JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.239.71.239

172.239.71.239 was found in our database!

This IP was reported 243 times. Confidence of Abuse is 100%: ?

100%

ISP	Linode
Usage Type	Data Center/Web Hosting/Transit
ASN	AS63949
Hostname(s)	172-239-71-239.ip.linodeusercontent.com
Domain Name	linode.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 172.239.71.239

Whois 172.239.71.239

IP Abuse Reports for 172.239.71.239:

This IP address has been reported a total of 243 times from 101 distinct sources. 172.239.71.239 was first reported on May 27th 2026, and the most recent report was 2 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇿🇦 slartybartfast69420blazit	2026-06-09 20:16:03 (2 hours ago)	Fail2ban picked up 172.239.71.239 attacking nginx	Web App Attack
Anonymous	2026-06-09 20:07:57 (2 hours ago)	Tried our host z.	Port Scan Hacking Exploited Host
🇩🇪 Axel	2026-06-09 19:58:06 (2 hours ago)	[2026-06-09 19:58:05 UTC] Honeypot HTTP Admin connection attempt \| AXFRA HONEYPOT	Web App Attack
🇹🇷 ferique	2026-06-09 19:41:40 (2 hours ago)	Real-time Intercept: FTP attack. Reference: 2026-06-09 22:41:33.4056 Login failure: 172.239.71.239 ... show more Real-time Intercept: FTP attack. Reference: 2026-06-09 22:41:33.4056 Login failure: 172.239.71.239 FTP show less	Brute-Force
🇯🇵 www.winos.me	2026-06-09 17:40:47 (4 hours ago)	Shield: Layer4 Port 9 Trap	Port Scan Hacking
🇩🇪 Mykola Spesivtsev	2026-06-09 14:47:29 (7 hours ago)	HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:Mozilla/5.0 (Macintosh; Inte ... show more HTTP Tarpit detected bot activity:TargetPort:80, Path:/, Method:GET, UA:Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 show less	Port Scan Web App Attack Bad Web Bot
🇩🇪 banankicks	2026-06-09 14:22:40 (8 hours ago)	Unauthorized connection attempt detected from IP address 172.239.71.239 to port 5432 (banankicks-ser ... show more Unauthorized connection attempt detected from IP address 172.239.71.239 to port 5432 (banankicks-server) [z] show less	Brute-Force Exploited Host
🇩🇪 dispaisyenterprises	2026-06-09 14:22:02 (8 hours ago)	Honeypot [fra-de-honeypot]: HTTP/1.1 request on 1936 GET / User-Agent: Mozilla/5.0 (Macintosh; Inte ... show more Honeypot [fra-de-honeypot]: HTTP/1.1 request on 1936 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 1936 [2] TCP Reported by DisPaisy Enterprises (dispaisy.systems) using: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot
🇩🇪 Axel	2026-06-09 10:39:10 (11 hours ago)	[2026-06-09 10:39:10 UTC] Honeypot Alt HTTP Proxy connection attempt \| AXFRA HONEYPOT	Web App Attack
🇩🇪 Justin F. \| AS204464	2026-06-09 08:46:34 (13 hours ago)	Honeypot [nx-infrastructure]: HTTP/1.1 request on 8091 GET / User-Agent: Mozilla/5.0 (Macintosh; In ... show more Honeypot [nx-infrastructure]: HTTP/1.1 request on 8091 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 8091 [2] TCP Reported by: Justin F. show less	Hacking Bad Web Bot
🇺🇸 Alvino	2026-06-09 08:41:16 (13 hours ago)	Blocked due to abuse score 100	Port Scan Hacking SQL Injection Web Spam
🇺🇸 sandra361	2026-06-09 04:44:42 (17 hours ago)	Port scan detected: 8 attempts across 1 ports (2103). \| Evidence: REAPER_TARPIT:IN=enp1s0 OUT= SRC=1 ... show more Port scan detected: 8 attempts across 1 ports (2103). \| Evidence: REAPER_TARPIT:IN=enp1s0 OUT= SRC=172.239.71.239 LEN=56 TOS=0x00 PREC=0x00 TTL=48 ID=24653 DF PROTO=TCP SPT=56468 DPT=2103 WINDOW=64240 RES=0x00 SYN URGP=0 show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-06-09 02:22:23 (20 hours ago)	Honeypot hit: HTTP/1.1 request on 1052 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_ ... show more Honeypot hit: HTTP/1.1 request on 1052 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 1052 [2] TCP show less	Web App Attack
🇳🇱 knock	2026-06-08 23:36:24 (22 hours ago)	Knock-Knock honeypot brute-force: proto8 (3 total hits)	Brute-Force
Anonymous	2026-06-08 20:54:12 (1 day ago)	Honeypot hit: HTTP/1.1 request on 1043 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_ ... show more Honeypot hit: HTTP/1.1 request on 1043 GET / User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 13_1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/108.0.0.0 Safari/537.36 Accept: / Accept-Encoding: gzip; 1043 [2] TCP Reported by: https://github.com/sefinek/T-Pot-To-AbuseIPDB show less	Hacking Bad Web Bot

Showing 1 to 15 of 243 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇴 152.200.205.180

🇺🇸 104.23.245.140

🇺🇸 216.25.89.86

🇺🇸 159.89.228.57

🇺🇸 142.251.143.133

🇻🇳 103.173.227.136

🇮🇩 103.147.237.208

🇺🇸 100.29.192.85

🇱🇹 81.30.98.44

🇳🇱 45.87.41.106

🇧🇪 34.77.4.85

🇯🇵 16.208.71.169

🇨🇳 221.229.220.180

🇧🇷 177.185.38.172

🇳🇱 176.65.139.215

🇺🇸 165.22.9.166

🇮🇳 154.84.242.115

🇻🇳 112.78.4.53

🇷🇴 92.118.39.62

🇺🇸 2a02:4780:2d:ccc6::1