JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.59.125.169

139.59.125.169 was found in our database!

This IP was reported 50 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.59.125.169

Whois 139.59.125.169

IP Abuse Reports for 139.59.125.169:

This IP address has been reported a total of 50 times from 35 distinct sources. 139.59.125.169 was first reported on January 30th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-07 00:04:09 (1 month ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇫🇷 geot	2026-02-02 13:50:41 (4 months ago)	GET /form.html HTTP/1.1 GET /password.php HTTP/1.1 GET /t4 HTTP/1.1 GET /upl.php HTTP/1.1 GET /1.php ... show more GET /form.html HTTP/1.1 GET /password.php HTTP/1.1 GET /t4 HTTP/1.1 GET /upl.php HTTP/1.1 GET /1.php HTTP/1.1 GET /systembc/password.php HTTP/1.1 GET /geoip/ HTTP/1.1 show less	Bad Web Bot Web App Attack
Anonymous	2026-02-02 06:44:30 (4 months ago)	139.59.125.169 - - [02/Feb/2026:15:44:29 +0900] "GET / HTTP/1.1" 403 440 "-" "Mozilla/5.0 (Windows N ... show more 139.59.125.169 - - [02/Feb/2026:15:44:29 +0900] "GET / HTTP/1.1" 403 440 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.125.169 - - [02/Feb/2026:15:44:29 +0900] "GET /form.html HTTP/1.1" 403 440 "-" "curl/8.1.2" 139.59.125.169 - - [02/Feb/2026:15:44:29 +0900] "GET /upl.php HTTP/1.1" 403 440 "-" "Mozilla/5.0" ... show less	Brute-Force
🇳🇱 soverin	2026-02-01 23:10:24 (4 months ago)	Network scan on port 80	Email Spam
🇩🇰 castipo	2026-02-01 22:33:25 (4 months ago)	nginx-http :: 139.59.125.169 - - [31/Jan/2026:20:48:37 +0700] "GET /ab2g HTTP/1.1" 403 118 "-" "Mozi ... show more nginx-http :: 139.59.125.169 - - [31/Jan/2026:20:48:37 +0700] "GET /ab2g HTTP/1.1" 403 118 "-" "Mozilla/5.0 zgrab/0.x" host="[ip]" cfip="-" cfray="-" 139.59.125.169 - - [31/Jan/2026:20:48:38 +0700] "GET /ab2h HTTP/1.1" 403 118 "-" "Mozilla/5.0 zgrab/0.x" host="[ip]" cfip="-" cfray="-" 139.59.125.169 - - [31/Jan/2026:20:48:39 +0700] "GET /alive.php HTTP/1.1" 403 180 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/[ip] Safari/537.36" host="[ip]" cfip="-" cfray="-" 139.59.125.169 - - [31/Jan/2026:20:48:45 +0700] "GET / HTTP/1.1" 400 650 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/[ip] Safari/537.36" host="[ip]" cfip="-" cfray="-" 139.59.125.169 - - [31/Jan/2026:20:48:46 +0700] "GET / HTTP/1.1" 403 180 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/[ip] Safari/537.36" host="[ip]" cfip="-" cfray="-" 139.59.125.169 - - [31/Jan/2026:20:48:46 +0700] "GET / show less	Port Scan
🇫🇷 Sebbabas	2026-02-01 15:07:38 (4 months ago)	\[Sun Feb 01 16:07:36.990033 2026\] \[:error\] \[pid 10056\] \[client 139.59.125.169:41244\] script ... show more \[Sun Feb 01 16:07:36.990033 2026\] \[:error\] \[pid 10056\] \[client 139.59.125.169:41244\] script \'/var/www/html/upl.php\' not found or unable to stat ... show less	FTP Brute-Force Port Scan Brute-Force Web App Attack SSH
🇫🇷 masterguru	2026-02-01 13:06:16 (4 months ago)	Host header is a numeric IP address. Pattern match "^ (920350-131)	Hacking Bad Web Bot
🇧🇬 Stoyko Stoykov	2026-02-01 12:50:44 (4 months ago)	139.59.125.169 - - [01/Feb/2026:14:50:44 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x83C\xB9\x8A ... show more 139.59.125.169 - - [01/Feb/2026:14:50:44 +0200] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03\x83C\xB9\x8A\xFBj\xD1\xADn\xE4\xCD\xD3w$" 400 150 "-" "-" ... show less	Hacking Web App Attack
🇦🇺 2000cn.com.au	2026-02-01 09:44:20 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-backdoors-attempts	Hacking Web App Attack
🇪🇸 masterguru	2026-02-01 08:36:19 (4 months ago)	Host header is a numeric IP address. Pattern match "^ (920350-159)	Hacking Bad Web Bot
🇳🇴 Bots.go.to.hell	2026-02-01 07:10:11 (4 months ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-backdoors-attempts	Hacking Exploited Host
🇺🇸 gu-alvareza	2026-02-01 07:05:19 (4 months ago)	SystemBC.Botnet	DDoS Attack Hacking
Anonymous	2026-02-01 06:08:34 (4 months ago)	<jail> banned by fail2ban	Brute-Force Web App Attack
🇫🇷 pm33	2026-02-01 05:38:52 (4 months ago)	Probing for resource vulnerabilities HTTP(S)	Web App Attack
🇺🇸 MPL	2026-02-01 04:57:07 (4 months ago)	tcp/80	Port Scan

Showing 1 to 15 of 50 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 212.108.107.87

🇺🇸 104.43.131.157

🇺🇸 102.165.48.111

🇺🇸 66.132.172.242

🇻🇪 45.173.207.126

🇰🇿 37.150.87.223

🇨🇴 190.14.224.244

🇺🇸 172.70.35.153

🇮🇩 103.174.236.17

🇮🇩 103.145.34.112

🇳🇱 45.142.193.164

🇦🇷 138.84.63.8

🇸🇾 109.224.242.13

🇻🇳 103.72.68.111

🇳🇱 91.92.40.217

🇧🇬 79.124.59.78

🇬🇭 41.211.21.49

🇨🇦 34.118.183.97

🇰🇷 221.152.56.13

🇧🇷 200.222.71.218