JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 168.144.41.150

168.144.41.150 was found in our database!

This IP was reported 68 times. Confidence of Abuse is 100%: ?

100%

ISP	DigitalOcean, LLC
Usage Type	Data Center/Web Hosting/Transit
ASN	AS14061
Domain Name	digitalocean.com
Country	🇸🇬 Singapore
City	Singapore

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 168.144.41.150

Whois 168.144.41.150

IP Abuse Reports for 168.144.41.150:

This IP address has been reported a total of 68 times from 53 distinct sources. 168.144.41.150 was first reported on May 25th 2026, and the most recent report was 2 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 as211431.net	2026-06-21 09:19:59 (2 days ago)	Triggered Cloudflare WAF (linkMaze) from SG. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GE ... show more Triggered Cloudflare WAF (linkMaze) from SG. Action taken: LINK_MAZE_INJECTED Protocol: HTTP/1.1 (GET method) Endpoint: /info UA: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 This report was generated by: https://github.com/sefinek/Cloudflare-WAF-To-AbuseIPDB show less	Bad Web Bot
🇩🇪 Administrator	2026-06-21 06:20:41 (2 days ago)	[Sun Jun 21 06:20:37.980878 2026] [php:error] [pid 4149019:tid 4149019] [client 168.144.41.150:51806 ... show more [Sun Jun 21 06:20:37.980878 2026] [php:error] [pid 4149019:tid 4149019] [client 168.144.41.150:51806] script '/var/www/nextcloud/i.php' not found or unable to stat [Sun Jun 21 06:20:40.150185 2026] [php:error] [pid 4149012:tid 4149012] [client 168.144.41.150:51818] script '/var/www/nextcloud/info.php' not found or unable to stat [Sun Jun 21 06:20:41.202710 2026] [php:error] [pid 4148998:tid 4148998] [client 168.144.41.150:51834] script '/var/www/nextcloud/phpinfo.php' not found or unable to stat ... show less	Hacking Bad Web Bot Web App Attack
🇫🇮 23p02732	2026-06-21 04:50:59 (2 days ago)	Mailserver and mailaccount attacks	Brute-Force Bad Web Bot Exploited Host Web App Attack
🇨🇦 electronico	2026-06-20 19:28:46 (2 days ago)	168.144.41.150 - - [21/Jun/2026:06:28:44 +1100] "GET /.env HTTP/1.1" 404 5893 "-" "Mozilla/5.0 (Wind ... show more 168.144.41.150 - - [21/Jun/2026:06:28:44 +1100] "GET /.env HTTP/1.1" 404 5893 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 168.144.41.150 - - [21/Jun/2026:06:28:44 +1100] "GET /.env.save HTTP/1.1" 404 2049 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 168.144.41.150 - - [21/Jun/2026:06:28:44 +1100] "GET /api/.env HTTP/1.1" 404 2049 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 168.144.41.150 - - [21/Jun/2026:06:28:45 +1100] "GET /apis/.env HTTP/1.1" 404 2049 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 168.144.41.150 - - [21/Jun/2026:06:28:45 +1100] "GET /app/.env HTTP/1.1" 404 2049 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" 16 ... show less	Brute-Force Web App Attack
🇺🇸 SLSLLC	2026-06-20 15:54:44 (2 days ago)	168.144.41.150 - - [20/Jun/2026:15:54:43 +0000] "GET /.env HTTP/1.1" 403 4700 "-" "Mozilla/5.0 (Wind ... show more 168.144.41.150 - - [20/Jun/2026:15:54:43 +0000] "GET /.env HTTP/1.1" 403 4700 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" ... show less	Brute-Force Web App Attack
🇺🇸 stvnrdg.me	2026-06-20 13:25:01 (2 days ago)	168.144.41.150 - - [20/Jun/2026:13:25:00 +0000] "GET /i.php HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Wind ... show more 168.144.41.150 - - [20/Jun/2026:13:25:00 +0000] "GET /i.php HTTP/1.1" 404 396 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36" ... show less	Hacking
🇺🇸 SSP	2026-06-20 11:25:19 (2 days ago)	Automatically generated from firewall_v2 logs on Server_ID: MIAPX1 Category: Port Scan Occurrences ... show more Automatically generated from firewall_v2 logs on Server_ID: MIAPX1 Category: Port Scan Occurrences: 40 Unique Ports: 1 Destination Ports: 443 First Seen: 2026-06-20 10:25 UTC Last Seen: 2026-06-20 10:25 UTC show less	Port Scan
