JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 139.59.25.153

139.59.25.153 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 139.59.25.153

Whois 139.59.25.153

IP Abuse Reports for 139.59.25.153:

This IP address has been reported a total of 15 times from 9 distinct sources. 139.59.25.153 was first reported on February 10th 2021, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇹 urnilxfgbez	2025-12-14 23:45:00 (5 months ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 jimhill10	2022-05-13 09:26:30 (4 years ago)	Wordpress hack	Hacking Brute-Force
🇺🇸 jimhill10	2021-09-03 16:40:32 (4 years ago)	Wordpress hacking	Hacking Brute-Force
🇺🇸 jimhill10	2021-02-21 08:25:51 (5 years ago)	Wordpress brute force	Hacking Brute-Force
🇩🇪 clamehost.it	2021-02-21 06:59:02 (5 years ago)	Automatic report - Brute Force attack using this IP address	Brute-Force
🇫🇮 bittiguru.fi	2021-02-13 01:08:13 (5 years ago)	Brute Force	Hacking Brute-Force Web App Attack
🇸🇬 pusathosting.com	2021-02-12 16:00:40 (5 years ago)	polres 139.59.25.153 [12/Feb/2021:23:27:28 "-" "POST /xmlrpc.php 200 693 139.59.25.153 [13/Feb/2021: ... show more polres 139.59.25.153 [12/Feb/2021:23:27:28 "-" "POST /xmlrpc.php 200 693 139.59.25.153 [13/Feb/2021:03:57:32 "-" "POST /xmlrpc.php 200 649 139.59.25.153 [13/Feb/2021:03:57:32 "-" "POST /blog/xmlrpc.php 404 14264 show less	Brute-Force Web App Attack
🇸🇬 pusathosting.com	2021-02-12 12:55:27 (5 years ago)	ang 139.59.25.153 [12/Feb/2021:23:43:50 "-" "POST /xmlrpc.php 404 292 139.59.25.153 [13/Feb/2021:00: ... show more ang 139.59.25.153 [12/Feb/2021:23:43:50 "-" "POST /xmlrpc.php 404 292 139.59.25.153 [13/Feb/2021:00:52:28 "-" "POST /blog/xmlrpc.php 302 467 139.59.25.153 [13/Feb/2021:00:52:28 "-" "POST /xmlrpc.php 302 457 show less	Brute-Force Web App Attack
🇩🇪 cerberusinformatica	2021-02-12 06:36:57 (5 years ago)	139.59.25.153 - - [12/Feb/2021:12:36:57 +0100] "POST /blog/xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla ... show more 139.59.25.153 - - [12/Feb/2021:12:36:57 +0100] "POST /blog/xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; fr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8" 139.59.25.153 - - [12/Feb/2021:12:36:57 +0100] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; fr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8" ... show less	Web App Attack
🇩🇪 cerberusinformatica	2021-02-11 06:01:23 (5 years ago)	139.59.25.153 - - [11/Feb/2021:12:01:22 +0100] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 ... show more 139.59.25.153 - - [11/Feb/2021:12:01:22 +0100] "POST /xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; fr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8" 139.59.25.153 - - [11/Feb/2021:12:01:22 +0100] "POST /blog/xmlrpc.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; fr; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8" ... show less	Web App Attack
🇸🇬 pusathosting.com	2021-02-11 02:50:13 (5 years ago)	can 139.59.25.153 [11/Feb/2021:14:36:33 "-" "POST /blog/xmlrpc.php 404 15810 139.59.25.153 [11/Feb/2 ... show more can 139.59.25.153 [11/Feb/2021:14:36:33 "-" "POST /blog/xmlrpc.php 404 15810 139.59.25.153 [11/Feb/2021:14:47:35 "-" "POST /xmlrpc.php 200 611 139.59.25.153 [11/Feb/2021:14:47:35 "-" "POST /blog/xmlrpc.php 404 15833 show less	Brute-Force Web App Attack
🇦🇺 pusathosting.com	2021-02-10 18:40:23 (5 years ago)	hzb4 139.59.25.153 [11/Feb/2021:00:00:51 "-" "POST /xmlrpc.php 200 649 139.59.25.153 [11/Feb/2021:06 ... show more hzb4 139.59.25.153 [11/Feb/2021:00:00:51 "-" "POST /xmlrpc.php 200 649 139.59.25.153 [11/Feb/2021:06:39:23 "-" "POST /blog/xmlrpc.php 404 18125 139.59.25.153 [11/Feb/2021:06:39:23 "-" "POST /xmlrpc.php 200 649 show less	Brute-Force Web App Attack
Anonymous	2021-02-10 18:39:29 (5 years ago)	[Wed Feb 10 18:39:28.664241 2021] [:error] [pid 3650] [client 139.59.25.153] ModSecurity: Access den ... show more [Wed Feb 10 18:39:28.664241 2021] [:error] [pid 3650] [client 139.59.25.153] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "socialfirstresponder.com"] [uri "/blog/xmlrpc.php"] [unique_id "YCRusH8AAAEAAA5CHPMAAAAC"] [Wed Feb 10 18:39:28.779328 2021] [:error] [pid 1143] [client 139.59.25.153] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi show less	Bad Web Bot Web App Attack
🇺🇸 ad5gb.com	2021-02-10 13:32:10 (5 years ago)	[Wed Feb 10 12:32:08.911729 2021] [proxy_fcgi:error] [pid 2079322:tid 140497526974208] [client 127.0 ... show more [Wed Feb 10 12:32:08.911729 2021] [proxy_fcgi:error] [pid 2079322:tid 140497526974208] [client 127.0.0.1:40392] [139.59.25.153] AH01071: Got error 'Primary script unknown' show less	Brute-Force
🇬🇧 sdos.es	2021-02-10 12:45:28 (5 years ago)	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:<?xml version ... show more "XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:<?xml version: <?xml version" show less	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 159.89.174.87

🇻🇳 45.117.177.47

🇨🇳 218.29.196.162

🇧🇩 203.202.249.10

🇭🇰 165.154.60.76

🇧🇩 163.61.212.61

🇻🇳 157.66.26.151

🇨🇳 111.9.22.102

🇻🇳 103.9.77.247

🇺🇸 96.77.221.209

🇨🇳 47.122.77.248

🇧🇿 45.227.254.154

🇨🇳 45.117.10.134

🇨🇳 36.144.72.180

🇺🇸 20.55.15.4

🇨🇳 223.167.75.86

🇨🇳 218.94.115.164

🇩🇪 213.209.159.226

🇺🇸 205.210.31.34

🇧🇪 198.235.24.173