JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.59.155.1

139.59.155.1 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.59.155.1

Whois 139.59.155.1

IP Abuse Reports for 139.59.155.1:

This IP address has been reported a total of 33 times from 25 distinct sources. 139.59.155.1 was first reported on October 10th 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 EGP Abuse Dept	2026-05-10 03:17:14 (1 month ago)	Unauthorized connection to RDP port 3389	Port Scan Hacking
🇸🇮 borisperc	2025-08-20 06:55:14 (9 months ago)		Hacking
🇸🇮 administrator	2025-07-29 10:12:41 (10 months ago)		Hacking
🇸🇮 administrator	2025-07-27 10:12:42 (10 months ago)		Hacking
🇭🇰 qwerlancer	2025-05-28 15:04:55 (1 year ago)	HTTP anomaly: tcp_port_scan, 2 > threshold 1	Port Scan
🇭🇰 qwerlancer	2025-05-28 15:04:55 (1 year ago)	anomaly: tcp_port_scan, 2 > threshold 1	Port Scan
🇫🇷 Rat_Crusher	2025-05-28 07:07:30 (1 year ago)	Searching for: GET /1.php GET /systembc/password.php GET /form.html	Bad Web Bot
🇭🇰 qwerlancer	2025-05-28 07:04:55 (1 year ago)	HTTP anomaly:	Port Scan
🇭🇰 qwerlancer	2025-05-28 07:04:55 (1 year ago)	HTTP anomaly: tcp_port_scan, 2 > threshold 1	Port Scan
🇨🇿 Countryman	2025-05-28 06:29:12 (1 year ago)	IPS detection: SystemBC.Botnet	Hacking
🇨🇿 Countryman	2025-05-28 06:29:12 (1 year ago)	IPS detection: SystemBC.Botnet	Hacking
Anonymous	2025-05-28 05:56:40 (1 year ago)	<comment>	Web App Attack
🇺🇸 mdgudell	2025-05-28 05:18:01 (1 year ago)	[Wed May 28 00:18:01.091217 2025] [security2:error] [pid 810746:tid 810746] [client 139.59.155.1:418 ... show more [Wed May 28 00:18:01.091217 2025] [security2:error] [pid 810746:tid 810746] [client 139.59.155.1:41832] [client 139.59.155.1] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [msg "Host header is a numeric IP address"] [data "70.122.135.34"] [severity "WARNING"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "70.122.135.34"] [uri "/1.php"] [unique_id "aDaciQPZ6A-Pz_znCxwE2wAAAAE"] [Wed May 28 00:18:01.363662 2025] [security2:error] [pid 810748:tid 810748] [client 139.59.155.1:41844] [client 139.59.155.1] ModSecurity: Warning. Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/usr/share/modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "736"] [id "920350"] [ ... show less	Port Scan Web App Attack
🇹🇭 MWA SOC	2025-05-28 04:56:43 (1 year ago)		Hacking
🇩🇪 f2_IT	2025-05-28 01:14:35 (1 year ago)	SystemBC.Botnet	Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 45.82.76.103

🇺🇸 216.218.206.68

🇺🇿 213.230.86.202

🇧🇷 201.148.247.93

🇺🇿 198.163.195.54

🇺🇸 172.234.25.187

🇺🇸 162.216.150.3

🇳🇱 158.94.210.233

🇫🇮 147.185.133.220

🇺🇸 147.185.132.40

🇺🇸 146.88.241.47

🇺🇸 100.29.192.10

🇧🇪 91.86.88.24

🇮🇹 91.80.186.51

🇩🇪 84.137.235.107

🇸🇬 43.134.42.6

🇴🇲 37.28.67.209

🇺🇸 34.162.77.117

🇧🇪 34.34.153.77

🇺🇸 20.65.154.117