JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.223.63.231

159.223.63.231 was found in our database!

This IP was reported 110 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.223.63.231

Whois 159.223.63.231

IP Abuse Reports for 159.223.63.231:

This IP address has been reported a total of 110 times from 52 distinct sources. 159.223.63.231 was first reported on November 4th 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 ghostwarriors	2026-05-01 01:50:57 (1 month ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2026-04-15 04:06:02 (2 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇳🇿 FaB Property Group	2026-04-14 23:55:40 (2 months ago)	Requested file: .git/config	Web App Attack
🇳🇱 homeshowdomain.nl	2026-04-14 22:00:35 (2 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-04-13. show less	Web App Attack SSH Hacking
🇬🇧 poundawebsiteltd	2026-04-14 13:02:49 (2 months ago)	Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 159.223.63.231 - - [14/Apr/2026: ... show more Web App Attack (ModSecurity Block). Evidence: [REDACTED_DOMAIN]:443 159.223.63.231 - - [14/Apr/2026:14:02:46 +0100] GET /.git/config HTTP/1.1 403 3034 - Mozilla/5.0 (Linux; Android 5.1.1; Coolpad 3622A Build/LMY47V) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.83 Mobile Safari/537.36 show less	Web App Attack
🇩🇪 ghostwarriors	2026-04-14 06:20:03 (2 months ago)	Webpage scraping	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 06:05:36 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 02:05:29.890760 2026] [security2:error] [pid 266575:tid 266575] [client 159.223.63.231:59680] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "whiterhinogroup.net"] [uri "/.git/config"] [unique_id "ad3ZKW7TAM26wr_HzHP5pAAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 05:41:09 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 01:41:05.610573 2026] [security2:error] [pid 594611:tid 594611] [client 159.223.63.231:47750] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "smartsolutionsgroup.info"] [uri "/.git/config"] [unique_id "ad3TcfQxOK6vkSCVrwiudQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 05:11:45 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 01:11:38.508132 2026] [security2:error] [pid 3029046:tid 3029046] [client 159.223.63.231:41642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mail.scaleiq.group"] [uri "/.git/config"] [unique_id "ad3MiqjAH0tVesYSBvAxdQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 04:55:31 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 00:55:26.935122 2026] [security2:error] [pid 3349812:tid 3349812] [client 159.223.63.231:46724] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "horizonmusicgroup.independentmusicconference.com"] [uri "/.git/config"] [unique_id "ad3IvpyvTdAMDN1A4N6UvAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 04:18:31 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 00:18:28.811343 2026] [security2:error] [pid 2332121:tid 2332121] [client 159.223.63.231:39684] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "capitallawgroup.progressivefileshare.org"] [uri "/.git/config"] [unique_id "ad3AFKU5eZqGa1Thf9Cy5gAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇨🇭 4server	2026-04-14 04:06:16 (2 months ago)	[TueApr1406:06:11.4291022026][security2:error][pid1394233:tid1394247][client159.223.63.231:0]ModSecu ... show more [TueApr1406:06:11.4291022026][security2:error][pid1394233:tid1394247][client159.223.63.231:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".git\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"342\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"alvigroup.ch.81-17-25-250.cpanel.site\"][uri\"/.git/config\"][unique_id\"ad29M8RqtMQchFCm4dcWqwAAAMo\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-04-14 04:02:32 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Apr 14 00:02:26.734028 2026] [security2:error] [pid 1050191:tid 1050191] [client 159.223.63.231:58716] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ablogisticsgroup.com"] [uri "/.git/config"] [unique_id "ad28Uni7a3z_vxFkJulORwAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-04-13 17:27:24 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 159.223.63.231 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Apr 13 13:27:20.055157 2026] [security2:error] [pid 2541829:tid 2541829] [client 159.223.63.231:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.thectegroup.net"] [uri "/.git/config"] [unique_id "ad0neP8BOesjxdfhpGRiWAAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇬🇧 consul.to	2026-04-13 16:56:35 (2 months ago)	Web attack/malicious scanning detected	Web App Attack

Showing 1 to 15 of 110 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇰🇷 61.76.112.4

🇹🇼 211.22.166.107

🇳🇱 204.76.203.231

🇳🇱 195.178.110.199

🇺🇸 162.216.150.253

🇰🇷 150.109.241.177

🇭🇰 112.119.21.245

🇳🇱 91.92.42.147

🇸🇬 84.247.151.140

🇳🇱 45.148.10.141

🇮🇹 4.232.94.242

🇺🇸 162.216.149.210

🇨🇳 124.31.105.72

🇺🇸 68.193.185.137

🇺🇸 23.227.187.220

🇺🇸 3.83.245.221

🇺🇾 200.71.13.21

🇺🇸 162.216.150.26

🇺🇸 135.237.126.251

🇳🇱 64.188.77.26