JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.203.13.28

159.203.13.28 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 18%: ?

18%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.203.13.28

Whois 159.203.13.28

IP Abuse Reports for 159.203.13.28:

This IP address has been reported a total of 35 times from 20 distinct sources. 159.203.13.28 was first reported on October 10th 2023, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 sumnone	2026-05-10 07:29:26 (4 weeks ago)	Port probing on unauthorized port 6000	Port Scan Hacking Exploited Host
🇺🇸 xmission.com	2026-05-10 06:12:32 (4 weeks ago)	Blocked by UFW (TCP on 7777) Source port: 61006 TTL: 241 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 7777) Source port: 61006 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 159.203.13.28) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 xmission.com	2026-05-03 12:48:58 (1 month ago)	Blocked by UFW (TCP on 3306) Source port: 61014 TTL: 241 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 3306) Source port: 61014 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 159.203.13.28) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan SQL Injection
🇺🇸 trentwiles.com	2026-05-03 12:38:41 (1 month ago)	Unauthorized connection attempt detected from IP address 159.203.13.28 to port 1000 [SFO]	Port Scan
🇺🇸 MPL	2026-05-03 09:02:08 (1 month ago)	tcp/9000	Port Scan
🇳🇱 homeshowdomain.nl	2026-03-31 21:59:02 (2 months ago)	Auto-ban: >3000 req/min op 2026-03-31	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-03-31 20:43:29 (2 months ago)	3.364 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
Anonymous	2026-03-31 20:18:38 (2 months ago)	Fuzzing/Looking for credentials files.	Brute-Force Web App Attack
🇳🇱 Mangelot Hosting	2026-03-31 18:49:44 (2 months ago)	(PERMBLOCK) 159.203.13.28 (CA/Canada/-) has had more than 4 temp blocks in the last 86400 secs; Port ... show more (PERMBLOCK) 159.203.13.28 (CA/Canada/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs: show less	Port Scan
🇪🇸 masterguru	2026-03-31 13:43:54 (2 months ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (5001900-122)	Web App Attack
🇳🇱 Mangelot Hosting	2026-03-31 13:27:17 (2 months ago)	(wp_login_try) srv104 WP Login Attempt 159.203.13.28 (CA/Canada/-): 10 in the last 3600 secs; Ports: ... show more (wp_login_try) srv104 WP Login Attempt 159.203.13.28 (CA/Canada/-): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_CUSTOMTRIGGER; Logs: show less	Web App Attack
🇫🇷 masterguru	2026-03-31 03:19:57 (2 months ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 159.203.13.28 (CA/Canada/-): 2 in the ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 159.203.13.28 (CA/Canada/-): 2 in the last 3600 secs (0-196) show less	Hacking
🇩🇪 _ArminS_	2026-03-31 01:21:29 (2 months ago)	SP-Scan 61011:8090 detected 2026.03.31 03:21:29 blocked until 2026.05.19 20:24:16	Port Scan
🇺🇸 RAP	2026-03-31 01:05:53 (2 months ago)	2026-03-31 01:05:53 UTC Unauthorized activity to TCP port 8088. Web App	Port Scan Web App Attack
Anonymous	2026-03-31 01:01:22 (2 months ago)	2026-03-31T02:01:21.424730+01:00 vps kernel: [36659107.315030] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-03-31T02:01:21.424730+01:00 vps kernel: [36659107.315030] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=159.203.13.28 DST=54.37.14.118 LEN=44 TOS=0x00 PREC=0x00 TTL=235 ID=44383 PROTO=TCP SPT=61010 DPT=8808 WINDOW=1025 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇻🇳 14.191.183.1

🇨🇳 1.24.16.178

🇨🇳 221.198.82.52

🇨🇳 220.197.78.92

🇩🇪 151.243.11.245

🇸🇬 103.13.207.26

🇷🇴 92.118.39.236

🇩🇪 87.106.42.210

🇺🇸 65.49.1.27

🇨🇳 14.29.198.130

🇰🇷 3.37.225.248

🇺🇸 198.199.75.236

🇻🇳 171.224.173.159

🇺🇸 157.245.91.76

🇰🇷 118.33.113.91

🇺🇸 64.62.156.46

🇺🇦 46.149.191.249

🇳🇱 45.148.10.152

🇹🇷 31.210.51.154

🇨🇳 222.187.175.191