This IP address has been reported a total of
651
times from
153 distinct
sources.
89.42.231.160 was first reported on
, and the most recent report was
.
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
2026-06-12T05:45:25.683414-03:00 web sshd[875248]: Disconnected from authenticating user root 89.42. ...
show more2026-06-12T05:45:25.683414-03:00 web sshd[875248]: Disconnected from authenticating user root 89.42.231.160 port 41052 [preauth]
2026-06-12T13:31:46.886629-03:00 web sshd[937746]: Disconnected from authenticating user root 89.42.231.160 port 53398 [preauth]
2026-06-12T18:55:06.680210-03:00 web sshd[980910]: Disconnected from authenticating user root 89.42.231.160 port 62236 [preauth]
...
show less
2026-06-12T18:05:40.177742+0000 inbound port scan detected by Suricata. src=89.42.231.160:48002 dst= ...
show more2026-06-12T18:05:40.177742+0000 inbound port scan detected by Suricata. src=89.42.231.160:48002 dst=51.68.231.122:22 proto=TCP. signature="ET SCAN Potential SSH Scan" category="Attempted Information Leak" sid=2001219 reason=scan_signature.
show less
2026-06-13T01:53:22.841591+08:00 vps-ebd448c1 sshd-session[4132739]: Connection from 89.42.231.160 p ...
show more2026-06-13T01:53:22.841591+08:00 vps-ebd448c1 sshd-session[4132739]: Connection from 89.42.231.160 port 33380 on 51.79.161.204 port 22 rdomain ""
2026-06-13T01:53:23.864440+08:00 vps-ebd448c1 sshd-session[4132739]: Failed publickey for root from 89.42.231.160 port 33380 ssh2: RSA SHA256:MWzE/YGGFsJQf+Ra8aNTIX39POlf5LAx34M7L1fB81o
2026-06-13T01:53:24.032934+08:00 vps-ebd448c1 sshd-session[4132739]: Failed publickey for root from 89.42.231.160 port 33380 ssh2: RSA SHA256:4VzHuziFl2TuDEK1rHr/+BWtOHlIDRORw34iBflRB3A
show less
2026-06-13T01:05:42.967544+09:00 no1 sshd[2891553]: Disconnected from authenticating user root 89.42 ...
show more2026-06-13T01:05:42.967544+09:00 no1 sshd[2891553]: Disconnected from authenticating user root 89.42.231.160 port 50798 [preauth]
...
show less
2026-06-12T15:45:17.744050+00:00 mail sshd[51334]: User root from 89.42.231.160 not allowed because ...
show more2026-06-12T15:45:17.744050+00:00 mail sshd[51334]: User root from 89.42.231.160 not allowed because not listed in AllowUsers
...
show less
2026-06-13T00:39:09.726370+09:00 no3 sshd[2892814]: Disconnected from authenticating user root 89.42 ...
show more2026-06-13T00:39:09.726370+09:00 no3 sshd[2892814]: Disconnected from authenticating user root 89.42.231.160 port 13228 [preauth]
...
show less
2026-06-12T15:36:08.432118+00:00 thecount sshd[186939]: Disconnected from authenticating user root 8 ...
show more2026-06-12T15:36:08.432118+00:00 thecount sshd[186939]: Disconnected from authenticating user root 89.42.231.160 port 38644 [preauth]
...
show less
Jun 12 17:22:01 smtp sshd[1661070]: error: maximum authentication attempts exceeded for invalid user ...
show moreJun 12 17:22:01 smtp sshd[1661070]: error: maximum authentication attempts exceeded for invalid user root from 89.42.231.160 port 46396 ssh2 [preauth]
...
show less
2026-06-12T15:12:13.970494+0000 inbound port scan detected by Suricata. src=89.42.231.160:5354 dst=5 ...
show more2026-06-12T15:12:13.970494+0000 inbound port scan detected by Suricata. src=89.42.231.160:5354 dst=51.68.231.122:22 proto=TCP. signature="ET SCAN Potential SSH Scan" category="Attempted Information Leak" sid=2001219 reason=scan_signature.
show less
Port Scan
Showing 1 to
15
of 651 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