 14:40:14
195.54.160.225	attackspam	06/06/2020-02:14:59.497169 195.54.160.225 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-06 14:49:12
167.99.180.111	attackspam	LGS,WP GET /wp-login.php	2020-06-06 14:45:24
71.6.233.191	attackspambots	Jun 6 06:18:05 debian-2gb-nbg1-2 kernel: \[13675835.926241\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=71.6.233.191 DST=195.201.40.59 LEN=125 TOS=0x00 PREC=0x00 TTL=237 ID=54321 PROTO=UDP SPT=1900 DPT=1900 LEN=105	2020-06-06 14:54:55
222.124.17.227	attack	Jun 5 18:09:39 tdfoods sshd\[31659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.17.227 user=root Jun 5 18:09:40 tdfoods sshd\[31659\]: Failed password for root from 222.124.17.227 port 53950 ssh2 Jun 5 18:13:43 tdfoods sshd\[31959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.17.227 user=root Jun 5 18:13:45 tdfoods sshd\[31959\]: Failed password for root from 222.124.17.227 port 57840 ssh2 Jun 5 18:18:02 tdfoods sshd\[32268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.17.227 user=root	2020-06-06 15:02:04
185.232.30.130	attackbotsspam	06/06/2020-01:46:13.558386 185.232.30.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-06-06 15:07:47
36.81.203.211	attackbotsspam	Jun 6 08:44:20 piServer sshd[27909]: Failed password for root from 36.81.203.211 port 39820 ssh2 Jun 6 08:48:09 piServer sshd[28164]: Failed password for root from 36.81.203.211 port 60388 ssh2 ...	2020-06-06 14:59:17
195.54.160.135	attackbotsspam	195.54.160.135 - - \[06/Jun/2020:08:42:43 +0200\] "GET /solr/admin/info/system\?wt=json HTTP/1.1" 403 468 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/78.0.3904.108 Safari/537.36" 195.54.160.135 - - \[06/Jun/2020:08:48:18 +0200\] "GET /\?a=fetch\&content=\die$@md5\(HelloThinkCMF$\)\ HTTP/1.1" 403 446 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/78.0.3904.108 Safari/537.36" 195.54.160.135 - - \[06/Jun/2020:08:48:18 +0200\] "GET /\?XDEBUG_SESSION_START=phpstorm HTTP/1.1" 403 446 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/78.0.3904.108 Safari/537.36" ...	2020-06-06 14:56:27
49.88.112.112	attackspambots	$f2bV_matches	2020-06-06 14:50:31

Recently Reported IPs

47.92.1.193	20.15.224.207	47.92.254.239	129.212.227.58
158.220.104.98	183.81.169.235	195.184.76.80	195.184.76.146
177.180.165.169	170.89.160.28	159.97.148.160	45.156.128.13
185.177.72.46	212.23.222.58	98.81.156.78	52.23.231.33
184.73.145.244	111.73.221.83	3.91.176.195	147.224.154.89