JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 145.239.82.4

145.239.82.4 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 57%: ?

57%

ISP	OVH VPS WAW
Usage Type	Data Center/Web Hosting/Transit
ASN	AS16276
Hostname(s)	vps-b063f537.vps.ovh.net
Domain Name	ovh.net
Country	🇵🇱 Poland
City	Warsaw, Mazovia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 145.239.82.4

Whois 145.239.82.4

IP Abuse Reports for 145.239.82.4:

This IP address has been reported a total of 16 times from 12 distinct sources. 145.239.82.4 was first reported on October 4th 2024, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇷 Savoie	2026-06-15 13:16:00 (5 days ago)	145.239.82.4 *.* - [15/Jun/2026:15:16:00 +0200] "GET /users/sign_in HTTP/1.1" 302 211 "-" "Mozil ... show more 145.239.82.4 *.* - [15/Jun/2026:15:16:00 +0200] "GET /users/sign_in HTTP/1.1" 302 211 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0" show less	Bad Web Bot Web App Attack
🇭🇺 Adorjan Daczo	2026-06-15 11:29:27 (5 days ago)	Probe for vulnerabilities. Path attempted: /.env	Web App Attack
🇭🇺 bcsaba	2026-06-15 11:11:40 (5 days ago)	Probing for .env file: 145.239.82.4 - - [15/Jun/2026:13:11:36 +0200] "GET /.env HTTP/1.1" 400 632 "- ... show more Probing for .env file: 145.239.82.4 - - [15/Jun/2026:13:11:36 +0200] "GET /.env HTTP/1.1" 400 632 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0" show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-15 01:18:42 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 14 21:18:35.722028 2026] [security2:error] [pid 29868:tid 29868] [client 145.239.82.4:40188] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.ideaofauniversity.website"] [uri "/.env"] [unique_id "ai9S6zUgAIHKen7ljttVigAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇧🇪 voormedia	2026-06-14 20:50:40 (6 days ago)	Accessed trap at '/.env'	Web App Attack
🇳🇴 jad-abuse	2026-06-14 20:12:23 (6 days ago)	ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. O ... show more ThreatFeed automated detection: malicious HTTP scanning / exploit attempts. Signatures: env_probe. Observed by 1 sensor(s); 3 hits. show less	Web App Attack
🇪🇸 Gem	2026-06-13 05:59:38 (1 week ago)	Unauthorized web scan.	Web App Attack
🇨🇭 zynex	2026-06-12 21:37:41 (1 week ago)	URL Probing: /de/.env	Web App Attack
🇨🇭 4server	2026-06-12 21:13:19 (1 week ago)	[FriJun1223:13:14.8109942026][security2:error][pid1971528:tid1972132][client145.239.82.4:0]ModSecuri ... show more [FriJun1223:13:14.8109942026][security2:error][pid1971528:tid1972132][client145.239.82.4:0]ModSecurity:Accessdeniedwithcode403\(phase1\).Matchedphrase\".env\"atREQUEST_URI.[file\"/etc/apache2/conf.d/modsec_custom_rules.conf\"][line\"364\"][id\"960720\"][msg\"Forbiddenfileaccess\"][hostname\"www.minondou-togo.ch\"][uri\"/.env\"][unique_id\"aix2aqeTa8595COsHV3n6gAAAQc\"] show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 16:41:56 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:41:51.641418 2026] [security2:error] [pid 23822:tid 23822] [client 145.239.82.4:37510] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.wilsontribe.org"] [uri "/.env"] [unique_id "aiw2z91PTHbJ2ijjB7DaNAAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 16:24:40 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:24:36.107683 2026] [security2:error] [pid 14742:tid 14742] [client 145.239.82.4:50018] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.turtlehill.org"] [uri "/.env"] [unique_id "aiwyxAhjdVCf02r6mKYcPgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 16:07:11 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 12:07:06.633369 2026] [security2:error] [pid 358:tid 358] [client 145.239.82.4:60224] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webdisk.supportourlibrary.org"] [uri "/.env"] [unique_id "aiwuqlcpstqye8CxNvEQQgAAABU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-12 15:05:30 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in t ... show more (mod_security) mod_security (id:210492) triggered by 145.239.82.4 (vps-b063f537.vps.ovh.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jun 12 11:05:22.395788 2026] [security2:error] [pid 16178:tid 16178] [client 145.239.82.4:37920] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "jwphotodesign.jonathanwilson.me"] [uri "/.env"] [unique_id "aiwgMosmrog4FrusdHTD_wAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇪🇸 loadsoporte	2026-06-12 04:55:06 (1 week ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇮🇹 sssrit	2026-06-12 03:26:55 (1 week ago)	145.239.82.4 - - [12/Jun/2026:05:26:55 +0200] "GET /users/sign_in HTTP/1.1" 404 10635 "-" "Mozilla/5 ... show more 145.239.82.4 - - [12/Jun/2026:05:26:55 +0200] "GET /users/sign_in HTTP/1.1" 404 10635 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36 Edg/138.0.0.0" ... show less	Web App Attack

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇪🇹 196.189.237.172

🇺🇸 64.62.156.206

🇺🇸 18.221.179.104

🇮🇳 223.191.34.253

🇩🇪 212.30.36.220

🇲🇰 185.193.240.246

🇳🇱 176.65.132.22

🇵🇰 175.107.218.23

🇨🇦 172.70.80.145

🇮🇳 168.144.95.137

🇺🇸 162.216.150.195

🇺🇸 143.42.0.20

🇺🇸 137.184.32.56

🇨🇳 124.223.112.24

🇮🇩 110.35.80.116

🇪🇸 95.23.117.133

🇨🇦 85.217.149.55

🇬🇧 81.132.169.226

🇩🇪 47.91.77.132

🇩🇴 45.172.152.74