JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.109.50.164

89.109.50.164 was found in our database!

This IP was reported 48 times. Confidence of Abuse is 88%: ?

88%

ISP	PJSC Rostelecom
Usage Type	Fixed Line ISP
ASN	AS12389
Hostname(s)	89-109-50-164.dynamic.mts-nn.ru
Domain Name	rt.ru
Country	🇷🇺 Russian Federation
City	Nizhniy Novgorod, Nizhny Novgorod Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.109.50.164

Whois 89.109.50.164

IP Abuse Reports for 89.109.50.164:

This IP address has been reported a total of 48 times from 33 distinct sources. 89.109.50.164 was first reported on April 11th 2022, and the most recent report was 16 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇭 Sawasdee	2026-06-24 07:12:05 (16 hours ago)	Port Scan ...	Port Scan
🇸🇪 NordhTech	2026-06-23 15:00:09 (1 day ago)	More than 3 malicious connection attempts, trying port(s) 37777/tcp, then blocked from services ...	Port Scan Hacking
🇩🇪 Admins@FBN	2026-06-23 11:14:40 (1 day ago)	FW-PortScan: Traffic Blocked srcport=1795 dstport=37777	Port Scan
🇩🇪 bescared	2026-06-23 10:56:27 (1 day ago)	F2B - Malicious activity detected. Excessive port scans. -151302cd-	Port Scan
🇩🇪 zupan	2026-06-23 09:08:28 (1 day ago)	Blocked by UFW on vps [37777/tcp] \| SPT: 1795 \| TTL: 240 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on vps [37777/tcp] \| SPT: 1795 \| TTL: 240 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 centurion	2026-06-23 07:57:12 (1 day ago)	Blocked by UFW on ns02 [37777/tcp] Source port: 1795 TTL: 243 Packet length: 44 TOS: 0x00 This repo ... show more Blocked by UFW on ns02 [37777/tcp] Source port: 1795 TTL: 243 Packet length: 44 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 ValtonTahiri	2026-06-23 06:43:03 (1 day ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=89.109.50.164; proto=TCP; source_port=1795; target_port=37777; flags=SYN show less	Port Scan
🇩🇪 David Ferneding	2026-06-23 06:40:21 (1 day ago)	Blocked by UFW (TCP on 37777) Source port: 1795 TTL: 245 Packet length: 44 TOS: 0x00 This report (f ... show more Blocked by UFW (TCP on 37777) Source port: 1795 TTL: 245 Packet length: 44 TOS: 0x00 This report (for 89.109.50.164) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 oijon.net	2026-06-18 13:14:47 (6 days ago)	Thu Jun 18 09:14:24 2026 [pid 3745236] [admin] FAIL LOGIN: Client "89.109.50.164" Thu Jun 18 09:14:3 ... show more Thu Jun 18 09:14:24 2026 [pid 3745236] [admin] FAIL LOGIN: Client "89.109.50.164" Thu Jun 18 09:14:34 2026 [pid 3745243] [admin] FAIL LOGIN: Client "89.109.50.164" Thu Jun 18 09:14:38 2026 [pid 3745246] [admin] FAIL LOGIN: Client "89.109.50.164" Thu Jun 18 09:14:42 2026 [pid 3745251] [admin] FAIL LOGIN: Client "89.109.50.164" Thu Jun 18 09:14:46 2026 [pid 3745270] [admin] FAIL LOGIN: Client "89.109.50.164" ... show less	FTP Brute-Force Brute-Force
Anonymous	2026-06-18 12:00:30 (6 days ago)	Jun 18 08:00:29 localhost kernel: [110129314.023952] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 18 08:00:29 localhost kernel: [110129314.023952] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=89.109.50.164 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=48340 PROTO=TCP SPT=1841 DPT=37777 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 18 08:00:29 localhost kernel: [110129314.023977] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=89.109.50.164 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=48340 PROTO=TCP SPT=1841 DPT=37777 SEQ=134827835 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (02040218) Jun 18 08:00:29 localhost kernel: [110129314.030992] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=89.109.50.164 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=48340 PROTO=TCP SPT=1841 DPT=37777 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 18 08:00:29 localhost kernel: [110129314.030997] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=89.109.50.164 DST=[mungedIP2 show less	Port Scan
🇺🇸 Cyber Crusader	2026-06-18 04:50:01 (6 days ago)	Hundreds of Attempts (at least) to Connect to and Access Firewall Ports	Port Scan Hacking Brute-Force
🇳🇱 donarev419	2026-06-17 01:47:08 (1 week ago)	Connection to port 21 with data transfer. Data preview: GET / HTTP/1.1 User-Agent: Mozilla/5.0 (X11 ... show more Connection to port 21 with data transfer. Data preview: GET / HTTP/1.1 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:35.0) Gecko/20100101 Firefox/35.0 Ho show less	Port Scan Hacking
Anonymous	2026-06-16 06:38:43 (1 week ago)	unsolicited connect TCP dport 37777 (sport 1812)	Hacking
🇩🇪 pcpiefke	2026-06-14 13:25:35 (1 week ago)	(ftpd) Failed FTP login from 89.109.50.164 (RU/Russia/89-109-50-164.dynamic.mts-nn.ru)	FTP Brute-Force Brute-Force
🇩🇪 dispaisyenterprises	2026-06-12 10:34:56 (1 week ago)	Honeypot [fra-de-honeypot]: Unauthorized traffic (32 bytes of payload); 37777 [4] TCP Reported by Di ... show more Honeypot [fra-de-honeypot]: Unauthorized traffic (32 bytes of payload); 37777 [4] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Port Scan

Showing 1 to 15 of 48 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 206.0.69.121

🇯🇵 203.25.124.100

🇺🇸 172.214.104.48

🇩🇪 142.132.219.111

🇮🇩 103.160.213.137

🇭🇰 101.36.107.233

🇸🇬 45.78.204.246

🇺🇸 31.56.178.132

🇺🇸 20.55.3.202

🇧🇷 205.210.31.246

🇳🇱 176.65.139.42

🇵🇰 175.107.36.112

🇨🇳 117.50.177.222

🇨🇳 111.228.2.14

🇳🇴 93.89.113.60

🇬🇧 13.42.102.62

🇯🇵 168.138.195.242

🇫🇷 91.231.89.250

🇲🇾 47.250.123.71

🇳🇱 176.65.139.181