159.89.179.252 Threat Intelligence and Host Information

General

This page contains threat intelligence information for the IPv4 address 159.89.179.252 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 5/100

Host and Network Information

• View other sources: Spamhaus VirusTotal

• Country: United States
• Network:
• Noticed: 1 times
• Protocols Attacked: SSH
• Passive DNS Results: revistasnotticias.com info-m2-wells.com info-m2-citi.com wells-fargo-m2.com info-k2-wellsfargo.com info-h2-53.com info-h2-citi.com 159-89-179-252.ipv4.nknlabs.io

Open Ports Detected

1000 10001 10004 10006 10007 10008 10009 10010 10011 10015 10018 10019 10021 10024 10025 10027 10034 10035 10041 10045 10100 10101 1012 10134 102 10205 1022 1023 1024 10240 10243 1029 104 10443 10533 10909 10911 10935 10936 110 11000 11001 11027 1103 1110 11101 1111 11111 11112 1119 11210 11211 113 11300 11434 11443 11602 11920 122 1234 1245 131 1311 1337 135 139 1400 1414 143 1433 1443 1515 1521 1604 1605 1723 1800 1801 1911 1925 1926 1935 2000 2001 2002 2003 2008 2010 2016 2020 2022 2030 21 2109 2133 22 2200 221 2222 2223 2232 225 23 2323 2327 2332 234 2345 24 2404 25 26 2601 2628 3001 3005 3006 3007 3008 3009 3016 3021 3103 3105 311 3110 3114 3117 3124 3127 3128 3131 3132 3133 3134 3140 3144 3200 3211 3301 3310 3311 3341 3401 3402 3404 3410 3521 3522 3540 3541 3542 3838 3841 3922 4000 4022 4023 4040 4042 4043 4103 4120 4242 4243 427 4321 4343 442 443 4430 4434 4437 4439 444 4443 4444 4445 445 4524 4530 4602 4840 4911 5000 5001 5002 5005 5006 5007 5009 5010 502 5025 5100 5122 513 5130 515 5201 5209 5222 5224 5231 5237 5239 5321 541 5432 5435 5443 5600 5601 5603 5604 5606 5607 5620 5630 5701 5721 5800 5801 5822 5900 5901 5907 5908 5916 5918 5938 6000 6001 6002 6003 6004 6006 6009 6020 6036 6100 631 632 636 6405 6433 6443 6513 6514 6543 6700 7000 7001 7005 7012 7014 7102 7218 7401 7415 7434 7441 7443 7500 7510 7634 79 7900 80 8000 8001 8005 8008 8009 8010 8011 8015 8019 8021 8028 8029 8030 8035 8037 8041 8044 8045 806 8080 8101 8102 8106 8108 811 8110 8112 8113 8118 8123 8124 8126 8128 8129 8133 8135 8139 8140 8145 8200 8203 8222 8236 8237 8238 8239 8241 8300 8315 8316 8319 832 8333 8334 8401 8406 8407 8408 8409 8412 8414 8417 8421 8422 8423 8424 8427 8428 843 8430 8431 8432 8433 8435 8441 8442 8501 8502 8506 8515 8519 8525 8529 8544 8545 8600 8621 8622 8637 8641 8703 8704 8706 8733 88 8800 8803 8808 8813 8814 8820 8824 8827 8832 8834 8839 8840 8844 8845 8901 8906 8908 8910 8935 9000 9002 9004 9006 9007 9009 9011 9012 9018 902 9020 9026 9027 9036 9039 9041 9042 9043 9100 9101 9102 9103 9105 9108 9109 9111 9112 9115 9116 9120 9122 9123 9124 9136 9139 9140 9141 9144 9200 9201 9203 9204 9205 9210 9213 9215 9222 9223 9226 9245 9301 9306 9309 9313 9333 9418 943 9433 9441 9443 9501 9505 9510 9513 9530 9532 9600 9606 9611 9633 9704 9800 9803 9902 9908 9918 9923 9943 9944

Map

Whois Information

• NetRange: 159.89.0.0 - 159.89.255.255
• CIDR: 159.89.0.0/16
• NetName: DIGITALOCEAN-159-89-0-0
• NetHandle: NET-159-89-0-0-1
• Parent: NET159 (NET-159-0-0-0-0)
• NetType: Direct Allocation
• OriginAS: AS14061
• Organization: DigitalOcean, LLC (DO-13)
• RegDate: 2017-07-07
• Updated: 2020-04-03
• Comment: Routing and Peering Policy can be found at https://www.as14061.net
• Comment:
• Ref: https://rdap.arin.net/registry/ip/159.89.0.0
• OrgName: DigitalOcean, LLC
• OrgId: DO-13
• Address: 105 Edgeview Drive, Suite 425
• City: Broomfield
• StateProv: CO
• PostalCode: 80021
• Country: US
• RegDate: 2012-05-14
• Updated: 2025-04-11
• Ref: https://rdap.arin.net/registry/entity/DO-13
• OrgNOCHandle: NOC32014-ARIN
• OrgNOCName: Network Operations Center
• OrgNOCPhone: +1-646-827-4366
• OrgNOCEmail: noc@digitalocean.com
• OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgTechHandle: NOC32014-ARIN
• OrgTechName: Network Operations Center
• OrgTechPhone: +1-646-827-4366
• OrgTechEmail: noc@digitalocean.com
• OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
• OrgAbuseHandle: DIGIT19-ARIN
• OrgAbuseName: DigitalOcean Abuse
• OrgAbusePhone: +1-646-827-4366
• OrgAbuseEmail: abuse@digitalocean.com
• OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN

Links to attack logs

****** ****** ******