JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.59.235.243

139.59.235.243 was found in our database!

This IP was reported 69 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.59.235.243

Whois 139.59.235.243

IP Abuse Reports for 139.59.235.243:

This IP address has been reported a total of 69 times from 40 distinct sources. 139.59.235.243 was first reported on November 27th 2024, and the most recent report was 4 months ago.

Old Reports: The most recent abuse report for this IP address is from 4 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LRob.fr	2026-01-15 09:06:13 (4 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇩🇪 LRob.fr	2026-01-15 05:51:39 (4 months ago)	WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail	Brute-Force Web App Attack
🇳🇱 homeshowdomain.nl	2026-01-12 23:00:42 (5 months ago)	Auto-ban: 14 malicious requests on 2026-01-11 (e.g., env/backup probes, brute-force, or error bursts ... show more Auto-ban: 14 malicious requests on 2026-01-11 (e.g., env/backup probes, brute-force, or error bursts). show less	Hacking Web App Attack SSH
🇩🇪 LRob.fr	2026-01-12 04:34:10 (5 months ago)	Repeated attacks detected by Fail2Ban in recidive jail	Hacking
🇩🇪 LRob.fr	2026-01-12 04:04:25 (5 months ago)	WAF repeated trigger detected by Fail2Ban in plesk-modsecurity jail	Web App Attack
🇩🇪 Bedios GmbH	2026-01-12 03:54:30 (5 months ago)	Wordpress hacking attempt	Web App Attack
Anonymous	2026-01-11 14:47:02 (5 months ago)	wordpress-trap	Web App Attack
🇺🇸 ambor	2026-01-10 08:57:51 (5 months ago)	Honeypot triggered: /wp-login.php on ifebridge.com. User-Agent: Mozilla/5.0. Method: POST	Web App Attack
🇺🇸 ambor	2026-01-10 07:57:34 (5 months ago)	Honeypot triggered: /wp-login.php on ifebridge.com. User-Agent: Mozilla/5.0. Method: GET	Web App Attack
🇧🇪 cmbplf	2026-01-10 03:24:07 (5 months ago)	1.499 POST requests with url.path */wp-login.php	Brute-Force Bad Web Bot
🇫🇷 Murazaki	2026-01-09 23:30:22 (5 months ago)	139.59.235.243 - - [09/Jan/2026:05:54:52 +0100] "" 400 0 "-" "-" "-" ...	Hacking
🇺🇸 ambor	2026-01-09 13:34:54 (5 months ago)	Honeypot triggered: /wp-includes/wlwmanifest.xml on ifebridge.com. User-Agent: Mozilla/5.0 (Windows ... show more Honeypot triggered: /wp-includes/wlwmanifest.xml on ifebridge.com. User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/78.0.3904.108 Safari/537.36. Method: GET show less	Web App Attack
🇺🇸 TPI-Abuse	2026-01-09 11:38:59 (5 months ago)	(mod_security) mod_security (id:225170) triggered by 139.59.235.243 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:225170) triggered by 139.59.235.243 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jan 09 06:38:55.288920 2026] [security2:error] [pid 1245:tid 1245] [client 139.59.235.243:64750] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)\|\|fivecentmiracle.com\|F\|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "fivecentmiracle.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "aWDoz6J2UWQl95WrtjVnHQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-01-09 06:05:30 (5 months ago)	Too many Status 40X (24)	Brute-Force Web App Attack
🇮🇹 VHosting	2026-01-09 05:20:15 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack

Showing 1 to 15 of 69 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 172.253.214.122

🇮🇳 125.21.53.232

🇸🇬 118.194.234.189

🇰🇷 115.178.75.242

🇲🇦 105.77.207.207

🇺🇸 104.248.177.83

🇨🇳 58.223.165.154

🇺🇸 3.15.142.175

🇺🇸 2620:171:ac:f003:9999::244

🇺🇸 192.178.115.93

🇮🇩 180.243.191.155

🇫🇷 51.254.113.225

🇧🇷 45.205.1.5

🇺🇸 45.156.129.137

🇩🇪 45.130.202.37

🇺🇦 37.221.133.111

🇹🇼 198.235.24.127

🇨🇦 195.63.17.54

🇬🇧 193.163.125.195

🇺🇦 193.38.255.65