AbuseIPDB » 159.89.137.208

159.89.137.208 was found in our database!

This IP was reported 135 times. Confidence of Abuse is 100%: ?

100%
ISP DigitalOcean, LLC
Usage Type Data Center/Web Hosting/Transit
ASN AS14061
Hostname(s) prod-barium-sfo2-3.do.binaryedge.ninja
Domain Name digitalocean.com
Country πŸ‡ΊπŸ‡Έ United States of America
City Santa Clara, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.89.137.208
Whois 159.89.137.208

IP Abuse Reports for 159.89.137.208:

This IP address has been reported a total of 135 times from 64 distinct sources. 159.89.137.208 was first reported on , and the most recent report was .

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter IoA Timestamp (UTC) Comment Categories
πŸ‡©πŸ‡ͺ iNetWorker
firewall-block, port(s): 8443/tcp
Port Scan
πŸ‡ΊπŸ‡Έ MPL
tcp/443
Port Scan
Anonymous
Tried our host z.
Port Scan Hacking Exploited Host
πŸ‡©πŸ‡ͺ Yachiyo Runami
Port Scan Hacking
πŸ‡ΊπŸ‡Έ sargetun
Honeypot: Auto-ban: 24 hour idle after honeypot interaction. Auto-reported from VPS honeypot.
Brute-Force SSH Hacking
πŸ‡ΊπŸ‡Έ sargetun
Honeypot: RDP probe on port 3389 at 2026-06-23 00:42:03.097210. Automated report from VPS honeypot.
Port Scan
πŸ‡«πŸ‡· bellovacorp
Noliae honeypot β€” rdp-bruteforce : RDP mstshash='rlpjrmd4'
Port Scan Brute-Force
πŸ‡―πŸ‡΅ knock
Knock-Knock honeypot brute-force: RDP (1 total hits)
Brute-Force
πŸ‡ΊπŸ‡Έ RAP
2026-06-22 12:44:19 UTC Unauthorized activity to TCP port 9200.
Port Scan
πŸ‡©πŸ‡ͺ Admins@FBN
FW-PortScan: Traffic Blocked srcport=59852 dstport=8443
Port Scan
πŸ‡ΊπŸ‡Έ Axel
Port Scan
πŸ‡ΊπŸ‡Έ MPL
tcp/3389
Port Scan
πŸ‡ΊπŸ‡Έ xmission.com
Port Scan Hacking Brute-Force
πŸ‡ΊπŸ‡Έ Cyber Crusader
Hundreds of Attempts (at least) to Connect to and Access Firewall Ports
Port Scan Hacking Brute-Force
πŸ‡ΊπŸ‡Έ RAP
2026-06-16 09:15:43 UTC Unauthorized activity to TCP port 8443. Web App
Port Scan Web App Attack

Showing 1 to 15 of 135 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

πŸ‡§πŸ‡· 205.210.31.163
πŸ‡§πŸ‡· 187.255.11.73
πŸ‡§πŸ‡· 187.32.154.137
πŸ‡»πŸ‡ͺ 181.233.89.120
πŸ‡«πŸ‡· 172.71.134.65
πŸ‡ΈπŸ‡¬ 152.42.252.134
πŸ‡«πŸ‡· 135.125.29.132
πŸ‡«πŸ‡· 128.79.210.36
πŸ‡¨πŸ‡³ 122.96.28.151
πŸ‡¨πŸ‡³ 106.117.110.8
πŸ‡¨πŸ‡³ 106.75.191.61
πŸ‡¨πŸ‡³ 101.201.38.226
πŸ‡¬πŸ‡§ 101.36.97.205
πŸ‡¬πŸ‡§ 101.36.97.88
πŸ‡©πŸ‡ͺ 69.5.169.142
πŸ‡ΊπŸ‡Έ 66.132.172.204
πŸ‡ΊπŸ‡Έ 64.23.155.189
πŸ‡ΈπŸ‡¬ 47.236.240.149
πŸ‡¨πŸ‡³ 47.108.206.72
πŸ‡ΊπŸ‡Έ 45.156.129.95