JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.65.9.42

159.65.9.42 was found in our database!

This IP was reported 21 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.65.9.42

Whois 159.65.9.42

IP Abuse Reports for 159.65.9.42:

This IP address has been reported a total of 21 times from 17 distinct sources. 159.65.9.42 was first reported on June 22nd 2026, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇦🇺 LiftUp Hosting	2026-06-23 21:33:58 (9 hours ago)	Honeypot hit: HTTP/1.1 request on 2375 GET /info User-Agent: curl/8.14.1 Accept: /; 2375 [1] TCP	Hacking Bad Web Bot
Anonymous	2026-06-23 18:14:32 (13 hours ago)	Jun 22 22:18:21 localhost kernel: [110526377.362694] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more Jun 22 22:18:21 localhost kernel: [110526377.362694] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=159.65.9.42 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=236 ID=31179 PROTO=TCP SPT=40540 DPT=2375 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 22 22:18:21 localhost kernel: [110526377.362719] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=159.65.9.42 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=236 ID=31179 PROTO=TCP SPT=40540 DPT=2375 SEQ=3497201906 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 23 14:14:32 localhost kernel: [110583746.655852] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=159.65.9.42 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x40 TTL=234 ID=26767 PROTO=TCP SPT=58437 DPT=2375 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 23 14:14:32 localhost kernel: [110583746.655869] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=159.65.9.42 DST=[mungedIP2] LEN=40 TOS=0x00 PREC show less	Port Scan
🇩🇪 KPS	2026-06-23 05:35:18 (1 day ago)	PortscanM	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-23 05:10:27 (1 day ago)	Honeypot hit: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-Encoding: id ... show more Honeypot hit: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-Encoding: identity; 2375 [1] TCP show less	Web App Attack
🇦🇺 LiftUp Hosting	2026-06-23 05:04:02 (1 day ago)	Honeypot hit: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-Encoding: id ... show more Honeypot hit: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-Encoding: identity; 2375 [1] TCP show less	Hacking Bad Web Bot
🇫🇷 TheHoneyPotter	2026-06-23 04:49:00 (1 day ago)	Honeypot [fc-honeypot]: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-En ... show more Honeypot [fc-honeypot]: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-Encoding: identity; 2375 [1] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇹🇭 Sawasdee	2026-06-23 04:48:10 (1 day ago)	Port Scan ...	Port Scan
🇨🇭 Elysium Security	2026-06-23 04:45:43 (1 day ago)	Mass port scanning on a whole network	Port Scan
🇺🇸 micropedro	2026-06-23 04:31:31 (1 day ago)	6 incidents: port scanning. First: 2026-06-22 23:24, Last: 2026-06-23 00:31 UTC. Triggers: port-trap ... show more 6 incidents: port scanning. First: 2026-06-22 23:24, Last: 2026-06-23 00:31 UTC. Triggers: port-trap,non-public-port,firewall-tcp,ufw-repeater,recidive,ufw-repeater. show less	Port Scan Brute-Force
Anonymous	2026-06-23 04:11:36 (1 day ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇩🇪 iNetWorker	2026-06-23 04:00:58 (1 day ago)	firewall-block, port(s): 2375/tcp	Port Scan
🇩🇪 Admins@FBN	2026-06-23 03:45:59 (1 day ago)	FW-PortScan: Traffic Blocked srcport=46308 dstport=2375	Port Scan
🇬🇧 gbzret4d	2026-06-23 03:45:56 (1 day ago)	Honeypot [uk-production01]: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accep ... show more Honeypot [uk-production01]: HTTP/1.1 request on 2375 GET /info User-Agent: Python-urllib/3.13 Accept-Encoding: identity; 2375 [1] TCP show less	Hacking Bad Web Bot
🇩🇪 centurion	2026-06-23 03:25:21 (1 day ago)	Unauthorized attempt on lab [2375/tcp] Source port: 45053 TTL: 244 Packet length: 40 TOS: 0x00 https ... show more Unauthorized attempt on lab [2375/tcp] Source port: 45053 TTL: 244 Packet length: 40 TOS: 0x00 https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇮 FDC	2026-06-23 02:45:49 (1 day ago)	Malicious activity from 159.65.9.42 detected by FDC honeypots. Categories: 14,15,21. 12 events in la ... show more Malicious activity from 159.65.9.42 detected by FDC honeypots. Categories: 14,15,21. 12 events in last 24h. show less	Port Scan Hacking Web App Attack

Showing 1 to 15 of 21 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 211.253.37.225

🇹🇷 195.87.67.89

🇺🇿 185.213.230.13

🇫🇷 91.231.89.129

🇺🇸 89.222.103.117

🇫🇷 85.217.140.49

🇫🇷 85.217.140.48

🇺🇸 73.36.177.174

🇨🇳 60.188.58.133

🇨🇳 39.105.202.192

🇸🇪 31.208.220.217

🇳🇱 2.59.183.60

🇷🇴 2.57.121.112

🇹🇭 203.170.192.251

🇳🇱 195.178.110.30

🇨🇳 116.62.242.59

🇰🇷 112.216.129.27

🇮🇳 103.197.74.187

🇪🇸 85.235.69.165

🇫🇷 85.217.140.47