89.248.4.172 - IPInfo

Basic Info

City: Tiller

Region: Trøndelag

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.248.4.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;89.248.4.172.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021300 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 00:50:36 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 172.4.248.89.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 172.4.248.89.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.182.211.238	attackspambots	5.182.211.238 - - \[11/Sep/2020:19:35:55 +0200\] "POST /wp-login.php HTTP/1.0" 200 5983 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 5.182.211.238 - - \[11/Sep/2020:19:35:56 +0200\] "POST /wp-login.php HTTP/1.0" 200 5815 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 5.182.211.238 - - \[11/Sep/2020:19:35:56 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-12 03:08:40
104.131.12.184	attack	2020-09-10 UTC: (2x) - media,root	2020-09-12 03:29:22
2002:c1a9:ff29::c1a9:ff29	attackbotsspam	Sep 11 20:32:16 web01.agentur-b-2.de postfix/smtpd[1543482]: warning: unknown[2002:c1a9:ff29::c1a9:ff29]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:32:16 web01.agentur-b-2.de postfix/smtpd[1543482]: lost connection after AUTH from unknown[2002:c1a9:ff29::c1a9:ff29] Sep 11 20:33:46 web01.agentur-b-2.de postfix/smtpd[1563207]: warning: unknown[2002:c1a9:ff29::c1a9:ff29]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:33:46 web01.agentur-b-2.de postfix/smtpd[1563207]: lost connection after AUTH from unknown[2002:c1a9:ff29::c1a9:ff29] Sep 11 20:34:07 web01.agentur-b-2.de postfix/smtpd[1543095]: warning: unknown[2002:c1a9:ff29::c1a9:ff29]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 20:34:07 web01.agentur-b-2.de postfix/smtpd[1543095]: lost connection after AUTH from unknown[2002:c1a9:ff29::c1a9:ff29]	2020-09-12 03:25:47
177.154.77.153	attackspambots	Sep 8 12:24:47 mail.srvfarm.net postfix/smtpd[1763076]: warning: unknown[177.154.77.153]: SASL PLAIN authentication failed: Sep 8 12:24:48 mail.srvfarm.net postfix/smtpd[1763076]: lost connection after AUTH from unknown[177.154.77.153] Sep 8 12:25:33 mail.srvfarm.net postfix/smtps/smtpd[1768119]: warning: unknown[177.154.77.153]: SASL PLAIN authentication failed: Sep 8 12:25:34 mail.srvfarm.net postfix/smtps/smtpd[1768119]: lost connection after AUTH from unknown[177.154.77.153] Sep 8 12:32:01 mail.srvfarm.net postfix/smtps/smtpd[1765606]: warning: unknown[177.154.77.153]: SASL PLAIN authentication failed:	2020-09-12 03:01:55
118.121.200.10	attack	Scanned 3 times in the last 24 hours on port 22	2020-09-12 03:32:23
218.92.0.251	attack	Sep 12 00:14:33 gw1 sshd[11475]: Failed password for root from 218.92.0.251 port 16556 ssh2 Sep 12 00:14:45 gw1 sshd[11475]: error: maximum authentication attempts exceeded for root from 218.92.0.251 port 16556 ssh2 [preauth] ...	2020-09-12 03:17:32
60.191.20.213	attack	Icarus honeypot on github	2020-09-12 03:25:19
202.83.42.23	attackbots	TCP (SYN) 202.83.42.23:22937 -> port 23, len 40	2020-09-12 03:33:14
1.165.132.175	attack	20/9/10@13:21:43: FAIL: Alarm-Network address from=1.165.132.175 ...	2020-09-12 03:05:48
128.199.81.66	attackspambots	Sep 11 19:39:26 sshgateway sshd\[869\]: Invalid user dim from 128.199.81.66 Sep 11 19:39:26 sshgateway sshd\[869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.81.66 Sep 11 19:39:28 sshgateway sshd\[869\]: Failed password for invalid user dim from 128.199.81.66 port 52504 ssh2	2020-09-12 03:14:10
222.87.224.25	attack	Failed password for invalid user bdos from 222.87.224.25 port 2405 ssh2	2020-09-12 03:33:39
157.245.108.35	attackspambots	Sep 11 19:29:18 sshgateway sshd\[31990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.108.35 user=root Sep 11 19:29:20 sshgateway sshd\[31990\]: Failed password for root from 157.245.108.35 port 54526 ssh2 Sep 11 19:35:22 sshgateway sshd\[340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.108.35 user=root	2020-09-12 03:11:24
115.223.34.141	attack	web-1 [ssh_2] SSH Attack	2020-09-12 03:22:13
218.91.1.91	attack	SMTP brute force	2020-09-12 03:11:07
39.45.10.54	attackbots	2020/09/07 11:36:48 [error] 8296#8296: 637583 open() "/usr/share/nginx/html/phpMyAdmin/index.php" failed (2: No such file or directory), client: 39.45.10.54, server: _, request: "GET /phpMyAdmin/index.php HTTP/1.1", host: "hausverwaltung-wermelskirchen.de" 2020/09/07 11:36:50 [error] 8296#8296: 637585 open() "/usr/share/nginx/html/pma/index.php" failed (2: No such file or directory), client: 39.45.10.54, server: _, request: "GET /pma/index.php HTTP/1.1", host: "hausverwaltung-wermelskirchen.de"	2020-09-12 03:04:54

Recently Reported IPs

217.55.89.169	176.185.228.216	21.174.21.111	215.77.113.224
177.136.231.75	49.120.94.95	192.92.158.169	45.97.247.142
107.114.235.199	154.206.101.40	206.200.32.121	62.108.60.72
24.6.80.14	109.31.119.187	156.30.45.254	178.150.225.188
242.92.239.94	27.225.240.189	5.249.17.12	98.181.211.77