Looking up IP
Check an IP Address, Domain Name, Subnet, or ASN
172.59.241.59 has a threat confidence score of 88%. This IP address from United States (AS21928, T-Mobile USA, Inc.) has been observed in 4 honeypot sessions targeting HTTP protocols. Detected attack patterns include http get ping cgi command injection wget arm7, http ping command injection download execute arm7. First observed on April 4, 2026, most recently active April 12, 2026.
HTTP GET request to /ping.cgi with command injection payload downloading and executing ARM7 binary via wget.
HTTP GET request exploiting pingIpAddress parameter command injection to download an ARM7 binary via wget, write it to /tmp, set executable permissions, and execute it.
HTTP request using GET method.
Identifies HTTP requests targeting the web server root path ("/"), typically used for initial service discovery, host validation, or baseline content inspection prior to deeper enumeration.