AbuseIPDB » 139.59.142.32

139.59.142.32 was found in our database!

This IP was reported 27 times. Confidence of Abuse is 42%: ?

42%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated biweekly.

Report 139.59.142.32

Whois 139.59.142.32

IP Abuse Reports for 139.59.142.32:

This IP address has been reported a total of 27 times from 22 distinct sources. 139.59.142.32 was first reported on February 15th 2025, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago. It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp in UTC	Comment	Categories
exxos	2025-02-22 00:40:12 (1 month ago)	Attacks with Bad user agents	Hacking
exxos	2025-02-21 13:51:50 (1 month ago)	http-no-verb	Hacking
gu-alvareza	2025-02-16 07:05:16 (1 month ago)	SystemBC.Botnet	DDoS Attack Hacking
mr_whitehat	2025-02-16 00:37:24 (1 month ago)	Probed for vulnerable web application: request line: /t4 (Possible exploit:Scanning for Cisco IOS)	Web App Attack
Anonymous	2025-02-16 00:12:59 (1 month ago)	139.59.142.32 - - [16/Feb/2025:00:12:56 +0000] "GET / HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT ... show more139.59.142.32 - - [16/Feb/2025:00:12:56 +0000] "GET / HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [16/Feb/2025:00:12:57 +0000] "GET /form.html HTTP/1.1" 404 134 "-" "curl/8.1.2" 139.59.142.32 - - [16/Feb/2025:00:12:57 +0000] "GET /upl.php HTTP/1.1" 404 134 "-" "Mozilla/5.0" 139.59.142.32 - - [16/Feb/2025:00:12:57 +0000] "GET /t4 HTTP/1.1" 404 134 "-" "Mozilla/5.0" 139.59.142.32 - - [16/Feb/2025:00:12:58 +0000] "GET /geoip/ HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [16/Feb/2025:00:12:58 +0000] "GET /favicon.ico HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [16/Feb/2025:00:12:58 +0000] "GET /1.php HTTP/1.1" 404 197 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) Ap ... show less	FTP Brute-Force
HoneyPotEu-AT	2025-02-15 23:47:22 (1 month ago)	139.59.142.32 - - [redacted] [16/Feb/2025:00:47:05 +0100] "GET /form.html HTTP/1.1" 404 118 "-" "cur ... show more139.59.142.32 - - [redacted] [16/Feb/2025:00:47:05 +0100] "GET /form.html HTTP/1.1" 404 118 "-" "curl/8.1.2" 0.000 - - 139.59.142.32 - - [redacted] [16/Feb/2025:00:47:05 +0100] "GET /upl.php H ... show less	Bad Web Bot Web App Attack
security.yc3a.com	2025-02-15 22:51:06 (1 month ago)	139.59.142.32 - - [15/Feb/2025:22:51:05 +0000] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03-e\x89\x01\xEA ... show more139.59.142.32 - - [15/Feb/2025:22:51:05 +0000] "\x16\x03\x01\x00{\x01\x00\x00w\x03\x03-e\x89\x01\xEA\xAE@\x94\xDD\xA6\xB0C~\xDB \xAF:P\x04\x13`\x12\x13\xA2\xD5\xFD>\xC7\x12\x1D\x05\xA8\x00\x00\x1A\xC0/\xC0+\xC0\x11\xC0\x07\xC0\x13\xC0\x09\xC0\x14\xC0" 400 150 "-" "-" show less	Brute-Force Web App Attack
Countryman	2025-02-15 22:47:53 (1 month ago)	IPS detection: SystemBC.Botnet	Hacking
sweplox.se	2025-02-15 21:18:05 (1 month ago)	139.59.142.32 - - [15/Feb/2025:20:22:37 +0000] "GET /upl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0"<br ... show more139.59.142.32 - - [15/Feb/2025:20:22:37 +0000] "GET /upl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0" 139.59.142.32 - - [15/Feb/2025:20:22:37 +0000] "GET /1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [15/Feb/2025:20:22:37 +0000] "GET /systembc/password.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [15/Feb/2025:20:22:37 +0000] "GET /password.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [15/Feb/2025:21:18:04 +0000] "GET /upl.php HTTP/1.1" 301 162 "-" "Mozilla/5.0" 139.59.142.32 - - [15/Feb/2025:21:18:04 +0000] "GET /1.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" ... show less	Bad Web Bot SSH
SCHAPPY	2025-02-15 19:33:36 (1 month ago)	Faked HTTP referer string using numeric IP address of destination host instead of host name.	Hacking Web App Attack
dpsbs	2025-02-15 18:46:46 (1 month ago)	multiple ips intrustions detected	Hacking
dpsbs	2025-02-15 18:46:46 (1 month ago)	ips intrustion from botnet detected	Exploited Host
aranguren.org	2025-02-15 18:45:11 (1 month ago)	139.59.142.32 - - [16/Feb/2025:05:45:07 +1100] "GET /form.html HTTP/1.1" 404 986 "-" "curl/8.1.2"<br ... show more139.59.142.32 - - [16/Feb/2025:05:45:07 +1100] "GET /form.html HTTP/1.1" 404 986 "-" "curl/8.1.2" 139.59.142.32 - - [16/Feb/2025:05:45:08 +1100] "GET /upl.php HTTP/1.1" 404 16 "-" "Mozilla/5.0" 139.59.142.32 - - [16/Feb/2025:05:45:08 +1100] "GET /t4 HTTP/1.1" 404 986 "-" "Mozilla/5.0" 139.59.142.32 - - [16/Feb/2025:05:45:09 +1100] "GET /geoip/ HTTP/1.1" 404 986 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [16/Feb/2025:05:45:10 +1100] "GET /1.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" 139.59.142.32 - - [16/Feb/2025:05:45:11 +1100] "GET /systembc/password.php HTTP/1.1" 404 986 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36" ... show less	Bad Web Bot
exxos	2025-02-15 18:43:09 (1 month ago)	404 ddos attacks	DDoS Attack
exxos	2025-02-15 17:39:50 (1 month ago)	http-no-verb	Hacking