172.89.2.42 - IPInfo

Basic Info

City: Los Angeles

Region: California

Country: United States

Internet Service Provider: Charter Communications Inc

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 445, PTR: cpe-172-89-2-42.socal.res.rr.com.	2020-06-04 06:38:51

Comments on same subnet:

IP	Type	Details	Datetime
172.89.2.62	attackspambots	Honeypot attack, port: 445, PTR: cpe-172-89-2-62.socal.res.rr.com.	2020-05-01 06:10:08
172.89.24.35	attack	Automatic report - Port Scan Attack	2020-04-25 19:25:44
172.89.206.82	attackspam	Brainless IDIOT Website Spammer~	2019-11-12 18:47:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.89.2.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52354
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;172.89.2.42.			IN	A

;; AUTHORITY SECTION:
.			364	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060302 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 04 06:38:47 CST 2020
;; MSG SIZE  rcvd: 115

Host info

42.2.89.172.in-addr.arpa domain name pointer cpe-172-89-2-42.socal.res.rr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.2.89.172.in-addr.arpa	name = cpe-172-89-2-42.socal.res.rr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.220.69	attackbotsspam	Apr 13 13:15:19 game-panel sshd[12092]: Failed password for root from 134.209.220.69 port 41344 ssh2 Apr 13 13:19:02 game-panel sshd[12274]: Failed password for root from 134.209.220.69 port 50776 ssh2	2020-04-13 21:31:00
80.54.228.7	attack	Apr 13 10:34:12 hell sshd[31530]: Failed password for mysql from 80.54.228.7 port 62383 ssh2 ...	2020-04-13 21:43:40
222.186.190.2	attackspambots	$f2bV_matches	2020-04-13 21:36:14
162.241.200.72	attackbotsspam	Hits on port : 11019	2020-04-13 21:14:03
222.186.30.76	attackspambots	Unauthorized connection attempt detected from IP address 222.186.30.76 to port 22 [T]	2020-04-13 21:10:47
158.69.195.175	attackspam	$f2bV_matches	2020-04-13 21:27:31
51.38.71.36	attack	Apr 13 12:20:30 xeon sshd[27426]: Failed password for root from 51.38.71.36 port 44914 ssh2	2020-04-13 21:34:39
62.171.142.113	attackbotsspam	Unauthorized connection attempt detected from IP address 62.171.142.113 to port 22	2020-04-13 21:03:10
189.146.139.173	attackspambots	They are stolen my info	2020-04-13 21:24:55
114.98.238.230	attackbots	Apr 13 15:25:59 OPSO sshd\[32130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.238.230 user=root Apr 13 15:26:01 OPSO sshd\[32130\]: Failed password for root from 114.98.238.230 port 59058 ssh2 Apr 13 15:29:30 OPSO sshd\[601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.238.230 user=root Apr 13 15:29:32 OPSO sshd\[601\]: Failed password for root from 114.98.238.230 port 40092 ssh2 Apr 13 15:33:20 OPSO sshd\[1596\]: Invalid user pentaho from 114.98.238.230 port 49364 Apr 13 15:33:20 OPSO sshd\[1596\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.238.230	2020-04-13 21:35:38
222.186.175.169	attackspambots	Apr 13 15:21:19 ns381471 sshd[3608]: Failed password for root from 222.186.175.169 port 13476 ssh2 Apr 13 15:21:32 ns381471 sshd[3608]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 13476 ssh2 [preauth]	2020-04-13 21:23:53
35.223.108.174	attackspam	MALWARE-CNC Win.Trojan.Pmabot outbound connection Classification: A Network Trojan was Detected	2020-04-13 21:11:27
139.217.233.36	attackspam	Apr 13 10:32:46 ns382633 sshd\[19827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.233.36 user=root Apr 13 10:32:48 ns382633 sshd\[19827\]: Failed password for root from 139.217.233.36 port 1536 ssh2 Apr 13 10:38:50 ns382633 sshd\[20972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.233.36 user=root Apr 13 10:38:52 ns382633 sshd\[20972\]: Failed password for root from 139.217.233.36 port 1536 ssh2 Apr 13 10:42:20 ns382633 sshd\[21752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.233.36 user=root	2020-04-13 21:20:44
106.14.211.77	attackbots	bruteforce detected	2020-04-13 21:30:08
178.54.232.58	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-13 21:24:31

Recently Reported IPs

73.103.58.190	85.57.145.133	77.228.1.80	201.62.111.64
220.137.130.19	91.32.161.186	1.46.123.6	165.234.105.233
149.7.216.192	88.200.214.71	58.37.215.178	147.133.183.34
186.229.0.4	109.179.109.166	50.79.17.40	35.187.148.132
210.136.166.27	144.2.164.72	115.48.179.180	171.173.6.27