JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.89.197.183

159.89.197.183 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 85%: ?

85%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.89.197.183

Whois 159.89.197.183

IP Abuse Reports for 159.89.197.183:

This IP address has been reported a total of 16 times from 15 distinct sources. 159.89.197.183 was first reported on June 5th 2026, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 stinpriza	2026-06-07 05:43:32 (1 day ago)	Web App Attack	Web App Attack
🇵🇾 SecOpsSL	2026-06-07 05:21:38 (1 day ago)	[Sun Jun 07 02:19:01.166789 2026] [authz_core:error] [pid 1535566:tid 1535566] [client 159.89.197.18 ... show more [Sun Jun 07 02:19:01.166789 2026] [authz_core:error] [pid 1535566:tid 1535566] [client 159.89.197.183:0] AH01630: client denied by server configuration: /var/www/html/wordpress/wp-content/uploads/cmd.php [Sun Jun 07 02:19:03.851446 2026] [authz_core:error] [pid 1535566:tid 1535566] [client 159.89.197.183:0] AH01630: client denied by server configuration: /var/www/html/wordpress/wp-content/uploads/cmd.php [Sun Jun 07 02:21:37.043481 2026] [authz_core:error] [pid 1535566:tid 1535566] [client 159.89.197.183:0] AH01630: client denied by server configuration: /var/www/html/wordpress/wp-content/uploads/cmd.php show less	Brute-Force Web App Attack
🇳🇱 i-turnradio.nl	2026-06-06 21:45:32 (1 day ago)	2026-06-06 @ 23:45:31 (CET) ~ Blocked for trying to access: /erker/wp/wp-login.php	Web App Attack
🇹🇷 baku.hosting	2026-06-06 20:22:07 (1 day ago)	CSF Auto Report: (cpanel) Failed cPanel login from 159.89.197.183 (SG/Singapore/-): 4 in the last 36 ... show more CSF Auto Report: (cpanel) Failed cPanel login from 159.89.197.183 (SG/Singapore/-): 4 in the last 3600 secs show less	Brute-Force Web App Attack
🇫🇷 Octopuce	2026-06-06 15:12:28 (1 day ago)	Aggressive web search of vulnerable pages: /wp-content/plugins/include.php /wp-2019.php /admin.php / ... show more Aggressive web search of vulnerable pages: /wp-content/plugins/include.php /wp-2019.php /admin.php /about.php /users.php /wp-includes/pomo/abou ... show less	Web App Attack
🇺🇸 lostswordfish.com	2026-06-06 14:06:06 (1 day ago)	Wordfence waf block on fairregistry	Web App Attack
🇩🇪 EGP Abuse Dept	2026-06-06 12:07:42 (1 day ago)	Scanning for web/db/file exploits on www.brederaad-010.nl	SQL Injection Bad Web Bot Web App Attack
Anonymous	2026-06-06 11:38:21 (1 day ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇫🇷 ELYAZ	2026-06-06 11:37:35 (1 day ago)	(y4) Failed scan -byebye- from 159.89.197.183 (SG/Singapore/-): (CF_ENABLE)	Hacking
🇫🇷 tilellit.pro	2026-06-06 08:11:49 (2 days ago)	Fail2Ban banned 159.89.197.183 for security violations in jail wp-armour. Log: 2026/06/06 08:11:48 [ ... show more Fail2Ban banned 159.89.197.183 for security violations in jail wp-armour. Log: 2026/06/06 08:11:48 [error] FastCGI sent in stderr: "PHP message: [WP_ARMOUR_BAN] IP: 159.89.197.183 \| Target: wplogin" , client: 159.89.197.183, server: [REDACTED], request: "POST /wp-login.php HTTP/1.1", upstream: [REDACTED], host: [REDACTED] ... show less	Web Spam
🇨🇦 1gz	2026-06-06 05:52:21 (2 days ago)	Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from SG. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /wp-login.php UA: Mozila/5.0 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇫🇷 conseilgouz	2026-06-06 04:38:42 (2 days ago)	joe-Joomla Authentification : try to force the door...	Hacking
Anonymous	2026-06-05 22:10:07 (2 days ago)	\| [Dangerous/Singapore] Aggressive IP 159.89.197.183 (~30 hits). Type: DoS Defender- Web server 400 ... show more \| [Dangerous/Singapore] Aggressive IP 159.89.197.183 (~30 hits). Type: DoS Defender- Web server 400 error code show less	Web App Attack Hacking SQL Injection
🇮🇹 VHosting	2026-06-05 16:05:03 (2 days ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇳🇿 Antinson	2026-06-05 14:24:31 (2 days ago)	Scraping with a high error ratio and request rate	Bad Web Bot

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.144.21.12

🇬🇧 139.28.111.218

🇰🇷 123.58.200.120

🇨🇳 112.116.164.136

🇷🇺 109.165.0.153

🇺🇸 52.188.189.6

🇨🇳 47.94.96.144

🇭🇰 38.76.183.166

🇷🇴 193.32.162.16

🇸🇬 152.42.236.39

🇺🇸 74.7.227.50

🇨🇳 58.52.70.98

🇺🇸 44.204.64.190

🇺🇸 3.82.52.177

🇬🇧 195.96.139.196

🇬🇧 185.247.137.203

🇨🇳 180.169.100.182

🇸🇬 128.199.225.7

🇹🇼 104.199.161.139

🇺🇸 64.62.197.43