🇦🇺 2000cn.com.au	2026-06-20 10:24:11 (3 days ago)	This IP was detected by CrowdSec triggering crowdsecurity/http-sensitive-files	Web App Attack Hacking
🇳🇱 enpepet	2026-06-18 09:28:02 (5 days ago)	GENERAL: parametres: [url:env=] UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHT ... show more GENERAL: parametres: [url:env=] UA:Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/140.0.0.0 Safari/537.36 URL:/.env show less	Port Scan Hacking Brute-Force Bad Web Bot
Anonymous	2026-06-18 08:23:21 (5 days ago)	[Thu Jun 18 10:23:18.127903 2026] [access_compat:error] [pid 4579:tid 126697500305088] [client 168.1 ... show more [Thu Jun 18 10:23:18.127903 2026] [access_compat:error] [pid 4579:tid 126697500305088] [client 168.144.41.150:46328] AH01797: client denied by server configuration: /var/www/html/.env [Thu Jun 18 10:23:18.376930 2026] [access_compat:error] [pid 4579:tid 126697491912384] [client 168.144.41.150:46328] AH01797: client denied by server configuration: /var/www/html/.env.save [Thu Jun 18 10:23:18.641676 2026] [access_compat:error] [pid 4579:tid 126697508697792] [client 168.144.41.150:46328] AH01797: client denied by server configuration: /var/www/html/api [Thu Jun 18 10:23:18.930965 2026] [access_compat:error] [pid 4579:tid 126697586280128] [client 168.144.41.150:46328] AH01797: client denied by server configuration: /var/www/html/apis [Thu Jun 18 10:23:19.179956 2026] [access_compat:error] [pid 4579:tid 126696837609152] [client 168.144.41.150:46328] AH01797: client denied by server configuration: /var/www/html/app [Thu Jun 18 10:23:19.428478 2026] [access_compat:error] [pid 4579:tid 1266974 ... show less	Brute-Force Web App Attack
🇺🇸 Rip	2026-06-18 08:14:13 (5 days ago)	Restricted File Access Attempts	Port Scan Web App Attack
🇦🇺 paulshipley.com.au	2026-06-18 07:58:31 (5 days ago)	[Thu Jun 18 17:58:30.790480 2026] [security2:error] [pid 502158] [client 168.144.41.150:53726] [clie ... show more [Thu Jun 18 17:58:30.790480 2026] [security2:error] [pid 502158] [client 168.144.41.150:53726] [client 168.144.41.150] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "paulshipley.com.au"] [uri "/.env"] [unique_id "ajOlJpXdst5rbm4cTVhjngAAAAw"] ... show less	Web App Attack
🇦🇺 paulshipley.com.au	2026-06-18 06:46:26 (5 days ago)	[Thu Jun 18 16:46:25.621501 2026] [security2:error] [pid 495150] [client 168.144.41.150:43104] [clie ... show more [Thu Jun 18 16:46:25.621501 2026] [security2:error] [pid 495150] [client 168.144.41.150:43104] [client 168.144.41.150] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/etc/modsecurity/crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "94"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 5)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.4"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "paulshipley.com.au"] [uri "/.env"] [unique_id "ajOUQRJPVP_jtq4eBn4CewAAAFw"] ... show less	Web App Attack
🇩🇪 Melle	2026-06-18 06:33:18 (5 days ago)	Blocked by CrowdSec \| Scenario: crowdsecurity/http-sensitive-files \| 168.144.41.150 triggered 5 even ... show more Blocked by CrowdSec \| Scenario: crowdsecurity/http-sensitive-files \| 168.144.41.150 triggered 5 events \| Detected: 2026-06-18T06:33:16.696205531Z show less	Web App Attack Hacking
Anonymous	2026-06-18 06:17:08 (5 days ago)	fail2ban: Sensitive web probes detected	Web App Attack

Showing 1 to 15 of 68 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 207.90.244.5

🇳🇱 195.178.110.188

🇮🇳 187.127.138.202

🇺🇸 172.93.106.153

🇩🇪 128.1.123.228

🇮🇹 79.11.39.204

🇫🇷 72.60.89.41

🇺🇸 66.132.186.225

🇳🇱 50.7.127.99

🇧🇷 45.172.101.79

🇷🇺 5.164.26.191

🇩🇪 213.209.159.242

🇺🇸 185.223.152.109

🇭🇰 123.58.210.86

🇭🇰 101.36.122.139

🇺🇸 76.13.30.168

🇧🇷 72.60.245.126

🇧🇷 45.167.30.2

🇬🇧 35.203.210.133

🇺🇸 20.163.39.86