JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.89.53.159

159.89.53.159 was found in our database!

This IP was reported 13 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.89.53.159

Whois 159.89.53.159

IP Abuse Reports for 159.89.53.159:

This IP address has been reported a total of 13 times from 11 distinct sources. 159.89.53.159 was first reported on July 18th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 GoodOldTOS	2024-07-19 02:30:05 (1 year ago)	Connection to mysql honeypot	Hacking
🇫🇷 GoodOldTOS	2024-07-19 00:30:05 (1 year ago)	Connection to mysql honeypot	Hacking
🇸🇪 webbfabriken	2024-07-19 00:12:38 (1 year ago)	spam or other hacking activities reported by webbfabriken security servers Attack reported by Webbf ... show more spam or other hacking activities reported by webbfabriken security servers Attack reported by Webbfabiken Security API - WFSecAPI show less	Web Spam
🇨🇦 Largnet SOC	2024-07-18 23:33:07 (1 year ago)	159.89.53.159 triggered Icarus honeypot on port 3306. Check us out on github.	Port Scan Hacking
🇺🇸 drewf.ink	2024-07-18 21:40:22 (1 year ago)	[21:40] Port scanning. Port(s) scanned: TCP/6379	Port Scan
🇦🇹 begou.dev	2024-07-18 14:47:18 (1 year ago)	[Threat Intelligence] FrozenThreat: Port Scanning and/or Unauthorized access -> HoneyPots:PORT/3306	Port Scan
🇷🇺 nyuuzyou	2024-07-18 14:36:28 (1 year ago)	{"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "1433", "server": "mssql_server", "src_i ... show more {"action": "connection", "dest_ip": "0.0.0.0", "dest_port": "1433", "server": "mssql_server", "src_ip": "159.89.53.159", "src_port": "52286", "timestamp": "2024-07-18T14:35:58.437214"} show less	Port Scan Brute-Force
🇫🇷 jk jk	2024-07-18 11:07:37 (1 year ago)	GoPot Honeypot 1	Hacking Web App Attack
🇬🇧 essinghigh	2024-07-18 10:06:52 (1 year ago)	1721297211 # Service_probe # SIGNATURE_SEND # source_ip:159.89.53.159 # dst_port:8883 ...	Port Scan
🇬🇧 essinghigh	2024-07-18 09:05:38 (1 year ago)	1721293537 # Service_probe # SIGNATURE_SEND # source_ip:159.89.53.159 # dst_port:15672 ...	Port Scan
🇩🇪 xor.st	2024-07-18 08:44:30 (1 year ago)	GET /cgi-bin/authLogin.cgi Headers: map[Connection:[close] User-Agent:[Go-http-client/1.1]] Body:	Web App Attack
🇪🇸 el-brujo	2024-07-18 08:38:06 (1 year ago)	07/18/2024-10:38:05.326144 159.89.53.159 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5 ... show more 07/18/2024-10:38:05.326144 159.89.53.159 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5432 show less	Hacking
🇩🇪 _ArminS_	2024-07-18 08:31:24 (1 year ago)	SP-Scan 27406:8087 detected 2024.07.18 10:31:24 blocked until 2024.09.06 03:34:11	Port Scan

Showing 1 to 13 of 13 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 220.243.137.204

🇺🇸 192.3.196.157

🇳🇱 185.223.235.33

🇨🇳 180.76.146.235

🇩🇪 176.65.132.149

🇮🇩 157.10.160.103

🇬🇧 154.49.122.27

🇸🇬 152.42.247.85

🇺🇸 147.185.132.84

🇻🇳 103.82.21.8

🇹🇳 102.157.200.7

🇵🇱 87.251.64.156

🇩🇪 62.67.70.113

🇳🇱 45.148.10.152

🇺🇸 45.41.130.10

🇧🇷 205.210.31.204

🇹🇼 198.235.24.120

🇦🇷 191.241.142.170

🇧🇷 186.222.125.208

🇺🇸 132.196.94.72