JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 143.198.216.213

143.198.216.213 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 1%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 143.198.216.213

Whois 143.198.216.213

IP Abuse Reports for 143.198.216.213:

This IP address has been reported a total of 73 times from 41 distinct sources. 143.198.216.213 was first reported on October 31st 2022, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 Threat.live	2026-06-04 05:25:03 (2 weeks ago)	Suspicious Connection Attempts	Brute-Force
🇮🇩 sockominfo	2026-04-07 06:00:56 (2 months ago)	Access to sensitive files detected w/ specific boundary.. Threat Score: 5.5/10 (MEDIUM). Reported by ... show more Access to sensitive files detected w/ specific boundary.. Threat Score: 5.5/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇮🇩 sockominfo	2026-04-07 05:00:31 (2 months ago)	Access to sensitive files detected w/ specific boundary.. Threat Score: 5/10 (MEDIUM). Confidence: 4 ... show more Access to sensitive files detected w/ specific boundary.. Threat Score: 5/10 (MEDIUM). Confidence: 40%. CVSS v3.1: 2.9/10 (Low). CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N. Bayesian Probability: 33%. MITRE ATT&CK: T1016 (System Network Configuration Discovery). Tactic: TA0001. Freshness: Fresh. Source Reputation: UNKNOWN. Methodology: CVSS 3.1 + Bayesian + Temporal + Environmental + MITRE ATT&CK + OWASP. Standards: ISO/IEC 27065:2022, NIST SP 800-30, IEEE S&P 2020. Reported by TangerangKota-CSIRT. Status: MALICIOUS show less	Hacking Web App Attack
🇧🇪 cmbplf	2026-04-07 04:27:49 (2 months ago)	217 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇮🇩 sockominfo	2026-04-07 04:00:58 (2 months ago)	Access to sensitive files detected w/ specific boundary.. Threat Score: 5.8/10 (MEDIUM). Reported by ... show more Access to sensitive files detected w/ specific boundary.. Threat Score: 5.8/10 (MEDIUM). Reported by TangerangKota-CSIRT show less	Hacking Web App Attack
🇩🇪 nyt	2026-04-07 03:08:59 (2 months ago)	Sensitive File Probe	Web App Attack
🇮🇩 Burayot	2026-04-07 03:04:20 (2 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 143.198.216.213 (SG/Singapore/-): 2 ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 143.198.216.213 (SG/Singapore/-): 2 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-04-07 02:59:33 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 143.198.216.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 143.198.216.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 22:59:26.204809 2026] [security2:error] [pid 842045:tid 842045] [client 143.198.216.213:59610] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "marveldirectory.com"] [uri "/.git/config"] [unique_id "adRzDnQykcJXA8xsd7leeAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-07 02:43:00 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 143.198.216.213 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 143.198.216.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 06 22:42:55.230440 2026] [security2:error] [pid 1350326:tid 1350326] [client 143.198.216.213:50934] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "alexgitlin.com"] [uri "/.git/config"] [unique_id "adRvL5d7l7_kau6dBzU8BQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇳🇱 maxxsense	2026-02-18 10:37:26 (4 months ago)	143.198.216.213 (SG/Singapore/-), 12 distributed imapd attacks on account [redacted]	Brute-Force
Anonymous	2026-02-11 13:09:18 (4 months ago)	sql injection	Web App Attack
🇵🇱 Peter Sutty	2026-02-04 11:33:00 (4 months ago)	modsecurity	SQL Injection Web App Attack
Anonymous	2026-01-20 12:33:48 (5 months ago)	wordpress-trap	Web App Attack
Anonymous	2026-01-17 19:18:10 (5 months ago)	sql injection	Web App Attack
Anonymous	2026-01-17 18:50:02 (5 months ago)	\| SQL injection attempt.	Hacking SQL Injection Web App Attack

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.228

🇺🇸 162.216.149.252

🇫🇮 147.185.133.47

🇺🇸 71.6.232.23

🇺🇸 35.95.47.85

🇺🇸 2607:f8b0:4001:c0e::123

🇧🇪 198.235.24.220

🇧🇬 193.24.211.107

🇺🇸 172.214.104.48

🇩🇪 167.99.240.181

🇺🇸 65.49.1.12

🇳🇱 62.204.38.19

🇬🇧 35.203.210.36

🇳🇱 20.160.86.7

🇰🇷 1.214.179.202

🇺🇸 205.210.31.76

🇧🇴 181.188.176.242

🇳🇱 176.65.139.31

🇪🇸 158.158.47.67

🇵🇪 149.34.48.186