JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.203.39.124

159.203.39.124 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 22%: ?

22%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇨🇦 Canada
City	Toronto, Ontario

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.203.39.124

Whois 159.203.39.124

IP Abuse Reports for 159.203.39.124:

This IP address has been reported a total of 18 times from 15 distinct sources. 159.203.39.124 was first reported on September 9th 2025, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 xmission.com	2026-06-18 09:07:35 (1 week ago)	Blocked by UFW (TCP on 10000) Source port: 61001 TTL: 241 Packet length: 44 TOS: 0x08 This report ( ... show more Blocked by UFW (TCP on 10000) Source port: 61001 TTL: 241 Packet length: 44 TOS: 0x08 This report (for 159.203.39.124) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇺🇸 MPL	2026-06-18 09:03:48 (1 week ago)	tcp/8083	Port Scan
🇫🇷 masterguru	2026-06-02 02:50:10 (3 weeks ago)	(modsec_5080) ModSec 5080: Infrastructure subdomain probe from 159.203.39.124 (CA/Canada/-): 1 in th ... show more (modsec_5080) ModSec 5080: Infrastructure subdomain probe from 159.203.39.124 (CA/Canada/-): 1 in the last 3600 secs (0-195) show less	Hacking
🇺🇸 trentwiles.com	2026-04-30 23:56:11 (1 month ago)	Unauthorized connection attempt detected from IP address 159.203.39.124 to port 8882 [SFO]	Port Scan
🇹🇷 rtbh.com.tr	2026-03-17 20:12:07 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 Hobby Bob	2026-03-17 09:08:13 (3 months ago)	Mar 17 09:08:13 server dovecot: pop3-login: Disconnected: Disconnected: Too many bad commands (no au ... show more Mar 17 09:08:13 server dovecot: pop3-login: Disconnected: Disconnected: Too many bad commands (no auth attempts in 0 secs): user=, rip=159.203.39.124, lip=X.X.X.X session= show less	Port Scan Hacking
🇺🇸 xmission.com	2026-03-17 08:41:28 (3 months ago)	Blocked by UFW (TCP on 8888) Source port: 61014 TTL: 244 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 8888) Source port: 61014 TTL: 244 Packet length: 44 TOS: 0x08 This report (for 159.203.39.124) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇳🇱 VMHeaven.io	2026-03-17 08:04:53 (3 months ago)	Blocked by UFW [1911/tcp] Source port: 61001 TTL: 235 Packet length: 44	Port Scan
🇺🇸 MPL	2026-03-17 07:56:22 (3 months ago)	tcp/7000	Port Scan
🇨🇳 ThreatBook.io	2026-03-16 22:58:19 (3 months ago)	ThreatBook Intelligence: vpn_proxy more details on http://threatbook.io/ip/159.203.39.124	SSH
🇩🇪 ghostwarriors	2026-03-16 11:50:52 (3 months ago)	Unauthorized connection attempt detected, SSH Brute-Force	Brute-Force Port Scan SSH
🇩🇪 XICTRON	2026-03-16 11:50:04 (3 months ago)	SSH brute-force attempt detected by Fail2Ban	SSH
🇺🇸 mg	2026-03-16 11:46:01 (3 months ago)	2026-03-16T04:45:52.282223-07:00 bluejay sshd[257725]: Invalid user elasticsearch from 159.203.39.12 ... show more 2026-03-16T04:45:52.282223-07:00 bluejay sshd[257725]: Invalid user elasticsearch from 159.203.39.124 port 34918 2026-03-16T04:45:53.205556-07:00 bluejay sshd[257725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.39.124 2026-03-16T04:45:54.819316-07:00 bluejay sshd[257725]: Failed password for invalid user elasticsearch from 159.203.39.124 port 34918 ssh2 2026-03-16T04:46:00.299858-07:00 bluejay sshd[257758]: Invalid user olga from 159.203.39.124 port 46630 ... show less	Brute-Force SSH
🇷🇴 eddy.ro	2026-03-16 11:46:01 (3 months ago)	Mar 16 13:43:48 cloud10504 sshd[980526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Mar 16 13:43:48 cloud10504 sshd[980526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.39.124 user=root Mar 16 13:43:50 cloud10504 sshd[980526]: Failed password for invalid user root from 159.203.39.124 port 41012 ssh2 Mar 16 13:46:00 cloud10504 sshd[980542]: Invalid user olga from 159.203.39.124 port 48588 ... show less	Brute-Force SSH
🇫🇮 Ticlem	2026-03-16 11:46:00 (3 months ago)	2026-03-16T12:45:53.494236+01:00 clement-turlure.fr sshd[1275790]: pam_unix(sshd:auth): authenticati ... show more 2026-03-16T12:45:53.494236+01:00 clement-turlure.fr sshd[1275790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.39.124 2026-03-16T12:45:55.107750+01:00 clement-turlure.fr sshd[1275790]: Failed password for invalid user elasticsearch from 159.203.39.124 port 48620 ssh2 2026-03-16T12:45:56.705807+01:00 clement-turlure.fr sshd[1276121]: Invalid user olga from 159.203.39.124 port 60754 2026-03-16T12:45:57.273714+01:00 clement-turlure.fr sshd[1276121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.39.124 2026-03-16T12:45:59.102800+01:00 clement-turlure.fr sshd[1276121]: Failed password for invalid user olga from 159.203.39.124 port 60754 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 201.17.133.138

🇳🇱 91.92.40.46

🇳🇱 50.7.38.242

🇧🇷 45.205.1.76

🇳🇱 45.148.10.152

🇳🇱 45.148.10.141

🇺🇸 44.51.200.134

🇧🇷 34.151.221.114

🇮🇳 20.235.157.149

🇺🇸 8.235.112.214

🇲🇴 125.31.4.70

🇳🇱 91.92.40.176

🇳🇴 89.11.209.113

🇺🇸 54.161.116.59

🇧🇷 45.205.1.73

🇺🇸 44.112.77.80

🇵🇰 39.34.164.228

🇨🇳 223.149.141.162

🇿🇦 197.94.79.151

🇮🇳 157.20.215.123