89.20.48.245 - IPInfo

Basic Info

City: Almaty

Region: Almaty

Country: Kazakhstan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
89.20.48.104	attack	Trying ports that it shouldn't be.	2020-02-25 05:43:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.20.48.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51501
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;89.20.48.245.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025041702 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 18 13:20:39 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 245.48.20.89.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.48.20.89.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
24.227.164.55	attackspambots	Port Scan: UDP/137	2019-09-25 09:51:56
157.230.248.65	attackspambots	Sep 25 06:09:57 vps691689 sshd[17187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.248.65 Sep 25 06:09:59 vps691689 sshd[17187]: Failed password for invalid user vy from 157.230.248.65 port 16624 ssh2 ...	2019-09-25 12:19:45
132.232.29.208	attack	Sep 25 03:36:06 vtv3 sshd\[23997\]: Invalid user kq from 132.232.29.208 port 55008 Sep 25 03:36:06 vtv3 sshd\[23997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.29.208 Sep 25 03:36:08 vtv3 sshd\[23997\]: Failed password for invalid user kq from 132.232.29.208 port 55008 ssh2 Sep 25 03:40:54 vtv3 sshd\[26296\]: Invalid user webmaster from 132.232.29.208 port 38160 Sep 25 03:40:54 vtv3 sshd\[26296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.29.208 Sep 25 03:55:24 vtv3 sshd\[1346\]: Invalid user wubao from 132.232.29.208 port 44156 Sep 25 03:55:24 vtv3 sshd\[1346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.29.208 Sep 25 03:55:26 vtv3 sshd\[1346\]: Failed password for invalid user wubao from 132.232.29.208 port 44156 ssh2 Sep 25 04:00:16 vtv3 sshd\[3887\]: Invalid user mlab from 132.232.29.208 port 55544 Sep 25 04:00:16 vtv3 sshd\[3887\]: pam_	2019-09-25 12:07:55
61.53.16.56	attackspam	Port Scan: TCP/23	2019-09-25 09:49:15
54.39.104.30	attack	Sep 25 04:56:29 ms-srv sshd[34113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.104.30 Sep 25 04:56:31 ms-srv sshd[34113]: Failed password for invalid user bie from 54.39.104.30 port 37142 ssh2	2019-09-25 12:01:10
66.220.155.148	attackspam	Port Scan: TCP/25	2019-09-25 09:47:45
209.205.206.94	attackbots	SMB Server BruteForce Attack	2019-09-25 12:02:49
118.171.37.163	attackbotsspam	Port Scan: TCP/23	2019-09-25 09:44:45
177.74.143.175	attack	proto=tcp . spt=40935 . dpt=25 . (Dark List de Sep 24) (729)	2019-09-25 09:42:26
222.128.2.60	attack	Sep 25 00:06:26 localhost sshd\[2014\]: Invalid user login from 222.128.2.60 port 42488 Sep 25 00:06:26 localhost sshd\[2014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.2.60 Sep 25 00:06:29 localhost sshd\[2014\]: Failed password for invalid user login from 222.128.2.60 port 42488 ssh2 Sep 25 00:10:40 localhost sshd\[2187\]: Invalid user p from 222.128.2.60 port 23337 Sep 25 00:10:40 localhost sshd\[2187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.2.60 ...	2019-09-25 09:52:28
216.57.225.2	attackspambots	Scanning and Vuln Attempts	2019-09-25 12:10:52
51.38.129.120	attackbotsspam	Sep 24 22:52:15 aat-srv002 sshd[3349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.129.120 Sep 24 22:52:17 aat-srv002 sshd[3349]: Failed password for invalid user jxd786 from 51.38.129.120 port 58428 ssh2 Sep 24 22:56:29 aat-srv002 sshd[3439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.129.120 Sep 24 22:56:32 aat-srv002 sshd[3439]: Failed password for invalid user monitor from 51.38.129.120 port 42842 ssh2 ...	2019-09-25 12:01:23
222.186.30.152	attackbots	DATE:2019-09-25 06:11:52, IP:222.186.30.152, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis)	2019-09-25 12:26:14
202.122.23.70	attackspam	Sep 25 06:09:27 OPSO sshd\[5612\]: Invalid user gpadmin from 202.122.23.70 port 28661 Sep 25 06:09:27 OPSO sshd\[5612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.122.23.70 Sep 25 06:09:29 OPSO sshd\[5612\]: Failed password for invalid user gpadmin from 202.122.23.70 port 28661 ssh2 Sep 25 06:14:04 OPSO sshd\[6390\]: Invalid user billing from 202.122.23.70 port 39351 Sep 25 06:14:04 OPSO sshd\[6390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.122.23.70	2019-09-25 12:26:44
68.70.221.23	attackspam	Unauthorised access (Sep 25) SRC=68.70.221.23 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=65266 TCP DPT=23 WINDOW=46116 SYN Unauthorised access (Sep 24) SRC=68.70.221.23 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=52743 TCP DPT=8080 WINDOW=52316 SYN Unauthorised access (Sep 24) SRC=68.70.221.23 LEN=40 TOS=0x10 PREC=0x40 TTL=50 ID=9737 TCP DPT=8080 WINDOW=8669 SYN	2019-09-25 12:20:16

Recently Reported IPs

176.59.211.111	176.59.211.119	196.251.117.192	89.20.48.244
196.251.73.101	20.15.205.80	160.191.178.93	121.91.176.0
183.227.18.95	89.141.239.52	113.215.188.26	116.229.185.127
5.255.122.17	147.185.132.104	35.203.211.8	20.65.193.152
168.64.127.197	121.207.51.43	204.141.248.174	34.22.192.129