159.89.134.3 - IPInfo

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.89.134.199	attack	Apr 22 05:57:59 debian-2gb-nbg1-2 kernel: \[9786834.346340\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=159.89.134.199 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=25029 PROTO=TCP SPT=42001 DPT=29945 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-22 12:01:17
159.89.134.64	attack	Mar 29 06:05:33 mockhub sshd[7092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Mar 29 06:05:35 mockhub sshd[7092]: Failed password for invalid user import from 159.89.134.64 port 53202 ssh2 ...	2020-03-29 21:07:05
159.89.134.64	attackspam	Mar 6 03:39:25 eddieflores sshd\[31067\]: Invalid user hadoop from 159.89.134.64 Mar 6 03:39:25 eddieflores sshd\[31067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Mar 6 03:39:27 eddieflores sshd\[31067\]: Failed password for invalid user hadoop from 159.89.134.64 port 43492 ssh2 Mar 6 03:43:51 eddieflores sshd\[31413\]: Invalid user muie from 159.89.134.64 Mar 6 03:43:51 eddieflores sshd\[31413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64	2020-03-07 05:55:50
159.89.134.64	attackspambots	Mar 5 22:24:47 server sshd[3704294]: Failed password for invalid user leonard from 159.89.134.64 port 56084 ssh2 Mar 5 22:30:48 server sshd[3714235]: Failed password for invalid user temp from 159.89.134.64 port 56452 ssh2 Mar 5 22:36:42 server sshd[3723222]: Failed password for root from 159.89.134.64 port 56822 ssh2	2020-03-06 05:56:57
159.89.134.199	attackspambots	sshd jail - ssh hack attempt	2020-02-20 21:59:47
159.89.134.64	attackspam	Feb 12 23:20:21 MK-Soft-VM8 sshd[7008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Feb 12 23:20:23 MK-Soft-VM8 sshd[7008]: Failed password for invalid user mycat from 159.89.134.64 port 49404 ssh2 ...	2020-02-13 06:53:41
159.89.134.199	attackbotsspam	2020-02-12T04:07:00.9456061495-001 sshd[45885]: Invalid user openproject from 159.89.134.199 port 57238 2020-02-12T04:07:00.9493941495-001 sshd[45885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 2020-02-12T04:07:00.9456061495-001 sshd[45885]: Invalid user openproject from 159.89.134.199 port 57238 2020-02-12T04:07:02.9104471495-001 sshd[45885]: Failed password for invalid user openproject from 159.89.134.199 port 57238 ssh2 2020-02-12T04:09:57.1293231495-001 sshd[46116]: Invalid user wut from 159.89.134.199 port 56838 2020-02-12T04:09:57.1334161495-001 sshd[46116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 2020-02-12T04:09:57.1293231495-001 sshd[46116]: Invalid user wut from 159.89.134.199 port 56838 2020-02-12T04:09:59.0594651495-001 sshd[46116]: Failed password for invalid user wut from 159.89.134.199 port 56838 ssh2 2020-02-12T04:12:54.5466921495-001 sshd[46237]: ...	2020-02-12 21:10:20
159.89.134.64	attackspambots	Automatic report - Banned IP Access	2020-02-09 18:39:59
159.89.134.64	attackbots	Feb 8 13:00:27 firewall sshd[26812]: Invalid user ndk from 159.89.134.64 Feb 8 13:00:29 firewall sshd[26812]: Failed password for invalid user ndk from 159.89.134.64 port 59824 ssh2 Feb 8 13:03:33 firewall sshd[26912]: Invalid user pus from 159.89.134.64 ...	2020-02-09 01:02:28
159.89.134.199	attackbots	Unauthorized connection attempt detected from IP address 159.89.134.199 to port 2220 [J]	2020-02-01 04:00:58
159.89.134.199	attackspambots	Jan 11 07:58:50 MK-Soft-VM7 sshd[7931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.199 Jan 11 07:58:52 MK-Soft-VM7 sshd[7931]: Failed password for invalid user xvu from 159.89.134.199 port 51988 ssh2 ...	2020-01-11 14:59:33
159.89.134.64	attack	Invalid user nasuka from 159.89.134.64 port 50182	2020-01-04 04:32:23
159.89.134.64	attack	Invalid user nozomy from 159.89.134.64 port 40956	2020-01-03 14:13:42
159.89.134.64	attackspambots	Jan 2 06:28:53 zeus sshd[24997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Jan 2 06:28:55 zeus sshd[24997]: Failed password for invalid user fraidenburg from 159.89.134.64 port 57516 ssh2 Jan 2 06:30:27 zeus sshd[25079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Jan 2 06:30:29 zeus sshd[25079]: Failed password for invalid user bindi from 159.89.134.64 port 44710 ssh2	2020-01-02 14:51:19
159.89.134.199	attackbotsspam	$f2bV_matches	2020-01-01 09:18:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.89.134.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44089
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.89.134.3.			IN	A

