JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.245.97.7

157.245.97.7 was found in our database!

This IP was reported 165 times. Confidence of Abuse is 0%: ?

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇮🇳 India
City	Bashettihalli, Karnataka

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.245.97.7

Whois 157.245.97.7

IP Abuse Reports for 157.245.97.7:

This IP address has been reported a total of 165 times from 109 distinct sources. 157.245.97.7 was first reported on June 28th 2021, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇴 adalbertoreyes.org	2024-12-06 15:36:24 (1 year ago)	CategoryPortScan	Port Scan
🇳🇱 ATV	2024-12-06 03:09:07 (1 year ago)	Unsolicited connection attempts to port 443	Hacking
🇸🇪 mr_whitehat	2024-12-06 00:37:02 (1 year ago)	Probed for vulnerable web application: request line: /.env (Possible exploit:Unprotected .env files)	Web App Attack
🇺🇸 c y	2024-12-05 16:47:22 (1 year ago)	...	Web App Attack
🇩🇪 sdos.es	2024-12-05 14:59:43 (1 year ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack
🇨🇿 Countryman	2024-12-05 14:57:54 (1 year ago)	repeated unauthorized connection attempts, host sweep, port scan	Port Scan
🇺🇸 TPI-Abuse	2024-12-05 14:57:40 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 09:57:37.198675 2024] [security2:error] [pid 3688:tid 3688] [client 157.245.97.7:54692] [client 157.245.97.7] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.240"] [uri "/.env"] [unique_id "Z1G_YdQiXaQij0-CHQ6RMwAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-12-05 14:33:17 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 09:33:11.239696 2024] [security2:error] [pid 5187:tid 5187] [client 157.245.97.7:36546] [client 157.245.97.7] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.39"] [uri "/.env"] [unique_id "Z1G5p43EiaauH8_PR1ZbpgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 Charles	2024-12-05 14:31:04 (1 year ago)	157.245.97.7 - - [05/Dec/2024:22:31:00 +0800] "GET /.env HTTP/1.1" 404 6191 "-" "Mozilla/5.0 Keydrop ... show more 157.245.97.7 - - [05/Dec/2024:22:31:00 +0800] "GET /.env HTTP/1.1" 404 6191 "-" "Mozilla/5.0 Keydrop" ... show less	Web Spam Email Spam Brute-Force Bad Web Bot Web App Attack SSH
🇺🇸 TPI-Abuse	2024-12-05 13:52:55 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 08:52:50.612637 2024] [security2:error] [pid 15897:tid 15897] [client 157.245.97.7:44592] [client 157.245.97.7] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.245"] [uri "/.env"] [unique_id "Z1GwMk68V5KMFxTw7a9V1gAAAA4"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2024-12-05 13:31:02 (1 year ago)	Bot / scanning and/or hacking attempts: GET /.env HTTP/1.1, GET / HTTP/1.0	Hacking Web App Attack
🇩🇪 smopdidi	2024-12-05 13:23:37 (1 year ago)	Ports: 443; 4 attempts	Port Scan
🇳🇱 ParaBug	2024-12-05 13:20:25 (1 year ago)	157.245.97.7 - - [05/Dec/2024:14:20:25 +0100] "GET /.env HTTP/1.1" 403 2930 "-" "Mozilla/5.0 Keydrop ... show more 157.245.97.7 - - [05/Dec/2024:14:20:25 +0100] "GET /.env HTTP/1.1" 403 2930 "-" "Mozilla/5.0 Keydrop" ... show less	Phishing Brute-Force Web App Attack
🇺🇸 MPL	2024-12-05 13:16:33 (1 year ago)	tcp/443 (8 or more attempts)	Port Scan
🇺🇸 TPI-Abuse	2024-12-05 13:02:11 (1 year ago)	(mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports ... show more (mod_security) mod_security (id:210492) triggered by 157.245.97.7 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Dec 05 08:02:07.220545 2024] [security2:error] [pid 30165:tid 30165] [client 157.245.97.7:45948] [client 157.245.97.7] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.118"] [uri "/.env"] [unique_id "Z1GkT_G34OjHtapdKxoaEwAAAAI"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 165 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 2a00:1450:4009:c00::12b

🇻🇪 206.0.163.176

🇺🇸 172.174.200.225

🇹🇼 101.13.6.91

🇧🇬 78.128.112.30

🇩🇪 45.144.0.147

🇺🇸 20.64.105.168

🇬🇧 5.226.140.62

🇺🇦 176.36.139.231

🇩🇪 141.11.250.239

🇨🇳 121.40.233.220

🇵🇭 119.93.83.110

🇮🇩 114.10.47.235

🇺🇸 47.254.44.235

🇳🇱 45.148.10.152

🇺🇸 20.169.105.81

🇮🇪 3.252.220.51

🇩🇪 213.209.159.56

🇦🇷 190.181.101.244

🇩🇪 172.70.248.136