JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.163.145.38

89.163.145.38 was found in our database!

This IP was reported 670 times. Confidence of Abuse is 100%: ?

100%

ISP	WIIT AG
Usage Type	Data Center/Web Hosting/Transit
ASN	AS24961
Hostname(s)	ve291.venus.dedi.server-hosting.expert
Domain Name	wiit.cloud
Country	🇩🇪 Germany
City	Essen, North Rhine-Westphalia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.163.145.38

Whois 89.163.145.38

IP Abuse Reports for 89.163.145.38:

This IP address has been reported a total of 670 times from 149 distinct sources. 89.163.145.38 was first reported on April 4th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 blizzard	2026-06-04 00:51:11 (2 hours ago)	Jun 4 00:51:10 uptime-kuma sshd[1917681]: Disconnected from authenticating user root 89.163.145.38 ... show more Jun 4 00:51:10 uptime-kuma sshd[1917681]: Disconnected from authenticating user root 89.163.145.38 port 14680 [preauth] ... show less	Brute-Force SSH
🇺🇸 cwytech	2026-06-03 23:48:10 (3 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/tpot-ssh-crit.	Brute-Force SSH
🇰🇷 2048	2026-06-03 23:08:42 (4 hours ago)	2026-06-04T08:08:41.231448+09:00 no5 sshd[1247803]: Disconnected from authenticating user root 89.16 ... show more 2026-06-04T08:08:41.231448+09:00 no5 sshd[1247803]: Disconnected from authenticating user root 89.163.145.38 port 47316 [preauth] ... show less	Brute-Force SSH
🇺🇸 ShadowWhisperer	2026-06-03 22:43:11 (4 hours ago)	SSH fingerprint.	Port Scan
🇺🇸 abenage	2026-06-03 22:41:51 (4 hours ago)	2026-06-03T16:41:50.828925[redacted] sshd[1234569]: Disconnected from authenticating user root 89.16 ... show more 2026-06-03T16:41:50.828925[redacted] sshd[1234569]: Disconnected from authenticating user root 89.163.145.38 port 36640 [preauth] show less	Brute-Force SSH
🇨🇳 pengpeng	2026-06-03 22:31:58 (4 hours ago)	monitor: on VM-0-7-ubuntu \| port: 22 \| ttl: 251 script: github.com/sefinek/UFW-AbuseIPDB-Reporter	Port Scan SSH
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-03 22:25:08 (4 hours ago)	Honeypot hit: Unauthorized connection attempt detected on 22/SSH • Client: SSH-2.0-libssh2_1.11.0	Hacking SSH Port Scan
Anonymous	2026-06-03 04:55:13 (22 hours ago)	Repeated SSH brute force and user enumeration attempts against a secured web server. Multiple failed ... show more Repeated SSH brute force and user enumeration attempts against a secured web server. Multiple failed authentication attempts from this IP across an extended period. show less	Brute-Force SSH
🇳🇴 thorn5011	2026-06-03 00:50:00 (1 day ago)	Cowrie Honeypot: 2 unauthorised SSH/Telnet login attempts between 2026-06-03T00:50:00Z and 2026-06-0 ... show more Cowrie Honeypot: 2 unauthorised SSH/Telnet login attempts between 2026-06-03T00:50:00Z and 2026-06-03T00:50:00Z show less	Brute-Force SSH
🇫🇮 FlamingMojo	2026-06-03 00:08:05 (1 day ago)	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2026-06-03T00:08:05Z	Brute-Force SSH
🇪🇸 tg_de	2026-06-02 22:54:51 (1 day ago)	14 attempts since 10.05.2026 12:57:40 UTC - last one: 2026-06-03T00:54:51.979288+02:00 beta sshd-ses ... show more 14 attempts since 10.05.2026 12:57:40 UTC - last one: 2026-06-03T00:54:51.979288+02:00 beta sshd-session[472725]: Disconnected from authenticating user root 89.163.145.38 port 21914 [preauth] show less	Brute-Force SSH
🇦🇺 neilwal	2026-06-02 22:10:14 (1 day ago)	Honeypot (Port 22) caught 89.163.145.38 trying: root:null; 345gs5662d34:345gs5662d34; root:3245gs566 ... show more Honeypot (Port 22) caught 89.163.145.38 trying: root:null; 345gs5662d34:345gs5662d34; root:3245gs5662d34; admin:admin; ubuntu:ubuntu; solana:solana; root:123456; proxyuser1:proxyuser1 show less	Brute-Force
🇰🇷 2048	2026-06-02 21:33:32 (1 day ago)	2026-06-03T06:33:31.076505+09:00 no2 sshd[2351107]: Disconnected from authenticating user root 89.16 ... show more 2026-06-03T06:33:31.076505+09:00 no2 sshd[2351107]: Disconnected from authenticating user root 89.163.145.38 port 6130 [preauth] ... show less	Brute-Force SSH
🇱🇻 alliance	2026-06-02 21:20:26 (1 day ago)	Jun 3 00:20:22 *** sshd[2834743]: User root from 89.163.145.38 not allowed because not listed in ... show more Jun 3 00:20:22 *** sshd[2834743]: User root from 89.163.145.38 not allowed because not listed in AllowUsers show less	Brute-Force SSH
🇪🇸 tg_de	2026-06-02 19:29:04 (1 day ago)	13 attempts since 10.05.2026 12:57:40 UTC - last one: 2026-06-02T21:29:04.530697+02:00 beta sshd-ses ... show more 13 attempts since 10.05.2026 12:57:40 UTC - last one: 2026-06-02T21:29:04.530697+02:00 beta sshd-session[469146]: Disconnected from authenticating user root 89.163.145.38 port 38148 [preauth] show less	Brute-Force SSH

Showing 1 to 15 of 670 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 165.154.206.139

🇩🇪 139.59.151.64

🇳🇱 91.124.209.51

🇨🇳 49.72.111.25

🇺🇸 20.65.194.87

🇬🇧 188.240.59.61

🇺🇸 185.223.152.184

🇺🇸 147.185.132.204

🇨🇳 123.145.9.174

🇨🇳 106.117.117.91

🇺🇸 64.62.156.152

🇨🇳 61.53.1.98

🇨🇳 14.103.118.167

🇸🇬 2a09:bac5:55fd:25b9::3c2:4c

🇬🇧 2a06:4880:6000::8d

🇩🇪 213.209.159.158

🇸🇬 212.73.148.22

🇺🇸 205.210.31.40

🇳🇱 192.142.24.7

🇺🇸 185.255.100.197