JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 165.140.166.6

165.140.166.6 was found in our database!

This IP was reported 15 times. Confidence of Abuse is 66%: ?

66%

ISP	ReadyDedis, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS153393
Domain Name	readydedis.com
Country	🇺🇸 United States of America
City	Los Angeles, California

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 165.140.166.6

Whois 165.140.166.6

IP Abuse Reports for 165.140.166.6:

This IP address has been reported a total of 15 times from 10 distinct sources. 165.140.166.6 was first reported on June 13th 2026, and the most recent report was 21 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-06-14 00:07:38 (21 hours ago)	Abuse Detected (2)	Brute-Force Web App Attack
🇳🇱 wlt-blocker	2026-06-13 19:08:33 (1 day ago)	Unauthorized access to webpage admin	Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 19:04:48 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 15:04:42.044483 2026] [security2:error] [pid 24430:tid 24430] [client 165.140.166.6:60352] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.221"] [uri "/.env"] [unique_id "ai2pyiPMvqXk7XX0-iticgAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 18:22:46 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 14:22:39.920828 2026] [security2:error] [pid 22272:tid 22272] [client 165.140.166.6:65093] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.242"] [uri "/.env"] [unique_id "ai2f74kQ54Q-02xe7RR5SQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 17:56:01 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 13:55:55.457097 2026] [security2:error] [pid 27813:tid 27813] [client 165.140.166.6:57440] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.230"] [uri "/.env"] [unique_id "ai2Zq5qvHWz3TVIEkFHg2QAAABo"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 psauxit	2026-06-13 17:49:33 (1 day ago)	Fail2Ban - NGINX bad requests 400-401-403-404-444, high level vulnerability scanning, commonly xmlrp ... show more Fail2Ban - NGINX bad requests 400-401-403-404-444, high level vulnerability scanning, commonly xmlrpc_attack, wp-login brute force, excessive crawling/scraping show less	Web App Attack Hacking
🇺🇸 Starburst SysOp Team	2026-06-13 17:47:03 (1 day ago)	Host header is a numeric IP address. Pattern match "(?:^( (920350-stl2-14)	Hacking Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 17:39:21 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 13:39:16.290436 2026] [security2:error] [pid 31905:tid 31905] [client 165.140.166.6:56642] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.71"] [uri "/.env"] [unique_id "ai2VxI1S-rvw5-Haxdk6vQAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 anotherwatcher	2026-06-13 17:16:52 (1 day ago)	bad bot	Bad Web Bot
🇺🇸 TPI-Abuse	2026-06-13 16:58:40 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 12:58:37.066537 2026] [security2:error] [pid 25687:tid 25687] [client 165.140.166.6:60055] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.250"] [uri "/.env"] [unique_id "ai2MPS7Z0qhjwYFx8hjbxQAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-13 15:53:59 (1 day ago)	(mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 165.140.166.6 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 13 11:53:52.733236 2026] [security2:error] [pid 20803:tid 20803] [client 165.140.166.6:56129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.210"] [uri "/.env"] [unique_id "ai19EPMT472ySqi-8O9VYgAAAAE"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-13 15:45:04 (1 day ago)	Web vulnerability probing: /.env	Web App Attack
Anonymous	2026-06-13 15:41:50 (1 day ago)	165.140.166.6 - - [13/Jun/2026:17:41:48 +0200] "GET /.env HTTP/1.1" 403 5796 "-" "Mozilla/5.0 (X11; ... show more 165.140.166.6 - - [13/Jun/2026:17:41:48 +0200] "GET /.env HTTP/1.1" 403 5796 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" ... show less	Web App Attack
🇫🇷 Baking333	2026-06-13 15:02:00 (1 day ago)	redacted:80 165.140.166.6 - - [13/Jun/2026:16:01:57 +0100] "GET /.env HTTP/1.1" 200 203 0/16431 "-" ... show more redacted:80 165.140.166.6 - - [13/Jun/2026:16:01:57 +0100] "GET /.env HTTP/1.1" 200 203 0/16431 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" redacted:443 165.140.166.6 - - [13/Jun/2026:16:01:58 +0100] "GET /.env HTTP/1.1" 200 3906 0/12204 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/81.0.4044.129 Safari/537.36" show less	Bad Web Bot Web App Attack
🇩🇪 big-cloud.nl	2026-06-13 14:51:08 (1 day ago)	Try to access /.env	Web App Attack

Showing 1 to 15 of 15 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 203.23.179.40

🇨🇳 175.46.253.75

🇮🇳 168.144.80.241

🇸🇬 47.128.60.42

🇭🇰 47.82.72.15

🇮🇩 41.216.178.119

🇬🇧 193.163.125.187

🇮🇶 185.166.25.150

🇺🇸 149.34.240.104

🇮🇹 91.80.174.148

🇷🇴 80.94.92.186

🇺🇸 72.10.32.138

🇮🇳 45.196.196.182

🇮🇩 34.101.204.255

🇺🇸 34.11.85.254

🇮🇷 5.237.103.182

🇫🇮 2a00:1450:4010:c0e::129

🇰🇷 218.144.90.40

🇺🇸 185.149.26.71

🇩🇪 141.11.45.97