89.166.145.142

Basic Info

City: Ibbenbueren

Region: North Rhine-Westphalia

Country: Germany

Internet Service Provider: EWE TEL GmbH

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/89.166.145.142/ DE - 1H : (61) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN9145 IP : 89.166.145.142 CIDR : 89.166.128.0/17 PREFIX COUNT : 38 UNIQUE IP COUNT : 768768 WYKRYTE ATAKI Z ASN9145 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 DateTime : 2019-10-18 13:33:55 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-10-19 02:37:03

Type

Details

Datetime

attackspambots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/89.166.145.142/ 
 DE - 1H : (61)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : DE 
 NAME ASN : ASN9145 
 
 IP : 89.166.145.142 
 
 CIDR : 89.166.128.0/17 
 
 PREFIX COUNT : 38 
 
 UNIQUE IP COUNT : 768768 
 
 
 WYKRYTE ATAKI Z ASN9145 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 2 
 
 DateTime : 2019-10-18 13:33:55 
 
 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN  - data recovery

2019-10-19 02:37:03

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.166.145.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42317
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;89.166.145.142.			IN	A

;; AUTHORITY SECTION:
.			301	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101800 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 19 02:36:59 CST 2019
;; MSG SIZE  rcvd: 118

Host info

142.145.166.89.in-addr.arpa domain name pointer dyndsl-089-166-145-142.ewe-ip-backbone.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.145.166.89.in-addr.arpa	name = dyndsl-089-166-145-142.ewe-ip-backbone.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.165.106.128	attackspam	445/tcp 445/tcp [2019-11-12]2pkt	2019-11-14 13:53:29
182.52.214.148	attackspam	445/tcp 445/tcp [2019-11-12]2pkt	2019-11-14 13:47:30
139.219.0.29	attackbotsspam	Nov 14 05:55:54 jane sshd[30999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.0.29 Nov 14 05:55:56 jane sshd[30999]: Failed password for invalid user yoyo from 139.219.0.29 port 33728 ssh2 ...	2019-11-14 13:55:48
92.119.160.40	attack	Nov 14 05:07:22 h2177944 kernel: \[6579957.501552\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=20869 PROTO=TCP SPT=40109 DPT=4687 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:37:00 h2177944 kernel: \[6581735.617498\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=9360 PROTO=TCP SPT=40109 DPT=5387 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:38:52 h2177944 kernel: \[6581847.560056\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=20364 PROTO=TCP SPT=40109 DPT=3287 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:48:08 h2177944 kernel: \[6582402.965179\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=27249 PROTO=TCP SPT=40109 DPT=2788 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 14 05:56:47 h2177944 kernel: \[6582922.343254\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=92.119.160.40 DST=85.214.117.9	2019-11-14 13:21:31
114.4.240.154	attackbotsspam	445/tcp 445/tcp 1433/tcp [2019-11-07/14]3pkt	2019-11-14 13:40:13
222.186.169.192	attackspambots	SSHScan	2019-11-14 13:31:18
92.222.84.34	attack	Nov 14 05:56:11 tuxlinux sshd[9454]: Invalid user tiffany from 92.222.84.34 port 58602 Nov 14 05:56:11 tuxlinux sshd[9454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 Nov 14 05:56:11 tuxlinux sshd[9454]: Invalid user tiffany from 92.222.84.34 port 58602 Nov 14 05:56:11 tuxlinux sshd[9454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 ...	2019-11-14 13:44:56
51.68.123.198	attackspambots	Nov 14 06:25:33 vps58358 sshd\[4779\]: Invalid user www from 51.68.123.198Nov 14 06:25:35 vps58358 sshd\[4779\]: Failed password for invalid user www from 51.68.123.198 port 51290 ssh2Nov 14 06:29:18 vps58358 sshd\[4793\]: Invalid user m1 from 51.68.123.198Nov 14 06:29:19 vps58358 sshd\[4793\]: Failed password for invalid user m1 from 51.68.123.198 port 60114 ssh2Nov 14 06:33:01 vps58358 sshd\[4824\]: Invalid user apple from 51.68.123.198Nov 14 06:33:03 vps58358 sshd\[4824\]: Failed password for invalid user apple from 51.68.123.198 port 40708 ssh2 ...	2019-11-14 13:52:15
94.13.180.208	attackspambots	5500/tcp 5500/tcp 23/tcp [2019-11-03/14]3pkt	2019-11-14 13:19:42
185.162.235.107	attack	2019-11-14T05:54:49.499829mail01 postfix/smtpd[20795]: warning: unknown[185.162.235.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-14T05:55:07.419629mail01 postfix/smtpd[23837]: warning: unknown[185.162.235.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-14T05:58:46.156618mail01 postfix/smtpd[22031]: warning: unknown[185.162.235.107]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-14 13:33:32
167.114.97.209	attackbotsspam	Nov 14 05:51:36 lnxded63 sshd[3032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.97.209 Nov 14 05:51:37 lnxded63 sshd[3032]: Failed password for invalid user zhouzy from 167.114.97.209 port 38514 ssh2 Nov 14 05:56:43 lnxded63 sshd[3444]: Failed password for root from 167.114.97.209 port 47340 ssh2	2019-11-14 13:25:50
58.217.72.19	attackspambots	23/tcp 23/tcp [2019-11-12]2pkt	2019-11-14 13:59:22
129.211.108.202	attackspambots	Invalid user named from 129.211.108.202 port 35339 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.108.202 Failed password for invalid user named from 129.211.108.202 port 35339 ssh2 Invalid user scarberry from 129.211.108.202 port 53903 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.108.202	2019-11-14 13:29:22
218.92.0.139	attackspam	Failed password for root from 218.92.0.139 port 23750 ssh2 Failed password for root from 218.92.0.139 port 23750 ssh2 Failed password for root from 218.92.0.139 port 23750 ssh2 Failed password for root from 218.92.0.139 port 23750 ssh2 Failed password for root from 218.92.0.139 port 23750 ssh2	2019-11-14 13:59:46
201.143.119.14	attack	60001/tcp 60001/tcp [2019-11-11/14]2pkt	2019-11-14 13:42:50

Recently Reported IPs

64.173.110.154	75.24.120.51	73.43.70.228	41.224.166.67
46.235.42.170	223.167.204.194	35.198.117.118	109.64.76.139
54.251.47.139	101.237.218.15	194.61.24.68	192.124.96.83
113.0.48.135	153.137.96.2	118.126.65.207	107.241.151.227
221.33.221.89	111.124.71.32	199.167.54.31	188.26.119.151