JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 84.239.42.24

84.239.42.24 was found in our database!

This IP was reported 744 times. Confidence of Abuse is 35%: ?

35%

ISP	ORIGIN INTERNET NETWORK
Usage Type	Data Center/Web Hosting/Transit
ASN	AS212238
Domain Name	castlegem.co.uk
Country	🇺🇦 Ukraine
City	Sofiyivska Borschagivka, Kyiv Oblast

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 84.239.42.24

Whois 84.239.42.24

IP Abuse Reports for 84.239.42.24:

This IP address has been reported a total of 744 times from 192 distinct sources. 84.239.42.24 was first reported on March 30th 2023, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇸🇪 donarev419	2026-06-03 02:46:27 (1 week ago)	Connection to port 443 with data transfer. Data preview: �	Port Scan Hacking
Anonymous	2026-05-21 05:45:41 (3 weeks ago)	(wordpress) Failed wordpress login from 84.239.42.24 (UA/Ukraine/-)	Brute-Force
🇨🇭 Elysium Security	2026-05-18 08:29:01 (3 weeks ago)	Mass port scanning on a whole network	Port Scan
🇮🇩 securejdprop	2026-05-10 02:02:47 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/vpatch-env-access. WAF block: crowdsecurit ... show more This IP was detected by CrowdSec triggering crowdsecurity/vpatch-env-access. WAF block: crowdsecurity/vpatch-env-access from 84.239.42.24 (172.18.0.2) show less	Hacking Web App Attack
🇦🇺 2000cn.com.au	2026-05-10 01:31:05 (1 month ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇧🇪 voormedia	2026-05-10 01:30:12 (1 month ago)	Accessed trap at '/.env'	Web App Attack
🇯🇵 Watch40x	2026-05-10 01:20:16 (1 month ago)	Automated report from Watch40x security system. Web application probing detected.	Web App Attack
🇬🇧 CrystalMaker	2026-05-10 00:28:38 (1 month ago)	Vulnerability scan - GET /.env	Hacking
🇩🇪 MusicLibrary	2026-05-09 23:37:18 (1 month ago)	Attempted access to sensitive configuration files (.env, .git, etc.)	Bad Web Bot Web App Attack
🇯🇵 Short-legs-Spider	2026-05-09 22:50:40 (1 month ago)	Test on existence -- [10/May/2026:07:50:40 +0900] "GET /.env HTTP/1.1" 403 76 "-" "-"	Web App Attack
🇯🇵 VXG-NET	2026-05-09 22:40:17 (1 month ago)	port=80, indicator_type=info-leak	Hacking
🇨🇳 ThreatBook.io	2026-04-13 22:40:21 (2 months ago)	ThreatBook Intelligence: Spam more details on http://threatbook.io/ip/84.239.42.24	SSH
🇫🇷 tecnicorioja	2026-04-13 18:00:15 (2 months ago)	Failed password for root Apr 13 16:55:19 port 18598	Brute-Force SSH
🇨🇭 SOC [GOLINE SA]	2026-04-13 17:08:02 (2 months ago)	FortiGate detected brute force login attempt from IPv4 address 84.239.42.24	Brute-Force SSH
🇳🇱 knock	2026-04-13 16:13:53 (2 months ago)	Knock-Knock honeypot brute-force: SSH (117 total hits)	Brute-Force SSH

Showing 1 to 15 of 744 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇷 195.46.129.82

🇰🇼 62.150.237.107

🇫🇷 51.178.111.225

🇨🇳 39.171.240.69

🇧🇪 34.77.185.95

🇬🇧 2a06:4880:c000::f8

🇬🇧 198.105.122.87

🇲🇿 196.28.226.66

🇺🇸 162.216.149.221

🇰🇷 118.37.214.187

🇺🇸 40.124.173.90

🇧🇪 34.53.225.166

🇺🇸 4.227.135.144

🇨🇦 208.96.233.67

🇮🇳 125.20.210.182

🇩🇪 69.5.169.57

🇩🇪 69.5.169.32

🇺🇸 48.214.144.79

🇨🇳 36.139.239.23

🇮🇳 34.93.71.45