JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.65.156.145

159.65.156.145 was found in our database!

This IP was reported 43 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.65.156.145

Whois 159.65.156.145

IP Abuse Reports for 159.65.156.145:

This IP address has been reported a total of 43 times from 34 distinct sources. 159.65.156.145 was first reported on June 7th 2026, and the most recent report was 3 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 LoneRider	2026-06-23 20:22:35 (3 days ago)	[23/Jun/2026:22:22:17.736289 +0200] ajrq-Wv-vX9WoPKX3a4vWwAAAAA 159.65.156.145 34756 127.0.0.1 7080 ... show more [23/Jun/2026:22:22:17.736289 +0200] ajrq-Wv-vX9WoPKX3a4vWwAAAAA 159.65.156.145 34756 127.0.0.1 7080 [23/Jun/2026:22:22:18.989782 +0200] ajrq-lgch_Onh5hheuQgxQAAAAY 159.65.156.145 34772 127.0.0.1 7080 [23/Jun/2026:22:22:35.038111 +0200] ajrrC0rWDDov7a-TokchhQAAAAk 159.65.156.145 36128 127.0.0.1 7080 ... show less	Hacking
🇫🇷 sthoyer.de	2026-06-23 17:36:21 (3 days ago)	159.65.156.145 - - [23/Jun/2026:19:36:07 +0200] "GET /.env.example HTTP/1.1" 302 495 "-" "Mozilla/5. ... show more 159.65.156.145 - - [23/Jun/2026:19:36:07 +0200] "GET /.env.example HTTP/1.1" 302 495 "-" "Mozilla/5.0 (compatible)" 159.65.156.145 - - [23/Jun/2026:19:36:11 +0200] "GET /docker-compose.override.yml HTTP/1.1" 302 495 "-" "Mozilla/5.0 (compatible)" 159.65.156.145 - - [23/Jun/2026:19:36:20 +0200] "GET /compose.yml HTTP/1.1" 302 495 "-" "Mozilla/5.0 (compatible)" ... show less	Web App Attack
🇩🇪 ISPLtd	2026-06-22 15:34:36 (4 days ago)	Jun 22 12:22:23 159.65.156.145 TCP SPT=41659 DPT=8983 SYN Jun 22 12:23:29 159.65.156.145 TCP SPT=416 ... show more Jun 22 12:22:23 159.65.156.145 TCP SPT=41659 DPT=8983 SYN Jun 22 12:23:29 159.65.156.145 TCP SPT=41659 DPT=7001 SYN Jun 22 12:34:35 159.65.156.145 TCP SPT=41659 DPT=8080 ... show less	Port Scan
🇫🇷 sthoyer.de	2026-06-22 15:32:56 (4 days ago)	Jun 22 17:29:56 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd: ... show more Jun 22 17:29:56 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=159.65.156.145 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x20 TTL=243 ID=25192 PROTO=TCP SPT=41659 DPT=3000 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 17:31:14 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=159.65.156.145 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x20 TTL=243 ID=36348 PROTO=TCP SPT=41659 DPT=8443 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 17:31:22 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=159.65.156.145 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x20 TTL=243 ID=28213 PROTO=TCP SPT=41659 DPT=7001 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 17:32:49 sthoyer kernel: [IPTables-Dropped-I] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=159.65.156.145 DST=173.212.223.67 LEN=40 TOS=0x00 PREC=0x20 TTL=243 ID=35215 PROTO=TCP SPT=41659 DPT=9090 WINDOW=1024 R ... show less	Port Scan
🇫🇷 Little Iguana	2026-06-22 15:26:19 (4 days ago)	trying to access non-authorized port	Port Scan
🇩🇪 ValtonTahiri	2026-06-19 20:21:00 (1 week ago)	UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly as ... show more UFW blocked a suspicious connection attempt to a closed or denied port. This activity is commonly associated with port scanning, service discovery, or automated internet probing. Technical: source_ip=159.65.156.145; proto=TCP; source_port=59902; target_port=3000; flags=SYN show less	Port Scan
🇦🇺 AWW-Admin	2026-06-19 18:28:18 (1 week ago)	(mod_security) mod_security triggered on hostname [redacted] 159.65.156.145 (IN/India/-)	SQL Injection
🇩🇪 Progetto1	2026-06-19 09:01:01 (1 week ago)	Detected via HAProxyScanner at 2026-06-19 09:01:01 UTC on destination port WEB (80/443). Repeated sc ... show more Detected via HAProxyScanner at 2026-06-19 09:01:01 UTC on destination port WEB (80/443). Repeated scan / connection. show less	Port Scan Hacking Brute-Force
🇩🇪 zupan	2026-06-19 03:38:28 (1 week ago)	Blocked by UFW on vps [8983/tcp] \| SPT: 40142 \| TTL: 234 \| LEN: 40 \| TOS: 0x00 • Reported by: github ... show more Blocked by UFW on vps [8983/tcp] \| SPT: 40142 \| TTL: 234 \| LEN: 40 \| TOS: 0x00 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇩🇪 check-the-sum.fr	2026-06-19 03:38:22 (1 week ago)	Port Scanning	Port Scan
🇩🇪 HoneyPotFRI	2026-06-18 23:45:49 (1 week ago)	159.65.156.145 - - [19/Jun/2026:01:45:46 +0200] "GET /app/etc/env.php HTTP/1.1" 404 125 "-" "Mozilla ... show more 159.65.156.145 - - [19/Jun/2026:01:45:46 +0200] "GET /app/etc/env.php HTTP/1.1" 404 125 "-" "Mozilla/5.0 (compatible)" 159.65.156.145 [redacted] (14061-DIGITALOCEAN-ASN India Bengaluru) - - [19/Jun/ ... show less	Bad Web Bot Web App Attack
🇩🇪 Teufel100	2026-06-18 23:03:49 (1 week ago)	ModSecurity rejected a query	Brute-Force Hacking Web App Attack
🇩🇪 mueller-nils.com	2026-06-18 13:59:21 (1 week ago)	Jun 18 15:42:37 [host] kernel: [4898929.169209] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=159.65.156.145 D ... show more Jun 18 15:42:37 [host] kernel: [4898929.169209] [UFW BLOCK] IN=venet0 OUT= MAC= SRC=159.65.156.145 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=59007 PROTO=TCP SPT=50113 DPT=8000 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 18 15:43:22 [host] kernel: [48 show less	Port Scan
🇩🇪 Bedios GmbH	2026-06-16 21:34:03 (1 week ago)	Login credentials theft attempt	Hacking
🇩🇪 langenkamp-media	2026-06-16 21:28:27 (1 week ago)	Fail2Ban: Banned from jail nginx-nohome on 3dausdu.de	Web App Attack

Showing 1 to 15 of 43 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 210.79.191.170

🇺🇸 205.210.31.90

🇧🇪 198.235.24.212

🇳🇱 195.62.32.180

🇬🇧 193.176.29.19

🇧🇬 185.253.160.7

🇨🇳 182.135.210.134

🇳🇱 176.65.148.120

🇨🇳 124.66.2.68

🇻🇳 116.99.168.247

🇵🇰 103.157.88.96

🇮🇩 103.146.202.84

🇷🇺 95.24.237.214

🇺🇸 66.132.172.230

🇺🇸 50.82.41.226

🇺🇸 45.56.83.247

🇧🇷 170.238.198.253

🇸🇪 130.49.11.188

🇳🇱 91.92.40.28

🇫🇷 85.217.140.15