IP address

Search at other sites:

.10089.248.168.239no-reverse-dns-configured.com

Shodan(more info)

Passive DNS

IP blacklists

CI Army

89.248.168.239 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-09-06 02:50:01.082000
Was present on blacklist at: 2025-06-26 02:50, 2025-06-27 02:50, 2025-06-28 02:50, 2025-06-29 02:50, 2025-06-30 02:50, 2025-07-01 02:50, 2025-07-02 02:50, 2025-07-03 02:50, 2025-07-04 02:50, 2025-07-05 02:50, 2025-07-06 02:50, 2025-07-07 02:50, 2025-07-08 02:50, 2025-07-09 02:50, 2025-07-10 02:50, 2025-08-05 02:50, 2025-08-06 02:50, 2025-08-07 02:50, 2025-08-08 02:50, 2025-08-09 02:50, 2025-08-10 02:50, 2025-08-11 02:50, 2025-08-12 02:50, 2025-08-13 02:50, 2025-08-14 02:50, 2025-08-15 02:50, 2025-08-16 02:50, 2025-08-22 02:50, 2025-08-23 02:50, 2025-08-24 02:50, 2025-08-25 02:50, 2025-08-26 02:50, 2025-09-02 02:50, 2025-09-03 02:50, 2025-09-04 02:50, 2025-09-05 02:50, 2025-09-06 02:50

UCEPROTECT L1

89.248.168.239 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2025-06-20 07:45:00.563000
Was present on blacklist at: 2025-06-20 07:45

AbuseIPDB

89.248.168.239 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-09-02 04:00:00.671000
Was present on blacklist at: 2025-06-27 04:00, 2025-07-06 04:00, 2025-08-05 04:00, 2025-08-07 04:00, 2025-08-12 04:00, 2025-08-13 04:00, 2025-08-22 04:00, 2025-09-02 04:00

Spamhaus XBL CBL

89.248.168.239 was recently listed on the Spamhaus XBL CBL blacklist, but currently it is not.

Description: The Spamhaus Exploits Block List (XBL) is a realtime database of IP addresses of hijacked PCs infected by illegal 3rd party exploits, including open proxies, worms/viruses with built-in spam engines, and other types of trojan-horse exploits.
Type of feed: secondary (DNSBL) (feed detail page)

Last checked at: 2025-09-17 03:13:20.159000
Was present on blacklist at: 2025-06-25 03:13

Warden events (1432)

2025-09-18

ReconScanning (node.4dc198): 90

ReconScanning (node.9c1411): 3

2025-09-02

ReconScanning (node.4dc198): 200

2025-09-01

ReconScanning (node.4dc198): 141

2025-08-22

ReconScanning (node.4dc198): 2

2025-08-21

ReconScanning (node.4dc198): 168

2025-08-12

ReconScanning (node.4dc198): 222

ReconScanning (node.9c1411): 71

2025-08-11

ReconScanning (node.4dc198): 60

ReconScanning (node.9c1411): 14

2025-08-05

ReconScanning (node.4dc198): 157

ReconScanning (node.9c1411): 39

2025-08-04

ReconScanning (node.4dc198): 123

ReconScanning (node.9c1411): 28

2025-07-09

ReconScanning (node.4dc198): 5

2025-07-08

ReconScanning (node.4dc198): 102

2025-07-05

ReconScanning (node.4dc198): 1

ReconScanning (node.9c1411): 2

2025-07-03

ReconScanning (node.9c1411): 1

2025-07-02

ReconScanning (node.4dc198): 3

DShield reports (IP summary, reports)

2025-06-25

Number of reports: 114

Distinct targets: 97

2025-06-27

Number of reports: 97

Distinct targets: 55

2025-07-01

Number of reports: 197

Distinct targets: 118

2025-07-02

Number of reports: 59

Distinct targets: 24

2025-07-05

Number of reports: 70

Distinct targets: 64

2025-07-06

Number of reports: 230

Distinct targets: 150

2025-07-07

Number of reports: 140

Distinct targets: 97

2025-07-08

Number of reports: 121

Distinct targets: 87

2025-08-04

Number of reports: 99

Distinct targets: 98

2025-08-05

Number of reports: 239

Distinct targets: 153

2025-08-06

Number of reports: 16

Distinct targets: 15

2025-08-07

Number of reports: 229

Distinct targets: 131

2025-08-11

Number of reports: 51

Distinct targets: 43

2025-08-12

Number of reports: 320

Distinct targets: 257

2025-08-21

Number of reports: 235

Distinct targets: 160

2025-08-22

Number of reports: 35

Distinct targets: 23

2025-09-01

Number of reports: 165

Distinct targets: 121

2025-09-02

Number of reports: 269

Distinct targets: 166

Origin AS

AS202425 - INT-NETWORK

BGP Prefix

89.248.168.0/24

geo

Netherlands, Amsterdam

🕑 Europe/Amsterdam

hostname

no-reverse-dns-configured.com

Address block ('inetnum' or 'NetRange' in whois database)

89.248.160.0 - 89.248.175.255

last_activity

2025-09-18 23:19:09

last_warden_event

2025-09-18 23:19:09

rep

0.1

reserved_range

0

Shodan's InternetDB

Open ports: 22

Tags: scanner

CPEs: cpe:/a:openbsd:openssh:8.9p1, cpe:/o:canonical:ubuntu_linux

ts_added

2025-04-30 03:13:12.421000

ts_last_update

2025-09-18 23:19:18.180000

Warden event timeline

DShield event timeline

Presence on blacklists