AbuseIPDB » 152.42.220.235
152.42.220.235 was found in our database!
This IP was reported 10 times. Confidence of
Abuse
is 34% : ?
ISP
DigitalOcean, LLC
Usage Type
Data Center/Web Hosting/Transit
ASN
AS14061
Domain Name
digitalocean.com
Country
๐ธ๐ฌ
Singapore
City
Singapore
IP info including ISP, Usage Type, and Location provided
by IPInfo . Updated weekly.
IP Abuse Reports for 152.42.220.235 :
This IP address has been reported a total of
10
times from
9 distinct
sources.
152.42.220.235 was first reported on
May 10th 2026 , and the most recent report was
1 day ago .
Recent Reports:
We have received reports of abusive activity from this IP address within the last week. It is
potentially still actively engaged in abusive activities.
Reporter
IoA Timestamp (UTC)
Comment
Categories
๐ฌ๐ง
cg-design.co.uk
2026-07-09 13:44:36
(1 day ago)
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 152.42.220.235 (SG/Singa ...
show more
(apache-scanners) Failed apache-scanners trigger with match [redacted] from 152.42.220.235 (SG/Singapore/-)
show less
Port Scan
๐ฌ๐ง
prime_fusion_ld
2026-07-09 09:28:34
(1 day ago)
Blocked by CSF/LFD on vps.primefusion.co.uk. Trigger: 1 Ports: *
Port Scan
๐ฌ๐ง
noise.agency
2026-07-09 03:54:33
(1 day ago)
(mod_security) mod_security triggered on hostname [redacted] 152.42.220.235 (SG/Singapore/-)
SQL Injection
๐ฌ๐ง
gws-hostmaster
2026-07-08 03:42:59
(2 days ago)
ModSecurity OWASP CRS (Anomaly Score: 45): Content-Type header missing from request with body;Conten ...
show more
ModSecurity OWASP CRS (Anomaly Score: 45): Content-Type header missing from request with body;Content-Type header missing from request with non-zero Content-Length;Invalid character in request (null character);Javascript method detected;Node.js Injection Attack 1/2;Node-Validator Deny List Keywords;NoScript XSS InjectionChecker: HTML Injection;OS File Access Attempt;Path Traversal Attack (/../) or (/.../);PHP Injection Attack: High-Risk PHP Function Call Found;PHP Injection Attack: High-Risk PHP Function Name Found;PHP Injection Attack: I/O Stream Found;PHP Injection Attack: PHP Open Tag Found;PHP Injection Attack: PHP Script File Upload Found;PHP Injection Attack: Variables Found;Remote Command Execution: Direct Unix Command Execution;Remote Command Execution: Unix Shell Code Found;Remote Command Execution: Unix Shell Expression Found;Restricted File Access Attempt;XSS Attack Detected via libinjection;XSS Filter - Category 1: Script Tag Vector;
show less
Web App Attack
๐ฌ๐ง
blik2108
2026-07-08 03:19:28
(2 days ago)
blog.blacknellsatsea.co.uk:443 152.42.220.235 - - [08/Jul/2026:04:19:25 +0100] "GET /wp-json/lp/v1/c ...
show more
blog.blacknellsatsea.co.uk:443 152.42.220.235 - - [08/Jul/2026:04:19:25 +0100] "GET /wp-json/lp/v1/courses/archive-course?template_path=..%2F..%2F..%2Fetc%2Fpasswd&return_type=html HTTP/1.1" 404 5575 "-" "Mozilla/5.0 (Fedora; Linux x86_64; rv:120.0) Gecko/20100101 Firefox/120.0"
blog.blacknellsatsea.co.uk:443 152.42.220.235 - - [08/Jul/2026:04:19:25 +0100] "POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1" 404 46166 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:76.0) Gecko/20100101 Firefox/76.0"
blog.blacknellsatsea.co.uk:443 152.42.220.235 - - [08/Jul/2026:04:19:26 +0100] "POST /wp-json/mwai-ui/v1/files/upload HTTP/1.1" 404 5561 "-" "Mozilla/5.0 (X11; Linux i686; rv:120.0) Gecko/20100101 Firefox/120.0"
blog.blacknellsatsea.co.uk:443 152.42.220.235 - - [08/Jul/2026:04:19:27 +0100] "POST /wp-json/buddypress/v1/signup HTTP/1.1" 404 5561 "-" "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0"
blog.blacknellsatsea.co.uk:443 152.
...
show less
Web App Attack
๐ฌ๐ง
gws-hostmaster
2026-07-08 02:22:44
(3 days ago)
ModSecurity OWASP CRS (Anomaly Score: 30): Content-Type header missing from request with body;Conten ...
show more
ModSecurity OWASP CRS (Anomaly Score: 30): Content-Type header missing from request with body;Content-Type header missing from request with non-zero Content-Length;OS File Access Attempt;Path Traversal Attack (/../) or (/.../);PHP Injection Attack: High-Risk PHP Function Call Found;PHP Injection Attack: I/O Stream Found;PHP Injection Attack: PHP Script File Upload Found;Remote Command Execution: Unix Shell Code Found;Restricted File Access Attempt;
show less
Web App Attack
๐ฏ๐ต
VXG-NET
2026-05-28 07:27:27
(1 month ago)
port=8089, indicator_type=scan
Port Scan
Anonymous
2026-05-11 08:13:55
(1 month ago)
"GET /wp-login.php HTTP/1.1"
Hacking
Web App Attack
๐ง๐ช
cmbplf
2026-05-10 20:36:24
(2 months ago)
2.491 POST requests with url.path */wp-login.php
Brute-Force
Bad Web Bot
๐ฎ๐น
VHosting
2026-05-10 12:15:04
(2 months ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
Showing 1 to
10
of 10 reports
Think this IP has been falsely reported? You may request to have the associated
reports reviewed and removed.
Request Takedown ๐ฉ
Recently Reported IPs: