JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 173.245.211.135

173.245.211.135 was found in our database!

This IP was reported 14 times. Confidence of Abuse is 55%: ?

55%

ISP	Strong Technology, LLC.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS62651
Hostname(s)	173-245-211-135.gru.as62651.net
Domain Name	strongtechnology.net
Country	🇧🇷 Brazil
City	Sao Paulo, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 173.245.211.135

Whois 173.245.211.135

IP Abuse Reports for 173.245.211.135:

This IP address has been reported a total of 14 times from 11 distinct sources. 173.245.211.135 was first reported on May 29th 2026, and the most recent report was 5 days ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇨🇴 adalbertoreyes.org	2026-06-05 18:24:25 (5 days ago)	CategoryPortScan	Port Scan
🇺🇸 mnsf	2026-06-05 01:05:19 (6 days ago)	Too many Status 50X (31) Scanning/Probing (28)	Brute-Force Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 01:00:41 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.ne ... show more (mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 21:00:36.059605 2026] [security2:error] [pid 27879:tid 27879] [client 173.245.211.135:55950] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.202"] [uri "/.env"] [unique_id "aiIftDsA4jPg5XVHirXyGgAAAAM"] show less	Brute-Force Bad Web Bot Web App Attack
🇦🇺 aranguren.org	2026-06-05 00:49:26 (6 days ago)	173.245.211.135 - - [05/Jun/2026:10:49:05 +1000] "GET /.env HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; ... show more 173.245.211.135 - - [05/Jun/2026:10:49:05 +1000] "GET /.env HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/125.0" 173.245.211.135 - - [05/Jun/2026:10:49:09 +1000] "GET /.env.bak HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/125.0" 173.245.211.135 - - [05/Jun/2026:10:49:14 +1000] "GET /.env.local HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/125.0" 173.245.211.135 - - [05/Jun/2026:10:49:18 +1000] "GET /.env.production HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/125.0" 173.245.211.135 - - [05/Jun/2026:10:49:22 +1000] "GET /.env.old HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/125.0" 173.245.211.135 - - [05/Jun/2026:10:49:26 +1000] "GET /.env.example HTTP/1.1" 404 986 "-" "Mozilla/5.0 (X11; Linux x86_64) Gecko/20100101 Firefox/125.0" ... show less	Bad Web Bot
🇬🇧 consul.to	2026-06-05 00:47:02 (6 days ago)	Web attack/malicious scanning detected	Web App Attack
🇳🇱 U.N.Owen	2026-06-05 00:45:54 (6 days ago)	173.245.211.135 - - [05/Jun/2026:03:45:02 +0300] "GET /.env HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" ... show more 173.245.211.135 - - [05/Jun/2026:03:45:02 +0300] "GET /.env HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:05 +0300] "GET /.env.bak HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:09 +0300] "GET /.env.local HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:13 +0300] "GET /.env.production HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:17 +0300] "GET /.env.old HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:20 +0300] "GET /.env.example HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:24 +0300] "GET /.env.backup HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:28 +0300] "GET /.env.save HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:32 +0300] "GET /.env.dist HTTP/1.1" 404 146 "-" "curl/7.88.1" "-" 173.245.211.135 - - [05/Jun/2026:03:45:35 +0300] " ... show less	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 00:42:11 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.ne ... show more (mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 20:42:07.820897 2026] [security2:error] [pid 15317:tid 15340] [client 173.245.211.135:61900] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.79"] [uri "/.env"] [unique_id "aiIbX9hA0LT4m-qKgCpSyQAAANQ"] show less	Brute-Force Bad Web Bot Web App Attack
🇫🇷 dynamix	2026-06-05 00:37:20 (6 days ago)	Multiple WAF Violations	Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 00:26:20 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.ne ... show more (mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 20:26:16.307191 2026] [security2:error] [pid 9567:tid 9567] [client 173.245.211.135:49750] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.71"] [uri "/.env"] [unique_id "aiIXqEtTdpAdLIGcdV7B0wAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 kosada.com	2026-06-05 00:24:02 (6 days ago)	Web vulnerability probing: /.env.production (bogus vhost/SNI)	Web App Attack
🇺🇸 TPI-Abuse	2026-06-05 00:11:09 (6 days ago)	(mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.ne ... show more (mod_security) mod_security (id:210492) triggered by 173.245.211.135 (173-245-211-135.gru.as62651.net): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 20:11:04.219800 2026] [security2:error] [pid 16891:tid 16891] [client 173.245.211.135:49183] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "192.64.150.197"] [uri "/.env"] [unique_id "aiIUGGNzmhy7lRXY8ZwTRgAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
Anonymous	2026-06-05 00:04:21 (6 days ago)	...	Bad Web Bot
🇨🇱 SinaiCL	2026-05-30 20:27:22 (1 week ago)	Automated Nginx block. Attack type: Scan for config files. Total malicious requests: 10 across multi ... show more Automated Nginx block. Attack type: Scan for config files. Total malicious requests: 10 across multiple servers. show less	Bad Web Bot
🇳🇱 GabrielJST	2026-05-29 17:15:50 (1 week ago)	(wordpress-user-enum) Failed wordpress-user-enum trigger from 173.245.211.135 (BR/Brazil/173-245-211 ... show more (wordpress-user-enum) Failed wordpress-user-enum trigger from 173.245.211.135 (BR/Brazil/173-245-211-135.gru.as62651.net) show less	Brute-Force

Showing 1 to 14 of 14 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇲🇽 200.33.72.165

🇮🇷 151.232.92.132

🇸🇬 128.199.158.135

🇷🇺 95.165.27.83

🇨🇦 52.138.33.112

🇺🇸 49.51.188.155

🇷🇴 2.57.121.112

🇫🇮 178.20.210.208

🇺🇸 166.0.192.244

🇳🇱 45.148.10.230

🇬🇧 35.203.210.139

🇰🇷 34.50.53.221

🇺🇸 3.82.111.251

🇰🇷 210.183.21.53

🇧🇷 177.11.196.84

🇷🇺 79.104.0.82

🇳🇱 45.148.10.183

🇩🇪 164.92.161.148

🇰🇷 115.68.208.117

🇳🇱 104.250.197.69