JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 142.93.56.216

142.93.56.216 was found in our database!

This IP was reported 38 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	North Bergen, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 142.93.56.216

Whois 142.93.56.216

IP Abuse Reports for 142.93.56.216:

This IP address has been reported a total of 38 times from 34 distinct sources. 142.93.56.216 was first reported on August 6th 2024, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 andypiper	2026-06-19 01:01:28 (1 hour ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇫🇮 mnazibo	2026-06-19 00:15:13 (2 hours ago)	Date: Jun 19 03:13:54 2026 EAT \| Reported IP: 142.93.56.216 mod_security \| id: 920350 920440 930130 ... show more Date: Jun 19 03:13:54 2026 EAT \| Reported IP: 142.93.56.216 mod_security \| id: 920350 920440 930130 949110 920500 \| US/usernameab.my_domain/- \| Connections: 1 \| Blocked: Permanent Block: [LF_MODSEC] \| Logs: ; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; Host header is a numeric IP address; H show less	SQL Injection Brute-Force Bad Web Bot
🇩🇪 ghostwarriors	2026-06-18 19:50:22 (6 hours ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇳🇱 0xffffffff	2026-06-18 17:41:46 (8 hours ago)	[2026-06-18 20:41:44.996806] [authz_core:error] [pid 578079:tid 136824949262016] [client 142.93.56.2 ... show more [2026-06-18 20:41:44.996806] [authz_core:error] [pid 578079:tid 136824949262016] [client 142.93.56.216:43410] AH01630: client denied by server configuration: /var/www/html/config , error_notes:wrong-host , URI:'/config/database.yml' [2026-06-18 20:41:45.044080] [authz_core:error] [pid 578079:tid 136825147225792] [client 142.93.56.216:43552] AH01630: client denied by server configuration: /var/www/html/.env.production.local , error_notes:wrong-host , URI:'/.env.production.local' [2026-06-18 20:41:45.044373] [authz_core:error] [pid 578079:tid 136825147225792] [client 142.93.56.216:43572] AH01630: client denied by server configuration: /var/www/html/.env.example , error_notes:wrong-host , URI:'/.env.example' [2026-06-18 20:41:45.044533] [authz_core:error] [pid 578079:tid 136824991225536] [client 142.93.56.216:43568] AH01630: client denied by server configuration: /var/www/html/web , error_notes:wrong-host , URI:'/web/.env' [2026-06-18 20:41:45.044672] [authz_core:error] [pid 578079:tid 136824991225536] [client 1 show less	Web App Attack Bad Web Bot
🇺🇸 Bro Charlie	2026-06-18 15:37:21 (10 hours ago)	142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /.env.development.local HTTP/1.1" 404 552 "-" "M ... show more 142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /.env.development.local HTTP/1.1" 404 552 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36" "-" 142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /config/.env HTTP/1.1" 404 150 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" "-" 142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /config/.env HTTP/1.1" 404 150 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:124.0) Gecko/20100101 Firefox/124.0" "-" 142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /app/etc/env.php HTTP/1.1" 404 150 "-" "Go-http-client/1.1" "-" 142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /.env.staging HTTP/1.1" 404 150 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:125.0) Gecko/20100101 Firefox/125.0" "-" 142.93.56.216 - - [18/Jun/2026:23:37:19 +0800] "GET /application.yml HTTP/1.1" 404 150 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:125.0) Gecko/20100101 Fi ... show less	DDoS Attack
🇩🇪 Hans Wurst	2026-06-18 14:06:21 (12 hours ago)	Many 404-Error: Suspicion of URL-Fuzzing/Bot-Scan.	Web App Attack
