JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 162.0.236.134

162.0.236.134 was found in our database!

This IP was reported 58 times. Confidence of Abuse is 0%: ?

ISP	Namecheap, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS22612
Hostname(s)	server2.theinitiative.ngo
Domain Name	namecheap.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 162.0.236.134

Whois 162.0.236.134

IP Abuse Reports for 162.0.236.134:

This IP address has been reported a total of 58 times from 19 distinct sources. 162.0.236.134 was first reported on May 3rd 2024, and the most recent report was 2 years ago.

Old Reports: The most recent abuse report for this IP address is from 2 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 myagent.site	2024-05-22 14:58:27 (2 years ago)	Blocking for trying to access an exploit file: /.env	Hacking
🇬🇧 Axel	2024-05-22 14:42:02 (2 years ago)	Access to sensitive file detected: 162.0.236.134 - - [22/May/2024:14:41:06 +0000] "GET /.env HTTP/1. ... show more Access to sensitive file detected: 162.0.236.134 - - [22/May/2024:14:41:06 +0000] "GET /.env HTTP/1.0" 403 1568 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0" show less	Brute-Force SSH
🇺🇸 woof	2024-05-22 12:10:52 (2 years ago)	This IP accessed a banned path "/.env" with User Agent "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15 ... show more This IP accessed a banned path "/.env" with User Agent "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0". (ListenCaddy) show less	Bad Web Bot Web App Attack
🇫🇷 Hydra-Shield.fr	2024-05-22 11:25:08 (2 years ago)	Directory Traversal on: /.env	Web App Attack
🇩🇪 FeG Deutschland	2024-05-13 23:21:03 (2 years ago)	Looking for CMS/PHP/SQL vulnerablilities - 13	Exploited Host Web App Attack
Anonymous	2024-05-12 03:12:56 (2 years ago)	wp admin page access attempt ...	Hacking Web App Attack
🇺🇸 TPI-Abuse	2024-05-11 07:19:22 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 162.0.236.134 (server2.theinitiative.ngo): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 162.0.236.134 (server2.theinitiative.ngo): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat May 11 03:19:14.768506 2024] [security2:error] [pid 763446] [client 162.0.236.134:34204] [client 162.0.236.134] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "elenacampo.com"] [uri "/.env"] [unique_id "Zj8b8nJhsebkITPGr7P2-AAAADM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 octageeks.com	2024-05-11 04:06:27 (2 years ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 beehivesafety	2024-05-10 23:20:28 (2 years ago)	Threat Blocked by BeeHive from (ASN:22612) (Network:NAMECHEAP-NET) (Host:beehive.systems) (Method:GE ... show more Threat Blocked by BeeHive from (ASN:22612) (Network:NAMECHEAP-NET) (Host:beehive.systems) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2024-05-10T23:20:28Z) show less	Open Proxy VPN IP Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇺🇸 beehivesafety	2024-05-10 04:10:20 (2 years ago)	Threat Blocked by BeeHive from (ASN:22612) (Network:NAMECHEAP-NET) (Host:beehive.systems) (Method:GE ... show more Threat Blocked by BeeHive from (ASN:22612) (Network:NAMECHEAP-NET) (Host:beehive.systems) (Method:GET) (Protocol:HTTP/1.1) (Timestamp:2024-05-10T04:10:20Z) show less	Open Proxy VPN IP Port Scan Hacking SQL Injection Bad Web Bot Exploited Host Web App Attack
🇺🇸 octageeks.com	2024-05-10 04:06:27 (2 years ago)	Wordpress malicious attack:[octablocked]	Web App Attack
🇺🇸 TPI-Abuse	2024-05-10 02:38:17 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 162.0.236.134 (server2.theinitiative.ngo): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 162.0.236.134 (server2.theinitiative.ngo): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 09 22:38:10.094041 2024] [security2:error] [pid 28603] [client 162.0.236.134:57574] [client 162.0.236.134] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "dennisangellismusic.com"] [uri "/.env"] [unique_id "Zj2IkgsT3OOfpHonWDR1SAAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2024-05-10 00:54:02 (2 years ago)	(mod_security) mod_security (id:210492) triggered by 162.0.236.134 (server2.theinitiative.ngo): 1 in ... show more (mod_security) mod_security (id:210492) triggered by 162.0.236.134 (server2.theinitiative.ngo): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 09 20:53:54.694501 2024] [security2:error] [pid 1381252] [client 162.0.236.134:38806] [client 162.0.236.134] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "natchezbicycle.com"] [uri "/.env"] [unique_id "Zj1wIpvQNdgtQG7dIwHTVQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2024-05-09 21:05:26 (2 years ago)	Too many Status 40X (12)	Brute-Force Web App Attack
🇨🇭 teamsecure	2024-05-09 20:59:56 (2 years ago)	Banned for trying to access env	Web App Attack

Showing 1 to 15 of 58 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 165.154.29.144

🇧🇷 152.67.39.50

🇺🇸 107.172.91.84

🇮🇳 103.142.106.54

🇫🇷 91.231.89.132

🇫🇷 91.231.89.10

🇳🇱 80.82.77.33

🇺🇸 66.132.186.185

🇺🇸 54.242.174.160

🇰🇷 14.206.12.13

🇧🇪 207.175.14.107

🇺🇸 195.184.76.174

🇮🇳 183.87.217.222

🇧🇷 177.70.2.194

🇺🇸 138.113.22.151

🇭🇰 118.193.43.141

🇨🇳 115.29.34.90

🇳🇱 94.154.35.215

🇫🇷 91.196.152.210

🇫🇷 91.196.152.208