JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 146.70.188.199

146.70.188.199 was found in our database!

This IP was reported 59 times. Confidence of Abuse is 100%: ?

100%

ISP	M247 LTD Sofia Infrastructure
Usage Type	Data Center/Web Hosting/Transit
ASN	AS9009
Domain Name	m247.com
Country	🇧🇬 Bulgaria
City	Sofia, Sofia-Capital

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 146.70.188.199

Whois 146.70.188.199

IP Abuse Reports for 146.70.188.199:

This IP address has been reported a total of 59 times from 32 distinct sources. 146.70.188.199 was first reported on January 24th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-05-22 17:16:18 (1 week ago)	146.70.188.199 - - [22/May/2026:17:16:18 +0000] "GET /.git/config HTTP/1.1" 404 5448 "-" "Mozilla/5. ... show more 146.70.188.199 - - [22/May/2026:17:16:18 +0000] "GET /.git/config HTTP/1.1" 404 5448 "-" "Mozilla/5.0 (compatible; Scanner/1.0)" ... show less	Bad Web Bot Web App Attack
🇧🇪 cmbplf	2026-05-22 16:50:35 (1 week ago)	164 requests with url.path */.git/config	Brute-Force Bad Web Bot
🇺🇸 nyt	2026-05-22 16:38:16 (1 week ago)	Sensitive File Probe, Sensitive File Probe, Scanner UA	Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 16:36:35 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 12:36:30.861631 2026] [security2:error] [pid 19339:tid 19339] [client 146.70.188.199:62257] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "sharawi-gum.com"] [uri "/.git/config"] [unique_id "ahCGDuphE2zM3AegLm-iTwAAACI"] show less	Brute-Force Bad Web Bot Web App Attack
🇵🇱 sefinek.net	2026-05-22 16:06:40 (1 week ago)	Triggered Cloudflare WAF (firewallCustom) from BG. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoi ... show more Triggered Cloudflare WAF (firewallCustom) from BG. Action: BLOCK \| Protocol: HTTP/1.1 (GET) \| Endpoint: /.git/config \| UA: Mozilla/5.0 (compatible; Scanner/1.0) • Generated by: github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇺🇸 TPI-Abuse	2026-05-22 15:38:08 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 11:38:03.339989 2026] [security2:error] [pid 32070:tid 32070] [client 146.70.188.199:63823] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "schonmusic.com"] [uri "/.git/config"] [unique_id "ahB4W2MreaSeOA_46UT6rQAAABE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 rdpguard.com	2026-05-22 14:49:45 (1 week ago)	RdpGuard detected brute-force attempt on HTTP	Brute-Force
🇺🇸 TPI-Abuse	2026-05-22 14:42:25 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 10:42:19.533640 2026] [security2:error] [pid 21074:tid 21074] [client 146.70.188.199:51412] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rwcartoons.com"] [uri "/.git/config"] [unique_id "ahBrS7iLNwvrK0WZ4hjuZAAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 14:03:36 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 10:03:31.850837 2026] [security2:error] [pid 18618:tid 18618] [client 146.70.188.199:64218] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "roachranch.com"] [uri "/.git/config"] [unique_id "ahBiM26ubdjjLzbStB1nxgAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 12:34:37 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 08:34:31.600520 2026] [security2:error] [pid 10279:tid 10279] [client 146.70.188.199:60742] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rahjx.net"] [uri "/.git/config"] [unique_id "ahBNV5Wv9TF7a1O58WHXYgAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 12:15:24 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 08:15:20.443311 2026] [security2:error] [pid 32354:tid 32354] [client 146.70.188.199:58557] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "quakeprediction.com"] [uri "/.git/config"] [unique_id "ahBI2HwZye6_PDS0TwX21wAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-05-22 11:37:29 (1 week ago)	(mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 146.70.188.199 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri May 22 07:37:24.861400 2026] [security2:error] [pid 8989:tid 9002] [client 146.70.188.199:51310] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "projectmanagementcertification.org"] [uri "/.git/config"] [unique_id "ahA_9F2OuKTSn2uyHYeFQQAAAUk"] show less	Brute-Force Bad Web Bot Web App Attack
🇷🇺 Agrohim	2026-02-11 04:16:45 (3 months ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force
🇷🇺 Agrohim	2026-01-24 00:08:35 (4 months ago)	Gate Inet blocked for categories:	DDoS Attack Ping of Death Port Scan Hacking Brute-Force

Showing 46 to 59 of 59 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇵🇸 185.61.20.33

🇭🇰 152.32.226.205

🇮🇳 103.82.210.181

🇮🇹 89.46.105.39

🇮🇩 36.92.140.209

🇪🇬 197.162.238.253

🇺🇸 172.214.209.153

🇮🇳 116.73.240.74

🇵🇰 103.134.2.98

🇺🇸 91.230.168.73

🇸🇦 82.167.169.206

🇺🇸 65.49.1.14

🇺🇸 64.62.197.188

🇩🇿 41.105.38.160

🇮🇩 36.83.114.148

🇬🇧 35.203.210.202

🇺🇸 2001:470:1:c84::2f3

🇺🇸 2001:470:1:c84::26

🇦🇪 198.38.94.18

🇵🇭 158.62.75.25