IP address

Search at other sites:
.000159.89.113.30
Shodan(more info)
Passive DNS
Tags: Login attempts
IP blacklists
blocklist.de SSH
159.89.113.30 is listed on the blocklist.de SSH blacklist.

Description: Blocklist.de feed is a free and voluntary service provided<br>by a Fraud/Abuse-specialist. IPs performing SSH attacks.
Type of feed: primary (feed detail page)

Last checked at: 2025-10-28 17:05:00.499000
Was present on blacklist at: 2025-10-24 22:05, 2025-10-25 04:05, 2025-10-25 10:05, 2025-10-25 16:05, 2025-10-25 22:05, 2025-10-26 05:05, 2025-10-26 11:05, 2025-10-26 17:05, 2025-10-26 23:05, 2025-10-27 05:05, 2025-10-27 11:05, 2025-10-27 17:05, 2025-10-27 23:05, 2025-10-28 05:05, 2025-10-28 11:05, 2025-10-28 17:05
CI Army
159.89.113.30 is listed on the CI Army blacklist.

Description: Collective Intelligence Network Security is a Threat Intelligence<br>database that provides scores for IPs. Source of unspecified malicious attacks<br>most of them will be active attackers/scanners
Type of feed: primary (feed detail page)

Last checked at: 2025-12-03 03:50:01.144000
Was present on blacklist at: 2025-10-27 03:50, 2025-10-28 03:50, 2025-10-29 03:50, 2025-10-30 03:50, 2025-10-31 03:50, 2025-11-01 03:50, 2025-11-02 03:50, 2025-11-03 03:50, 2025-11-04 03:50, 2025-11-05 03:50, 2025-11-08 03:50, 2025-11-09 03:50, 2025-11-10 03:50, 2025-11-11 03:50, 2025-11-12 03:50, 2025-11-13 03:50, 2025-11-14 03:50, 2025-11-15 03:50, 2025-11-16 03:50, 2025-11-17 03:50, 2025-11-18 03:50, 2025-11-19 03:50, 2025-11-20 03:50, 2025-11-21 03:50, 2025-11-22 03:50, 2025-11-23 03:50, 2025-11-24 03:50, 2025-11-25 03:50, 2025-11-26 03:50, 2025-11-27 03:50, 2025-11-29 03:50, 2025-12-01 03:50, 2025-12-02 03:50, 2025-12-03 03:50
Blocklist.net.ua
159.89.113.30 is listed on the Blocklist.net.ua blacklist.

Description: BlockList contains IP addresses that perform attacks,<br>send spam or brute force passwords to the blocking list.
Type of feed: primary (feed detail page)

Last checked at: 2025-10-31 11:15:06.745000
Was present on blacklist at: 2025-10-30 15:15, 2025-10-30 19:15, 2025-10-30 23:15, 2025-10-31 03:15, 2025-10-31 07:15, 2025-10-31 11:15
AbuseIPDB
159.89.113.30 is listed on the AbuseIPDB blacklist.

Description: AbuseIPDB is a project managed by Marathon Studios Inc.<br>Lists IPs performing a malicious activity (DDoS, spam, phishing...)
Type of feed: primary (feed detail page)

