89.245.71.67 - IPInfo

Basic Info

City: Gelsenkirchen

Region: Nordrhein-Westfalen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.245.71.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12635
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;89.245.71.67.			IN	A

;; AUTHORITY SECTION:
.			213	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023022802 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 01 02:14:46 CST 2023
;; MSG SIZE  rcvd: 105

Host info

67.71.245.89.in-addr.arpa domain name pointer i59F54743.versanet.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
67.71.245.89.in-addr.arpa	name = i59F54743.versanet.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.75.86.217	attack	Automatic report - Banned IP Access	2020-01-01 18:10:42
185.176.27.30	attackbots	01/01/2020-11:20:47.642850 185.176.27.30 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-01 18:31:43
183.163.119.21	attack	Port Scan	2020-01-01 18:07:08
1.54.6.19	attack	Unauthorized connection attempt detected from IP address 1.54.6.19 to port 23	2020-01-01 18:21:09
61.48.192.115	attack	Jan 1 08:50:46 mc1 kernel: \[2023827.924783\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=61.48.192.115 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=43 ID=21815 PROTO=TCP SPT=5202 DPT=23 WINDOW=12402 RES=0x00 SYN URGP=0 Jan 1 08:51:04 mc1 kernel: \[2023845.765720\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=61.48.192.115 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=43 ID=21815 PROTO=TCP SPT=5202 DPT=23 WINDOW=12402 RES=0x00 SYN URGP=0 Jan 1 09:00:21 mc1 kernel: \[2024402.578813\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=61.48.192.115 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=43 ID=21815 PROTO=TCP SPT=5202 DPT=23 WINDOW=12402 RES=0x00 SYN URGP=0 ...	2020-01-01 18:05:23
42.123.96.135	attack	Portscan or hack attempt detected by psad/fwsnort	2020-01-01 18:18:15
115.186.148.38	attackbotsspam	$f2bV_matches	2020-01-01 18:39:21
118.33.23.14	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-01-01 18:36:53
113.4.139.252	attackbotsspam	Scanning	2020-01-01 18:10:10
190.131.218.242	attackbotsspam	Dec 31 21:58:32 php1 sshd\[30131\]: Invalid user wierzba from 190.131.218.242 Dec 31 21:58:32 php1 sshd\[30131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.131.218.242 Dec 31 21:58:35 php1 sshd\[30131\]: Failed password for invalid user wierzba from 190.131.218.242 port 34173 ssh2 Dec 31 22:01:58 php1 sshd\[30512\]: Invalid user operator from 190.131.218.242 Dec 31 22:01:58 php1 sshd\[30512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.131.218.242	2020-01-01 18:18:01
37.49.230.74	attackspambots	\[2020-01-01 04:54:16\] NOTICE\[2839\] chan_sip.c: Registration from '"12340" \' failed for '37.49.230.74:5195' - Wrong password \[2020-01-01 04:54:16\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-01T04:54:16.207-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="12340",SessionID="0x7f0fb447f838",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.74/5195",Challenge="141595d4",ReceivedChallenge="141595d4",ReceivedHash="d093c6c7c3e15c44e57f66571e38f7bc" \[2020-01-01 04:54:16\] NOTICE\[2839\] chan_sip.c: Registration from '"12340" \' failed for '37.49.230.74:5195' - Wrong password \[2020-01-01 04:54:16\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-01-01T04:54:16.363-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="12340",SessionID="0x7f0fb40977c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4	2020-01-01 18:03:24
138.197.222.141	attackspam	Jan 1 13:20:59 itv-usvr-02 sshd[2515]: Invalid user info from 138.197.222.141 port 47610 Jan 1 13:20:59 itv-usvr-02 sshd[2515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.222.141 Jan 1 13:20:59 itv-usvr-02 sshd[2515]: Invalid user info from 138.197.222.141 port 47610 Jan 1 13:21:02 itv-usvr-02 sshd[2515]: Failed password for invalid user info from 138.197.222.141 port 47610 ssh2 Jan 1 13:23:59 itv-usvr-02 sshd[2544]: Invalid user dbus from 138.197.222.141 port 51000	2020-01-01 18:12:02
158.69.70.163	attackbots	Jan 1 04:41:09 TORMINT sshd\[21676\]: Invalid user gans from 158.69.70.163 Jan 1 04:41:09 TORMINT sshd\[21676\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.70.163 Jan 1 04:41:11 TORMINT sshd\[21676\]: Failed password for invalid user gans from 158.69.70.163 port 35745 ssh2 ...	2020-01-01 18:09:14
51.159.35.94	attackbots	SSH bruteforce (Triggered fail2ban)	2020-01-01 18:06:00
177.193.93.228	attack	Automatic report - Port Scan Attack	2020-01-01 18:26:37

Recently Reported IPs

164.170.30.116	149.197.229.169	40.58.38.171	201.116.177.252
157.18.49.167	55.120.3.217	191.214.248.188	228.246.215.92
185.53.89.150	185.53.89.28	185.53.89.182	185.53.89.14
151.161.67.86	24.104.178.62	49.175.239.88	67.99.209.9
124.14.12.142	69.168.172.152	2408:80f1:31:50::20	237.93.160.225