JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.59.166.28

139.59.166.28 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 80%: ?

80%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.59.166.28

Whois 139.59.166.28

IP Abuse Reports for 139.59.166.28:

This IP address has been reported a total of 14 times from 13 distinct sources. 139.59.166.28 was first reported on June 17th 2026, and the most recent report was 19 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 bellovacorp	2026-06-18 00:27:08 (19 hours ago)	[CrowdSec/Noliae] noliae-threat-intel	Hacking
🇺🇸 anon333	2026-06-17 08:36:04 (1 day ago)	Invalid HTTP port 80 probes to server T0436	Hacking Exploited Host
🇺🇸 MPL	2026-06-17 06:55:02 (1 day ago)	tcp port scan (10 or more attempts)	Port Scan
🇺🇸 mc4bbs	2026-06-17 06:42:29 (1 day ago)	Automated Apache detection on Windows host. 5 suspicious HTTP requests within 300 seconds. Examples: ... show more Automated Apache detection on Windows host. 5 suspicious HTTP requests within 300 seconds. Examples: GET /.git/HEAD -> 404 UA=""; GET /.git/config -> 404 UA=""; GET /.git/logs/HEAD -> 404 UA=""; GET /.git/refs/heads/master -> 404 UA=""; GET /.env -> 404 UA="" show less	Web App Attack Hacking
🇹🇭 Sawasdee	2026-06-17 06:27:08 (1 day ago)	Unwanted checking 80 or 443 port ...	Bad Web Bot
🇳🇱 astijf	2026-06-17 06:10:21 (1 day ago)	Port Scan detected from 139.59.166.28 (GB/United Kingdom/-). 5 hits in the last 596 seconds	Brute-Force Port Scan
🇧🇾 lns.bz	2026-06-17 05:03:23 (1 day ago)	Too many 404 requests [BY]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 03:00:27 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 139.59.166.28 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 139.59.166.28 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Jun 16 23:00:22.574724 2026] [security2:error] [pid 8993:tid 8993] [client 139.59.166.28:52408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.193"] [uri "/.git/HEAD"] [unique_id "ajINxrqOF2YL6m1TnxkRRwAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 xmission.com	2026-06-17 02:53:03 (1 day ago)	Blocked by UFW (TCP on 2078) Source port: 45036 TTL: 49 Packet length: 60 TOS: 0x08 This report (fo ... show more Blocked by UFW (TCP on 2078) Source port: 45036 TTL: 49 Packet length: 60 TOS: 0x08 This report (for 139.59.166.28) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 cwytech	2026-06-17 02:20:26 (1 day ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇨🇿 Countryman	2026-06-17 01:55:30 (1 day ago)	repeated unauthorized SSL VPN connection attempts	DDoS Attack Hacking Brute-Force
🇨🇿 Countryman	2026-06-17 01:55:30 (1 day ago)	repeated unauthorized SSL VPN connection attempts	DDoS Attack Hacking Brute-Force
🇷🇸 Scan	2026-06-17 01:18:39 (1 day ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇷🇸 Smel	2026-06-17 00:30:09 (1 day ago)	MH/MP Probe, Scan, Hack -	Port Scan Hacking

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 223.167.206.255

🇨🇳 218.64.60.243

🇺🇸 216.73.216.170

🇨🇳 171.8.138.97

🇩🇪 167.71.33.239

🇨🇳 113.240.110.0

🇨🇳 223.199.172.8

🇺🇸 216.25.89.144

🇺🇸 216.25.89.126

🇵🇱 194.180.49.219

🇨🇳 180.141.30.207

🇺🇸 172.237.155.240

🇨🇳 171.104.83.170

🇮🇳 167.71.232.235

🇺🇸 167.71.26.22

🇨🇳 139.170.72.210

🇨🇳 121.29.149.106

🇨🇦 104.239.35.172

🇧🇬 79.124.49.174

🇺🇸 43.110.37.217