JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.203.72.183

159.203.72.183 was found in our database!

This IP was reported 1,633 times. Confidence of Abuse is 16%: ?

16%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇺🇸 United States of America
City	Clifton, New Jersey

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.203.72.183

Whois 159.203.72.183

IP Abuse Reports for 159.203.72.183:

This IP address has been reported a total of 1,633 times from 557 distinct sources. 159.203.72.183 was first reported on April 4th 2021, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇳 ThreatBook.io	2026-05-12 22:04:27 (1 month ago)	ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/159.203.72.183 2026-05 ... show more ThreatBook Intelligence: Zombie,Spam more details on https://threatbook.io/ip/159.203.72.183 2026-05-12 21:46:32 / show less	Web App Attack
🇩🇪 femboy.cat	2026-05-12 14:06:58 (1 month ago)	Port scan to tcp/8084 from 159.203.72.183	Brute-Force
🇺🇸 sefinek.net	2026-05-12 04:20:49 (1 month ago)	Blocked by UFW on NY01 [8089/tcp] \| SPT: 61008 \| TTL: 245 \| LEN: 44 \| TOS: 0x08 • Reported by: githu ... show more Blocked by UFW on NY01 [8089/tcp] \| SPT: 61008 \| TTL: 245 \| LEN: 44 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇬🇧 consul.to	2026-05-08 11:48:16 (1 month ago)	Web attack/malicious scanning detected	Web App Attack
🇨🇭 TheCoon	2026-02-16 01:45:01 (4 months ago)	Automated: Credential theft attempt - JSON bomb served	Hacking Web App Attack
🇳🇱 krlabs	2026-02-15 17:08:00 (4 months ago)		Web App Attack
🇧🇪 voormedia	2026-02-15 14:56:04 (4 months ago)	Accessed trap at '/.git/config'	Web App Attack
🇺🇸 mnsf	2026-02-15 12:05:19 (4 months ago)	Scanning/Probing (16)	Brute-Force Web App Attack
🇬🇧 consul.to	2026-02-15 10:00:34 (4 months ago)	Web attack/malicious scanning detected	Web App Attack
🇩🇪 HERA - Operations	2026-02-14 20:15:25 (4 months ago)	sensobox - searching for vulnerable scripts: config 2026/02/14 21:15:24	Web App Attack
🇺🇸 rdpguard.com	2026-02-14 20:12:29 (4 months ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 TPI-Abuse	2026-02-14 18:03:44 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 159.203.72.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.203.72.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 13:03:40.167448 2026] [security2:error] [pid 20813:tid 20813] [client 159.203.72.183:57408] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "plattlawgroup.com"] [uri "/.git/config"] [unique_id "aZC4_PKMk6dJlM0EZKxbZgAAAB0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-02-14 16:53:17 (4 months ago)	(mod_security) mod_security (id:210492) triggered by 159.203.72.183 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.203.72.183 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Feb 14 11:53:11.512217 2026] [security2:error] [pid 901:tid 901] [client 159.203.72.183:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "pixacast.com"] [uri "/.git/config"] [unique_id "aZCod2aD13VzlgO_yLNt1AAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇮 as211431.net	2026-02-14 14:16:26 (4 months ago)	Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET metho ... show more Triggered Cloudflare WAF (firewallCustom) from US. Action taken: BLOCK Protocol: HTTP/1.1 (GET method) Endpoint: /.git/config UA: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇧🇪 voormedia	2026-02-14 13:10:45 (4 months ago)	Accessed trap at '/.git/config'	Web App Attack

Showing 1 to 15 of 1633 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇹🇭 202.29.230.5

🇺🇸 162.216.150.130

🇺🇸 162.216.150.22

🇨🇳 101.26.28.250

🇫🇷 91.238.181.92

🇺🇸 72.17.34.38

🇨🇳 47.101.188.22

🇷🇴 2.57.121.25

🇮🇱 2.55.88.152

🇧🇷 2804:30c:841:f000:9004:d584:9523:6e50

🇩🇪 213.209.159.235

🇧🇷 179.179.216.199

🇺🇸 152.32.208.7

🇭🇰 152.32.186.240

🇬🇧 152.32.157.173

🇩🇰 130.226.254.28

🇨🇳 120.229.71.111

🇨🇳 118.145.214.235

🇺🇸 50.62.181.92

🇳🇱 45.148.10.157