JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 188.166.213.1

188.166.213.1 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 188.166.213.1

Whois 188.166.213.1

IP Abuse Reports for 188.166.213.1:

This IP address has been reported a total of 15 times from 11 distinct sources. 188.166.213.1 was first reported on December 23rd 2025, and the most recent report was 5 months ago.

Old Reports: The most recent abuse report for this IP address is from 5 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2025-12-30 15:53:51 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 30 10:53:46.471442 2025] [security2:error] [pid 29465:tid 29465] [client 188.166.213.1:58128] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.televisonic.com"] [uri "/wp-config.php_"] [unique_id "aVP1ihJThiqHOrRVotUf1gAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 COMAITE	2025-12-30 05:39:21 (5 months ago)	Suspicious URL access.	Web App Attack
Anonymous	2025-12-28 19:26:32 (5 months ago)	Ports: *; Direction: 0; Trigger: CT_LIMIT	Brute-Force SSH
🇺🇸 TPI-Abuse	2025-12-28 10:44:07 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 05:44:03.229226 2025] [security2:error] [pid 4748:tid 4748] [client 188.166.213.1:40404] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.sdqdesigns.com"] [uri "/wp-config.php_"] [unique_id "aVEJ81wxw96E9uQ4x2LC_AAAAAk"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-28 09:39:06 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Dec 28 04:39:02.204352 2025] [security2:error] [pid 5077:tid 5077] [client 188.166.213.1:56080] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.rimbey.us"] [uri "/wp-config.php_"] [unique_id "aVD6tivwteUyPORVzs6dpgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇹 VHosting	2025-12-28 01:05:09 (5 months ago)	Detected WordPress attack from 4 different servers	Brute-Force Web App Attack
🇨🇭 backslash	2025-12-27 19:40:06 (5 months ago)	block ruleset Badbot using very old user-agents 5CF3CDB778C7D82564405B86B9242E612F378C68	Bad Web Bot
🇨🇭 zynex	2025-12-27 15:11:47 (5 months ago)	URL Probing: /wp-config.php.save	Web App Attack
Anonymous	2025-12-26 21:25:10 (5 months ago)	wordpress-trap	Web App Attack
🇮🇹 IRT@Unisi	2025-12-26 16:37:06 (5 months ago)	Apache: Attempt to access forbidden file or directory.	Bad Web Bot
Anonymous	2025-12-25 01:55:12 (5 months ago)	Multiple web server 400 error codes from same source ip	Web App Attack
🇺🇸 TPI-Abuse	2025-12-24 07:04:56 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Dec 24 02:04:51.399769 2025] [security2:error] [pid 14318:tid 14318] [client 188.166.213.1:44726] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.twccsolutions.com"] [uri "/wp-config.php_"] [unique_id "aUuQk37U8iUUNnQKbQKJrAAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2025-12-24 04:54:23 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 188.166.213.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Dec 23 23:54:17.380399 2025] [security2:error] [pid 15968:tid 15968] [client 188.166.213.1:48360] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "wp-config.php" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.whenfoodmatters.com.salsberggroup.com"] [uri "/wp-config.php_"] [unique_id "aUtx-RKD4UG2o1kNsX6VdAAAABI"] show less	Brute-Force Bad Web Bot Web App Attack
🇮🇩 Burayot	2025-12-23 10:24:10 (5 months ago)	LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 188.166.213.1 (SG/Singapore/-): 2 i ... show more LF_MODSEC: (mod_security) mod_security (id:1000001) triggered by 188.166.213.1 (SG/Singapore/-): 2 in the last 3600 secs show less	Web App Attack
🇩🇪 grassau.com	2025-12-23 09:41:26 (5 months ago)	(mod_security) mod_security triggered on hostname [redacted] 188.166.213.1 (SG/Singapore/-)	SQL Injection

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 216.180.246.81

🇲🇩 185.162.141.34

🇩🇪 162.19.243.145

🇪🇸 149.7.76.60

🇮🇳 122.176.122.24

🇨🇳 120.231.31.33

🇺🇸 52.176.211.73

🇳🇱 2a0b:8bc0:2:2831::1

🇬🇧 2a06:4880::1a

🇳🇱 195.178.110.162

🇳🇱 81.19.216.125

🇮🇩 69.5.7.218

🇱🇹 45.227.254.170

🇭🇰 35.220.156.171

🇮🇩 34.128.88.55

🇨🇳 180.76.202.69

🇺🇸 165.154.173.242

🇺🇸 152.32.183.236

🇺🇸 104.243.35.104

🇺🇸 91.230.168.147