JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 152.42.254.29

152.42.254.29 was found in our database!

This IP was reported 214 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 152.42.254.29

Whois 152.42.254.29

IP Abuse Reports for 152.42.254.29:

This IP address has been reported a total of 214 times from 118 distinct sources. 152.42.254.29 was first reported on January 21st 2026, and the most recent report was 3 months ago.

Old Reports: The most recent abuse report for this IP address is from 3 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇹🇷 rtbh.com.tr	2026-03-13 20:12:02 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇧🇪 cmbplf	2026-03-12 22:16:23 (3 months ago)	360 requests with url.path */wp-includes/wlwmanifest.xml	Brute-Force Bad Web Bot
🇺🇸 Major Hostility	2026-03-12 19:50:20 (3 months ago)	"GET /wp-includes/ID3/license.txt HTTP/1.1" 404 "GET /feed/ HTTP/1.1" 404 "GET /xmlrpc.php?rsd HTTP/ ... show more "GET /wp-includes/ID3/license.txt HTTP/1.1" 404 "GET /feed/ HTTP/1.1" 404 "GET /xmlrpc.php?rsd HTTP/1.1" 403 "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 show less	Web App Attack
🇩🇪 iNetWorker	2026-03-12 18:32:30 (3 months ago)	trolling for resource vulnerabilities	Web App Attack
🇳🇱 Savvii	2026-03-12 14:33:30 (3 months ago)	10 attempts against mh-misc-ban on lead	Web App Attack
🇬🇧 consul.to	2026-03-12 13:59:33 (3 months ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 Site.eu	2026-03-12 13:48:42 (3 months ago)	Repeated wp-login/xmlrpc attempts	Brute-Force SSH
🇺🇸 ambor	2026-03-12 12:47:17 (3 months ago)	Honeypot triggered on tcpdata.com - Attempted to access //wp-includes/ID3/license.txt (wordpress_pro ... show more Honeypot triggered on tcpdata.com - Attempted to access //wp-includes/ID3/license.txt (wordpress_probe). User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 Safari/537.36 show less	Web App Attack
🇩🇪 HandyTreff.de	2026-03-12 12:45:24 (3 months ago)	Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -80.946 (Bad < -10 / Very Bad < -20 ... show more Bot/Spam/Scrapper attack detected on www.handytreff.de - Score: -80.946 (Bad < -10 / Very Bad < -20 / Extreme < -35) \| UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.69 show less	Web App Attack Bad Web Bot
🇳🇱 ConsulHosting	2026-03-12 12:43:24 (3 months ago)	Excessive failed CAPTCHA attempts (CAPTCHA DoS)	Web App Attack
🇩🇪 todix	2026-03-12 12:05:28 (3 months ago)	Web App Attack Exploid from 152.42.254.29	Web App Attack
🇺🇸 myagent.site	2026-03-12 07:35:12 (3 months ago)	Blocking for trying to access an exploit file: //xmlrpc.php?rsd	Hacking
🇷🇴 INTEQ	2026-03-12 07:15:27 (3 months ago)	Web attack from 152.42.254.29	Web App Attack
🇹🇷 rtbh.com.tr	2026-03-11 20:12:00 (3 months ago)	list.rtbh.com.tr report: tcp/0	Brute-Force
🇺🇸 TPI-Abuse	2026-03-11 17:42:19 (3 months ago)	(mod_security) mod_security (id:210492) triggered by 2002:982a:fe1d::982a:fe1d (Unknown): 1 in the l ... show more (mod_security) mod_security (id:210492) triggered by 2002:982a:fe1d::982a:fe1d (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Mar 11 13:42:12.135463 2026] [security2:error] [pid 11279:tid 11279] [client 2002:982a:fe1d::982a:fe1d:60212] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "theboss97fm.com"] [uri "/.env"] [unique_id "abGpdPJzHCETe3D86NZX1QAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 214 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 64.62.197.144

🇧🇷 205.210.31.208

🇲🇦 196.117.4.223

🇨🇦 138.197.164.175

🇧🇩 103.120.222.53

🇮🇩 103.97.101.25

🇸🇬 101.47.8.188

🇷🇴 92.118.39.71

🇹🇭 58.10.58.147

🇭🇰 47.83.27.244

🇳🇱 45.156.87.93

🇺🇸 45.130.83.116

🇫🇷 37.59.110.4

🇺🇸 20.168.121.143

🇨🇳 8.148.13.232

🇨🇳 223.155.233.132

🇨🇳 202.194.98.214

🇬🇧 195.96.139.247

🇦🇷 181.30.149.189

🇪🇨 177.234.245.25