JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 172.70.134.212

172.70.134.212 was found in our database!

This IP was reported 214 times. Confidence of Abuse is 0%: ?

ISP	Cloudflare, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS13335
Domain Name	cloudflare.com
Country	🇺🇸 United States of America
City	Ashburn, Virginia

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Important Note: 172.70.134.212 is an IP address from within our whitelist belonging to the subnet 172.64.0.0/13, which we identify as: "Cloudflare Reverse Proxy".

Whitelisted netblocks are typically owned by trusted entities, such as Google or Microsoft who may use them for search engine spiders. However, these same entities sometimes also provide cloud servers and mail services which are easily abused. Pay special attention when trusting or distrusting these IPs.

Report 172.70.134.212

Whois 172.70.134.212

IP Abuse Reports for 172.70.134.212:

This IP address has been reported a total of 214 times from 26 distinct sources. 172.70.134.212 was first reported on February 2nd 2022, and the most recent report was 2 months ago.

Old Reports: The most recent abuse report for this IP address is from 2 months ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 mnsf	2026-04-08 19:05:50 (2 months ago)	Scanning/Probing (14)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-31 01:21:25 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 21:21:17.687541 2026] [security2:error] [pid 13989:tid 13989] [client 172.70.134.212:10289] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.batfry.com"] [uri "/.env_config"] [unique_id "acshjTek7-rG8S0ismL3DQAAAA8"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 mnsf	2026-03-31 01:07:06 (2 months ago)	Scanning/Probing (14)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 16:22:10 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 12:21:57.543695 2026] [security2:error] [pid 27038:tid 27038] [client 172.70.134.212:12231] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.natursac.com"] [uri "/var/www/.env"] [unique_id "acqjJfuqtP8p8axC7NBjowAAAAc"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 14:28:05 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 10:27:58.784297 2026] [security2:error] [pid 21077:tid 21077] [client 172.70.134.212:11963] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.scswat.org"] [uri "/.env.tmp"] [unique_id "acqIbjjUO_1zp3K5KhC3BwAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 12:49:50 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 08:49:42.921246 2026] [security2:error] [pid 30549:tid 30549] [client 172.70.134.212:11828] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.ttlatl.com"] [uri "/var/www/.env"] [unique_id "acpxZrzeLxHFrCKhXiZCSwAAABA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 11:13:51 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 07:13:46.110936 2026] [security2:error] [pid 25275:tid 25275] [client 172.70.134.212:9566] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.kircali.net"] [uri "/.env.docker"] [unique_id "acpa6teIuE-LZR9g5K5ZxgAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 08:45:36 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 04:45:28.413158 2026] [security2:error] [pid 17845:tid 17845] [client 172.70.134.212:11793] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.1826palmetto.com"] [uri "/.env.backup"] [unique_id "aco4KFsqTA5RA7JSTd9I4wAAABg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 04:19:53 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Mar 30 00:19:45.128001 2026] [security2:error] [pid 27153:tid 27153] [client 172.70.134.212:14004] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.mbehel.jen-eric.com"] [uri "/private/.env"] [unique_id "acn54Wk49jAcY0FYW07mPgAAABY"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 03:16:53 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 23:16:44.974762 2026] [security2:error] [pid 26423:tid 26423] [client 172.70.134.212:12444] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.bisbyphotography.com"] [uri "/.env.bak"] [unique_id "acnrHHHivM2aBL0FiX9W9QAAAAQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 01:57:31 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 21:57:08.686032 2026] [security2:error] [pid 25422:tid 25422] [client 172.70.134.212:9629] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcontacts.iiiip.org"] [uri "/.env_config"] [unique_id "acnYdKId3WZQufJ6zqAQswAAAAg"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 01:42:22 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 21:42:07.071326 2026] [security2:error] [pid 16434:tid 16434] [client 172.70.134.212:10051] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "autodiscover.alsetsystems.com"] [uri "/srv/.env"] [unique_id "acnU77apYg39GmV6SpW8mAAAAAo"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 01:12:29 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 21:12:17.389467 2026] [security2:error] [pid 12056:tid 12056] [client 172.70.134.212:12129] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpcalendars.butterflymornings.com"] [uri "/.env.local"] [unique_id "acnN8RkjklSuOc6v9a-UpgAAAAA"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 00:56:46 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 20:56:35.774909 2026] [security2:error] [pid 1826:tid 1826] [client 172.70.134.212:10447] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "cpanel.hl-re.com"] [uri "/.env.example"] [unique_id "acnKQx6HVuXXlD0yGlLxFQAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-03-30 00:17:53 (2 months ago)	(mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Por ... show more (mod_security) mod_security (id:210492) triggered by 172.70.134.212 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Mar 29 20:17:38.804058 2026] [security2:error] [pid 1869:tid 1869] [client 172.70.134.212:9908] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "webmail.adona.org"] [uri "/app/.env"] [unique_id "acnBIgy1D34ERDT3cxMpYwAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 214 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇬🇧 217.154.61.249

🇰🇭 203.147.134.33

🇳🇱 185.170.213.199

🇮🇩 144.79.241.10

🇺🇸 109.105.210.79

🇺🇸 104.28.214.113

🇷🇺 94.159.116.131

🇺🇸 43.159.177.40

🇭🇰 42.200.78.166

🇮🇳 35.200.161.241

🇺🇸 34.44.112.14

🇻🇪 190.202.32.67

🇨🇦 178.128.239.192

🇷🇺 178.78.44.208

🇭🇰 152.32.135.217

🇳🇴 109.247.139.19

🇭🇰 103.231.14.54

🇵🇭 103.17.149.82

🇺🇸 45.132.227.79

🇺🇸 18.191.213.158