JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 64.89.161.91

64.89.161.91 was found in our database!

This IP was reported 40 times. Confidence of Abuse is 100%: ?

100%

ISP	Ghosty Networks LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS205759
Domain Name	ghostynetworks.com
Country	🇱🇺 Luxembourg
City	Luxembourg, Luxembourg

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 64.89.161.91

Whois 64.89.161.91

IP Abuse Reports for 64.89.161.91:

This IP address has been reported a total of 40 times from 25 distinct sources. 64.89.161.91 was first reported on June 28th 2026, and the most recent report was 31 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 MPL	2026-06-29 13:47:32 (31 minutes ago)	tcp ports: 10101,12231 (2 or more attempts)	Port Scan
🇳🇱 BIV	2026-06-29 13:17:02 (1 hour ago)	Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 31006. Automated tiere ... show more Honeypot multi-source hit. Sources: dshield:fw,tpot:P0f,tpot:Suricata. Ports: 31006. Automated tiered (T-Pot+DShield). show less	Port Scan Hacking
Anonymous	2026-06-29 12:44:42 (1 hour ago)	2026-06-29T16:14:32.570566+03:30 digitalogic sshd-session[1913374]: pam_unix(sshd:auth): authenticat ... show more 2026-06-29T16:14:32.570566+03:30 digitalogic sshd-session[1913374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.89.161.91 2026-06-29T16:14:34.100162+03:30 digitalogic sshd-session[1913374]: Failed password for invalid user aaron from 64.89.161.91 port 36256 ssh2 2026-06-29T16:14:34.703425+03:30 digitalogic sshd-session[1913374]: Disconnected from invalid user aaron 64.89.161.91 port 36256 [preauth] ... show less	Brute-Force SSH
🇺🇸 MPL	2026-06-29 11:01:02 (3 hours ago)	tcp/16652 (3 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-06-29 09:31:58 (4 hours ago)	Blocked by UFW (TCP on 1070) Source port: 53506 TTL: 48 Packet length: 52 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 1070) Source port: 53506 TTL: 48 Packet length: 52 TOS: 0x08 This report (for 64.89.161.91) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 essinghigh	2026-06-29 09:25:02 (4 hours ago)	IPS Detection: 64.89.161.91 -> DPT: 56816	Port Scan
🇫🇷 EDSL	2026-06-29 09:22:03 (4 hours ago)	[SRV-VPN1] Blocked by SysWarden Firewall (Port Scan / Probing)	Port Scan
Anonymous	2026-06-29 08:48:59 (5 hours ago)	2026-06-29T12:18:22.116652+03:30 digitalogic sshd-session[1865687]: Disconnected from authenticating ... show more 2026-06-29T12:18:22.116652+03:30 digitalogic sshd-session[1865687]: Disconnected from authenticating user root 64.89.161.91 port 29906 [preauth] 2026-06-29T12:18:47.222812+03:30 digitalogic sshd-session[1865739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.89.161.91 user=root 2026-06-29T12:18:48.780789+03:30 digitalogic sshd-session[1865739]: Failed password for root from 64.89.161.91 port 50480 ssh2 ... show less	Brute-Force SSH
Anonymous	2026-06-29 08:09:44 (6 hours ago)	2026-06-29T11:39:36.276122+03:30 digitalogic sshd-session[1858218]: pam_unix(sshd:auth): authenticat ... show more 2026-06-29T11:39:36.276122+03:30 digitalogic sshd-session[1858218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.89.161.91 2026-06-29T11:39:38.385633+03:30 digitalogic sshd-session[1858218]: Failed password for invalid user RPM from 64.89.161.91 port 44010 ssh2 2026-06-29T11:39:38.733406+03:30 digitalogic sshd-session[1858218]: Disconnected from invalid user RPM 64.89.161.91 port 44010 [preauth] ... show less	Brute-Force SSH
🇺🇸 MPL	2026-06-29 07:59:53 (6 hours ago)	tcp ports: 20004,856 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-06-29 07:37:47 (6 hours ago)	Blocked by UFW (TCP on 17463) Source port: 55129 TTL: 48 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 17463) Source port: 55129 TTL: 48 Packet length: 52 TOS: 0x08 This report (for 64.89.161.91) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 SMi-Web	2026-06-29 07:35:10 (6 hours ago)	Blocked by firewall on hugin [31227/tcp] \| Rule: Blocklist \| SPT: 55413 \| TTL: 55 \| LEN: 52 \| TOS: 0 ... show more Blocked by firewall on hugin [31227/tcp] \| Rule: Blocklist \| SPT: 55413 \| TTL: 55 \| LEN: 52 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-29 07:17:24 (7 hours ago)	tcp ports: 35822,20004 (2 or more attempts)	Port Scan
🇺🇸 xmission.com	2026-06-29 06:59:56 (7 hours ago)	Blocked by UFW (TCP on 20715) Source port: 51931 TTL: 47 Packet length: 52 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 20715) Source port: 51931 TTL: 47 Packet length: 52 TOS: 0x08 This report (for 64.89.161.91) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2026-06-29 06:28:01 (7 hours ago)	2026-06-29T09:57:52.935050+03:30 digitalogic sshd-session[1831574]: pam_unix(sshd:auth): authenticat ... show more 2026-06-29T09:57:52.935050+03:30 digitalogic sshd-session[1831574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.89.161.91 2026-06-29T09:57:55.030009+03:30 digitalogic sshd-session[1831574]: Failed password for invalid user user from 64.89.161.91 port 18566 ssh2 2026-06-29T09:57:55.180950+03:30 digitalogic sshd-session[1831574]: Disconnected from invalid user user 64.89.161.91 port 18566 [preauth] ... show less	Brute-Force SSH

Showing 1 to 15 of 40 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 40.71.90.11

🇳🇱 195.178.110.30

🇷🇴 193.46.255.86

🇵🇾 181.123.136.11

🇺🇸 170.254.178.93

🇦🇴 154.71.221.45

🇺🇸 104.192.205.181

🇧🇩 103.137.231.240

🇲🇲 103.81.113.10

🇨🇬 102.129.81.40

🇳🇱 84.80.92.113

🇹🇷 81.214.105.132

🇺🇸 44.215.219.236

🇪🇬 41.232.219.18

🇧🇪 34.62.155.84

🇮🇩 34.34.223.108

🇧🇷 191.6.81.140

🇲🇽 187.191.33.216

🇬🇧 178.79.131.86

🇧🇷 177.159.150.111