JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 89.251.0.52

89.251.0.52 was found in our database!

This IP was reported 167 times. Confidence of Abuse is 62%: ?

62%

ISP	VPN Consumer Toronto, Canada
Usage Type	Data Center/Web Hosting/Transit
ASN	AS41564
Domain Name	vpnconsumer.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 89.251.0.52

Whois 89.251.0.52

IP Abuse Reports for 89.251.0.52:

This IP address has been reported a total of 167 times from 72 distinct sources. 89.251.0.52 was first reported on March 3rd 2025, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Octopuce	2026-06-14 00:28:18 (2 hours ago)	Aggressive web search of vulnerable pages: /update/ /wp-content/ /wp-admin/maint/ /themes/zMousse/ / ... show more Aggressive web search of vulnerable pages: /update/ /wp-content/ /wp-admin/maint/ /themes/zMousse/ /wp-content/plugins/ubh/ /wp-admin/images/ / ... show less	Web App Attack
🇺🇦 URAN Publishing Service	2026-06-13 22:43:55 (4 hours ago)	89.251.0.52 - - [14/Jun/2026:01:43:53 +0300] "GET /wp-admin/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 (X11 ... show more 89.251.0.52 - - [14/Jun/2026:01:43:53 +0300] "GET /wp-admin/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 (X11; Linux i686; rv:79.0) Gecko/20100101 Firefox/79.0" 89.251.0.52 - - [14/Jun/2026:01:43:53 +0300] "GET /wp-includes/blocks/table/int/tmpl/ HTTP/1.1" 404 706 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/39.0.2171.95 Safari/537.36" ... show less	Web App Attack
🇬🇧 consul.to	2026-06-13 20:10:55 (6 hours ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 dynamix	2026-06-13 18:37:30 (8 hours ago)	Multiple WAF Violations	Web App Attack
🇨🇭 backslash	2026-06-12 17:42:06 (1 day ago)	block ruleset 3D3AFA921A373ECE19B6BA285C2D722163304638	Bad Web Bot
🇬🇧 Oakley	2026-06-11 18:04:44 (2 days ago)	(confirmed_bot_sig) Confirmed bot	Hacking
🇿🇦 Tokolosh Hunters	2026-05-24 11:47:25 (2 weeks ago)	AutoBlockWindow-Known bad useragent query-2026-05-24 11:47:25	Bad Web Bot
🇳🇱 Site.eu	2026-05-23 20:47:42 (3 weeks ago)	Excessive 404/403 errors	Brute-Force
🇳🇱 Site.eu	2026-05-19 16:17:58 (3 weeks ago)	Excessive multi-domain requests	Brute-Force
🇳🇱 Site.eu	2026-05-11 23:30:30 (1 month ago)	Excessive multi-domain requests	Brute-Force
🇺🇸 deskpass.com	2026-05-11 19:30:15 (1 month ago)	GET /wp-includes/js/tinymce/skins/wordpress/images/index.php	Web App Attack
🇮🇳 Genhost	2026-05-06 13:05:14 (1 month ago)	SCANNING OF PHP SHELL FILES	Brute-Force SSH
🇳🇱 ConsulHosting	2026-05-06 12:53:40 (1 month ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇺🇸 Epimetheus	2026-05-06 06:36:43 (1 month ago)	Zombie network / Bot scanner detected: [GET] /wp-admin/images/archive.php [GET] /wp-content/themes/ ... show more Zombie network / Bot scanner detected: [GET] /wp-admin/images/archive.php [GET] /wp-content/themes/twentytwentyfour/install.php [GET] /wp-includes/wp-conflg.php [GET] /wp-includes/load.php [GET] /wp-includes/template-less.php [GET] /retu11.PhP7 [GET] /wp-includes/css/dist/install.php [GET] /css/file.php [GET] /assets/content.php [GET] /uploads/c99shell.php [GET] /wp-includes/block-bindings/imagess.php [GET] /wp-includes/ID3/shell.php [GET] /wp-includes/class-wp-scripts-query.php [GET] /assets/comfunctions.php [GET] /css/adminfusm.php [GET] /wp-admin/includes/admin.php [GET] /wp-content/plugins/pwnd/autoload_classmap.php [GET] /wp-includes/SimplePie/login.php [GET] /network.php [GET] /function/install.php [GET] /wp-admin/network/chosen.php [GET] /saka.phP7 [GET] /wp-content/plugins/pwnd/dedi1.php [GET] /about/install.php [GET] /js/firewall.php7 [GET] /images/fm.php7 [GET] /wp-includes/fonts/class_api.php UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100 ...(Truncated) show less	Bad Web Bot Exploited Host Web App Attack
🇫🇷 Octopuce	2026-05-06 04:19:54 (1 month ago)	Aggressive web search of vulnerable pages: /bless.php /O-Simple.php /lock360.php /zwso.php /chosen.p ... show more Aggressive web search of vulnerable pages: /bless.php /O-Simple.php /lock360.php /zwso.php /chosen.php /about.php /admin.php /mah.php /.wp/wso. ... show less	Web App Attack

Showing 1 to 15 of 167 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 199.193.96.189

🇸🇬 193.37.32.65

🇮🇩 182.9.36.14

🇦🇪 153.75.90.123

🇸🇬 152.32.220.188

🇺🇸 147.185.132.137

🇻🇳 125.212.244.35

🇹🇭 110.77.137.236

🇻🇳 103.98.152.181

🇺🇸 98.159.37.117

🇷🇴 92.118.39.32

🇺🇸 66.132.172.48

🇮🇳 61.95.198.138

🇳🇱 45.148.10.183

🇩🇪 45.135.193.193

🇬🇧 35.203.210.41

🇺🇸 34.186.84.25

🇧🇪 34.140.154.167

🇺🇸 207.90.244.17

🇬🇧 195.96.139.193