;; AUTHORITY SECTION:
.			167	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022063000 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 30 15:46:29 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 3.134.89.159.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 3.134.89.159.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.222.42.160	attackspam	Unauthorized connection attempt from IP address 117.222.42.160 on Port 445(SMB)	2020-01-11 20:48:52
178.67.199.193	attackspam	Unauthorized connection attempt from IP address 178.67.199.193 on Port 445(SMB)	2020-01-11 21:04:03
193.32.163.123	attackspam	$f2bV_matches	2020-01-11 21:22:01
74.63.227.26	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 69 - port: 80 proto: TCP cat: Misc Attack	2020-01-11 20:53:19
132.232.77.15	attackspambots	$f2bV_matches	2020-01-11 20:45:46
152.136.106.94	attackbotsspam	$f2bV_matches	2020-01-11 21:25:59
110.43.34.48	attackspambots	Unauthorized connection attempt detected from IP address 110.43.34.48 to port 2220 [J]	2020-01-11 21:04:48
31.46.32.20	attackbotsspam	2020-01-11T13:11:53.504899beta postfix/smtpd[12990]: NOQUEUE: reject: RCPT from rev31-46-32-host20-ktv.furedkabel.hu[31.46.32.20]: 554 5.7.1 Service unavailable; Client host [31.46.32.20] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/31.46.32.20; from= to= proto=ESMTP helo= ...	2020-01-11 21:12:41
188.95.227.86	attack	Brute force SMTP login attempted. ...	2020-01-11 21:04:33
103.115.196.53	attackspambots	unauthorized connection attempt	2020-01-11 20:49:24
61.154.64.15	attackspambots	2020-01-10 22:46:06 dovecot_login authenticator failed for (mifig) [61.154.64.15]:59050 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=liushan@lerctr.org) 2020-01-10 22:46:13 dovecot_login authenticator failed for (gatuv) [61.154.64.15]:59050 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=liushan@lerctr.org) 2020-01-10 22:46:24 dovecot_login authenticator failed for (ldcnt) [61.154.64.15]:59050 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=liushan@lerctr.org) ...	2020-01-11 21:11:38
78.213.214.95	attackbots	$f2bV_matches	2020-01-11 21:02:41
122.51.162.201	attack	Jan 11 15:11:49 www sshd\[18787\]: Invalid user ubnt from 122.51.162.201 Jan 11 15:11:49 www sshd\[18787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.162.201 Jan 11 15:11:51 www sshd\[18787\]: Failed password for invalid user ubnt from 122.51.162.201 port 35180 ssh2 ...	2020-01-11 21:16:43
152.136.72.17	attackbotsspam	$f2bV_matches	2020-01-11 21:22:50
117.48.193.118	attackbots	2020-01-11 dovecot_login authenticator failed for $REMOVED$ \[117.48.193.118\]: 535 Incorrect authentication data $set_id=nologin$ 2020-01-11 dovecot_login authenticator failed for $REMOVED$ \[117.48.193.118\]: 535 Incorrect authentication data $set_id=sales@REMOVED$ 2020-01-11 dovecot_login authenticator failed for $REMOVED$ \[117.48.193.118\]: 535 Incorrect authentication data $set_id=sales$	2020-01-11 20:46:33

Recently Reported IPs

180.76.134.248	169.229.222.136	186.182.64.169	89.248.167.60
169.229.199.215	211.126.87.171	137.226.196.7	137.226.195.189
137.226.166.201	137.226.147.39	137.226.17.85	193.233.228.29
187.136.85.135	47.188.48.3	104.144.190.72	137.226.183.103
137.226.129.12	137.226.154.0	137.226.166.128	137.226.181.227