🇺🇸 jcbriar	2026-06-18 12:23:33 (14 hours ago)	Searching for vulnerable scripts	Hacking Web App Attack
🇩🇪 igerman	2026-06-17 20:15:05 (1 day ago)	caddy probes: env-probe: GET /.env.backup(DROP), GET /.env.credentials(DROP), GET /.env.development( ... show more caddy probes: env-probe: GET /.env.backup(DROP), GET /.env.credentials(DROP), GET /.env.development(DROP), GET /.env.development.local(DROP), GET /.env.docker(DROP), GET /.env.example(DROP), GET /.env.old(DROP), GET /.env.orig(DROP), GET /.env.production.local(DROP), GET /.env.save(DROP), GET /.env.staging(DROP), GET /app/.env(DROP), GET /config/.env(DROP), GET /server/.env(DROP), GET /src/.env(DROP) \| web: GET /app/config/database.php(DROP), GET /application.properties(DROP), GET /config.php(DROP), GET /docker-compose.yml(DROP) \| wordpress: GET /wp-config.php(DROP), GET /wp-config.php.save(DROP) show less	Web App Attack
🇩🇪 D3vNu11	2026-06-17 12:27:49 (1 day ago)	Level: (HIGH): Known Attacker via Wordpot IOC Country: United States 201x -> Target Country: Ashburn ... show more Level: (HIGH): Known Attacker via Wordpot IOC Country: United States 201x -> Target Country: Ashburn, USA HTTP show less	Hacking Web App Attack
🇮🇪 AutosOnShow	2026-06-17 10:12:04 (1 day ago)	blocked for webapp attack \| path requested: /.env \| seen at 2026-06-17 10:11:44.357 \|	Web App Attack
🇩🇪 firestorm	2026-06-17 03:29:32 (1 day ago)	2026/06/17 05:29:31 [error] 1853495#1853495: 1309 open() "/usr/share/nginx/html/cgi-bin/.env" faile ... show more 2026/06/17 05:29:31 [error] 1853495#1853495: 1309 open() "/usr/share/nginx/html/cgi-bin/.env" failed (2: No such file or directory), client: 142.93.56.216, server: mailcow.stosch.net, request: "GET /cgi-bin/.env HTTP/1.1", host: "46.38.234.135" 2026/06/17 05:29:31 [error] 1853494#1853494: 1298 "/usr/share/nginx/html/myadmin/index.html" is not found (2: No such file or directory), client: 142.93.56.216, server: mailcow.stosch.net, request: "GET /myadmin/ HTTP/1.1", host: "46.38.234.135" 2026/06/17 05:29:31 [error] 1853496#1853496: 1307 "/usr/share/nginx/html/phpmyadmin/index.html" is not found (2: No such file or directory), client: 142.93.56.216, server: mailcow.stosch.net, request: "GET /phpmyadmin/ HTTP/1.1", host: "46.38.234.135" ... show less	Brute-Force Web App Attack
🇫🇷 GabrielJST	2026-06-17 02:58:31 (1 day ago)	(mod_security) mod_security triggered on hostname [redacted] 142.93.56.216 (US/United States/-): (C ... show more (mod_security) mod_security triggered on hostname [redacted] 142.93.56.216 (US/United States/-): (CF_ENABLE) show less	SQL Injection
🇨🇭 Zdeněk Svancar	2026-06-17 02:24:13 (2 days ago)	142.93.56.216 - - [17/Jun/2026:02:24:12 +0000] "GET /private/.env HTTP/1.1" 404 548 "-" "Mozilla/5.0 ... show more 142.93.56.216 - - [17/Jun/2026:02:24:12 +0000] "GET /private/.env HTTP/1.1" 404 548 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36 Edg/124.0.0.0" 142.93.56.216 - - [17/Jun/2026:02:24:12 +0000] "GET /resources/.env HTTP/1.1" 404 146 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:125.0) Gecko/20100101 Firefox/125.0" ... show less	Port Scan Bad Web Bot Web App Attack
🇫🇷 Teufel100	2026-06-16 21:36:22 (2 days ago)	ModSecurity rejected a query	Brute-Force Hacking Web App Attack
🇩🇪 ghostwarriors	2026-06-16 19:20:15 (2 days ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 38 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 34.141.130.179

🇸🇬 2a09:bac5:55ff:25b9::3c2:18

🇷🇺 2a09:bac5:51ac:2373::388:8b

🇷🇺 217.149.191.246

🇧🇷 191.5.31.61

🇺🇸 165.154.202.244

🇨🇳 125.124.226.217

🇹🇭 118.27.146.111

🇫🇷 85.217.140.27

🇳🇱 77.91.71.10

🇺🇸 20.64.105.174

🇫🇷 2620:171:eb:f0:9999::245

🇹🇼 198.235.24.35

🇷🇴 193.32.162.83

🇺🇸 147.185.132.90

🇺🇸 147.185.132.43

🇨🇳 49.73.82.152

🇺🇸 47.251.253.98

🇧🇷 43.164.197.97

🇺🇸 35.252.116.191