JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 178.162.201.130

178.162.201.130 was found in our database!

This IP was reported 85 times. Confidence of Abuse is 100%: ?

100%

ISP	Leaseweb Deutschland GmbH
Usage Type	Data Center/Web Hosting/Transit
ASN	AS28753
Domain Name	leaseweb.com
Country	🇩🇪 Germany
City	Frankfurt am Main, Hesse

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 178.162.201.130

Whois 178.162.201.130

IP Abuse Reports for 178.162.201.130:

This IP address has been reported a total of 85 times from 66 distinct sources. 178.162.201.130 was first reported on June 4th 2026, and the most recent report was 36 seconds ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 Mundo Bueno	2026-06-05 04:32:59 (36 seconds ago)	[ISILIA Protection v2.1] Tentative d'accès: /.env \| Pays: DE \| UA: Mozilla/5.0 (compatible; myjob/1. ... show more [ISILIA Protection v2.1] Tentative d'accès: /.env \| Pays: DE \| UA: Mozilla/5.0 (compatible; myjob/1.0) show less	Hacking Web App Attack
🇧🇷 SOC PR	2026-06-05 04:08:59 (24 minutes ago)	IPS: Sensitive Configuration File Disclosure.	Hacking
🇺🇸 TPI-Abuse	2026-06-05 03:53:09 (40 minutes ago)	(mod_security) mod_security (id:210492) triggered by 178.162.201.130 (-): 1 in the last 300 secs; Po ... show more (mod_security) mod_security (id:210492) triggered by 178.162.201.130 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jun 04 23:53:01.498685 2026] [security2:error] [pid 27203:tid 27203] [client 178.162.201.130:22440] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "boblog111.com"] [uri "/.env"] [unique_id "aiJIHYGMaDSoHreEAZlsXQAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 Bedios GmbH	2026-06-05 03:49:43 (43 minutes ago)	Login credentials theft attempt	Hacking
🇩🇪 LRob.fr	2026-06-05 03:45:08 (48 minutes ago)	Repeated 404 errors, blocked by Fail2ban in custom-404 jail	Bad Web Bot
🇪🇸 el-brujo	2026-06-05 03:44:35 (49 minutes ago)	Cloudflare WAF: Request Path: /.env Request Query: Host: hwagm.elhacker.net userAgent: Mozilla/5.0 ... show more Cloudflare WAF: Request Path: /.env Request Query: Host: hwagm.elhacker.net userAgent: Mozilla/5.0 (compatible; myjob/1.0) Action: block Source: firewallManaged ASN Description: Leaseweb Deutschland GmbH Country: DE Method: GET Timestamp: 2026-06-05T03:44:35Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇦 URAN Publishing Service	2026-06-05 03:43:25 (50 minutes ago)	178.162.201.130 - - [05/Jun/2026:06:43:25 +0300] "GET /.env HTTP/1.1" 404 3276 "-" "Mozilla/5.0 (com ... show more 178.162.201.130 - - [05/Jun/2026:06:43:25 +0300] "GET /.env HTTP/1.1" 404 3276 "-" "Mozilla/5.0 (compatible; myjob/1.0)" ... show less	Web App Attack
🇩🇪 BlueWire Hosting	2026-06-05 03:26:37 (1 hour ago)	Probing websites for vulnerabilities	Web App Attack SQL Injection
Anonymous	2026-06-05 02:53:10 (1 hour ago)	Sensitive file access attempt	Hacking
🇩🇪 pltcldvlpr	2026-06-05 02:44:41 (1 hour ago)	CMS/framework probe: 178.162.201.130 - - [05/Jun/2026:04:44:40 +0200] "GET /.env HTTP/2.0" 404 10571 ... show more CMS/framework probe: 178.162.201.130 - - [05/Jun/2026:04:44:40 +0200] "GET /.env HTTP/2.0" 404 10571 "-" "Mozilla/5.0 (compatible; myjob/1.0)" asn=28753 org="Leaseweb Deutschland GmbH" country=DE ... show less	Web App Attack
🇵🇱 lns.bz	2026-06-05 02:42:10 (1 hour ago)	Web app attack [PL.Lu]	Exploited Host Web App Attack
🇨🇿 ddw	2026-06-05 02:32:18 (2 hours ago)	ModSecurity detection - Rules: 930130(Restricted File Access Attempt)	Web App Attack
🇪🇸 el-brujo	2026-06-05 02:24:52 (2 hours ago)	Cloudflare WAF: Request Path: /.env Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (c ... show more Cloudflare WAF: Request Path: /.env Request Query: Host: ns2.elhacker.net userAgent: Mozilla/5.0 (compatible; myjob/1.0) Action: block Source: firewallManaged ASN Description: Leaseweb Deutschland GmbH Country: DE Method: GET Timestamp: 2026-06-05T02:24:52Z ruleId: 23548ee2b36547a1be09bb2c0550c529. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/MHG-LAB/Cloudflare-WAF-to-AbuseIPDB). show less	Hacking SQL Injection Web App Attack
🇺🇸 mw	2026-06-05 02:00:03 (2 hours ago)	GET /.env HTTP/1.1	Web App Attack
🇨🇭 lufi	2026-06-05 01:56:20 (2 hours ago)	2026-06-05 03:56:19 178.162.201.130: blacklistedPath: /.env ...	Web Spam Brute-Force Hacking Web App Attack

Showing 1 to 15 of 85 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇩 158.140.173.29

🇺🇸 147.182.244.148

🇩🇪 118.193.59.41

🇨🇳 223.101.216.137

🇫🇮 178.20.210.152

🇵🇱 172.253.1.156

🇧🇷 172.69.114.133

🇨🇳 171.217.70.151

🇮🇳 152.52.192.162

🇩🇪 118.193.58.187

🇭🇰 103.103.245.61

🇷🇴 102.129.186.123

🇫🇷 79.137.34.248

🇫🇷 62.171.133.142

🇺🇸 62.132.18.57

🇱🇹 62.60.130.14

🇺🇸 45.79.207.252

🇸🇬 43.98.164.188

🇮🇩 36.66.128.146

🇹🇼 35.229.206.236