45.89.14.130 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Austria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.89.141.88	attackbots	Sep 11 18:38:38 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:38:51 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:42:29 web01.agentur-b-2.de postfix/smtpd[1515031]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:42:42 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= prot	2020-09-13 01:38:42
45.89.141.88	attackbots	Sep 11 18:38:38 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:38:51 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:42:29 web01.agentur-b-2.de postfix/smtpd[1515031]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:42:42 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= prot	2020-09-12 17:38:20
45.89.141.88	attack	Sep 11 18:38:38 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:38:51 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:42:29 web01.agentur-b-2.de postfix/smtpd[1515031]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 11 18:42:42 web01.agentur-b-2.de postfix/smtpd[1492616]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= prot	2020-09-12 02:04:52
45.89.141.88	attack	Sep 10 01:24:09 web01.agentur-b-2.de postfix/smtpd[66922]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 10 01:25:49 web01.agentur-b-2.de postfix/smtpd[33570]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 10 01:28:28 web01.agentur-b-2.de postfix/smtpd[33570]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 10 01:28:56 web01.agentur-b-2.de postfix/smtpd[66988]: NOQUEUE: reject: RCPT from unknown[45.89.141.88]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ES	2020-09-11 17:56:49
45.89.140.112	attack	Nov 15 00:05:57 l01 sshd[496731]: reveeclipse mapping checking getaddrinfo for kollhdxdlp [45.89.140.112] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 15 00:05:57 l01 sshd[496731]: Invalid user koeninger from 45.89.140.112 Nov 15 00:05:57 l01 sshd[496731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.89.140.112 Nov 15 00:06:00 l01 sshd[496731]: Failed password for invalid user koeninger from 45.89.140.112 port 51544 ssh2 Nov 15 00:10:09 l01 sshd[497156]: reveeclipse mapping checking getaddrinfo for kollhdxdlp [45.89.140.112] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 15 00:10:09 l01 sshd[497156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.89.140.112 user=r.r Nov 15 00:10:11 l01 sshd[497156]: Failed password for r.r from 45.89.140.112 port 37968 ssh2 Nov 15 00:14:46 l01 sshd[497589]: reveeclipse mapping checking getaddrinfo for kollhdxdlp [45.89.140.112] failed - POSSIBLE BREAK-IN ATT........ -------------------------------	2019-11-17 03:06:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.89.14.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.89.14.130.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 21:23:21 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 130.14.89.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.14.89.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.149.43.38	attackspambots	SSHD brute force attack detected by fail2ban	2020-09-29 13:28:15
31.215.200.164	attackspambots	firewall-block, port(s): 445/tcp	2020-09-29 13:28:00
183.63.3.226	attackbots	Invalid user paulo from 183.63.3.226 port 47276	2020-09-29 13:34:31
199.192.24.188	attackbotsspam	Sep 29 03:56:17 ns382633 sshd\[7523\]: Invalid user nagios from 199.192.24.188 port 36056 Sep 29 03:56:17 ns382633 sshd\[7523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.192.24.188 Sep 29 03:56:19 ns382633 sshd\[7523\]: Failed password for invalid user nagios from 199.192.24.188 port 36056 ssh2 Sep 29 03:58:02 ns382633 sshd\[7646\]: Invalid user nagios from 199.192.24.188 port 44246 Sep 29 03:58:02 ns382633 sshd\[7646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.192.24.188	2020-09-29 13:09:49
192.35.168.224	attackbots	TCP (SYN) 192.35.168.224:59296 -> port 12120, len 44	2020-09-29 13:06:39
94.23.179.199	attack	Invalid user toor from 94.23.179.199 port 48097	2020-09-29 13:16:41
61.132.52.24	attack	Invalid user hue from 61.132.52.24 port 33496	2020-09-29 13:40:10
106.13.84.242	attack	2020-09-28T22:39:56.083375ks3355764 sshd[19445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.84.242 user=root 2020-09-28T22:39:57.987202ks3355764 sshd[19445]: Failed password for root from 106.13.84.242 port 36756 ssh2 ...	2020-09-29 13:31:43
119.45.213.145	attackspambots	SSH brutforce	2020-09-29 13:47:02
80.251.210.12	attackspambots	(sshd) Failed SSH login from 80.251.210.12 (US/United States/80.251.210.12.16clouds.com): 5 in the last 3600 secs	2020-09-29 13:24:49
64.225.116.59	attackbots	SSH brute force attempt	2020-09-29 13:46:11
202.147.192.242	attackspambots	Sep 29 05:18:46 vm0 sshd[8622]: Failed password for root from 202.147.192.242 port 54668 ssh2 ...	2020-09-29 13:41:15
41.67.48.101	attack	SSH Brute Force	2020-09-29 13:40:54
123.31.26.144	attack	Invalid user gera from 123.31.26.144 port 20448	2020-09-29 13:44:49
206.189.41.221	attackbots	[TueSep2902:55:56.5669092020][:error][pid19597:tid47081091880704][client206.189.41.221:64945][client206.189.41.221]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"136.243.224.50"][uri"/.env"][unique_id"X3KGHOs4W6HPiHytMjoaPwAAAMg"]\,referer:https://www.google.com/[TueSep2902:55:57.7687982020][:error][pid19637:tid47081108690688][client206.189.41.221:65014][client206.189.41.221]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx\^0\$"against"REQUEST_HEADERS:Content-Length"required.[file"/etc/apache2/conf.d/	2020-09-29 13:10:30

Recently Reported IPs

249.171.76.43	224.184.187.75	248.182.46.194	193.74.206.149
143.66.71.28	69.139.171.239	128.151.133.201	149.13.183.27
52.170.72.254	12.250.241.2	21.194.6.52	217.201.198.50
192.23.87.139	146.234.233.162	7.108.117.8	244.253.54.221
17.71.116.244	193.185.81.237	191.4.97.22	230.248.253.242