85.172.89.161 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
85.172.89.212	attackspambots	Port scan on 1 port(s): 445	2020-10-12 01:18:55
85.172.89.212	attackspam	Port scan on 1 port(s): 445	2020-10-11 17:10:35
85.172.89.213	attack	Unauthorized connection attempt from IP address 85.172.89.213 on Port 445(SMB)	2020-08-17 08:23:32
85.172.89.94	attackbots	Unauthorized connection attempt from IP address 85.172.89.94 on Port 445(SMB)	2020-03-07 01:22:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.172.89.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58088
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.172.89.161.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 07:38:26 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 161.89.172.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 161.89.172.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.176.76.230	attackbots	(Jun 27) LEN=40 TTL=244 ID=20457 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=33816 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=5381 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=63249 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=44444 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=34414 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=34405 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=48897 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=64615 DF TCP DPT=23 WINDOW=14600 SYN (Jun 26) LEN=40 TTL=244 ID=48119 DF TCP DPT=23 WINDOW=14600 SYN (Jun 25) LEN=40 TTL=244 ID=36405 DF TCP DPT=23 WINDOW=14600 SYN (Jun 25) LEN=40 TTL=244 ID=14361 DF TCP DPT=23 WINDOW=14600 SYN (Jun 25) LEN=40 TTL=244 ID=15961 DF TCP DPT=23 WINDOW=14600 SYN (Jun 25) LEN=40 TTL=244 ID=56525 DF TCP DPT=23 WINDOW=14600 SYN (Jun 25) LEN=40 TTL=244 ID=19483 DF TCP DPT=23 WINDOW=14600 S...	2019-06-27 09:40:48
108.178.61.58	attack	Brute force attack stopped by firewall	2019-06-27 09:42:37
46.166.190.153	attackbots	Brute force attack stopped by firewall	2019-06-27 09:25:42
185.234.218.122	attackbots	$f2bV_matches	2019-06-27 09:27:15
94.228.182.244	attackspambots	Jun 26 22:52:34 MK-Soft-VM5 sshd\[11198\]: Invalid user test2 from 94.228.182.244 port 52260 Jun 26 22:52:34 MK-Soft-VM5 sshd\[11198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.228.182.244 Jun 26 22:52:36 MK-Soft-VM5 sshd\[11198\]: Failed password for invalid user test2 from 94.228.182.244 port 52260 ssh2 ...	2019-06-27 09:22:10
170.231.94.134	attackbotsspam	libpam_shield report: forced login attempt	2019-06-27 09:51:19
109.201.154.223	attackspam	Brute force attack stopped by firewall	2019-06-27 09:31:54
209.17.96.66	attack	81/tcp 8888/tcp 137/udp... [2019-04-26/06-26]155pkt,14pt.(tcp),1pt.(udp)	2019-06-27 09:39:02
138.197.195.52	attack	Reported by AbuseIPDB proxy server.	2019-06-27 09:29:07
188.246.226.67	attackbotsspam	Port scan on 9 port(s): 2589 2659 2703 2769 3154 3211 3219 3224 3227	2019-06-27 09:14:16
84.238.197.95	attack	Brute force attack stopped by firewall	2019-06-27 09:30:42
162.243.143.243	attack	POP	2019-06-27 09:35:48
200.77.186.208	attack	Brute force attack stopped by firewall	2019-06-27 09:45:13
37.49.224.138	attackspam	Brute force attack stopped by firewall	2019-06-27 09:19:54
159.65.245.203	attackbots	Jun 27 02:58:18 62-210-73-4 sshd\[11204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.245.203 user=root Jun 27 02:58:20 62-210-73-4 sshd\[11204\]: Failed password for root from 159.65.245.203 port 53574 ssh2 ...	2019-06-27 09:12:44

Recently Reported IPs

254.36.137.52	166.126.199.113	6.236.53.228	129.62.123.141
209.45.112.42	238.247.249.40	152.20.106.213	153.27.186.206
146.107.195.254	182.215.120.244	202.210.164.237	157.245.244.115
203.225.240.47	159.238.14.151	100.20.181.113	75.227.57.233
53.89.26.210	149.150.51.15	224.25.144.26	51.5.168.83