JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.65.9.57

159.65.9.57 was found in our database!

This IP was reported 35 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.65.9.57

Whois 159.65.9.57

IP Abuse Reports for 159.65.9.57:

This IP address has been reported a total of 35 times from 31 distinct sources. 159.65.9.57 was first reported on December 16th 2020, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇩 Diskominfo Lumajang	2026-06-17 19:10:02 (2 hours ago)	Security Event Detected by SOC Diskominfo Lumajang: event=alert, hits=14	Brute-Force
🇺🇸 ANTI SCANNER	2026-06-17 16:01:38 (6 hours ago)	Scanner : /admin/server/php/	Web Spam
Anonymous	2026-06-17 12:22:38 (9 hours ago)	$f2bV_matches	Brute-Force Bad Web Bot Web App Attack
🇮🇩 zam	2026-06-17 11:22:41 (10 hours ago)	159.65.9.57 - - [17/Jun/2026:11:22:37 +0000] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.p ... show more 159.65.9.57 - - [17/Jun/2026:11:22:37 +0000] "POST /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 302 308 show less	Web App Attack
🇹🇼 kk_it_man	2026-06-17 10:33:01 (11 hours ago)	ET WEB_SERVER PHP tags in HTTP POST	Port Scan
🇺🇸 ANTI SCANNER	2026-06-17 09:18:58 (12 hours ago)	Scanner : /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php	Web Spam
🇺🇸 nodepile	2026-06-15 13:00:33 (2 days ago)	Requests denied due to active blacklist hits (tenant=82 method=GET path=/vendor/phpunit/phpunit/src/ ... show more Requests denied due to active blacklist hits (tenant=82 method=GET path=/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php ua='Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.3') show less	Web App Attack Exploited Host
🇫🇷 Phenix Info	2026-06-15 04:58:16 (2 days ago)	SmallGuard.fr/Prestashop Massive 403	Web App Attack
Anonymous	2026-06-15 00:10:37 (2 days ago)	eval-stdin.php	Hacking Brute-Force Web App Attack
🇬🇧 venus.launch.bz	2026-06-14 23:58:58 (2 days ago)	(gohttpua) Bad UA Go-http-client from 159.65.9.57 (SG/Singapore/-)	Hacking
🇮🇩 BPS-StatisticsIndonesia	2026-06-14 23:25:38 (2 days ago)	TinyMCE Scan Activities: "2026-06-15T06:25:38.826+07:00" "/tinymce/filemanager/dialog.php" "159.65.9 ... show more TinyMCE Scan Activities: "2026-06-15T06:25:38.826+07:00" "/tinymce/filemanager/dialog.php" "159.65.9.57" "Go-http-client/1.1" show less	Web App Attack
🇮🇩 BPS-StatisticsIndonesia	2026-06-14 22:26:57 (2 days ago)	TinyMCE Scan Activities: "2026-06-15T05:26:57.959+07:00" "/tinymce/filemanager/dialog.php" "159.65.9 ... show more TinyMCE Scan Activities: "2026-06-15T05:26:57.959+07:00" "/tinymce/filemanager/dialog.php" "159.65.9.57" "Go-http-client/1.1" show less	Web App Attack
Anonymous	2026-06-14 20:06:29 (3 days ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇺🇸 Gabriel Camargo	2026-06-14 15:10:38 (3 days ago)	159.65.9.57 - - [14/Jun/2026:10:10:37 -0500] "GET /upload/server/php/ HTTP/1.1" 301 178 "-" "Go-http ... show more 159.65.9.57 - - [14/Jun/2026:10:10:37 -0500] "GET /upload/server/php/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 159.65.9.57 - - [14/Jun/2026:10:10:38 -0500] "GET /admin/server/php/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" 159.65.9.57 - - [14/Jun/2026:10:10:38 -0500] "GET /fileupload/server/php/ HTTP/1.1" 301 178 "-" "Go-http-client/1.1" ... show less	Brute-Force SSH
🇮🇩 sockominfo	2026-06-14 15:00:28 (3 days ago)	Reported by TangerangKota-CSIRT. Status: MALICIOUS	Hacking Email Spam

Showing 1 to 15 of 35 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 167.86.95.35

🇳🇱 45.142.193.223

🇫🇷 207.180.193.38

🇮🇳 122.160.15.31

🇧🇩 103.132.223.88

🇺🇸 66.132.172.42

🇺🇸 35.224.84.133

🇭🇰 35.220.164.239

🇨🇦 35.203.37.192

🇺🇸 35.196.1.179

🇧🇪 35.195.99.201

🇨🇳 220.179.120.26

🇬🇧 217.154.45.93

🇳🇱 185.242.226.11

🇵🇱 145.239.83.63

🇨🇳 115.231.78.11

🇺🇸 109.105.210.82

🇺🇸 104.236.142.88

🇳🇱 45.148.10.152

🇨🇳 39.148.85.63