JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 193.43.159.200

193.43.159.200 was found in our database!

This IP was reported 22 times. Confidence of Abuse is 0%: ?

ISP	STE PDN Internal AS
Usage Type	Fixed Line ISP
ASN	AS29256
Domain Name	syriantelecom.sy
Country	🇸🇾 Syrian Arab Republic
City	Damascus, Damascus Governorate

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 193.43.159.200

Whois 193.43.159.200

IP Abuse Reports for 193.43.159.200:

This IP address has been reported a total of 22 times from 13 distinct sources. 193.43.159.200 was first reported on June 16th 2022, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 cheatmaster.store	2026-05-08 11:34:51 (1 month ago)	Proxy parsed from 193.43.159.200:80	Brute-Force SSH
🇲🇾 Rizzy	2026-04-17 10:47:29 (2 months ago)	Multiple WAF Violations	Brute-Force Web App Attack
🇱🇻 garmtech.com	2026-03-22 03:17:46 (3 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-17.193.43.159.200.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 05-17.193.43.159.200.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇱🇻 garmtech.com	2026-03-21 06:40:11 (3 months ago)	IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-40.193.43.159.200.web-spamm ... show more IM360 WAF: Block IP which is in the web-spammers RBL MV:RBL lookup of 08-40.193.43.159.200.web-spammers.v2.rbl.imunify.com._v4 succeeded. show less	Web App Attack
🇩🇪 GunsawianHosting	2026-03-12 17:08:57 (3 months ago)	Open Proxy	Open Proxy
Anonymous	2026-02-28 12:33:04 (3 months ago)	Bot / scanning and/or hacking attempts: GET /2013/11/hello-world/dsc07087/ HTTP/1.0, GET /wp-login.p ... show more Bot / scanning and/or hacking attempts: GET /2013/11/hello-world/dsc07087/ HTTP/1.0, GET /wp-login.php HTTP/1.0, POST /xmlrpc.php HTTP/1.0 show less	Hacking Web App Attack
🇦🇱 cheatmaster.store	2026-02-27 02:14:53 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Syria Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
🇮🇹 cheatmaster.store	2026-02-25 10:22:11 (3 months ago)	Automated report: This IP address has been identified as an active public open proxy. Classification ... show more Automated report: This IP address has been identified as an active public open proxy. Classification: Open Proxy \| Spoofing \| VPN/Anonymizer \| Bad Web Bot. Country: Syria Threat level: High. This host is listed across multiple public proxy databases and poses a risk of abuse, credential stuffing, scraping, and spoofed traffic. Reported by automated threat intelligence pipeline. Do not whitelist without manual verification. show less	Web Spam Port Scan Web App Attack
Anonymous	2026-02-19 10:42:47 (4 months ago)	Forum/form spam	Web Spam
🇺🇸 gu-alvareza	2026-02-12 07:05:19 (4 months ago)	WordPress.xmlrpc.Pingback.DoS	DDoS Attack
🇳🇱 homeshowdomain.nl	2026-01-16 22:59:26 (5 months ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-01-15. show less	Hacking Web App Attack SSH
🇳🇱 homeshowdomain.nl	2026-01-15 23:00:22 (5 months ago)	Auto-ban: >3000 req/min op 2026-01-15	Hacking Web App Attack SSH
🇺🇸 TPI-Abuse	2026-01-15 17:15:45 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 193.43.159.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 193.43.159.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 12:15:42.206289 2026] [security2:error] [pid 31355:tid 31355] [client 193.43.159.200:39682] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.electric-meat-grinder.com"] [uri "/.env.bak"] [unique_id "aWkgvmPcdykn4Q-_WarNswAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-15 07:28:04 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 193.43.159.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 193.43.159.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jan 15 02:27:58.176477 2026] [security2:error] [pid 19505:tid 19596] [client 193.43.159.200:36372] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.idwic.spiritualchristian.com"] [uri "/.git/config"] [unique_id "aWiW_k-QJUP3OzVVCbtK3gAAAJI"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-01-15 04:31:33 (5 months ago)	(mod_security) mod_security (id:210492) triggered by 193.43.159.200 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 193.43.159.200 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jan 14 23:31:26.249274 2026] [security2:error] [pid 29195:tid 29195] [client 193.43.159.200:10938] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.krugmans.com"] [uri "/.git/config"] [unique_id "aWhtnvMRPtfEiV_niJLvvQAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 22 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 192.3.206.66

🇳🇱 193.176.31.157

🇧🇷 187.8.3.230

🇧🇩 160.191.83.95

🇹🇭 114.131.130.11

🇩🇪 69.5.169.7

🇸🇨 45.194.67.30

🇨🇳 219.153.81.22

🇰🇷 218.145.181.48

🇩🇪 85.239.144.40

🇰🇷 61.80.247.39

🇺🇸 54.160.168.27

🇳🇱 45.148.10.147

🇸🇬 209.58.160.54

🇳🇱 78.142.18.40

🇮🇳 49.37.43.61

🇺🇸 44.201.11.115

🇨🇳 221.0.10.128

🇻🇳 160.191.244.158

🇪🇬 154.238.61.241