JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.65.149.89

159.65.149.89 was found in our database!

This IP was reported 225 times. Confidence of Abuse is 10%: ?

10%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.65.149.89

Whois 159.65.149.89

IP Abuse Reports for 159.65.149.89:

This IP address has been reported a total of 225 times from 104 distinct sources. 159.65.149.89 was first reported on May 17th 2024, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 micropedro	2026-05-27 15:30:37 (1 week ago)	4 incidents: malicious activity. First: 2026-05-06 08:38, Last: 2026-05-27 11:30 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-05-06 08:38, Last: 2026-05-27 11:30 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-05-20 14:35:40 (2 weeks ago)	8 incidents: malicious activity. First: 2026-04-22 06:54, Last: 2026-05-20 10:35 UTC. Triggers: ufw- ... show more 8 incidents: malicious activity. First: 2026-04-22 06:54, Last: 2026-05-20 10:35 UTC. Triggers: ufw-repeater. show less	Port Scan
🇮🇳 evicky2002	2026-04-29 18:28:29 (1 month ago)	Confirmed malicious by STILWaters CTI (score=100)	Hacking Brute-Force SSH
🇺🇸 micropedro	2026-04-29 11:34:19 (1 month ago)	4 incidents: malicious activity. First: 2026-04-17 08:32, Last: 2026-04-29 07:34 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-04-17 08:32, Last: 2026-04-29 07:34 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-04-17 12:32:16 (1 month ago)	3 incidents: malicious activity. First: 2026-04-10 07:32, Last: 2026-04-17 08:32 UTC. Triggers: ufw- ... show more 3 incidents: malicious activity. First: 2026-04-10 07:32, Last: 2026-04-17 08:32 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-04-10 11:32:18 (1 month ago)	4 incidents: malicious activity. First: 2026-04-02 08:33, Last: 2026-04-10 07:32 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-04-02 08:33, Last: 2026-04-10 07:32 UTC. Triggers: ufw-repeater. show less	Port Scan
🇺🇸 micropedro	2026-04-02 12:33:20 (2 months ago)	4 incidents: malicious activity. First: 2026-03-26 08:07, Last: 2026-04-02 08:33 UTC. Triggers: ufw- ... show more 4 incidents: malicious activity. First: 2026-03-26 08:07, Last: 2026-04-02 08:33 UTC. Triggers: ufw-repeater. show less	Port Scan
🇨🇦 bazter.pro	2026-03-31 18:44:32 (2 months ago)	RDP Brute Force: 10 attempts detected by custom Fail2Ban script.	Brute-Force
🇨🇦 Blinker73	2026-03-31 18:31:55 (2 months ago)	159.65.149.89 - - [31/Mar/2026:14:07:17 -0400] "\x03\x00\x00+&\xE0\x00\x00\x00\x00\x00Cookie: mstsha ... show more 159.65.149.89 - - [31/Mar/2026:14:07:17 -0400] "\x03\x00\x00+&\xE0\x00\x00\x00\x00\x00Cookie: mstshash=hello" 400 150 "-" "-" show less	Bad Web Bot Web App Attack
🇩🇪 pigro	2026-03-31 18:22:16 (2 months ago)	159.65.149.89 - - [31/Mar/2026:20:02:21 +0200] "\x03\x00\x00+&\xE0\x00\x00\x00\x00\x00Cookie: mstsha ... show more 159.65.149.89 - - [31/Mar/2026:20:02:21 +0200] "\x03\x00\x00+&\xE0\x00\x00\x00\x00\x00Cookie: mstshash=hello" 400 157 "-" "-" 159.65.149.89 - - [31/Mar/2026:20:22:15 +0200] "\x03\x00\x00+&\xE0\x00\x00\x00\x00\x00Cookie: mstshash=hello" 400 157 "-" "-" ... show less	Web App Attack
Anonymous	2026-03-31 11:05:41 (2 months ago)	2026-03-31T12:05:40.288716+01:00 vps kernel: [36695365.822907] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-03-31T12:05:40.288716+01:00 vps kernel: [36695365.822907] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=159.65.149.89 DST=54.37.14.118 LEN=40 TOS=0x08 PREC=0x40 TTL=232 ID=19983 PROTO=TCP SPT=52235 DPT=8250 WINDOW=1024 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇫🇷 oonux.net	2026-03-31 10:33:13 (2 months ago)	RouterOS: Scanning detected TCP 159.65.149.89:52235 > x.x.x.x:8250	Port Scan
🇭🇰 PingMeMaybe	2026-03-30 17:02:22 (2 months ago)	Blocked by UFW on hk [8250/tcp] Source port: 48685 TTL: 239 Packet length: 40 TOS: 0x00 This report ... show more Blocked by UFW on hk [8250/tcp] Source port: 48685 TTL: 239 Packet length: 40 TOS: 0x00 This report was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇦🇺 LiftUp Hosting	2026-03-30 16:41:07 (2 months ago)	Honeypot hit: HTTP header with cookie; 8250 [1] TCP	Hacking Bad Web Bot
🇺🇸 ShadowWhisperer	2026-03-29 21:40:41 (2 months ago)	RDP credential attempt.	Brute-Force Hacking

Showing 1 to 15 of 225 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.233.221.115

🇺🇸 170.130.204.2

🇨🇳 123.190.37.240

🇨🇳 120.48.178.72

🇺🇸 104.243.44.205

🇳🇬 102.88.137.80

🇷🇺 89.23.113.208

🇨🇦 85.217.149.52

🇨🇳 60.188.58.133

🇺🇸 40.124.175.234

🇺🇸 20.106.191.49

🇨🇳 222.71.197.50

🇺🇸 216.25.89.86

🇧🇴 200.58.83.79

🇲🇦 196.117.203.80

🇳🇱 195.178.110.199

🇺🇸 172.212.160.56

🇺🇸 135.237.127.54

🇨🇳 120.49.64.28

🇨🇳 120.48.151.68