89.163.134.246

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: myLoc managed IT AG

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	89.163.134.246 - - [24/Aug/2020:16:10:43 +0200] "POST /wp-login.php HTTP/1.1" 200 5920 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.163.134.246 - - [24/Aug/2020:16:10:45 +0200] "POST /wp-login.php HTTP/1.1" 200 5911 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.163.134.246 - - [24/Aug/2020:16:20:40 +0200] "POST /wp-login.php HTTP/1.1" 200 5416 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.163.134.246 - - [24/Aug/2020:16:20:41 +0200] "POST /wp-login.php HTTP/1.1" 200 5423 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 89.163.134.246 - - [24/Aug/2020:16:20:42 +0200] "POST /wp-login.php HTTP/1.1" 200 5421 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-25 01:24:11

Type

Details

Datetime

attackspambots

89.163.134.246 - - [24/Aug/2020:16:10:43 +0200] "POST /wp-login.php HTTP/1.1" 200 5920 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
89.163.134.246 - - [24/Aug/2020:16:10:45 +0200] "POST /wp-login.php HTTP/1.1" 200 5911 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
89.163.134.246 - - [24/Aug/2020:16:20:40 +0200] "POST /wp-login.php HTTP/1.1" 200 5416 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
89.163.134.246 - - [24/Aug/2020:16:20:41 +0200] "POST /wp-login.php HTTP/1.1" 200 5423 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
89.163.134.246 - - [24/Aug/2020:16:20:42 +0200] "POST /wp-login.php HTTP/1.1" 200 5421 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-08-25 01:24:11

Comments on same subnet:

IP	Type	Details	Datetime
89.163.134.171	attack	Aug 28 14:15:40 electroncash sshd[43160]: Invalid user consulta from 89.163.134.171 port 58704 Aug 28 14:15:40 electroncash sshd[43160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.163.134.171 Aug 28 14:15:40 electroncash sshd[43160]: Invalid user consulta from 89.163.134.171 port 58704 Aug 28 14:15:42 electroncash sshd[43160]: Failed password for invalid user consulta from 89.163.134.171 port 58704 ssh2 Aug 28 14:18:08 electroncash sshd[43800]: Invalid user school from 89.163.134.171 port 38112 ...	2020-08-29 01:01:55
89.163.134.171	attackbots	Aug 28 03:43:44 h2779839 sshd[29329]: Invalid user fabienne from 89.163.134.171 port 39746 Aug 28 03:43:44 h2779839 sshd[29329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.163.134.171 Aug 28 03:43:44 h2779839 sshd[29329]: Invalid user fabienne from 89.163.134.171 port 39746 Aug 28 03:43:46 h2779839 sshd[29329]: Failed password for invalid user fabienne from 89.163.134.171 port 39746 ssh2 Aug 28 03:47:14 h2779839 sshd[29593]: Invalid user elemental from 89.163.134.171 port 52826 Aug 28 03:47:14 h2779839 sshd[29593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.163.134.171 Aug 28 03:47:14 h2779839 sshd[29593]: Invalid user elemental from 89.163.134.171 port 52826 Aug 28 03:47:16 h2779839 sshd[29593]: Failed password for invalid user elemental from 89.163.134.171 port 52826 ssh2 Aug 28 03:50:41 h2779839 sshd[29843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= ...	2020-08-28 09:59:51
89.163.134.171	attack	Aug 27 15:38:10 game-panel sshd[11463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.163.134.171 Aug 27 15:38:12 game-panel sshd[11463]: Failed password for invalid user cgp from 89.163.134.171 port 39102 ssh2 Aug 27 15:41:38 game-panel sshd[11747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.163.134.171	2020-08-28 00:01:31
89.163.134.171	attackspam	Aug 24 07:26:36 host sshd[28292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps1994254.fastwebserver.de user=root Aug 24 07:26:38 host sshd[28292]: Failed password for root from 89.163.134.171 port 46716 ssh2 ...	2020-08-24 14:56:37
89.163.134.171	attackspam	SSH Brute-Forcing (server1)	2020-08-23 18:48:08
89.163.134.176	attackspambots	Spam	2020-05-26 01:09:47
89.163.134.134	attack	Received: from sanity.politice.de (sanity.politice.de [89.163.134.134]) by mxdrop305.xs4all.net (8.14.9/8.14.9/Debian-xs4all~5) with ESMTP id 02AF1YXM010130 for <<............>@xs4all.nl>; Tue, 10 Mar 2020 16:01:35 +0100 Message-Id: <202003101501.02AF1YXM010130@mxdrop305.xs4all.net> Received: from localhost (127.0.0.1) by sanity.politice.de id s8V4Xm4k0 for <<............>@xs4all.nl>; Tue, 10 Mar 2020 15:01:34 +0000 (UTC) (envelope-from <<>>) From: "Jumbo.NL" Subject: Uw code =?UTF-8?B?TsKwNkgxMTU4MDE5MzA2OA==?= is beschikbaar To: <............>@xs4all.nl Date: Tue, 10 Mar 2020 15:01:34 +0000 (UTC) X-MSGID: 8656dc80a2c423b57358953e9a0beaef Content-Type: text/html; charset="ISO-8859-1" Content-Disposition: inline Content-Transfer-Encoding: 8bit	2020-03-11 21:01:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.163.134.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5328
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.163.134.246.			IN	A

