JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.89.33.52

159.89.33.52 was found in our database!

This IP was reported 19 times. Confidence of Abuse is 62%: ?

62%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.89.33.52

Whois 159.89.33.52

IP Abuse Reports for 159.89.33.52:

This IP address has been reported a total of 19 times from 18 distinct sources. 159.89.33.52 was first reported on April 16th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Xarcotic	2026-06-14 20:56:39 (2 days ago)	SSH login on honeypot.	Brute-Force SSH
🇸🇪 NordhTech	2026-06-14 20:45:17 (2 days ago)	More than 3 malicious connection attempts, trying port(s) 5552/tcp, then blocked from services ...	Port Scan Hacking
🇰🇷 winter	2026-06-14 20:38:02 (2 days ago)	Connection attemp from 159.89.33.52 to port 22	Brute-Force SSH
🇺🇸 RAP	2026-06-14 20:36:01 (2 days ago)	2026-06-14 20:36:01 UTC Unauthorized activity to TCP port 8089. Web App	Port Scan Web App Attack
🇺🇸 Axel	2026-06-14 20:20:58 (2 days ago)	Blocked by UFW on MVI [8181/tcp] \| SPT: 61005 \| TTL: 240 \| LEN: 44 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on MVI [8181/tcp] \| SPT: 61005 \| TTL: 240 \| LEN: 44 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-14 20:20:16 (2 days ago)	tcp/8001	Port Scan
🇺🇸 sumnone	2026-06-14 19:57:36 (2 days ago)	Port probing on unauthorized port 8090	Port Scan Hacking Exploited Host
Anonymous	2026-06-14 19:51:57 (2 days ago)	unsolicited connect TCP dport 3000 (sport 61010)	Hacking
🇬🇧 consul.to	2026-05-09 13:40:51 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 homeshowdomain.nl	2026-04-20 22:03:15 (1 month ago)	Auto-ban: >3000 req/min op 2026-04-20	Web App Attack SSH Hacking
🇧🇪 cmbplf	2026-04-20 20:31:55 (1 month ago)	4.084 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇫🇷 masterguru	2026-04-20 10:50:33 (1 month ago)	wp-login request blocked, no referer. Pattern match "wp-login.php" at REQUEST_URI. (88020-196)	Hacking
🇮🇹 VHosting	2026-04-20 10:35:02 (1 month ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
Anonymous	2026-04-20 10:25:54 (1 month ago)	wordpress exploit scan	Web App Attack
🇫🇮 cleverest.eu	2026-04-20 09:45:56 (1 month ago)	MimirWAF has 1 incident from 1 distinct domain => {"bad_request_uri / script_kiddie_detection"}	Web App Attack

Showing 1 to 15 of 19 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2607:ff10:c8:594::7

🇺🇸 208.84.101.238

🇷🇺 193.164.150.141

🇭🇳 181.78.101.153

🇮🇳 117.214.100.18

🇺🇸 64.62.156.144

🇺🇸 64.62.156.133

🇺🇸 64.62.156.67

🇳🇱 45.148.10.151

🇺🇸 23.80.80.163

🇺🇸 20.64.104.177

🇻🇳 14.225.7.70

🇹🇼 1.168.61.199

🇵🇱 194.180.49.216

🇨🇼 190.88.42.100

🇺🇸 186.241.95.111

🇺🇸 148.153.193.126

🇵🇰 139.135.40.156

🇻🇳 125.212.244.35

🇮🇳 125.23.183.18