JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.89.10.213

159.89.10.213 was found in our database!

This IP was reported 73 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.89.10.213

Whois 159.89.10.213

IP Abuse Reports for 159.89.10.213:

This IP address has been reported a total of 73 times from 22 distinct sources. 159.89.10.213 was first reported on June 5th 2025, and the most recent report was 9 months ago.

Old Reports: The most recent abuse report for this IP address is from 9 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Study Bitcoin 🤗	2025-09-18 23:56:23 (9 months ago)	2 port probes: tcp/8080 (http), tcp/1883 [srv128,srv129]	Port Scan Bad Web Bot Web App Attack IoT Targeted
🇺🇸 kot	2025-08-12 22:02:07 (10 months ago)	scan port 22, 159.89.10.213 block	Port Scan
🇫🇷 vincent_EUDIER	2025-08-12 17:40:00 (10 months ago)	ET SCAN Sipvicious Scan	Port Scan
🇺🇸 TPI-Abuse	2025-07-28 08:14:19 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 28 04:14:13.652913 2025] [security2:error] [pid 15393:tid 15393] [client 159.89.10.213:60346] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "mlsdirect.xyz"] [uri "/wp-config.php.save"] [unique_id "aIcxVZv1K17aeImEGWer6wAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-28 06:40:30 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 28 02:40:25.014419 2025] [security2:error] [pid 22012:tid 22012] [client 159.89.10.213:57664] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.209"] [uri "/wp-config.php.save"] [unique_id "aIcbWWVDU64WONljXYqL3wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-28 06:08:50 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 28 02:08:43.918625 2025] [security2:error] [pid 16347:tid 16347] [client 159.89.10.213:37948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.118"] [uri "/wp-config.php.save"] [unique_id "aIcT61-253mF3VbbTNxA_wAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2025-07-28 05:14:14 (10 months ago)	Open Source CMS Configuration File Requests	Hacking Brute-Force
🇺🇸 TPI-Abuse	2025-07-28 05:06:31 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Jul 28 01:06:24.431415 2025] [security2:error] [pid 18375:tid 18383] [client 159.89.10.213:56948] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.123"] [uri "/wp-config.php.save"] [unique_id "aIcFUDIqJj54_T58lMh00gAAAEY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2025-07-28 04:15:30 (10 months ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2025-07-28 03:28:30 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 27 23:28:27.681178 2025] [security2:error] [pid 637:tid 637] [client 159.89.10.213:37594] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.189"] [uri "/wp-config.php.save"] [unique_id "aIbuW_cEoKb5HXvZJl6GFwAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-28 02:19:56 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 27 22:19:48.941041 2025] [security2:error] [pid 28828:tid 28828] [client 159.89.10.213:47814] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.199"] [uri "/wp-config.php.save"] [unique_id "aIbeREj7r99_Hr9WPWs2-AAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 MAGIC	2025-07-28 01:03:51 (10 months ago)	VM1 Bad user agents ignoring web crawling rules. Draing bandwidth	DDoS Attack Bad Web Bot
🇺🇸 TPI-Abuse	2025-07-28 00:59:15 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 27 20:59:10.314109 2025] [security2:error] [pid 19589:tid 19589] [client 159.89.10.213:37972] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.202"] [uri "/wp-config.php.save"] [unique_id "aIbLXiDy15ePW5beiihdiAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-07-27 23:38:58 (10 months ago)	(mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 159.89.10.213 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 27 19:38:54.622497 2025] [security2:error] [pid 7698:tid 7698] [client 159.89.10.213:41568] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.50"] [uri "/wp-config.php.save"] [unique_id "aIa4jhdf1Qgz6QfQDsaT6gAAABw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 nationaleventpros.com	2025-07-27 23:15:12 (10 months ago)	vulnerability scan	Web App Attack

Showing 1 to 15 of 73 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 180.243.6.97

🇷🇺 176.211.0.98

🇺🇸 157.230.8.75

🇩🇪 152.53.191.99

🇨🇳 121.43.130.89

🇺🇸 64.62.197.182

🇦🇷 181.239.125.47

🇳🇱 91.92.40.204

🇲🇽 82.153.2.229

🇳🇱 64.225.69.45

🇭🇰 38.55.97.143

🇬🇧 2a06:4882:b000::c7

🇫🇮 213.186.233.10

🇲🇲 202.165.86.99

🇺🇸 165.154.134.138

🇮🇳 103.190.253.178

🇷🇴 92.118.39.74

🇮🇹 79.17.176.238

🇺🇸 67.207.93.136

🇺🇸 35.237.254.240