;; AUTHORITY SECTION:
.			361	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082400 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 25 01:24:07 CST 2020
;; MSG SIZE  rcvd: 118

Host info

246.134.163.89.in-addr.arpa domain name pointer server07.kreitiv.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
246.134.163.89.in-addr.arpa	name = server07.kreitiv.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.68.112.196	attack	Unauthorized connection attempt detected from IP address 118.68.112.196 to port 23 [J]	2020-01-18 15:44:05
177.97.132.149	attackbotsspam	Unauthorized connection attempt detected from IP address 177.97.132.149 to port 80 [J]	2020-01-18 16:05:46
203.115.100.51	attackbots	Unauthorized connection attempt detected from IP address 203.115.100.51 to port 1433 [J]	2020-01-18 15:58:32
84.241.41.40	attackspam	Unauthorized connection attempt detected from IP address 84.241.41.40 to port 23 [J]	2020-01-18 16:14:08
5.236.168.174	attackspam	Unauthorized connection attempt detected from IP address 5.236.168.174 to port 23 [J]	2020-01-18 16:18:58
35.137.198.190	attackbotsspam	Unauthorized connection attempt detected from IP address 35.137.198.190 to port 22 [J]	2020-01-18 15:56:32
222.186.173.183	attack	Jan 18 13:31:02 areeb-Workstation sshd[11487]: Failed password for root from 222.186.173.183 port 27154 ssh2 Jan 18 13:31:06 areeb-Workstation sshd[11487]: Failed password for root from 222.186.173.183 port 27154 ssh2 ...	2020-01-18 16:20:36
42.113.96.239	attackspambots	Unauthorized connection attempt detected from IP address 42.113.96.239 to port 80 [J]	2020-01-18 15:56:10
69.29.8.49	attackbotsspam	Unauthorized connection attempt detected from IP address 69.29.8.49 to port 8080 [J]	2020-01-18 16:14:59
76.167.233.54	attack	Unauthorized connection attempt detected from IP address 76.167.233.54 to port 81 [J]	2020-01-18 16:14:36
201.116.194.210	attack	Jan 18 08:43:17 dedicated sshd[25148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.116.194.210 user=root Jan 18 08:43:19 dedicated sshd[25148]: Failed password for root from 201.116.194.210 port 33572 ssh2	2020-01-18 15:59:15
125.78.61.128	attack	Unauthorized connection attempt detected from IP address 125.78.61.128 to port 9090 [T]	2020-01-18 16:08:22
93.138.170.180	attackbotsspam	Unauthorized connection attempt detected from IP address 93.138.170.180 to port 4567 [J]	2020-01-18 15:47:40
113.245.41.186	attackbotsspam	Unauthorized connection attempt detected from IP address 113.245.41.186 to port 80 [J]	2020-01-18 16:10:16
222.186.31.135	attack	Unauthorized connection attempt detected from IP address 222.186.31.135 to port 22 [J]	2020-01-18 15:57:59

Recently Reported IPs

45.77.160.77	162.243.130.67	182.122.18.54	89.253.226.90
36.70.215.130	101.69.163.110	14.201.46.219	27.214.4.224
197.210.36.237	43.239.200.121	206.198.151.202	49.231.254.194
183.63.3.226	19.7.238.97	192.141.32.4	103.217.232.94
64.137.120.71	176.61.40.49	113.142.72.2	173.234.151.92