JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.89.55.133

159.89.55.133 was found in our database!

This IP was reported 357 times. Confidence of Abuse is 48%: ?

48%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.89.55.133

Whois 159.89.55.133

IP Abuse Reports for 159.89.55.133:

This IP address has been reported a total of 357 times from 193 distinct sources. 159.89.55.133 was first reported on March 13th 2025, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 GEDAL	2026-05-15 10:59:54 (4 weeks ago)	Fail2ban webexploits @ <hostname> : 159.89.55.133 - - [21/Apr/2026:19:53:45 +0200] "GET /.git/config ... show more Fail2ban webexploits @ <hostname> : 159.89.55.133 - - [21/Apr/2026:19:53:45 +0200] "GET /.git/config HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36" show less	Brute-Force SSH
🇪🇸 Gem	2026-04-28 19:23:23 (1 month ago)	Unauthorized web scan.	Web App Attack
🇧🇪 sid3windr	2026-04-23 12:36:07 (1 month ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇧🇪 boxed-it	2026-04-23 11:01:46 (1 month ago)	GET /.git/config (Tarpitted for 1d15h8m28s, wasted 8.06MB)	Web App Attack
🇨🇿 rawnullbyte	2026-04-22 20:27:42 (1 month ago)	🚨 Honeypot triggered! 🖥️ System: NPot 🎯 Target: GIT_REPOSITORY_EXPOSURE 🛣️ Path: /.git/HEAD 👤 Attack ... show more 🚨 Honeypot triggered! 🖥️ System: NPot 🎯 Target: GIT_REPOSITORY_EXPOSURE 🛣️ Path: /.git/HEAD 👤 Attacker IP: 159.89.55.133 ⏰ Time: 2026-04-22 20:27:41 📡 User-Agent: Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0 show less	Web App Attack
🇪🇸 IT Infraestructura	2026-04-22 05:09:00 (1 month ago)	Illegal Resource Access Request blocked to URL: /.git/config(GET)	Bad Web Bot
Anonymous	2026-04-22 01:06:39 (1 month ago)	Scraping for Git	Web App Attack
🇩🇪 FeG Deutschland	2026-04-22 00:28:18 (1 month ago)	Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 12	Exploited Host Web App Attack
🇺🇸 NXTwoThou	2026-04-22 00:02:19 (1 month ago)	/.git/config	Web App Attack
Anonymous	2026-04-21 23:53:29 (1 month ago)	[22/Apr/2026:02:19:55 +0300] 177681359520.475178 159.89.55.133 51076 148.251.76.218 443 [22/Apr/2026 ... show more [22/Apr/2026:02:19:55 +0300] 177681359520.475178 159.89.55.133 51076 148.251.76.218 443 [22/Apr/2026:02:53:28 +0300] 177681560844.113374 159.89.55.133 60510 148.251.76.218 443 show less	Web App Attack
🇱🇻 garmtech.com	2026-04-21 23:53:25 (1 month ago)	Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probi ... show more Attempted access to sensitive endpoint (/.git/config) detected. Automated scan or unauthorized probing. show less	Web App Attack
🇧🇬 pa4080	2026-04-21 23:42:55 (1 month ago)	Detected by ModSecurity. Request URI: /.git/config	Web App Attack
🇩🇪 Starburst SysOp Team	2026-04-21 23:30:45 (1 month ago)	Restricted File Access Attempt. Matched phrase ".git/" at REQUEST_FILENAME. (930130-nue6-1)	Hacking Web App Attack
🇦🇺 nzhost.co.nz	2026-04-21 23:17:42 (1 month ago)	$f2bV_matches	Hacking Brute-Force
🇵🇱 sefinek.net	2026-04-21 22:49:54 (1 month ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /.git/config \| UA: Mozilla/5.0 (Linux U; en-US) AppleWebKit/528.5 (KHTML, like Gecko, Safari/528.5 ) Version/4.0 Kindle/3.0 (screen 600x800; rotate) • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot

Showing 1 to 15 of 357 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.3.16.60

🇺🇸 172.172.196.177

🇭🇰 168.76.131.178

🇺🇸 66.132.172.53

🇺🇸 20.46.225.117

🇺🇸 4.227.178.199

🇫🇷 217.182.207.79

🇰🇷 211.254.212.59

🇭🇰 199.45.154.133

🇨🇷 179.48.248.245

🇩🇪 178.104.245.33

🇺🇸 136.114.33.161

🇮🇩 103.171.85.192

🇵🇹 81.193.150.183

🇱🇹 81.30.98.144

🇲🇾 47.250.146.29

🇻🇪 201.249.87.201

🇺🇸 138.68.4.170

🇨🇳 117.50.127.153

🇺🇸 91.230.168.248