JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 105.118.2.223

105.118.2.223 was found in our database!

This IP was reported 6 times. Confidence of Abuse is 0%: ?

ISP	Airtel Networks Limited
Usage Type	Mobile ISP
ASN	AS36873
Domain Name	airtel.in
Country	🇳🇬 Nigeria
City	Benin City, Edo State

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 105.118.2.223

Whois 105.118.2.223

IP Abuse Reports for 105.118.2.223:

This IP address has been reported a total of 6 times from 2 distinct sources. 105.118.2.223 was first reported on February 14th 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 TPI-Abuse	2026-03-08 19:35:59 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 15:35:52.286239 2026] [security2:error] [pid 8955:tid 8955] [client 105.118.2.223:41751] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.jamesallenwalker.com"] [uri "/.env"] [unique_id "aa3PmONV_OxYfmQFHqnrvwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-08 18:59:58 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 14:59:52.484391 2026] [security2:error] [pid 17970:tid 17970] [client 105.118.2.223:32855] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "copiershickory.com"] [uri "/.env"] [unique_id "aa3HKGQUlbcaz5JQa_5ZsQAAABM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-08 17:32:14 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 13:32:07.984168 2026] [security2:error] [pid 27112:tid 27112] [client 105.118.2.223:32108] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "nchsfootballgolfouting.needtoorder.us"] [uri "/.env"] [unique_id "aa2yl3OXbUzvdGar_dOX2gAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-08 15:51:10 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 11:51:07.695566 2026] [security2:error] [pid 11713:tid 11713] [client 105.118.2.223:40796] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "technicallydental.com"] [uri "/.env"] [unique_id "aa2a676PrEqNPQ7ZSOQymgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-08 15:18:29 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 105.118.2.223 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 08 11:18:21.592160 2026] [security2:error] [pid 26776:tid 26776] [client 105.118.2.223:13734] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.dawnmazur.com"] [uri "/.env"] [unique_id "aa2TPbz6JzlpJDGRmDicsgAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-02-14 21:23:58 (3 months ago)	Web App Attack	Brute-Force Exploited Host Web App Attack

Showing 1 to 6 of 6 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇦 195.63.18.249

🇧🇷 189.8.102.230

🇺🇸 185.180.141.44

🇰🇷 182.31.35.187

🇨🇳 175.11.133.183

🇮🇩 157.15.73.34

🇨🇳 112.46.207.141

🇨🇦 85.217.149.8

🇬🇧 35.203.210.49

🇺🇸 34.181.232.107

🇧🇪 34.140.246.243

🇷🇺 5.101.64.6

🇩🇪 185.242.3.195

🇺🇸 185.180.141.42

🇰🇷 180.182.245.94

🇭🇰 152.32.225.108

🇭🇰 101.36.122.186

🇺🇸 91.230.168.101

🇷🇺 90.188.38.227

🇲🇦 81.192.46.36