JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 167.99.206.193

167.99.206.193 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 79%: ?

79%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇬🇧 United Kingdom of Great Britain and Northern Ireland
City	London, England

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 167.99.206.193

Whois 167.99.206.193

IP Abuse Reports for 167.99.206.193:

This IP address has been reported a total of 15 times from 15 distinct sources. 167.99.206.193 was first reported on July 18th 2023, and the most recent report was 9 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cwytech	2026-06-17 08:28:40 (9 hours ago)	Fleet-wide ban from the Ghostfleet 👻. Triggered by scenario: cwy/pf-geofence-high.	Hacking
🇩🇪 ManagedStack	2026-06-17 08:00:01 (9 hours ago)	Probing access to unauthorized locations	Hacking Exploited Host Web App Attack
🇺🇸 TPI-Abuse	2026-06-17 07:18:19 (10 hours ago)	(mod_security) mod_security (id:210492) triggered by 167.99.206.193 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 167.99.206.193 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 17 03:18:16.113978 2026] [security2:error] [pid 22558:tid 22558] [client 167.99.206.193:38376] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.238"] [uri "/.git/index"] [unique_id "ajJKOFg6rVV3BQY6_0OzpwAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-17 06:00:03 (11 hours ago)	\| Suspicious URL access.	Web App Attack Hacking SQL Injection
Anonymous	2026-06-17 03:37:46 (14 hours ago)	167.99.206.193 - - [17/Jun/2026:03:37:39 +0000] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Wi ... show more 167.99.206.193 - - [17/Jun/2026:03:37:39 +0000] "GET /.git/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "-" 167.99.206.193 - - [17/Jun/2026:03:37:41 +0000] "GET /.git/config HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:125.0) Gecko/20100101 Firefox/125.0" "-" 167.99.206.193 - - [17/Jun/2026:03:37:42 +0000] "GET /.git/logs/HEAD HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" "-" 167.99.206.193 - - [17/Jun/2026:03:37:45 +0000] "GET /.git/refs/heads/master HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" "-" 167.99.206.193 - - [17/Jun/2026:03:37:46 +0000] "GET /.git/refs/heads/main HTTP/1.1" 444 0 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/123.0.0.0 Safari/537.36" "-" ... show less	Port Scan Brute-Force
🇩🇪 lumbermatt_de	2026-06-17 02:56:52 (14 hours ago)	Vulnerability exploit attack detected	Web App Attack
🇺🇸 MPL	2026-06-17 02:31:55 (15 hours ago)	tcp port scan (10 or more attempts)	Port Scan
🇷🇸 Scan	2026-06-17 01:08:09 (16 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇩🇪 edena	2026-06-17 00:18:14 (17 hours ago)	167.99.206.193 - - [17/Jun/2026:02:18:09 +0200] "GET /.git/config HTTP/1.1" 403 322 "-" "Mozilla/5.0 ... show more 167.99.206.193 - - [17/Jun/2026:02:18:09 +0200] "GET /.git/config HTTP/1.1" 403 322 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14_4_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.4 Safari/605.1.15" 167.99.206.193 - - [17/Jun/2026:02:18:13 +0200] "GET /.env HTTP/1.1" 403 322 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 14.4; rv:125.0) Gecko/20100101 Firefox/125.0" 167.99.206.193 - - [17/Jun/2026:02:18:14 +0200] "GET /.env.local HTTP/1.1" 403 322 "-" "Mozilla/5.0 (Linux; Android 14; Pixel 8) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Mobile Safari/537.36" ... show less	Web App Attack Bad Web Bot
🇺🇸 xmission.com	2026-06-16 18:55:13 (22 hours ago)	Blocked by UFW (TCP on 1912) Source port: 61015 TTL: 239 Packet length: 44 TOS: 0x08 This report (f ... show more Blocked by UFW (TCP on 1912) Source port: 61015 TTL: 239 Packet length: 44 TOS: 0x08 This report (for 167.99.206.193) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇫🇷 polido	2026-06-16 18:52:36 (22 hours ago)	Unauthorized connection attempt to port 443 from 167.99.206.193	Port Scan
Anonymous	2026-06-16 18:49:58 (22 hours ago)	unsolicited connect TCP dport 8001 (sport 61005)	Hacking
🇺🇸 sefinek.net	2026-06-16 18:13:42 (23 hours ago)	Blocked by UFW on NY01 [8880/tcp] \| SPT: 61009 \| TTL: 245 \| LEN: 44 \| TOS: 0x08 • Reported by: githu ... show more Blocked by UFW on NY01 [8880/tcp] \| SPT: 61009 \| TTL: 245 \| LEN: 44 \| TOS: 0x08 • Reported by: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
Anonymous	2023-11-23 21:28:32 (2 years ago)	Aggressive web scan	Web App Attack
🇺🇸 en0	2023-07-18 04:54:36 (2 years ago)	167.99.206.193 was recorded 3 times by 1 hosts attempting to connect to 3 unique ports. Incident cou ... show more 167.99.206.193 was recorded 3 times by 1 hosts attempting to connect to 3 unique ports. Incident counter (4h, 24h, all-time): 3, 3, 3 show less	Port Scan

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 185.216.145.172

🇱🇹 81.30.98.144

🇨🇳 211.97.69.110

🇮🇳 182.95.185.14

🇮🇳 182.95.106.78

🇨🇳 180.125.231.80

🇺🇸 154.83.197.56

🇺🇸 91.230.168.123

🇸🇬 47.82.52.113

🇸🇬 47.82.13.148

🇳🇱 194.26.192.129

🇺🇸 172.234.218.87

🇺🇸 157.245.1.7

🇺🇸 20.65.178.1

🇮🇳 2401:4900:561b:ed72:d9d6:6dae:ad34:583f

🇳🇱 176.65.139.242

🇺🇸 162.216.149.183

🇨🇳 223.112.48.133

🇫🇷 138.199.15.173

🇺🇸 67.2.15.201