159.89.134.3 - IPInfo

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.89.134.199	attack	Apr 22 05:57:59 debian-2gb-nbg1-2 kernel: \[9786834.346340\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=159.89.134.199 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=25029 PROTO=TCP SPT=42001 DPT=29945 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-22 12:01:17
159.89.134.64	attack	Mar 29 06:05:33 mockhub sshd[7092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Mar 29 06:05:35 mockhub sshd[7092]: Failed password for invalid user import from 159.89.134.64 port 53202 ssh2 ...	2020-03-29 21:07:05
159.89.134.64	attackspam	Mar 6 03:39:25 eddieflores sshd\[31067\]: Invalid user hadoop from 159.89.134.64 Mar 6 03:39:25 eddieflores sshd\[31067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Mar 6 03:39:27 eddieflores sshd\[31067\]: Failed password for invalid user hadoop from 159.89.134.64 port 43492 ssh2 Mar 6 03:43:51 eddieflores sshd\[31413\]: Invalid user muie from 159.89.134.64 Mar 6 03:43:51 eddieflores sshd\[31413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64	2020-03-07 05:55:50
159.89.134.64	attackspambots	Mar 5 22:24:47 server sshd[3704294]: Failed password for invalid user leonard from 159.89.134.64 port 56084 ssh2 Mar 5 22:30:48 server sshd[3714235]: Failed password for invalid user temp from 159.89.134.64 port 56452 ssh2 Mar 5 22:36:42 server sshd[3723222]: Failed password for root from 159.89.134.64 port 56822 ssh2	2020-03-06 05:56:57
159.89.134.199	attackspambots	sshd jail - ssh hack attempt	2020-02-20 21:59:47
159.89.134.64	attackspam	Feb 12 23:20:21 MK-Soft-VM8 sshd[7008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Feb 12 23:20:23 MK-Soft-VM8 sshd[7008]: Failed password for invalid user mycat from 159.89.134.64 port 49404 ssh2 ...	2020-02-13 06:53:41
159.89.134.199	attackbotsspam	2020-02-12T04:07:00.9456061495-001 sshd[45885]: Invalid user openproject from 159.89.134.199 port 57238 2020-02-12T04:07:00.9493941495-001 sshd[45885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 2020-02-12T04:07:00.9456061495-001 sshd[45885]: Invalid user openproject from 159.89.134.199 port 57238 2020-02-12T04:07:02.9104471495-001 sshd[45885]: Failed password for invalid user openproject from 159.89.134.199 port 57238 ssh2 2020-02-12T04:09:57.1293231495-001 sshd[46116]: Invalid user wut from 159.89.134.199 port 56838 2020-02-12T04:09:57.1334161495-001 sshd[46116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 2020-02-12T04:09:57.1293231495-001 sshd[46116]: Invalid user wut from 159.89.134.199 port 56838 2020-02-12T04:09:59.0594651495-001 sshd[46116]: Failed password for invalid user wut from 159.89.134.199 port 56838 ssh2 2020-02-12T04:12:54.5466921495-001 sshd[46237]: ...	2020-02-12 21:10:20
159.89.134.64	attackspambots	Automatic report - Banned IP Access	2020-02-09 18:39:59
159.89.134.64	attackbots	Feb 8 13:00:27 firewall sshd[26812]: Invalid user ndk from 159.89.134.64 Feb 8 13:00:29 firewall sshd[26812]: Failed password for invalid user ndk from 159.89.134.64 port 59824 ssh2 Feb 8 13:03:33 firewall sshd[26912]: Invalid user pus from 159.89.134.64 ...	2020-02-09 01:02:28
159.89.134.199	attackbots	Unauthorized connection attempt detected from IP address 159.89.134.199 to port 2220 [J]	2020-02-01 04:00:58
159.89.134.199	attackspambots	Jan 11 07:58:50 MK-Soft-VM7 sshd[7931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 Jan 11 07:58:52 MK-Soft-VM7 sshd[7931]: Failed password for invalid user xvu from 159.89.134.199 port 51988 ssh2 ...	2020-01-11 14:59:33
159.89.134.64	attack	Invalid user nasuka from 159.89.134.64 port 50182	2020-01-04 04:32:23
159.89.134.64	attack	Invalid user nozomy from 159.89.134.64 port 40956	2020-01-03 14:13:42
159.89.134.64	attackspambots	Jan 2 06:28:53 zeus sshd[24997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Jan 2 06:28:55 zeus sshd[24997]: Failed password for invalid user fraidenburg from 159.89.134.64 port 57516 ssh2 Jan 2 06:30:27 zeus sshd[25079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Jan 2 06:30:29 zeus sshd[25079]: Failed password for invalid user bindi from 159.89.134.64 port 44710 ssh2	2020-01-02 14:51:19
159.89.134.199	attackbotsspam	$f2bV_matches	2020-01-01 09:18:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.89.134.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44089
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.89.134.3.			IN	A