Last checked at: 2025-12-01 05:00:00.647000
Was present on blacklist at: 2025-11-06 05:00, 2025-11-08 05:00, 2025-11-09 05:00, 2025-11-10 05:00, 2025-11-11 05:00, 2025-11-13 05:00, 2025-11-14 05:00, 2025-11-15 05:00, 2025-11-17 05:00, 2025-11-18 05:00, 2025-11-19 05:00, 2025-11-20 05:00, 2025-11-21 05:00, 2025-11-22 05:00, 2025-11-23 05:00, 2025-11-25 05:00, 2025-11-26 05:00, 2025-11-28 05:00, 2025-12-01 05:00
Warden events (356)
2025-12-03
ReconScanning (node.9c1411): 1
2025-11-24
ReconScanning (node.9c1411): 1
2025-11-21
AttemptLogin (node.4dc198): 14
2025-11-20
AttemptLogin (node.4dc198): 67
2025-11-19
ReconScanning (node.9c1411): 1
AttemptLogin (node.4dc198): 2
2025-11-17
AttemptLogin (node.4dc198): 61
2025-11-15
AttemptLogin (node.4dc198): 101
2025-11-07
AttemptLogin (node.4dc198): 27
2025-11-06
AttemptLogin (node.4dc198): 17
2025-11-03
AttemptLogin (node.4dc198): 33
2025-11-02
AttemptLogin (node.4dc198): 30
2025-10-26
AttemptLogin (node.4dc198): 1
DShield reports (IP summary, reports)
2025-10-27
Number of reports: 59
Distinct targets: 46
2025-10-28
Number of reports: 85
Distinct targets: 59
2025-10-29
Number of reports: 88
Distinct targets: 63
2025-10-30
Number of reports: 130
Distinct targets: 95
2025-10-31
Number of reports: 101
Distinct targets: 74
2025-11-01
Number of reports: 111
Distinct targets: 83
2025-11-02
Number of reports: 111
Distinct targets: 83
2025-11-03
Number of reports: 99
Distinct targets: 71
2025-11-04
Number of reports: 99
Distinct targets: 71
2025-11-05
Number of reports: 119
Distinct targets: 88
2025-11-06
Number of reports: 119
Distinct targets: 88
2025-11-07
Number of reports: 152
Distinct targets: 116
2025-11-08
Number of reports: 140
Distinct targets: 100
2025-11-09
Number of reports: 122
Distinct targets: 79
2025-11-10
Number of reports: 88
Distinct targets: 62
2025-11-11
Number of reports: 88
Distinct targets: 62
2025-11-12
Number of reports: 100
Distinct targets: 76
2025-11-13
Number of reports: 164
Distinct targets: 122
2025-11-14
Number of reports: 148
Distinct targets: 107
2025-11-15
Number of reports: 88
Distinct targets: 69
2025-11-16
Number of reports: 88
Distinct targets: 69
2025-11-17
Number of reports: 135
Distinct targets: 108
2025-11-18
Number of reports: 135
Distinct targets: 108
2025-11-19
Number of reports: 148
Distinct targets: 114
2025-11-20
Number of reports: 148
Distinct targets: 114
2025-11-21
Number of reports: 122
Distinct targets: 91
2025-11-22
Number of reports: 159
Distinct targets: 112
2025-11-23
Number of reports: 115
Distinct targets: 86
2025-11-24
Number of reports: 161
Distinct targets: 112
2025-11-25
Number of reports: 161
Distinct targets: 112
2025-11-26
Number of reports: 183
Distinct targets: 143
2025-11-27
Number of reports: 145
Distinct targets: 108
2025-11-28
Number of reports: 151
Distinct targets: 116
2025-11-29
Number of reports: 151
Distinct targets: 116
2025-11-30
Number of reports: 128
Distinct targets: 94
2025-12-01
Number of reports: 75
Distinct targets: 53
2025-12-02
Number of reports: 75
Distinct targets: 53
Origin AS
AS14061 - DIGITALOCEAN-ASN
BGP Prefix
159.89.112.0/20
geo
Canada, Toronto
🕑 America/Toronto
hostname
(null)
Address block ('inetnum' or 'NetRange' in whois database)
159.89.0.0 - 159.89.255.255
last_activity
2025-12-03 07:27:03
last_warden_event
2025-12-03 07:27:03
rep
0.0
reserved_range
0
Shodan's InternetDB
Open ports: 22
Tags: cloud
CPEs: cpe:/o:canonical:ubuntu_linux, cpe:/a:openbsd:openssh:9.0p1
ts_added
2025-10-24 22:07:19.328000
ts_last_update
2025-12-19 22:07:20.543000

Warden event timeline

DShield event timeline

Presence on blacklists