102.89.2.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Nigeria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
102.89.2.28	attackbots	Listed on abuseat.org plus zen-spamhaus / proto=6 . srcport=56637 . dstport=445 . (3133)	2020-09-28 05:26:31
102.89.2.28	attack	Listed on abuseat.org plus zen-spamhaus / proto=6 . srcport=56637 . dstport=445 . (3133)	2020-09-27 21:45:27
102.89.2.28	attackspambots	Listed on abuseat.org plus zen-spamhaus / proto=6 . srcport=56637 . dstport=445 . (3133)	2020-09-27 13:30:28
102.89.2.35	attackbotsspam	1596284160 - 08/01/2020 14:16:00 Host: 102.89.2.35/102.89.2.35 Port: 445 TCP Blocked	2020-08-02 04:02:25
102.89.2.40	attackspam	1591388890 - 06/05/2020 22:28:10 Host: 102.89.2.40/102.89.2.40 Port: 445 TCP Blocked	2020-06-06 05:16:05
102.89.2.186	attack	1588507600 - 05/03/2020 14:06:40 Host: 102.89.2.186/102.89.2.186 Port: 445 TCP Blocked	2020-05-04 03:08:15
102.89.2.49	attack	1588507603 - 05/03/2020 14:06:43 Host: 102.89.2.49/102.89.2.49 Port: 445 TCP Blocked	2020-05-04 03:06:54
102.89.2.34	attack	(pop3d) Failed POP3 login from 102.89.2.34 (NG/Nigeria/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 1 02:00:35 ir1 dovecot[566034]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=102.89.2.34, lip=5.63.12.44, session=	2020-04-01 06:55:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.89.2.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2230
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;102.89.2.20.			IN	A

;; AUTHORITY SECTION:
.			399	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 22:46:31 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 20.2.89.102.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.2.89.102.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.34.204.144	attackbotsspam	Unauthorized connection attempt from IP address 83.34.204.144 on Port 445(SMB)	2020-09-01 01:17:39
149.202.160.188	attackspam	2020-08-31T15:46:27.042317lavrinenko.info sshd[12036]: Invalid user zt from 149.202.160.188 port 39937 2020-08-31T15:46:27.050700lavrinenko.info sshd[12036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.160.188 2020-08-31T15:46:27.042317lavrinenko.info sshd[12036]: Invalid user zt from 149.202.160.188 port 39937 2020-08-31T15:46:28.532104lavrinenko.info sshd[12036]: Failed password for invalid user zt from 149.202.160.188 port 39937 ssh2 2020-08-31T15:50:06.819539lavrinenko.info sshd[20933]: Invalid user nfe from 149.202.160.188 port 42818 ...	2020-09-01 01:40:24
37.255.238.25	attack	Automatic report - Port Scan Attack	2020-09-01 01:24:40
84.253.98.49	attack	Unauthorized connection attempt from IP address 84.253.98.49 on Port 445(SMB)	2020-09-01 01:42:08
165.227.26.69	attackspam	Aug 31 14:20:52 hidden sshd[4062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.26.69 Aug 31 14:20:54 hidden sshd[4062]: Failed password for invalid user scan from 165.227.26.69 port 49698 ssh2 Aug 31 14:32:27 hidden sshd[6240]: Invalid user bill from 165.227.26.69 port 57104	2020-09-01 01:31:34
81.20.101.202	attack	Unauthorized connection attempt from IP address 81.20.101.202 on Port 445(SMB)	2020-09-01 01:26:08
67.205.61.17	attackspam	Wordpress_xmlrpc_attack	2020-09-01 01:45:03
165.227.50.84	attackspam	Invalid user ts from 165.227.50.84 port 37846	2020-09-01 01:05:55
177.222.158.189	attack	Unauthorized connection attempt from IP address 177.222.158.189 on Port 445(SMB)	2020-09-01 01:16:33
149.202.50.155	attack	2020-08-31T16:47:04.399667paragon sshd[970935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.50.155 user=root 2020-08-31T16:47:06.298125paragon sshd[970935]: Failed password for root from 149.202.50.155 port 57502 ssh2 2020-08-31T16:50:13.899863paragon sshd[971188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.50.155 user=root 2020-08-31T16:50:15.743355paragon sshd[971188]: Failed password for root from 149.202.50.155 port 51886 ssh2 2020-08-31T16:53:23.796212paragon sshd[971450]: Invalid user wanglj from 149.202.50.155 port 46290 ...	2020-09-01 01:29:49
118.170.133.122	attackbots	Unauthorised access (Aug 31) SRC=118.170.133.122 LEN=48 TTL=109 ID=17369 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-01 01:43:53
45.124.86.155	attack	Aug 31 03:00:40 web9 sshd\[16956\]: Invalid user gangadhar from 45.124.86.155 Aug 31 03:00:40 web9 sshd\[16956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.124.86.155 Aug 31 03:00:42 web9 sshd\[16956\]: Failed password for invalid user gangadhar from 45.124.86.155 port 52782 ssh2 Aug 31 03:04:38 web9 sshd\[17478\]: Invalid user vbox from 45.124.86.155 Aug 31 03:04:38 web9 sshd\[17478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.124.86.155	2020-09-01 01:45:52
51.15.243.117	attackbots	SSH Bruteforce attack	2020-09-01 01:23:32
188.162.167.66	attack	1598877172 - 08/31/2020 14:32:52 Host: 188.162.167.66/188.162.167.66 Port: 445 TCP Blocked	2020-09-01 01:10:45
54.174.89.109	attackbots	xmlrpc attack	2020-09-01 01:08:48

Recently Reported IPs

102.89.2.222	102.89.16.21	102.89.6.52	102.89.3.188
102.90.5.138	102.89.16.30	102.90.9.2	102.90.9.158
102.91.17.154	102.91.4.97	102.91.14.118	102.91.5.63
102.91.17.18	102.91.5.19	102.91.6.10	103.0.137.2
103.0.145.211	102.91.5.65	103.1.103.145	103.0.44.45