JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 181.215.182.8

181.215.182.8 was found in our database!

This IP was reported 33 times. Confidence of Abuse is 70%: ?

70%

ISP	Cyber Assets FZCO
Usage Type	Fixed Line ISP
ASN	AS174
Domain Name	cyberassets.ae
Country	🇺🇸 United States of America
City	Dallas, Texas

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 181.215.182.8

Whois 181.215.182.8

IP Abuse Reports for 181.215.182.8:

This IP address has been reported a total of 33 times from 26 distinct sources. 181.215.182.8 was first reported on September 21st 2024, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 homeshowdomain.nl	2026-06-07 22:07:10 (2 weeks ago)	Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ... show more Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-06-06. show less	Web App Attack SSH Hacking
🇫🇷 SpaceHost-Server	2026-06-06 22:26:34 (2 weeks ago)		Brute-Force Web App Attack
Anonymous	2026-06-06 13:48:57 (2 weeks ago)	[Firewall Canary] Temporary ban due to firewall rule match [URI:*/.env]	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 13:46:27 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 09:46:19.866920 2026] [security2:error] [pid 14367:tid 14367] [client 181.215.182.8:0] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "archive.yggdrasil.org"] [uri "/.env"] [unique_id "aiQkq59mf2x_QELaAgtlaQAAAAw"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 13:20:50 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 09:20:44.465980 2026] [security2:error] [pid 14937:tid 14949] [client 181.215.182.8:40266] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ptinct.org"] [uri "/.env"] [unique_id "aiQerKPIet7xCPMdxjos5wAAAAY"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 barbarella	2026-06-06 13:09:42 (2 weeks ago)	Configuration snooping in .env file (GET /.env)	Hacking Web App Attack
🇨🇭 zynex	2026-06-06 12:54:24 (2 weeks ago)	URL Probing: /.env	Web App Attack
🇮🇩 Burayot	2026-06-06 12:54:14 (2 weeks ago)	LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 181.215.182.8 (US/United States/-): ... show more LF_MODSEC: (mod_security) mod_security (id:949110) triggered by 181.215.182.8 (US/United States/-): 2 in the last 3600 secs show less	Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 12:53:34 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 08:53:30.272148 2026] [security2:error] [pid 16990:tid 16990] [client 181.215.182.8:52632] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "www.robotsinme.org"] [uri "/.env"] [unique_id "aiQYSr5OfXyCSDnLZ7gA9AAAAAs"] show less	Brute-Force Bad Web Bot Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 12:31:09 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 08:31:02.884631 2026] [security2:error] [pid 3863:tid 3863] [client 181.215.182.8:9648] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "bigbandrockparty.com"] [uri "/.env"] [unique_id "aiQTBuHoPyE8CcznyZiTTwAAAAU"] show less	Brute-Force Bad Web Bot Web App Attack
🇸🇬 anotherwatcher	2026-06-06 12:09:28 (2 weeks ago)	bad bot	Bad Web Bot
🇮🇹 A000Z	2026-06-06 12:09:03 (2 weeks ago)	Fail2Ban: 181.215.182.8 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5. ... show more Fail2Ban: 181.215.182.8 was banned for Aggressive Bad Bot detected by Nginx/Fail2Ban. UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:77.0) Gecko/20100101 Firefox/77.0 show less	Bad Web Bot
Anonymous	2026-06-06 12:09:02 (2 weeks ago)	Bot / scanning and/or hacking attempts: GET /.env HTTP/1.1, GET /index.php HTTP/1.1, GET / HTTP/1.1	Hacking Web App Attack
🇺🇸 TPI-Abuse	2026-06-06 11:55:54 (2 weeks ago)	(mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Port ... show more (mod_security) mod_security (id:210492) triggered by 181.215.182.8 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jun 06 07:55:47.455360 2026] [security2:error] [pid 3538:tid 3538] [client 181.215.182.8:30597] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "rentadeandamioscdmx.com"] [uri "/.env"] [unique_id "aiQKw3xd6m1WnfJKFmfN1QAAAA0"] show less	Brute-Force Bad Web Bot Web App Attack
🇩🇪 sdos.es	2026-06-06 11:51:42 (2 weeks ago)	"Restricted File Access Attempt - Matched Data: /.env found within REQUEST_FILENAME: /.env"	Web App Attack

Showing 1 to 15 of 33 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 178.128.51.84

🇸🇪 170.168.174.65

🇮🇩 163.7.4.169

🇺🇸 162.216.150.203

🇺🇸 162.216.149.202

🇦🇺 115.130.71.70

🇮🇩 103.97.101.25

🇨🇦 85.217.149.45

🇧🇷 2804:83c4:be0f:2501:d5a4:d39:51ad:1771

🇸🇪 82.118.29.215

🇨🇳 49.72.213.251

🇯🇵 218.33.111.9

🇺🇸 193.36.224.102

🇫🇷 185.177.72.58

🇨🇳 119.96.158.87

🇨🇳 116.172.251.204

🇺🇸 71.6.199.23

🇺🇸 34.48.179.54

🇳🇱 195.178.110.217

🇨🇴 161.18.234.168