JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 206.189.59.153

206.189.59.153 was found in our database!

This IP was reported 64 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 206.189.59.153

Whois 206.189.59.153

IP Abuse Reports for 206.189.59.153:

This IP address has been reported a total of 64 times from 47 distinct sources. 206.189.59.153 was first reported on November 19th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 Holger	2026-06-11 09:27:44 (1 week ago)	Bruteforce WebAttack	Brute-Force Web App Attack
🇳🇱 Site.eu	2026-06-07 19:33:28 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇩🇪 pscriptos	2026-06-06 18:33:35 (2 weeks ago)	This IP was detected by CrowdSec triggering crowdsecurity/CVE-2017-9841	Web App Attack
🇳🇱 Site.eu	2026-06-06 18:23:53 (2 weeks ago)	Excessive multi-domain requests	Brute-Force
🇬🇧 consul.to	2026-06-06 18:09:17 (2 weeks ago)	Web attack/malicious scanning detected	Web App Attack
🇫🇷 sthoyer.de	2026-06-06 17:58:35 (2 weeks ago)	206.189.59.153 - - [06/Jun/2026:19:58:33 +0200] "GET /users/sign_in HTTP/1.1" 200 10309 "https://git ... show more 206.189.59.153 - - [06/Jun/2026:19:58:33 +0200] "GET /users/sign_in HTTP/1.1" 200 10309 "https://git.sthoyer.de/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:19:58:33 +0200] "GET /users/sign_in HTTP/1.1" 200 10309 "https://git.sthoyer.de/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:19:58:33 +0200] "GET /users/sign_in HTTP/1.1" 200 10288 "https://git.sthoyer.de/.git/config" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:19:58:33 +0200] "GET /users/sign_in HTTP/1.1" 200 10288 "https://git.sthoyer.de/.git/config" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:19:58:34 +0200] "GET /users/sign_i ... show less	Brute-Force
🇨🇭 Origon	2026-06-06 16:54:49 (2 weeks ago)	CVE-2017-9841 - IP: 206.189.59.153 - time="2026-06-06T18:54:48+02:00" level=info msg="(555f66b4f6a7 ... show more CVE-2017-9841 - IP: 206.189.59.153 - time="2026-06-06T18:54:48+02:00" level=info msg="(555f66b4f6a74558bc11e3f93469658es8App0Mcc0TKEeje/crowdsec) crowdsecurity/CVE-2017-9841 by ip 206.189.59.153 (DE/14061) : 4h ban on Ip 206.189.59.153" module=db show less	Web App Attack
🇩🇪 on-com	2026-06-06 16:37:32 (2 weeks ago)	URL scan	Brute-Force Web App Attack
🇩🇪 grassau.com	2026-06-06 16:26:06 (2 weeks ago)	Port Scan detected from 206.189.59.153 (DE/Germany/Hesse/Frankfurt am Main/-).	Port Scan
🇩🇪 jasperedv.de	2026-06-06 16:21:37 (2 weeks ago)	Apache Login - Brutforcing	Web App Attack Brute-Force
🇩🇪 Nevermind	2026-06-06 16:14:17 (2 weeks ago)	206.189.59.153 - - [06/Jun/2026:18:14:16 +0200] "GET /.git/config HTTP/1.1" 403 6299 "http://generat ... show more 206.189.59.153 - - [06/Jun/2026:18:14:16 +0200] "GET /.git/config HTTP/1.1" 403 6299 "http://generation-awesome.de/.git/config" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:18:14:16 +0200] "GET /.git/config HTTP/1.1" 403 6299 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:18:14:16 +0200] "POST //vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1" 404 6312 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:18:14:17 +0200] "GET //js/kcfinder/upload.php HTTP/1.1" 404 6312 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" ... show less	Web App Attack
🇩🇪 MarkGGN	2026-06-06 15:55:51 (2 weeks ago)	Web attack. 206.189.59.153 - - [06/Jun/2026:17:55:50 +0200] "GET /.git/config HTTP/1.1" 404 60 "-" " ... show more Web attack. 206.189.59.153 - - [06/Jun/2026:17:55:50 +0200] "GET /.git/config HTTP/1.1" 404 60 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" 206.189.59.153 - - [06/Jun/2026:17:55:50 +0200] "GET /.git/config HTTP/1.1" 404 60 "http://*/.git/config" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/132.0.0.0 Safari/537.36" show less	Web App Attack
🇩🇪 ITSNF	2026-06-06 15:45:03 (2 weeks ago)	Blocked by os-abuseipdb; 18 hits, proto=tcp, ports=80	Port Scan Hacking
🇩🇪 NewGastroline	2026-06-06 15:22:50 (2 weeks ago)	Malicious request blocked by CrowdSec on gastro-prod1.boreus.de	Bad Web Bot Web App Attack
Anonymous	2026-06-06 15:21:18 (2 weeks ago)	scanning for potential vulnerable apps (wordpress etc.) and database accesses (GHR). Requested URI: ... show more scanning for potential vulnerable apps (wordpress etc.) and database accesses (GHR). Requested URI: /.git/config show less	Web App Attack

Showing 1 to 15 of 64 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇷🇴 193.32.162.16

🇵🇪 190.237.15.167

🇵🇦 190.35.46.224

🇨🇦 165.22.225.218

🇺🇦 128.0.104.44

🇭🇰 103.149.26.43

🇵🇱 87.251.64.157

🇰🇷 61.74.224.30

🇲🇾 2001:4458:c008:88ef:fc00:93ee:4b7e:1869

🇲🇳 203.23.199.89

🇦🇷 190.175.90.73

🇧🇷 189.126.80.182

🇭🇰 165.154.42.209

🇵🇰 153.117.40.93

🇵🇰 61.5.149.83

🇱🇹 45.227.254.170

🇸🇬 43.156.162.193

🇧🇷 20.197.180.144

🇻🇪 186.14.52.67

🇧🇷 170.81.217.100