;; AUTHORITY SECTION:
.			167	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063000 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 30 15:46:29 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 3.134.89.159.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.134.89.159.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.102.51.16	attack	TCP (SYN) 94.102.51.16:41772 -> port 44438, len 44	2020-07-07 18:54:03
192.241.220.8	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-07 18:31:48
111.67.202.196	attackspambots	Jul 7 13:11:28 webhost01 sshd[24969]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.202.196 Jul 7 13:11:30 webhost01 sshd[24969]: Failed password for invalid user david from 111.67.202.196 port 48094 ssh2 ...	2020-07-07 18:39:34
157.245.243.14	attackbotsspam	157.245.243.14 - - \[07/Jul/2020:11:51:41 +0200\] "POST /wp-login.php HTTP/1.0" 200 2797 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.245.243.14 - - \[07/Jul/2020:11:51:45 +0200\] "POST /wp-login.php HTTP/1.0" 200 2724 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.245.243.14 - - \[07/Jul/2020:11:51:49 +0200\] "POST /wp-login.php HTTP/1.0" 200 2762 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-07-07 18:56:15
190.8.82.58	attackbots	Unauthorized connection attempt from IP address 190.8.82.58 on Port 445(SMB)	2020-07-07 18:39:53
124.13.14.202	attack	Automatic report - XMLRPC Attack	2020-07-07 18:40:14
222.186.180.17	attackspam	Jul 7 11:30:49 gestao sshd[32485]: Failed password for root from 222.186.180.17 port 34906 ssh2 Jul 7 11:30:53 gestao sshd[32485]: Failed password for root from 222.186.180.17 port 34906 ssh2 Jul 7 11:30:56 gestao sshd[32485]: Failed password for root from 222.186.180.17 port 34906 ssh2 Jul 7 11:31:01 gestao sshd[32485]: Failed password for root from 222.186.180.17 port 34906 ssh2 ...	2020-07-07 18:38:30
79.137.76.15	attack	2020-07-07T06:30:24.116882shield sshd\[11187\]: Invalid user yslee from 79.137.76.15 port 58201 2020-07-07T06:30:24.120877shield sshd\[11187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.ip-79-137-76.eu 2020-07-07T06:30:25.933737shield sshd\[11187\]: Failed password for invalid user yslee from 79.137.76.15 port 58201 ssh2 2020-07-07T06:33:26.708033shield sshd\[12677\]: Invalid user manjaro from 79.137.76.15 port 56041 2020-07-07T06:33:26.711757shield sshd\[12677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.ip-79-137-76.eu	2020-07-07 18:37:33
118.25.152.231	attackbots	2020-07-07T02:58:12.148942morrigan.ad5gb.com sshd[2856549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.152.231 user=root 2020-07-07T02:59:27.410832morrigan.ad5gb.com sshd[2857223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.152.231	2020-07-07 18:36:41
45.122.220.157	attack	45.122.220.157 - - [07/Jul/2020:04:48:05 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.122.220.157 - - [07/Jul/2020:04:48:08 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 45.122.220.157 - - [07/Jul/2020:04:48:10 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-07 18:49:25
49.234.99.246	attack	2020-07-07T05:44:50.029938vps751288.ovh.net sshd\[22816\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 user=root 2020-07-07T05:44:52.073189vps751288.ovh.net sshd\[22816\]: Failed password for root from 49.234.99.246 port 43020 ssh2 2020-07-07T05:48:00.656250vps751288.ovh.net sshd\[22832\]: Invalid user denis from 49.234.99.246 port 58406 2020-07-07T05:48:00.665515vps751288.ovh.net sshd\[22832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 2020-07-07T05:48:02.793777vps751288.ovh.net sshd\[22832\]: Failed password for invalid user denis from 49.234.99.246 port 58406 ssh2	2020-07-07 18:59:13
111.229.33.187	attack	Jul 7 06:11:29 vps647732 sshd[17146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.33.187 Jul 7 06:11:30 vps647732 sshd[17146]: Failed password for invalid user mia from 111.229.33.187 port 44242 ssh2 ...	2020-07-07 18:50:49
95.85.12.122	attackspam	Jul 7 08:34:16 vlre-nyc-1 sshd\[3983\]: Invalid user samurai from 95.85.12.122 Jul 7 08:34:16 vlre-nyc-1 sshd\[3983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.12.122 Jul 7 08:34:18 vlre-nyc-1 sshd\[3983\]: Failed password for invalid user samurai from 95.85.12.122 port 28219 ssh2 Jul 7 08:37:05 vlre-nyc-1 sshd\[4051\]: Invalid user ts3 from 95.85.12.122 Jul 7 08:37:05 vlre-nyc-1 sshd\[4051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.12.122 ...	2020-07-07 18:25:21
36.57.64.71	attack	Jul 7 08:48:25 srv01 postfix/smtpd\[18806\]: warning: unknown\[36.57.64.71\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 08:48:36 srv01 postfix/smtpd\[18806\]: warning: unknown\[36.57.64.71\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 08:48:52 srv01 postfix/smtpd\[18806\]: warning: unknown\[36.57.64.71\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 08:49:11 srv01 postfix/smtpd\[18806\]: warning: unknown\[36.57.64.71\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 7 08:49:23 srv01 postfix/smtpd\[18806\]: warning: unknown\[36.57.64.71\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-07 19:02:12
194.180.224.112	attackbotsspam	2020-07-07T05:48:04.003906morrigan.ad5gb.com sshd[2923963]: Connection closed by 194.180.224.112 port 37436 [preauth] 2020-07-07T05:48:06.458964morrigan.ad5gb.com sshd[2923965]: Invalid user admin from 194.180.224.112 port 45110	2020-07-07 18:51:13

Recently Reported IPs

180.76.134.248	169.229.222.136	186.182.64.169	89.248.167.60
169.229.199.215	211.126.87.171	137.226.196.7	137.226.195.189
137.226.166.201	137.226.147.39	137.226.17.85	193.233.228.29
187.136.85.135	47.188.48.3	104.144.190.72	137.226.183.103
137.226.129.12	137.226.154.0	137.226.166.128	137.226.181.227