This IP address has been reported a total of
46
times from
36 distinct
sources.
64.89.162.149 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Honeypot hit: HTTP/1.1 request on 60001
GET /
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebK ...
show moreHoneypot hit: HTTP/1.1 request on 60001
GET /
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36; 60001 [1] TCP
show less
Blocked by UFW (TCP on 60001)
Source port: 52603
TTL: 238
Packet length: 40
TOS: 0x00
This report ( ...
show moreBlocked by UFW (TCP on 60001)
Source port: 52603
TTL: 238
Packet length: 40
TOS: 0x00
This report (for 64.89.162.149) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
2026-06-08T18:44:29.942680+0000 inbound port scan detected by Suricata. src=64.89.162.149:38035 dst= ...
show more2026-06-08T18:44:29.942680+0000 inbound port scan detected by Suricata. src=64.89.162.149:38035 dst=51.255.207.147:80 proto=TCP. signature="ET DROP Spamhaus DROP Listed Traffic Inbound group 9" category="Misc Attack" sid=2400008 reason=blocklist_inbound.
show less
Blocked by UFW (TCP on 80)
Source port: 56891
TTL: 237
Packet length: 40
TOS: 0x00
This report (for ...
show moreBlocked by UFW (TCP on 80)
Source port: 56891
TTL: 237
Packet length: 40
TOS: 0x00
This report (for 64.89.162.149) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
Blocked by UFW (TCP on 23)
Source port: 56018
TTL: 241
Packet length: 40
TOS: 0x00
This report (for ...
show moreBlocked by UFW (TCP on 23)
Source port: 56018
TTL: 241
Packet length: 40
TOS: 0x00
This report (for 64.89.162.149) was generated by:
https://github.com/sefinek/UFW-AbuseIPDB-Reporter
show less
2026-06-08T10:10:55.620650+0000 inbound port scan detected by Suricata. src=64.89.162.149:44710 dst= ...
show more2026-06-08T10:10:55.620650+0000 inbound port scan detected by Suricata. src=64.89.162.149:44710 dst=51.68.231.122:60001 proto=TCP. signature="ET DROP Spamhaus DROP Listed Traffic Inbound group 9" category="Misc Attack" sid=2400008 reason=blocklist_inbound.
show less
Honeypot [fra-de-honeypot]: HTTP/1.1 request on 60001
GET /
User-Agent: Mozilla/5.0 (X11; Linux x86 ...
show moreHoneypot [fra-de-honeypot]: HTTP/1.1 request on 60001
GET /
User-Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/126.0.0.0 Safari/537.36; 60001 [1] TCP
Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB
show less
06/08/2026-13:40:51.252378 [Drop] [**] [1:921373:1] Suricata Dibuat Gemini TCP SYN port scanner - W ...
show more06/08/2026-13:40:51.252378 [Drop] [**] [1:921373:1] Suricata Dibuat Gemini TCP SYN port scanner - Win 65535 [**] [Classification: (null)] [Priority: 3] {TCP} 64.89.162.149:36880 -> 103.166.156.58:60001
...
show less
2026-06-08T06:33:18.803187+0000 inbound port scan detected by Suricata. src=64.89.162.149:60103 dst= ...
show more2026-06-08T06:33:18.803187+0000 inbound port scan detected by Suricata. src=64.89.162.149:60103 dst=51.68.231.122:23 proto=TCP. signature="ET DROP Spamhaus DROP Listed Traffic Inbound group 9" category="Misc Attack" sid=2400008 reason=blocklist_inbound.
show less
Port Scan
Showing 1 to
15
of 46 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