IP address


.08589.248.168.239no-reverse-dns-configured.com
Shodan(more info)
Passive DNS
Tags: Scanner
IP blacklists
CI Army
89.248.168.239 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2024-11-06 03:50:01.112000
Was present on blacklist at: 2024-10-11 02:50, 2024-10-12 02:50, 2024-10-13 02:50, 2024-10-14 02:50, 2024-10-15 02:50, 2024-10-16 02:50, 2024-10-17 02:50, 2024-10-18 02:50, 2024-10-19 02:50, 2024-10-20 02:50, 2024-10-21 02:50, 2024-10-22 02:50, 2024-10-23 02:50, 2024-10-24 02:50, 2024-10-25 02:50, 2024-10-28 03:50, 2024-10-29 03:50, 2024-10-30 03:50, 2024-10-31 03:50, 2024-11-03 03:50, 2024-11-04 03:50, 2024-11-05 03:50, 2024-11-06 03:50
AbuseIPDB
89.248.168.239 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2024-11-03 05:00:00.318000
Was present on blacklist at: 2024-10-11 04:00, 2024-10-22 04:00, 2024-10-28 05:00, 2024-11-03 05:00
UCEPROTECT L1
89.248.168.239 is listed on the UCEPROTECT L1 blacklist.

Description: UCEPROTECT-NETWORK list of spam IPs.
Type of feed: primary (feed detail page)

Last checked at: 2024-10-22 15:45:00.895000
Was present on blacklist at: 2024-10-15 23:45, 2024-10-16 07:45, 2024-10-16 15:45, 2024-10-16 23:45, 2024-10-17 07:45, 2024-10-17 15:45, 2024-10-17 23:45, 2024-10-18 07:45, 2024-10-18 15:45, 2024-10-18 23:45, 2024-10-19 07:45, 2024-10-19 15:45, 2024-10-19 23:45, 2024-10-20 07:45, 2024-10-20 15:45, 2024-10-20 23:45, 2024-10-21 07:45, 2024-10-21 15:45, 2024-10-21 23:45, 2024-10-22 07:45, 2024-10-22 15:45
Warden events (869)
2024-11-03
ReconScanning (node.ce2b59): 18
ReconScanning (node.4dc198): 145
2024-11-02
ReconScanning (node.4dc198): 91
ReconScanning (node.ce2b59): 10
ReconScanning (node.368407): 1
2024-10-28
ReconScanning (node.4dc198): 77
ReconScanning (node.ce2b59): 9
2024-10-27
ReconScanning (node.ce2b59): 19
ReconScanning (node.4dc198): 162
ReconScanning (node.368407): 1
2024-10-22
ReconScanning (node.4dc198): 19
2024-10-21
ReconScanning (node.4dc198): 128
ReconScanning (node.368407): 1
2024-10-11
ReconScanning (node.4dc198): 123
2024-10-10
ReconScanning (node.4dc198): 65
DShield reports (IP summary, reports)
2024-10-10
Number of reports: 136
Distinct targets: 95
2024-10-11
Number of reports: 374
Distinct targets: 253
2024-10-14
Number of reports: 300
Distinct targets: 211
2024-10-15
Number of reports: 329
Distinct targets: 228
2024-10-16
Number of reports: 315
Distinct targets: 211
2024-10-17
Number of reports: 309
Distinct targets: 210
2024-10-21
Number of reports: 280
Distinct targets: 186
2024-10-22
Number of reports: 61
Distinct targets: 38
2024-10-27
Number of reports: 353
Distinct targets: 245
2024-10-28
Number of reports: 133
Distinct targets: 116
2024-11-02
Number of reports: 182
Distinct targets: 107
2024-11-03
Number of reports: 342
Distinct targets: 225
Origin AS
AS202425 - INT-NETWORK
BGP Prefix
89.248.168.0/24
geo
Netherlands, Amsterdam
🕑 Europe/Amsterdam
hostname
no-reverse-dns-configured.com
Address block ('inetnum' or 'NetRange' in whois database)
89.248.160.0 - 89.248.175.255
last_activity
2024-11-03 12:54:15
last_warden_event
2024-11-03 12:54:15
rep
0.08452380952380951
reserved_range
0
Shodan's InternetDB
Open ports: 22
Tags: scanner
CPEs: cpe:/a:openbsd:openssh:8.2p1, cpe:/o:canonical:ubuntu_linux
ts_added
2024-10-10 17:36:39.232000
ts_last_update
2024-11-11 17:36:40.101000

Warden event timeline

DShield event timeline

Presence on blacklists